Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unable to update vista, google won't load


  • This topic is locked This topic is locked
46 replies to this topic

#1 MrBug708

MrBug708

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:24 PM

Posted 30 July 2012 - 02:05 AM

Original Post

http://www.bleepingcomputer.com/forums/topic461467.html/page__p__2771159#entry2771159

A few more notes:
Unable to enable firewall
Chrome didnt like DDS
I previously thought combofix was a no go, but after watching GMER try to do it's thing through saved game files (OOTP) that contained over a gig of material, I deleted those saved games. I didnt run combofix again FYI

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.19120 BrowserJavaVersion: 1.6.0_30
Run by Kyle at 17:47:08 on 2012-07-19
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3582.2187 [GMT -7:00]
.
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Windows\runservice.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\ATT-SST\McciTrayApp.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Real\realplayer\Update\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\Kyle\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uWindow Title = Internet Explorer, optimized for Bing and MSN
mURLSearchHooks: AIM Toolbar Search Class: {03402f96-3dc7-4285-bc50-9e81fefafe43} - c:\program files\aim toolbar\aimtb.dll
BHO: Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - No File
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar2.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: AIM Toolbar Loader: {b0cda128-b425-4eef-a174-61a11ac5dbf8} - c:\program files\aim toolbar\aimtb.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar2.dll
TB: AIM Toolbar: {61539ecd-cc67-4437-a03c-9aaccbd14326} - c:\program files\aim toolbar\aimtb.dll
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [swg] c:\program files\google\googletoolbarnotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [Google Update] "c:\users\kyle\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil11e_ActiveX.exe -update activex
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [hpsysdrv] c:\hp\support\hpsysdrv.exe
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [ATT-SST_McciTrayApp] "c:\program files\att-sst\McciTrayApp.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{56717430-C007-489A-97FF-BD28BDD088D5} : DhcpNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath -
.
============= SERVICES / DRIVERS ===============
.
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-4-16 21504]
R2 LicCtrlService;LicCtrl Service;c:\windows\Runservice.exe [2007-2-18 2560]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2012-7-5 3048136]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-1-25 136176]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-2-29 158856]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-1-25 136176]
S3 hitmanpro35;Hitman Pro 3.5 Support Driver;c:\windows\system32\drivers\hitmanpro35.sys [2011-9-25 23624]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-5-3 113120]
S4 Amazon Download Agent;Amazon Download Agent;c:\program files\amazon\amazon games & software downloader\AmazonGSDownloaderService.exe [2010-12-11 401920]
S4 McciServiceHost;McciServiceHost;c:\program files\common files\motive\McciServiceHost.exe [2011-8-11 315392]
S4 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2011-7-14 2214504]
S4 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2011-6-20 1153368]
.
=============== Created Last 30 ================
.
2012-07-19 18:54:47 -------- d-s---w- C:\ComboFix
2012-07-19 16:57:24 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-07-19 16:57:24 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-07-06 01:45:34 5030088 ----a-w- c:\program files\mozilla firefox\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
.
==================== Find3M ====================
.
2012-07-19 19:57:02 19721 --sha-w- c:\windows\system32\mmf.sys
2012-07-03 20:46:44 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
.
============= FINISH: 17:47:34.90 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,760 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:24 PM

Posted 04 August 2012 - 02:10 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

Posted Image In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/463055 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

Posted Image If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS and GMER log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


We also need a new log from the GMER anti-rootkit Scanner.

Please note that if you are running a 64-bit version of Windows, you should not bother creating a GMER log.

Please first disable any CD emulation programs using the steps found in this topic:

Why we request you disable CD Emulation when receiving Malware Removal Advice


Then create another GMER log and post it as an attachment to the reply where you post your new DDS log. Instructions on how to properly create a GMER log can be found here:

How to create a GMER log


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 MrBug708

MrBug708
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:24 PM

Posted 04 August 2012 - 10:05 AM

Hello,

I do still need help. I am currently running the GMER scan after running the DDS scan. It will take quite a few days still to finish. I have not touched anything on the computer but instead use my laptop to do everything so nothing *theoretically* has changed from the previous scan.

I am running Vista - 32. I do not have the original CD or at least I cannot find it.

Symptoms include (not limited to)
Unable to load firefox
mail.yahoo.com blocked on chrome and IE
Search error where it says that it's corrupt
Unable to update windows (I tried working with a Microsoft guy about a year or so ago with no available)
Search in my computer does not work

I'll post the logs when they finish, if they are still needed

Thanks!
Kyle

#4 MrBug708

MrBug708
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:24 PM

Posted 06 August 2012 - 02:04 AM

Added logs

Thanks!

Attached Files



#5 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,760 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:24 PM

Posted 09 August 2012 - 02:15 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!

Mod Edit: Reopened per PM request from OP - Hamluis.

Edited by hamluis, 09 August 2012 - 08:23 PM.


#6 nasdaq

nasdaq

  • Malware Response Team
  • 40,464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:24 PM

Posted 10 August 2012 - 08:35 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Lets start with these scans.

Please Download
TDSSKiller.zip

>>> Double-click on TDSSKiller.exe to run the application.
  • Click on the Start Scan button and wait for the scan and disinfection process to be over.
  • If an infected file is detected, the default action will be Cure, click on Continue
    Posted Image
  • If a suspicious file is detected, the default action will be Skip, click on Continue
    Posted Image
  • If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.
  • If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it

  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please post the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.

===

Please post the logs for my review.

#7 MrBug708

MrBug708
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:24 PM

Posted 10 August 2012 - 09:53 AM

07:49:46.0949 0888 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
07:49:47.0507 0888 ============================================================
07:49:47.0508 0888 Current date / time: 2012/08/10 07:49:47.0507
07:49:47.0508 0888 SystemInfo:
07:49:47.0508 0888
07:49:47.0508 0888 OS Version: 6.0.6002 ServicePack: 2.0
07:49:47.0508 0888 Product type: Workstation
07:49:47.0508 0888 ComputerName: KYLE-PC
07:49:47.0508 0888 UserName: Kyle
07:49:47.0508 0888 Windows directory: C:\Windows
07:49:47.0508 0888 System windows directory: C:\Windows
07:49:47.0508 0888 Processor architecture: Intel x86
07:49:47.0508 0888 Number of processors: 2
07:49:47.0508 0888 Page size: 0x1000
07:49:47.0508 0888 Boot type: Normal boot
07:49:47.0508 0888 ============================================================
07:49:47.0835 0888 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0xA181, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
07:49:47.0848 0888 ============================================================
07:49:47.0848 0888 \Device\Harddisk0\DR0:
07:49:47.0852 0888 MBR partitions:
07:49:47.0852 0888 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x247A9091
07:49:47.0852 0888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x247A90D0, BlocksNum 0xC84240
07:49:47.0852 0888 ============================================================
07:49:47.0878 0888 C: <-> \Device\Harddisk0\DR0\Partition0
07:49:47.0924 0888 D: <-> \Device\Harddisk0\DR0\Partition1
07:49:47.0924 0888 ============================================================
07:49:47.0924 0888 Initialize success
07:49:47.0924 0888 ============================================================
07:49:48.0757 2372 ============================================================
07:49:48.0757 2372 Scan started
07:49:48.0757 2372 Mode: Manual;
07:49:48.0757 2372 ============================================================
07:49:49.0108 2372 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
07:49:49.0110 2372 !SASCORE - ok
07:49:49.0284 2372 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
07:49:49.0287 2372 ACPI - ok
07:49:49.0340 2372 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
07:49:49.0344 2372 adp94xx - ok
07:49:49.0385 2372 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
07:49:49.0387 2372 adpahci - ok
07:49:49.0419 2372 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
07:49:49.0420 2372 adpu160m - ok
07:49:49.0437 2372 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
07:49:49.0439 2372 adpu320 - ok
07:49:49.0481 2372 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
07:49:49.0482 2372 AeLookupSvc - ok
07:49:49.0537 2372 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
07:49:49.0540 2372 AFD - ok
07:49:49.0567 2372 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
07:49:49.0567 2372 agp440 - ok
07:49:49.0594 2372 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
07:49:49.0595 2372 aic78xx - ok
07:49:49.0621 2372 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
07:49:49.0623 2372 ALG - ok
07:49:49.0640 2372 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
07:49:49.0641 2372 aliide - ok
07:49:49.0787 2372 Amazon Download Agent (ff6f0f6a2d72065ae4300426fa414693) C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe
07:49:49.0791 2372 Amazon Download Agent - ok
07:49:49.0818 2372 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
07:49:49.0819 2372 amdagp - ok
07:49:49.0840 2372 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
07:49:49.0840 2372 amdide - ok
07:49:49.0876 2372 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
07:49:49.0877 2372 AmdK7 - ok
07:49:49.0917 2372 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
07:49:49.0917 2372 AmdK8 - ok
07:49:49.0957 2372 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
07:49:49.0958 2372 Appinfo - ok
07:49:50.0022 2372 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:49:50.0025 2372 Apple Mobile Device - ok
07:49:50.0105 2372 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
07:49:50.0107 2372 arc - ok
07:49:50.0141 2372 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
07:49:50.0142 2372 arcsas - ok
07:49:50.0210 2372 aspnet_state (40c145f12ff461a0220303bda134f598) C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
07:49:50.0211 2372 aspnet_state - ok
07:49:50.0235 2372 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
07:49:50.0236 2372 AsyncMac - ok
07:49:50.0279 2372 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
07:49:50.0280 2372 atapi - ok
07:49:50.0329 2372 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:49:50.0332 2372 AudioEndpointBuilder - ok
07:49:50.0339 2372 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:49:50.0341 2372 Audiosrv - ok
07:49:50.0423 2372 Automatic LiveUpdate Scheduler (b5d974c1fd078a68c7536c561b031d39) C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
07:49:50.0428 2372 Automatic LiveUpdate Scheduler - ok
07:49:50.0462 2372 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
07:49:50.0463 2372 Beep - ok
07:49:50.0544 2372 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
07:49:50.0547 2372 BFE - ok
07:49:50.0614 2372 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
07:49:50.0621 2372 BITS - ok
07:49:50.0627 2372 blbdrive - ok
07:49:50.0671 2372 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
07:49:50.0672 2372 bowser - ok
07:49:50.0705 2372 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
07:49:50.0706 2372 BrFiltLo - ok
07:49:50.0732 2372 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
07:49:50.0732 2372 BrFiltUp - ok
07:49:50.0771 2372 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
07:49:50.0772 2372 Browser - ok
07:49:50.0794 2372 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
07:49:50.0796 2372 Brserid - ok
07:49:50.0817 2372 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
07:49:50.0818 2372 BrSerWdm - ok
07:49:50.0844 2372 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
07:49:50.0845 2372 BrUsbMdm - ok
07:49:50.0860 2372 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
07:49:50.0861 2372 BrUsbSer - ok
07:49:50.0883 2372 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
07:49:50.0883 2372 BTHMODEM - ok
07:49:50.0927 2372 BVRPMPR5 (248dfa5762dde38dfddbbd44149e9d7a) C:\Windows\system32\drivers\BVRPMPR5.SYS
07:49:50.0928 2372 BVRPMPR5 - ok
07:49:51.0043 2372 catchme - ok
07:49:51.0117 2372 ccEvtMgr (fe69c498b922ce835e2e2123fbd0a272) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
07:49:51.0118 2372 ccEvtMgr - ok
07:49:51.0123 2372 ccSetMgr (fe69c498b922ce835e2e2123fbd0a272) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
07:49:51.0125 2372 ccSetMgr - ok
07:49:51.0148 2372 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
07:49:51.0149 2372 cdfs - ok
07:49:51.0156 2372 cdrom - ok
07:49:51.0196 2372 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:49:51.0198 2372 CertPropSvc - ok
07:49:51.0230 2372 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
07:49:51.0230 2372 circlass - ok
07:49:51.0291 2372 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
07:49:51.0293 2372 CLFS - ok
07:49:51.0371 2372 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:49:51.0372 2372 clr_optimization_v2.0.50727_32 - ok
07:49:51.0420 2372 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
07:49:51.0421 2372 cmdide - ok
07:49:51.0471 2372 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
07:49:51.0472 2372 Compbatt - ok
07:49:51.0477 2372 COMSysApp - ok
07:49:51.0513 2372 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
07:49:51.0513 2372 crcdisk - ok
07:49:51.0532 2372 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
07:49:51.0533 2372 Crusoe - ok
07:49:51.0578 2372 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
07:49:51.0580 2372 CryptSvc - ok
07:49:51.0644 2372 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:49:51.0650 2372 DcomLaunch - ok
07:49:51.0692 2372 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
07:49:51.0693 2372 DfsC - ok
07:49:51.0813 2372 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
07:49:51.0829 2372 DFSR - ok
07:49:51.0947 2372 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
07:49:51.0950 2372 Dhcp - ok
07:49:52.0018 2372 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
07:49:52.0019 2372 disk - ok
07:49:52.0065 2372 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
07:49:52.0066 2372 Dnscache - ok
07:49:52.0108 2372 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
07:49:52.0110 2372 dot3svc - ok
07:49:52.0148 2372 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
07:49:52.0149 2372 Dot4 - ok
07:49:52.0161 2372 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
07:49:52.0162 2372 Dot4Print - ok
07:49:52.0193 2372 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
07:49:52.0193 2372 dot4usb - ok
07:49:52.0235 2372 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
07:49:52.0237 2372 DPS - ok
07:49:52.0269 2372 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
07:49:52.0270 2372 drmkaud - ok
07:49:52.0355 2372 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
07:49:52.0360 2372 DXGKrnl - ok
07:49:52.0396 2372 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
07:49:52.0397 2372 E1G60 - ok
07:49:52.0426 2372 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
07:49:52.0427 2372 EapHost - ok
07:49:52.0460 2372 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
07:49:52.0461 2372 Ecache - ok
07:49:52.0548 2372 eeCtrl (31c959319ef45b548d2111e338412270) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
07:49:52.0552 2372 eeCtrl - ok
07:49:52.0608 2372 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
07:49:52.0610 2372 ehRecvr - ok
07:49:52.0644 2372 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
07:49:52.0646 2372 ehSched - ok
07:49:52.0658 2372 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
07:49:52.0659 2372 ehstart - ok
07:49:52.0719 2372 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
07:49:52.0721 2372 elxstor - ok
07:49:52.0791 2372 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
07:49:52.0796 2372 EMDMgmt - ok
07:49:52.0879 2372 EraserUtilRebootDrv - ok
07:49:52.0943 2372 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
07:49:52.0946 2372 EventSystem - ok
07:49:53.0009 2372 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
07:49:53.0010 2372 exfat - ok
07:49:53.0043 2372 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
07:49:53.0044 2372 fastfat - ok
07:49:53.0068 2372 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
07:49:53.0068 2372 fdc - ok
07:49:53.0095 2372 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
07:49:53.0096 2372 fdPHost - ok
07:49:53.0128 2372 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
07:49:53.0130 2372 FDResPub - ok
07:49:53.0151 2372 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
07:49:53.0152 2372 FileInfo - ok
07:49:53.0177 2372 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
07:49:53.0178 2372 Filetrace - ok
07:49:53.0195 2372 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
07:49:53.0197 2372 flpydisk - ok
07:49:53.0247 2372 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
07:49:53.0249 2372 FltMgr - ok
07:49:53.0333 2372 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
07:49:53.0339 2372 FontCache - ok
07:49:53.0414 2372 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:49:53.0414 2372 FontCache3.0.0.0 - ok
07:49:53.0465 2372 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
07:49:53.0465 2372 Fs_Rec - ok
07:49:53.0491 2372 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
07:49:53.0492 2372 gagp30kx - ok
07:49:53.0531 2372 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
07:49:53.0532 2372 GEARAspiWDM - ok
07:49:53.0593 2372 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
07:49:53.0598 2372 gpsvc - ok
07:49:53.0748 2372 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
07:49:53.0750 2372 gupdate - ok
07:49:53.0764 2372 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
07:49:53.0765 2372 gupdatem - ok
07:49:53.0796 2372 gusvc (751c1d2ca2abf4a9f5a6b8d7d45b907c) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
07:49:53.0798 2372 gusvc - ok
07:49:53.0827 2372 hamachi (7929a161f9951d173ca9900fe7067391) C:\Windows\system32\DRIVERS\hamachi.sys
07:49:53.0828 2372 hamachi - ok
07:49:53.0871 2372 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
07:49:53.0873 2372 HdAudAddService - ok
07:49:53.0941 2372 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
07:49:53.0946 2372 HDAudBus - ok
07:49:53.0984 2372 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
07:49:53.0985 2372 HidBth - ok
07:49:54.0004 2372 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
07:49:54.0005 2372 HidIr - ok
07:49:54.0029 2372 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
07:49:54.0031 2372 hidserv - ok
07:49:54.0051 2372 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\drivers\hidusb.sys
07:49:54.0052 2372 HidUsb - ok
07:49:54.0109 2372 hitmanpro35 (72472b9ce5d02e443cff49a40355455d) C:\Windows\system32\drivers\hitmanpro35.sys
07:49:54.0110 2372 hitmanpro35 - ok
07:49:54.0155 2372 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
07:49:54.0157 2372 hkmsvc - ok
07:49:54.0191 2372 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
07:49:54.0192 2372 HpCISSs - ok
07:49:54.0340 2372 hpqcxs08 (38d6b51f04def7fb248fa56e4c47407e) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
07:49:54.0342 2372 hpqcxs08 - ok
07:49:54.0394 2372 hpqddsvc (3ee4a63539ec04ee2d4bd293985087ab) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
07:49:54.0395 2372 hpqddsvc - ok
07:49:54.0470 2372 HSF_DP (88749fbf8beb18c90e7d6626c8c1910b) C:\Windows\system32\DRIVERS\HSX_DP.sys
07:49:54.0477 2372 HSF_DP - ok
07:49:54.0519 2372 HSXHWBS2 (fe440536bd98af772130dc3a6fe1915f) C:\Windows\system32\DRIVERS\HSXHWBS2.sys
07:49:54.0521 2372 HSXHWBS2 - ok
07:49:54.0581 2372 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
07:49:54.0585 2372 HTTP - ok
07:49:54.0612 2372 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
07:49:54.0613 2372 i2omp - ok
07:49:54.0642 2372 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
07:49:54.0642 2372 i8042prt - ok
07:49:54.0673 2372 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
07:49:54.0675 2372 iaStorV - ok
07:49:54.0782 2372 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
07:49:54.0783 2372 IDriverT - ok
07:49:54.0907 2372 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:49:54.0913 2372 idsvc - ok
07:49:55.0024 2372 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
07:49:55.0025 2372 iirsp - ok
07:49:55.0075 2372 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
07:49:55.0080 2372 IKEEXT - ok
07:49:55.0224 2372 IntcAzAudAddService (84ed2154239f9d013bbd3220755ada8b) C:\Windows\system32\drivers\RTKVHDA.sys
07:49:55.0240 2372 IntcAzAudAddService - ok
07:49:55.0353 2372 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
07:49:55.0353 2372 intelide - ok
07:49:55.0373 2372 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
07:49:55.0374 2372 intelppm - ok
07:49:55.0414 2372 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
07:49:55.0416 2372 IPBusEnum - ok
07:49:55.0447 2372 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:49:55.0448 2372 IpFilterDriver - ok
07:49:55.0532 2372 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
07:49:55.0535 2372 iphlpsvc - ok
07:49:55.0541 2372 IpInIp - ok
07:49:55.0572 2372 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
07:49:55.0573 2372 IPMIDRV - ok
07:49:55.0609 2372 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
07:49:55.0610 2372 IPNAT - ok
07:49:55.0695 2372 iPod Service (630d74599070824af3dc63a894adcdfc) C:\Program Files\iPod\bin\iPodService.exe
07:49:55.0699 2372 iPod Service - ok
07:49:55.0755 2372 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
07:49:55.0756 2372 IRENUM - ok
07:49:55.0782 2372 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
07:49:55.0783 2372 isapnp - ok
07:49:55.0823 2372 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
07:49:55.0825 2372 iScsiPrt - ok
07:49:55.0843 2372 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
07:49:55.0844 2372 iteatapi - ok
07:49:55.0860 2372 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
07:49:55.0861 2372 iteraid - ok
07:49:55.0892 2372 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
07:49:55.0893 2372 kbdclass - ok
07:49:55.0909 2372 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
07:49:55.0910 2372 kbdhid - ok
07:49:55.0952 2372 KeyIso (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
07:49:55.0953 2372 KeyIso - ok
07:49:55.0989 2372 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
07:49:55.0993 2372 KSecDD - ok
07:49:56.0019 2372 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
07:49:56.0023 2372 KtmRm - ok
07:49:56.0084 2372 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
07:49:56.0087 2372 LanmanServer - ok
07:49:56.0113 2372 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
07:49:56.0117 2372 LanmanWorkstation - ok
07:49:56.0141 2372 LicCtrlService (29fab5363138f6e322f4cd780ed9d337) C:\Windows\runservice.exe
07:49:56.0142 2372 LicCtrlService - ok
07:49:56.0219 2372 LightScribeService (6e5dac168d1ff9843e84a59d51d31107) c:\Program Files\Common Files\LightScribe\LSSrvc.exe
07:49:56.0220 2372 LightScribeService - ok
07:49:56.0395 2372 LiveUpdate (a97eeb81f05bce3d7aa6c81f04ef39a4) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
07:49:56.0416 2372 LiveUpdate - ok
07:49:56.0472 2372 LiveUpdate Notice Ex (fe69c498b922ce835e2e2123fbd0a272) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
07:49:56.0473 2372 LiveUpdate Notice Ex - ok
07:49:56.0565 2372 LiveUpdate Notice Service (deb2a99c1ad9b9190c78e895ae60a745) C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
07:49:56.0570 2372 LiveUpdate Notice Service - ok
07:49:56.0696 2372 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
07:49:56.0697 2372 lltdio - ok
07:49:56.0729 2372 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
07:49:56.0731 2372 lltdsvc - ok
07:49:56.0754 2372 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
07:49:56.0755 2372 lmhosts - ok
07:49:56.0787 2372 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
07:49:56.0788 2372 LSI_FC - ok
07:49:56.0805 2372 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
07:49:56.0806 2372 LSI_SAS - ok
07:49:56.0824 2372 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
07:49:56.0825 2372 LSI_SCSI - ok
07:49:56.0856 2372 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
07:49:56.0857 2372 luafv - ok
07:49:56.0882 2372 LVUSBSta (a730fc8671a60666d6e877c544dd7cd4) C:\Windows\system32\drivers\lvusbsta.sys
07:49:56.0883 2372 LVUSBSta - ok
07:49:56.0989 2372 McciCMService (e6cb119ef2e148eaa1a247343550756e) C:\Program Files\Common Files\Motive\McciCMService.exe
07:49:56.0992 2372 McciCMService - ok
07:49:57.0045 2372 McciServiceHost (eee1ea23c4777adb268a36196a631200) C:\Program Files\Common Files\Motive\McciServiceHost.exe
07:49:57.0048 2372 McciServiceHost - ok
07:49:57.0090 2372 MCSTRM (5bb01b9f582259d1fb7653c5c1da3653) C:\Windows\system32\drivers\MCSTRM.sys
07:49:57.0091 2372 MCSTRM - ok
07:49:57.0128 2372 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
07:49:57.0130 2372 Mcx2Svc - ok
07:49:57.0151 2372 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
07:49:57.0152 2372 mdmxsdk - ok
07:49:57.0187 2372 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
07:49:57.0188 2372 megasas - ok
07:49:57.0205 2372 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:49:57.0208 2372 MMCSS - ok
07:49:57.0235 2372 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
07:49:57.0236 2372 Modem - ok
07:49:57.0284 2372 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
07:49:57.0285 2372 monitor - ok
07:49:57.0325 2372 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
07:49:57.0325 2372 mouclass - ok
07:49:57.0357 2372 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
07:49:57.0357 2372 mouhid - ok
07:49:57.0407 2372 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
07:49:57.0408 2372 MountMgr - ok
07:49:57.0510 2372 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
07:49:57.0511 2372 MozillaMaintenance - ok
07:49:57.0535 2372 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
07:49:57.0536 2372 mpio - ok
07:49:57.0564 2372 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
07:49:57.0565 2372 mpsdrv - ok
07:49:57.0582 2372 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
07:49:57.0583 2372 Mraid35x - ok
07:49:57.0620 2372 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
07:49:57.0621 2372 MREMP50 - ok
07:49:57.0625 2372 MREMPR5 - ok
07:49:57.0633 2372 MRENDIS5 - ok
07:49:57.0659 2372 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
07:49:57.0659 2372 MRESP50 - ok
07:49:57.0688 2372 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
07:49:57.0689 2372 MRxDAV - ok
07:49:57.0733 2372 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
07:49:57.0734 2372 mrxsmb - ok
07:49:57.0778 2372 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:49:57.0780 2372 mrxsmb10 - ok
07:49:57.0797 2372 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:49:57.0798 2372 mrxsmb20 - ok
07:49:57.0824 2372 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
07:49:57.0824 2372 msahci - ok
07:49:57.0848 2372 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
07:49:57.0849 2372 msdsm - ok
07:49:57.0873 2372 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
07:49:57.0876 2372 MSDTC - ok
07:49:57.0913 2372 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
07:49:57.0914 2372 Msfs - ok
07:49:57.0929 2372 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
07:49:57.0930 2372 msisadrv - ok
07:49:57.0957 2372 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
07:49:57.0959 2372 MSiSCSI - ok
07:49:57.0965 2372 msiserver - ok
07:49:57.0990 2372 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
07:49:57.0990 2372 MSKSSRV - ok
07:49:58.0030 2372 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
07:49:58.0031 2372 MSPCLOCK - ok
07:49:58.0043 2372 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
07:49:58.0044 2372 MSPQM - ok
07:49:58.0073 2372 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
07:49:58.0074 2372 MsRPC - ok
07:49:58.0105 2372 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
07:49:58.0106 2372 mssmbios - ok
07:49:58.0123 2372 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
07:49:58.0124 2372 MSTEE - ok
07:49:58.0146 2372 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
07:49:58.0147 2372 Mup - ok
07:49:58.0196 2372 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
07:49:58.0202 2372 napagent - ok
07:49:58.0239 2372 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
07:49:58.0240 2372 NativeWifiP - ok
07:49:58.0290 2372 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
07:49:58.0296 2372 NDIS - ok
07:49:58.0347 2372 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
07:49:58.0348 2372 NdisTapi - ok
07:49:58.0377 2372 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
07:49:58.0378 2372 Ndisuio - ok
07:49:58.0413 2372 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
07:49:58.0414 2372 NdisWan - ok
07:49:58.0442 2372 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
07:49:58.0443 2372 NDProxy - ok
07:49:58.0470 2372 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\Windows\system32\HPZinw12.dll
07:49:58.0471 2372 Net Driver HPZ12 - ok
07:49:58.0488 2372 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
07:49:58.0488 2372 NetBIOS - ok
07:49:58.0530 2372 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
07:49:58.0531 2372 netbt - ok
07:49:58.0567 2372 Netlogon (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
07:49:58.0569 2372 Netlogon - ok
07:49:58.0612 2372 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
07:49:58.0615 2372 Netman - ok
07:49:58.0654 2372 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
07:49:58.0657 2372 netprofm - ok
07:49:58.0718 2372 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:49:58.0719 2372 NetTcpPortSharing - ok
07:49:58.0755 2372 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
07:49:58.0755 2372 nfrd960 - ok
07:49:58.0798 2372 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
07:49:58.0802 2372 NlaSvc - ok
07:49:58.0832 2372 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
07:49:58.0833 2372 Npfs - ok
07:49:58.0864 2372 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
07:49:58.0866 2372 nsi - ok
07:49:58.0899 2372 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
07:49:58.0900 2372 nsiproxy - ok
07:49:58.0989 2372 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
07:49:58.0997 2372 Ntfs - ok
07:49:59.0021 2372 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
07:49:59.0022 2372 ntrigdigi - ok
07:49:59.0027 2372 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
07:49:59.0028 2372 Null - ok
07:49:59.0107 2372 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
07:49:59.0115 2372 NVENETFD - ok
07:49:59.0634 2372 nvlddmkm (847b1755f7757f825305a1ffe6dac3e9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
07:49:59.0708 2372 nvlddmkm - ok
07:49:59.0826 2372 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
07:49:59.0827 2372 nvraid - ok
07:49:59.0858 2372 nvstor (4a5fcab82d9bf6af8a023a66802fe9e9) C:\Windows\system32\DRIVERS\nvstor.sys
07:49:59.0859 2372 nvstor - ok
07:49:59.0894 2372 nvstor32 (7eba6c9a0a295b1559efb9062e701218) C:\Windows\system32\DRIVERS\nvstor32.sys
07:49:59.0895 2372 nvstor32 - ok
07:49:59.0964 2372 nvsvc (7c732aff202dcd06c3d262966d71604c) C:\Windows\system32\nvvsvc.exe
07:49:59.0971 2372 nvsvc - ok
07:50:00.0141 2372 nvUpdatusService (262d2fbf211a88dcb84249df0f6ef6e7) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
07:50:00.0158 2372 nvUpdatusService - ok
07:50:00.0281 2372 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
07:50:00.0282 2372 nv_agp - ok
07:50:00.0287 2372 NwlnkFlt - ok
07:50:00.0296 2372 NwlnkFwd - ok
07:50:00.0344 2372 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
07:50:00.0345 2372 ohci1394 - ok
07:50:00.0407 2372 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:50:00.0413 2372 p2pimsvc - ok
07:50:00.0424 2372 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:50:00.0430 2372 p2psvc - ok
07:50:00.0446 2372 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
07:50:00.0447 2372 Parport - ok
07:50:00.0478 2372 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
07:50:00.0479 2372 partmgr - ok
07:50:00.0495 2372 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
07:50:00.0495 2372 Parvdm - ok
07:50:00.0517 2372 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
07:50:00.0520 2372 PcaSvc - ok
07:50:00.0561 2372 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
07:50:00.0563 2372 pci - ok
07:50:00.0578 2372 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
07:50:00.0579 2372 pciide - ok
07:50:00.0607 2372 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
07:50:00.0608 2372 pcmcia - ok
07:50:00.0668 2372 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
07:50:00.0674 2372 PEAUTH - ok
07:50:00.0726 2372 PID_0928 (5bd2c6d982481d548107c602e7ccfbbc) C:\Windows\system32\DRIVERS\LV561AV.SYS
07:50:00.0728 2372 PID_0928 - ok
07:50:00.0825 2372 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
07:50:00.0837 2372 pla - ok
07:50:00.0950 2372 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
07:50:00.0954 2372 PlugPlay - ok
07:50:00.0996 2372 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\Windows\system32\HPZipm12.dll
07:50:00.0998 2372 Pml Driver HPZ12 - ok
07:50:01.0057 2372 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:50:01.0064 2372 PNRPAutoReg - ok
07:50:01.0075 2372 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:50:01.0081 2372 PNRPsvc - ok
07:50:01.0119 2372 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
07:50:01.0123 2372 PolicyAgent - ok
07:50:01.0182 2372 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
07:50:01.0183 2372 PptpMiniport - ok
07:50:01.0224 2372 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
07:50:01.0225 2372 Processor - ok
07:50:01.0277 2372 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
07:50:01.0280 2372 ProfSvc - ok
07:50:01.0308 2372 ProtectedStorage (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
07:50:01.0309 2372 ProtectedStorage - ok
07:50:01.0334 2372 Ps2 (390c204ced3785609ab24e9c52054a84) C:\Windows\system32\DRIVERS\PS2.sys
07:50:01.0335 2372 Ps2 - ok
07:50:01.0364 2372 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
07:50:01.0365 2372 PSched - ok
07:50:01.0392 2372 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
07:50:01.0393 2372 PxHelp20 - ok
07:50:01.0467 2372 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
07:50:01.0473 2372 ql2300 - ok
07:50:01.0512 2372 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
07:50:01.0513 2372 ql40xx - ok
07:50:01.0551 2372 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
07:50:01.0555 2372 QWAVE - ok
07:50:01.0585 2372 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
07:50:01.0586 2372 QWAVEdrv - ok
07:50:01.0592 2372 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
07:50:01.0593 2372 RasAcd - ok
07:50:01.0624 2372 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
07:50:01.0627 2372 RasAuto - ok
07:50:01.0659 2372 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
07:50:01.0660 2372 Rasl2tp - ok
07:50:01.0714 2372 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
07:50:01.0717 2372 RasMan - ok
07:50:01.0747 2372 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
07:50:01.0748 2372 RasPppoe - ok
07:50:01.0777 2372 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
07:50:01.0778 2372 RasSstp - ok
07:50:01.0819 2372 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
07:50:01.0821 2372 rdbss - ok
07:50:01.0857 2372 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
07:50:01.0858 2372 RDPCDD - ok
07:50:01.0899 2372 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
07:50:01.0902 2372 rdpdr - ok
07:50:01.0908 2372 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
07:50:01.0909 2372 RDPENCDD - ok
07:50:01.0965 2372 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
07:50:01.0967 2372 RDPWD - ok
07:50:01.0999 2372 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
07:50:02.0001 2372 RemoteAccess - ok
07:50:02.0036 2372 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
07:50:02.0039 2372 RemoteRegistry - ok
07:50:02.0044 2372 RimUsb - ok
07:50:02.0070 2372 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\Windows\system32\DRIVERS\RimSerial.sys
07:50:02.0071 2372 RimVSerPort - ok
07:50:02.0095 2372 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
07:50:02.0096 2372 ROOTMODEM - ok
07:50:02.0114 2372 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
07:50:02.0116 2372 RpcLocator - ok
07:50:02.0173 2372 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:50:02.0179 2372 RpcSs - ok
07:50:02.0218 2372 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
07:50:02.0219 2372 rspndr - ok
07:50:02.0239 2372 SamSs (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
07:50:02.0241 2372 SamSs - ok
07:50:02.0331 2372 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
07:50:02.0332 2372 SASDIFSV - ok
07:50:02.0347 2372 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
07:50:02.0348 2372 SASKUTIL - ok
07:50:02.0417 2372 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
07:50:02.0418 2372 sbp2port - ok
07:50:02.0529 2372 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
07:50:02.0537 2372 SBSDWSCService - ok
07:50:02.0646 2372 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
07:50:02.0649 2372 SCardSvr - ok
07:50:02.0726 2372 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
07:50:02.0732 2372 Schedule - ok
07:50:02.0748 2372 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:50:02.0749 2372 SCPolicySvc - ok
07:50:02.0771 2372 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
07:50:02.0774 2372 SDRSVC - ok
07:50:02.0830 2372 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
07:50:02.0831 2372 secdrv - ok
07:50:02.0864 2372 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
07:50:02.0866 2372 seclogon - ok
07:50:02.0885 2372 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
07:50:02.0888 2372 SENS - ok
07:50:02.0902 2372 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
07:50:02.0903 2372 Serenum - ok
07:50:02.0919 2372 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
07:50:02.0920 2372 Serial - ok
07:50:02.0946 2372 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
07:50:02.0947 2372 sermouse - ok
07:50:02.0998 2372 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
07:50:03.0000 2372 SessionEnv - ok
07:50:03.0017 2372 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
07:50:03.0018 2372 sffdisk - ok
07:50:03.0032 2372 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
07:50:03.0032 2372 sffp_mmc - ok
07:50:03.0047 2372 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
07:50:03.0047 2372 sffp_sd - ok
07:50:03.0062 2372 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
07:50:03.0063 2372 sfloppy - ok
07:50:03.0107 2372 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
07:50:03.0110 2372 SharedAccess - ok
07:50:03.0169 2372 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
07:50:03.0173 2372 ShellHWDetection - ok
07:50:03.0200 2372 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
07:50:03.0201 2372 sisagp - ok
07:50:03.0232 2372 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
07:50:03.0233 2372 SiSRaid2 - ok
07:50:03.0250 2372 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
07:50:03.0251 2372 SiSRaid4 - ok
07:50:03.0496 2372 Skype C2C Service (0f97e7a47a52f4a36969f0fc319654c2) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
07:50:03.0517 2372 Skype C2C Service - ok
07:50:03.0596 2372 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
07:50:03.0598 2372 SkypeUpdate - ok
07:50:03.0841 2372 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
07:50:03.0866 2372 slsvc - ok
07:50:03.0982 2372 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
07:50:03.0984 2372 SLUINotify - ok
07:50:04.0028 2372 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
07:50:04.0029 2372 Smb - ok
07:50:04.0083 2372 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
07:50:04.0085 2372 SNMPTRAP - ok
07:50:04.0096 2372 SoC PC-Camera Service - ok
07:50:04.0129 2372 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
07:50:04.0130 2372 spldr - ok
07:50:04.0184 2372 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
07:50:04.0187 2372 Spooler - ok
07:50:04.0244 2372 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
07:50:04.0247 2372 srv - ok
07:50:04.0298 2372 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
07:50:04.0300 2372 srv2 - ok
07:50:04.0313 2372 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
07:50:04.0314 2372 srvnet - ok
07:50:04.0353 2372 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
07:50:04.0356 2372 SSDPSRV - ok
07:50:04.0422 2372 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
07:50:04.0425 2372 SstpSvc - ok
07:50:04.0479 2372 Steam Client Service - ok
07:50:04.0535 2372 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
07:50:04.0541 2372 stisvc - ok
07:50:04.0551 2372 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
07:50:04.0552 2372 swenum - ok
07:50:04.0592 2372 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
07:50:04.0596 2372 swprv - ok
07:50:04.0622 2372 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
07:50:04.0623 2372 Symc8xx - ok
07:50:04.0640 2372 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
07:50:04.0640 2372 Sym_hi - ok
07:50:04.0660 2372 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
07:50:04.0661 2372 Sym_u3 - ok
07:50:04.0715 2372 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
07:50:04.0721 2372 SysMain - ok
07:50:04.0750 2372 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
07:50:04.0752 2372 TabletInputService - ok
07:50:04.0792 2372 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
07:50:04.0796 2372 TapiSrv - ok
07:50:04.0826 2372 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
07:50:04.0828 2372 TBS - ok
07:50:04.0899 2372 Tcpip (2756186e287139310997090797e0182b) C:\Windows\system32\drivers\tcpip.sys
07:50:04.0907 2372 Tcpip - ok
07:50:04.0921 2372 Tcpip6 (2756186e287139310997090797e0182b) C:\Windows\system32\DRIVERS\tcpip.sys
07:50:04.0927 2372 Tcpip6 - ok
07:50:04.0962 2372 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
07:50:04.0963 2372 tcpipreg - ok
07:50:04.0988 2372 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
07:50:04.0988 2372 TDPIPE - ok
07:50:05.0018 2372 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
07:50:05.0019 2372 TDTCP - ok
07:50:05.0053 2372 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
07:50:05.0054 2372 tdx - ok
07:50:05.0080 2372 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
07:50:05.0081 2372 TermDD - ok
07:50:05.0141 2372 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
07:50:05.0147 2372 TermService - ok
07:50:05.0210 2372 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
07:50:05.0214 2372 Themes - ok
07:50:05.0242 2372 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:50:05.0244 2372 THREADORDER - ok
07:50:05.0268 2372 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
07:50:05.0271 2372 TrkWks - ok
07:50:05.0314 2372 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
07:50:05.0315 2372 TrustedInstaller - ok
07:50:05.0353 2372 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
07:50:05.0354 2372 tssecsrv - ok
07:50:05.0395 2372 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
07:50:05.0396 2372 tunmp - ok
07:50:05.0422 2372 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
07:50:05.0423 2372 tunnel - ok
07:50:05.0470 2372 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
07:50:05.0471 2372 uagp35 - ok
07:50:05.0512 2372 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
07:50:05.0515 2372 udfs - ok
07:50:05.0554 2372 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
07:50:05.0557 2372 UI0Detect - ok
07:50:05.0567 2372 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
07:50:05.0568 2372 uliagpkx - ok
07:50:05.0597 2372 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
07:50:05.0600 2372 uliahci - ok
07:50:05.0626 2372 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
07:50:05.0627 2372 UlSata - ok
07:50:05.0647 2372 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
07:50:05.0648 2372 ulsata2 - ok
07:50:05.0678 2372 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
07:50:05.0679 2372 umbus - ok
07:50:05.0729 2372 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
07:50:05.0733 2372 upnphost - ok
07:50:05.0789 2372 USBAAPL (026f7f224f088ee11e383bca448fff81) C:\Windows\system32\Drivers\usbaapl.sys
07:50:05.0790 2372 USBAAPL - ok
07:50:05.0823 2372 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
07:50:05.0824 2372 usbccgp - ok
07:50:05.0852 2372 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
07:50:05.0853 2372 usbcir - ok
07:50:05.0899 2372 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
07:50:05.0900 2372 usbehci - ok
07:50:05.0958 2372 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
07:50:05.0960 2372 usbhub - ok
07:50:06.0006 2372 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
07:50:06.0006 2372 usbohci - ok
07:50:06.0045 2372 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
07:50:06.0046 2372 usbprint - ok
07:50:06.0082 2372 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
07:50:06.0083 2372 usbscan - ok
07:50:06.0101 2372 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:50:06.0102 2372 USBSTOR - ok
07:50:06.0129 2372 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
07:50:06.0130 2372 usbuhci - ok
07:50:06.0159 2372 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
07:50:06.0162 2372 UxSms - ok
07:50:06.0242 2372 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
07:50:06.0248 2372 vds - ok
07:50:06.0269 2372 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
07:50:06.0270 2372 vga - ok
07:50:06.0324 2372 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
07:50:06.0325 2372 VgaSave - ok
07:50:06.0352 2372 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
07:50:06.0353 2372 viaagp - ok
07:50:06.0378 2372 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
07:50:06.0379 2372 ViaC7 - ok
07:50:06.0398 2372 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
07:50:06.0399 2372 viaide - ok
07:50:06.0428 2372 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
07:50:06.0429 2372 volmgr - ok
07:50:06.0474 2372 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
07:50:06.0477 2372 volmgrx - ok
07:50:06.0527 2372 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
07:50:06.0529 2372 volsnap - ok
07:50:06.0558 2372 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
07:50:06.0559 2372 vsmraid - ok
07:50:06.0639 2372 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
07:50:06.0649 2372 VSS - ok
07:50:06.0671 2372 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
07:50:06.0676 2372 W32Time - ok
07:50:06.0734 2372 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
07:50:06.0734 2372 WacomPen - ok
07:50:06.0763 2372 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:50:06.0764 2372 Wanarp - ok
07:50:06.0769 2372 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:50:06.0770 2372 Wanarpv6 - ok
07:50:06.0825 2372 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
07:50:06.0832 2372 wcncsvc - ok
07:50:06.0850 2372 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
07:50:06.0853 2372 WcsPlugInService - ok
07:50:06.0870 2372 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
07:50:06.0871 2372 Wd - ok
07:50:06.0927 2372 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
07:50:06.0931 2372 Wdf01000 - ok
07:50:06.0987 2372 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:50:06.0990 2372 WdiServiceHost - ok
07:50:06.0994 2372 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:50:06.0998 2372 WdiSystemHost - ok
07:50:07.0040 2372 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
07:50:07.0043 2372 WebClient - ok
07:50:07.0079 2372 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
07:50:07.0083 2372 Wecsvc - ok
07:50:07.0119 2372 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
07:50:07.0122 2372 wercplsupport - ok
07:50:07.0156 2372 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
07:50:07.0160 2372 WerSvc - ok
07:50:07.0221 2372 winachsf (72cc6a8ca7891031d6380db5025c773c) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
07:50:07.0226 2372 winachsf - ok
07:50:07.0335 2372 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
07:50:07.0338 2372 WinDefend - ok
07:50:07.0346 2372 WinHttpAutoProxySvc - ok
07:50:07.0438 2372 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
07:50:07.0440 2372 Winmgmt - ok
07:50:07.0521 2372 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
07:50:07.0531 2372 WinRM - ok
07:50:07.0606 2372 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
07:50:07.0613 2372 Wlansvc - ok
07:50:07.0765 2372 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
07:50:07.0777 2372 wlidsvc - ok
07:50:07.0896 2372 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
07:50:07.0896 2372 WmiAcpi - ok
07:50:07.0977 2372 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
07:50:07.0978 2372 wmiApSrv - ok
07:50:08.0093 2372 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
07:50:08.0100 2372 WMPNetworkSvc - ok
07:50:08.0135 2372 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
07:50:08.0138 2372 WPCSvc - ok
07:50:08.0170 2372 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
07:50:08.0174 2372 WPDBusEnum - ok
07:50:08.0227 2372 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
07:50:08.0228 2372 WpdUsb - ok
07:50:08.0251 2372 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
07:50:08.0252 2372 ws2ifsl - ok
07:50:08.0295 2372 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
07:50:08.0298 2372 wscsvc - ok
07:50:08.0303 2372 WSearch - ok
07:50:08.0449 2372 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
07:50:08.0465 2372 wuauserv - ok
07:50:08.0598 2372 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
07:50:08.0600 2372 WUDFRd - ok
07:50:08.0625 2372 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
07:50:08.0628 2372 wudfsvc - ok
07:50:08.0652 2372 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
07:50:08.0653 2372 XAudio - ok
07:50:08.0692 2372 XAudioService (cd5f291a1161f15896d1a4d63daff5df) C:\Windows\system32\DRIVERS\xaudio.exe
07:50:08.0696 2372 XAudioService - ok
07:50:08.0727 2372 MBR (0x1B8) (8913823ff508ccf109db74b636c301da) \Device\Harddisk0\DR0
07:50:08.0765 2372 \Device\Harddisk0\DR0 - ok
07:50:08.0770 2372 Boot (0x1200) (ddc1941058871f17974e4df6e4b4197a) \Device\Harddisk0\DR0\Partition0
07:50:08.0772 2372 \Device\Harddisk0\DR0\Partition0 - ok
07:50:08.0778 2372 Boot (0x1200) (3111012d56e66e7082ff30c74e770282) \Device\Harddisk0\DR0\Partition1
07:50:08.0780 2372 \Device\Harddisk0\DR0\Partition1 - ok
07:50:08.0782 2372 ============================================================
07:50:08.0782 2372 Scan finished
07:50:08.0782 2372 ============================================================
07:50:08.0802 3644 Detected object count: 0
07:50:08.0802 3644 Actual detected object count: 0
07:50:41.0386 1264 ============================================================
07:50:41.0386 1264 Scan started
07:50:41.0386 1264 Mode: Manual;
07:50:41.0386 1264 ============================================================
07:50:41.0569 1264 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
07:50:41.0570 1264 !SASCORE - ok
07:50:41.0653 1264 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
07:50:41.0655 1264 ACPI - ok
07:50:41.0707 1264 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
07:50:41.0711 1264 adp94xx - ok
07:50:41.0736 1264 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
07:50:41.0739 1264 adpahci - ok
07:50:41.0763 1264 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
07:50:41.0764 1264 adpu160m - ok
07:50:41.0781 1264 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
07:50:41.0783 1264 adpu320 - ok
07:50:41.0808 1264 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
07:50:41.0809 1264 AeLookupSvc - ok
07:50:41.0863 1264 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
07:50:41.0866 1264 AFD - ok
07:50:41.0902 1264 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
07:50:41.0903 1264 agp440 - ok
07:50:41.0930 1264 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
07:50:41.0931 1264 aic78xx - ok
07:50:41.0966 1264 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
07:50:41.0967 1264 ALG - ok
07:50:41.0984 1264 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
07:50:41.0985 1264 aliide - ok
07:50:42.0122 1264 Amazon Download Agent (ff6f0f6a2d72065ae4300426fa414693) C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe
07:50:42.0126 1264 Amazon Download Agent - ok
07:50:42.0145 1264 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
07:50:42.0146 1264 amdagp - ok
07:50:42.0167 1264 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
07:50:42.0167 1264 amdide - ok
07:50:42.0193 1264 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
07:50:42.0193 1264 AmdK7 - ok
07:50:42.0235 1264 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
07:50:42.0236 1264 AmdK8 - ok
07:50:42.0276 1264 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
07:50:42.0277 1264 Appinfo - ok
07:50:42.0340 1264 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:50:42.0342 1264 Apple Mobile Device - ok
07:50:42.0378 1264 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
07:50:42.0379 1264 arc - ok
07:50:42.0393 1264 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
07:50:42.0394 1264 arcsas - ok
07:50:42.0462 1264 aspnet_state (40c145f12ff461a0220303bda134f598) C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
07:50:42.0462 1264 aspnet_state - ok
07:50:42.0487 1264 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
07:50:42.0488 1264 AsyncMac - ok
07:50:42.0532 1264 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
07:50:42.0532 1264 atapi - ok
07:50:42.0570 1264 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:50:42.0573 1264 AudioEndpointBuilder - ok
07:50:42.0579 1264 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:50:42.0585 1264 Audiosrv - ok
07:50:42.0651 1264 Automatic LiveUpdate Scheduler (b5d974c1fd078a68c7536c561b031d39) C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
07:50:42.0655 1264 Automatic LiveUpdate Scheduler - ok
07:50:42.0689 1264 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
07:50:42.0690 1264 Beep - ok
07:50:42.0738 1264 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
07:50:42.0741 1264 BFE - ok
07:50:42.0808 1264 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
07:50:42.0815 1264 BITS - ok
07:50:42.0821 1264 blbdrive - ok
07:50:42.0865 1264 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
07:50:42.0866 1264 bowser - ok
07:50:42.0891 1264 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
07:50:42.0891 1264 BrFiltLo - ok
07:50:42.0909 1264 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
07:50:42.0909 1264 BrFiltUp - ok
07:50:42.0945 1264 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
07:50:42.0946 1264 Browser - ok
07:50:42.0963 1264 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
07:50:42.0965 1264 Brserid - ok
07:50:42.0978 1264 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
07:50:42.0979 1264 BrSerWdm - ok
07:50:42.0996 1264 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
07:50:42.0997 1264 BrUsbMdm - ok
07:50:43.0013 1264 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
07:50:43.0013 1264 BrUsbSer - ok
07:50:43.0035 1264 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
07:50:43.0036 1264 BTHMODEM - ok
07:50:43.0071 1264 BVRPMPR5 (248dfa5762dde38dfddbbd44149e9d7a) C:\Windows\system32\drivers\BVRPMPR5.SYS
07:50:43.0072 1264 BVRPMPR5 - ok
07:50:43.0170 1264 catchme - ok
07:50:43.0244 1264 ccEvtMgr (fe69c498b922ce835e2e2123fbd0a272) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
07:50:43.0245 1264 ccEvtMgr - ok
07:50:43.0252 1264 ccSetMgr (fe69c498b922ce835e2e2123fbd0a272) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
07:50:43.0253 1264 ccSetMgr - ok
07:50:43.0284 1264 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
07:50:43.0285 1264 cdfs - ok
07:50:43.0290 1264 cdrom - ok
07:50:43.0339 1264 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:50:43.0339 1264 CertPropSvc - ok
07:50:43.0365 1264 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
07:50:43.0366 1264 circlass - ok
07:50:43.0406 1264 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
07:50:43.0409 1264 CLFS - ok
07:50:43.0474 1264 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:50:43.0475 1264 clr_optimization_v2.0.50727_32 - ok
07:50:43.0505 1264 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
07:50:43.0506 1264 cmdide - ok
07:50:43.0524 1264 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
07:50:43.0524 1264 Compbatt - ok
07:50:43.0529 1264 COMSysApp - ok
07:50:43.0550 1264 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
07:50:43.0551 1264 crcdisk - ok
07:50:43.0576 1264 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
07:50:43.0577 1264 Crusoe - ok
07:50:43.0619 1264 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
07:50:43.0621 1264 CryptSvc - ok
07:50:43.0680 1264 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:50:43.0686 1264 DcomLaunch - ok
07:50:43.0728 1264 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
07:50:43.0728 1264 DfsC - ok
07:50:43.0847 1264 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
07:50:43.0862 1264 DFSR - ok
07:50:43.0983 1264 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
07:50:43.0985 1264 Dhcp - ok
07:50:44.0054 1264 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
07:50:44.0054 1264 disk - ok
07:50:44.0100 1264 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
07:50:44.0102 1264 Dnscache - ok
07:50:44.0136 1264 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
07:50:44.0139 1264 dot3svc - ok
07:50:44.0180 1264 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
07:50:44.0181 1264 Dot4 - ok
07:50:44.0198 1264 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
07:50:44.0199 1264 Dot4Print - ok
07:50:44.0220 1264 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
07:50:44.0221 1264 dot4usb - ok
07:50:44.0254 1264 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
07:50:44.0256 1264 DPS - ok
07:50:44.0288 1264 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
07:50:44.0289 1264 drmkaud - ok
07:50:44.0365 1264 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
07:50:44.0370 1264 DXGKrnl - ok
07:50:44.0432 1264 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
07:50:44.0433 1264 E1G60 - ok
07:50:44.0462 1264 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
07:50:44.0463 1264 EapHost - ok
07:50:44.0520 1264 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
07:50:44.0522 1264 Ecache - ok
07:50:44.0609 1264 eeCtrl (31c959319ef45b548d2111e338412270) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
07:50:44.0612 1264 eeCtrl - ok
07:50:44.0668 1264 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
07:50:44.0670 1264 ehRecvr - ok
07:50:44.0696 1264 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
07:50:44.0698 1264 ehSched - ok
07:50:44.0710 1264 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
07:50:44.0711 1264 ehstart - ok
07:50:44.0753 1264 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
07:50:44.0756 1264 elxstor - ok
07:50:44.0817 1264 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
07:50:44.0822 1264 EMDMgmt - ok
07:50:44.0881 1264 EraserUtilRebootDrv - ok
07:50:44.0928 1264 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
07:50:44.0931 1264 EventSystem - ok
07:50:44.0986 1264 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
07:50:44.0988 1264 exfat - ok
07:50:45.0012 1264 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
07:50:45.0013 1264 fastfat - ok
07:50:45.0037 1264 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
07:50:45.0037 1264 fdc - ok
07:50:45.0064 1264 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
07:50:45.0065 1264 fdPHost - ok
07:50:45.0089 1264 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
07:50:45.0090 1264 FDResPub - ok
07:50:45.0110 1264 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
07:50:45.0111 1264 FileInfo - ok
07:50:45.0147 1264 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
07:50:45.0147 1264 Filetrace - ok
07:50:45.0164 1264 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
07:50:45.0164 1264 flpydisk - ok
07:50:45.0201 1264 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
07:50:45.0204 1264 FltMgr - ok
07:50:45.0285 1264 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
07:50:45.0291 1264 FontCache - ok
07:50:45.0357 1264 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:50:45.0358 1264 FontCache3.0.0.0 - ok
07:50:45.0384 1264 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
07:50:45.0385 1264 Fs_Rec - ok
07:50:45.0410 1264 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
07:50:45.0411 1264 gagp30kx - ok
07:50:45.0450 1264 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
07:50:45.0450 1264 GEARAspiWDM - ok
07:50:45.0529 1264 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
07:50:45.0534 1264 gpsvc - ok
07:50:45.0676 1264 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
07:50:45.0677 1264 gupdate - ok
07:50:45.0683 1264 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
07:50:45.0685 1264 gupdatem - ok
07:50:45.0715 1264 gusvc (751c1d2ca2abf4a9f5a6b8d7d45b907c) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
07:50:45.0717 1264 gusvc - ok
07:50:45.0746 1264 hamachi (7929a161f9951d173ca9900fe7067391) C:\Windows\system32\DRIVERS\hamachi.sys
07:50:45.0747 1264 hamachi - ok
07:50:45.0790 1264 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
07:50:45.0792 1264 HdAudAddService - ok
07:50:45.0860 1264 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
07:50:45.0865 1264 HDAudBus - ok
07:50:45.0895 1264 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
07:50:45.0896 1264 HidBth - ok
07:50:45.0923 1264 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
07:50:45.0924 1264 HidIr - ok
07:50:45.0948 1264 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
07:50:45.0950 1264 hidserv - ok
07:50:45.0970 1264 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\drivers\hidusb.sys
07:50:45.0971 1264 HidUsb - ok
07:50:46.0020 1264 hitmanpro35 (72472b9ce5d02e443cff49a40355455d) C:\Windows\system32\drivers\hitmanpro35.sys
07:50:46.0021 1264 hitmanpro35 - ok
07:50:46.0049 1264 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
07:50:46.0051 1264 hkmsvc - ok
07:50:46.0077 1264 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
07:50:46.0078 1264 HpCISSs - ok
07:50:46.0226 1264 hpqcxs08 (38d6b51f04def7fb248fa56e4c47407e) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
07:50:46.0228 1264 hpqcxs08 - ok
07:50:46.0247 1264 hpqddsvc (3ee4a63539ec04ee2d4bd293985087ab) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
07:50:46.0248 1264 hpqddsvc - ok
07:50:46.0320 1264 HSF_DP (88749fbf8beb18c90e7d6626c8c1910b) C:\Windows\system32\DRIVERS\HSX_DP.sys
07:50:46.0328 1264 HSF_DP - ok
07:50:46.0371 1264 HSXHWBS2 (fe440536bd98af772130dc3a6fe1915f) C:\Windows\system32\DRIVERS\HSXHWBS2.sys
07:50:46.0374 1264 HSXHWBS2 - ok
07:50:46.0434 1264 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
07:50:46.0438 1264 HTTP - ok
07:50:46.0465 1264 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
07:50:46.0466 1264 i2omp - ok
07:50:46.0503 1264 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
07:50:46.0504 1264 i8042prt - ok
07:50:46.0533 1264 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
07:50:46.0535 1264 iaStorV - ok
07:50:46.0642 1264 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
07:50:46.0644 1264 IDriverT - ok
07:50:46.0761 1264 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:50:46.0767 1264 idsvc - ok
07:50:46.0877 1264 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
07:50:46.0877 1264 iirsp - ok
07:50:46.0928 1264 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
07:50:46.0933 1264 IKEEXT - ok
07:50:47.0074 1264 IntcAzAudAddService (84ed2154239f9d013bbd3220755ada8b) C:\Windows\system32\drivers\RTKVHDA.sys
07:50:47.0090 1264 IntcAzAudAddService - ok
07:50:47.0197 1264 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
07:50:47.0198 1264 intelide - ok
07:50:47.0226 1264 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
07:50:47.0227 1264 intelppm - ok
07:50:47.0267 1264 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
07:50:47.0268 1264 IPBusEnum - ok
07:50:47.0308 1264 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:50:47.0308 1264 IpFilterDriver - ok
07:50:47.0350 1264 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
07:50:47.0353 1264 iphlpsvc - ok
07:50:47.0359 1264 IpInIp - ok
07:50:47.0383 1264 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
07:50:47.0384 1264 IPMIDRV - ok
07:50:47.0424 1264 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
07:50:47.0425 1264 IPNAT - ok
07:50:47.0506 1264 iPod Service (630d74599070824af3dc63a894adcdfc) C:\Program Files\iPod\bin\iPodService.exe
07:50:47.0510 1264 iPod Service - ok
07:50:47.0549 1264 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
07:50:47.0550 1264 IRENUM - ok
07:50:47.0576 1264 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
07:50:47.0577 1264 isapnp - ok
07:50:47.0618 1264 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
07:50:47.0619 1264 iScsiPrt - ok
07:50:47.0638 1264 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
07:50:47.0639 1264 iteatapi - ok
07:50:47.0654 1264 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
07:50:47.0655 1264 iteraid - ok
07:50:47.0686 1264 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
07:50:47.0687 1264 kbdclass - ok
07:50:47.0703 1264 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
07:50:47.0704 1264 kbdhid - ok
07:50:47.0729 1264 KeyIso (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
07:50:47.0731 1264 KeyIso - ok
07:50:47.0776 1264 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
07:50:47.0780 1264 KSecDD - ok
07:50:47.0814 1264 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
07:50:47.0818 1264 KtmRm - ok
07:50:47.0878 1264 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
07:50:47.0881 1264 LanmanServer - ok
07:50:47.0907 1264 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
07:50:47.0911 1264 LanmanWorkstation - ok
07:50:47.0935 1264 LicCtrlService (29fab5363138f6e322f4cd780ed9d337) C:\Windows\runservice.exe
07:50:47.0936 1264 LicCtrlService - ok
07:50:48.0022 1264 LightScribeService (6e5dac168d1ff9843e84a59d51d31107) c:\Program Files\Common Files\LightScribe\LSSrvc.exe
07:50:48.0023 1264 LightScribeService - ok
07:50:48.0195 1264 LiveUpdate (a97eeb81f05bce3d7aa6c81f04ef39a4) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
07:50:48.0222 1264 LiveUpdate - ok
07:50:48.0277 1264 LiveUpdate Notice Ex (fe69c498b922ce835e2e2123fbd0a272) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
07:50:48.0278 1264 LiveUpdate Notice Ex - ok
07:50:48.0360 1264 LiveUpdate Notice Service (deb2a99c1ad9b9190c78e895ae60a745) C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
07:50:48.0365 1264 LiveUpdate Notice Service - ok
07:50:48.0491 1264 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
07:50:48.0491 1264 lltdio - ok
07:50:48.0524 1264 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
07:50:48.0526 1264 lltdsvc - ok
07:50:48.0565 1264 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
07:50:48.0567 1264 lmhosts - ok
07:50:48.0598 1264 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
07:50:48.0599 1264 LSI_FC - ok
07:50:48.0624 1264 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
07:50:48.0625 1264 LSI_SAS - ok
07:50:48.0644 1264 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
07:50:48.0645 1264 LSI_SCSI - ok
07:50:48.0701 1264 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
07:50:48.0702 1264 luafv - ok
07:50:48.0735 1264 LVUSBSta (a730fc8671a60666d6e877c544dd7cd4) C:\Windows\system32\drivers\lvusbsta.sys
07:50:48.0736 1264 LVUSBSta - ok
07:50:48.0824 1264 McciCMService (e6cb119ef2e148eaa1a247343550756e) C:\Program Files\Common Files\Motive\McciCMService.exe
07:50:48.0827 1264 McciCMService - ok
07:50:48.0877 1264 McciServiceHost (eee1ea23c4777adb268a36196a631200) C:\Program Files\Common Files\Motive\McciServiceHost.exe
07:50:48.0880 1264 McciServiceHost - ok
07:50:48.0909 1264 MCSTRM (5bb01b9f582259d1fb7653c5c1da3653) C:\Windows\system32\drivers\MCSTRM.sys
07:50:48.0910 1264 MCSTRM - ok
07:50:48.0944 1264 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
07:50:48.0946 1264 Mcx2Svc - ok
07:50:48.0962 1264 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
07:50:48.0963 1264 mdmxsdk - ok
07:50:48.0990 1264 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
07:50:48.0991 1264 megasas - ok
07:50:49.0007 1264 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:50:49.0009 1264 MMCSS - ok
07:50:49.0038 1264 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
07:50:49.0038 1264 Modem - ok
07:50:49.0078 1264 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
07:50:49.0079 1264 monitor - ok
07:50:49.0119 1264 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
07:50:49.0119 1264 mouclass - ok
07:50:49.0151 1264 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
07:50:49.0152 1264 mouhid - ok
07:50:49.0168 1264 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
07:50:49.0169 1264 MountMgr - ok
07:50:49.0237 1264 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
07:50:49.0239 1264 MozillaMaintenance - ok
07:50:49.0263 1264 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
07:50:49.0264 1264 mpio - ok
07:50:49.0292 1264 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
07:50:49.0293 1264 mpsdrv - ok
07:50:49.0310 1264 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
07:50:49.0310 1264 Mraid35x - ok
07:50:49.0340 1264 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
07:50:49.0341 1264 MREMP50 - ok
07:50:49.0347 1264 MREMPR5 - ok
07:50:49.0359 1264 MRENDIS5 - ok
07:50:49.0386 1264 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
07:50:49.0387 1264 MRESP50 - ok
07:50:49.0432 1264 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
07:50:49.0433 1264 MRxDAV - ok
07:50:49.0482 1264 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
07:50:49.0483 1264 mrxsmb - ok
07:50:49.0523 1264 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:50:49.0525 1264 mrxsmb10 - ok
07:50:49.0566 1264 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:50:49.0567 1264 mrxsmb20 - ok
07:50:49.0593 1264 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
07:50:49.0594 1264 msahci - ok
07:50:49.0617 1264 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
07:50:49.0618 1264 msdsm - ok
07:50:49.0643 1264 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
07:50:49.0645 1264 MSDTC - ok
07:50:49.0690 1264 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
07:50:49.0691 1264 Msfs - ok
07:50:49.0721 1264 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
07:50:49.0722 1264 msisadrv - ok
07:50:49.0760 1264 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
07:50:49.0762 1264 MSiSCSI - ok
07:50:49.0767 1264 msiserver - ok
07:50:49.0784 1264 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
07:50:49.0785 1264 MSKSSRV - ok
07:50:49.0816 1264 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
07:50:49.0817 1264 MSPCLOCK - ok
07:50:49.0837 1264 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
07:50:49.0838 1264 MSPQM - ok
07:50:49.0867 1264 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
07:50:49.0869 1264 MsRPC - ok
07:50:49.0899 1264 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
07:50:49.0900 1264 mssmbios - ok
07:50:49.0917 1264 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
07:50:49.0918 1264 MSTEE - ok
07:50:49.0941 1264 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
07:50:49.0942 1264 Mup - ok
07:50:49.0999 1264 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
07:50:50.0003 1264 napagent - ok
07:50:50.0033 1264 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
07:50:50.0035 1264 NativeWifiP - ok
07:50:50.0095 1264 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
07:50:50.0100 1264 NDIS - ok
07:50:50.0125 1264 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
07:50:50.0126 1264 NdisTapi - ok
07:50:50.0154 1264 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
07:50:50.0155 1264 Ndisuio - ok
07:50:50.0191 1264 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
07:50:50.0193 1264 NdisWan - ok
07:50:50.0219 1264 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
07:50:50.0220 1264 NDProxy - ok
07:50:50.0256 1264 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\Windows\system32\HPZinw12.dll
07:50:50.0257 1264 Net Driver HPZ12 - ok
07:50:50.0274 1264 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
07:50:50.0275 1264 NetBIOS - ok
07:50:50.0316 1264 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
07:50:50.0318 1264 netbt - ok
07:50:50.0345 1264 Netlogon (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
07:50:50.0346 1264 Netlogon - ok
07:50:50.0390 1264 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
07:50:50.0394 1264 Netman - ok
07:50:50.0441 1264 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
07:50:50.0444 1264 netprofm - ok
07:50:50.0530 1264 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:50:50.0532 1264 NetTcpPortSharing - ok
07:50:50.0574 1264 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
07:50:50.0574 1264 nfrd960 - ok
07:50:50.0618 1264 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
07:50:50.0620 1264 NlaSvc - ok
07:50:50.0660 1264 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
07:50:50.0661 1264 Npfs - ok
07:50:50.0692 1264 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
07:50:50.0694 1264 nsi - ok
07:50:50.0727 1264 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
07:50:50.0727 1264 nsiproxy - ok
07:50:50.0804 1264 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
07:50:50.0812 1264 Ntfs - ok
07:50:50.0840 1264 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
07:50:50.0841 1264 ntrigdigi - ok
07:50:50.0849 1264 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
07:50:50.0849 1264 Null - ok
07:50:50.0928 1264 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
07:50:50.0935 1264 NVENETFD - ok
07:50:51.0442 1264 nvlddmkm (847b1755f7757f825305a1ffe6dac3e9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
07:50:51.0513 1264 nvlddmkm - ok
07:50:51.0637 1264 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
07:50:51.0638 1264 nvraid - ok
07:50:51.0669 1264 nvstor (4a5fcab82d9bf6af8a023a66802fe9e9) C:\Windows\system32\DRIVERS\nvstor.sys
07:50:51.0670 1264 nvstor - ok
07:50:51.0705 1264 nvstor32 (7eba6c9a0a295b1559efb9062e701218) C:\Windows\system32\DRIVERS\nvstor32.sys
07:50:51.0706 1264 nvstor32 - ok
07:50:51.0770 1264 nvsvc (7c732aff202dcd06c3d262966d71604c) C:\Windows\system32\nvvsvc.exe
07:50:51.0777 1264 nvsvc - ok
07:50:51.0942 1264 nvUpdatusService (262d2fbf211a88dcb84249df0f6ef6e7) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
07:50:51.0958 1264 nvUpdatusService - ok
07:50:52.0075 1264 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
07:50:52.0076 1264 nv_agp - ok
07:50:52.0083 1264 NwlnkFlt - ok
07:50:52.0091 1264 NwlnkFwd - ok
07:50:52.0138 1264 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
07:50:52.0139 1264 ohci1394 - ok
07:50:52.0204 1264 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:50:52.0214 1264 p2pimsvc - ok
07:50:52.0226 1264 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:50:52.0233 1264 p2psvc - ok
07:50:52.0257 1264 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
07:50:52.0258 1264 Parport - ok
07:50:52.0289 1264 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
07:50:52.0290 1264 partmgr - ok
07:50:52.0305 1264 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
07:50:52.0306 1264 Parvdm - ok
07:50:52.0328 1264 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
07:50:52.0331 1264 PcaSvc - ok
07:50:52.0372 1264 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
07:50:52.0373 1264 pci - ok
07:50:52.0389 1264 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
07:50:52.0390 1264 pciide - ok
07:50:52.0419 1264 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
07:50:52.0421 1264 pcmcia - ok
07:50:52.0496 1264 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
07:50:52.0502 1264 PEAUTH - ok
07:50:52.0554 1264 PID_0928 (5bd2c6d982481d548107c602e7ccfbbc) C:\Windows\system32\DRIVERS\LV561AV.SYS
07:50:52.0556 1264 PID_0928 - ok
07:50:52.0655 1264 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
07:50:52.0667 1264 pla - ok
07:50:52.0777 1264 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
07:50:52.0781 1264 PlugPlay - ok
07:50:52.0815 1264 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\Windows\system32\HPZipm12.dll
07:50:52.0817 1264 Pml Driver HPZ12 - ok
07:50:52.0877 1264 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:50:52.0883 1264 PNRPAutoReg - ok
07:50:52.0894 1264 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:50:52.0900 1264 PNRPsvc - ok
07:50:52.0940 1264 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
07:50:52.0943 1264 PolicyAgent - ok
07:50:53.0002 1264 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
07:50:53.0003 1264 PptpMiniport - ok
07:50:53.0035 1264 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
07:50:53.0036 1264 Processor - ok
07:50:53.0071 1264 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
07:50:53.0074 1264 ProfSvc - ok
07:50:53.0102 1264 ProtectedStorage (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
07:50:53.0104 1264 ProtectedStorage - ok
07:50:53.0128 1264 Ps2 (390c204ced3785609ab24e9c52054a84) C:\Windows\system32\DRIVERS\PS2.sys
07:50:53.0129 1264 Ps2 - ok
07:50:53.0159 1264 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
07:50:53.0160 1264 PSched - ok
07:50:53.0186 1264 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
07:50:53.0187 1264 PxHelp20 - ok
07:50:53.0250 1264 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
07:50:53.0256 1264 ql2300 - ok
07:50:53.0281 1264 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
07:50:53.0282 1264 ql40xx - ok
07:50:53.0321 1264 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
07:50:53.0325 1264 QWAVE - ok
07:50:53.0354 1264 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
07:50:53.0355 1264 QWAVEdrv - ok
07:50:53.0387 1264 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
07:50:53.0388 1264 RasAcd - ok
07:50:53.0435 1264 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
07:50:53.0438 1264 RasAuto - ok
07:50:53.0470 1264 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
07:50:53.0471 1264 Rasl2tp - ok
07:50:53.0541 1264 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
07:50:53.0545 1264 RasMan - ok
07:50:53.0575 1264 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
07:50:53.0575 1264 RasPppoe - ok
07:50:53.0605 1264 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
07:50:53.0606 1264 RasSstp - ok
07:50:53.0675 1264 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
07:50:53.0678 1264 rdbss - ok
07:50:53.0718 1264 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
07:50:53.0719 1264 RDPCDD - ok
07:50:53.0760 1264 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
07:50:53.0763 1264 rdpdr - ok
07:50:53.0768 1264 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
07:50:53.0769 1264 RDPENCDD - ok
07:50:53.0826 1264 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
07:50:53.0828 1264 RDPWD - ok
07:50:53.0860 1264 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
07:50:53.0862 1264 RemoteAccess - ok
07:50:53.0897 1264 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
07:50:53.0900 1264 RemoteRegistry - ok
07:50:53.0905 1264 RimUsb - ok
07:50:53.0939 1264 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\Windows\system32\DRIVERS\RimSerial.sys
07:50:53.0940 1264 RimVSerPort - ok
07:50:53.0964 1264 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
07:50:53.0965 1264 ROOTMODEM - ok
07:50:53.0983 1264 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
07:50:53.0985 1264 RpcLocator - ok
07:50:54.0042 1264 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:50:54.0048 1264 RpcSs - ok
07:50:54.0079 1264 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
07:50:54.0080 1264 rspndr - ok
07:50:54.0100 1264 SamSs (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
07:50:54.0102 1264 SamSs - ok
07:50:54.0183 1264 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
07:50:54.0184 1264 SASDIFSV - ok
07:50:54.0202 1264 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
07:50:54.0204 1264 SASKUTIL - ok
07:50:54.0236 1264 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
07:50:54.0237 1264 sbp2port - ok
07:50:54.0340 1264 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
07:50:54.0348 1264 SBSDWSCService - ok
07:50:54.0457 1264 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
07:50:54.0460 1264 SCardSvr - ok
07:50:54.0554 1264 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
07:50:54.0560 1264 Schedule - ok
07:50:54.0592 1264 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:50:54.0593 1264 SCPolicySvc - ok
07:50:54.0618 1264 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
07:50:54.0621 1264 SDRSVC - ok
07:50:54.0666 1264 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
07:50:54.0667 1264 secdrv - ok
07:50:54.0717 1264 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
07:50:54.0719 1264 seclogon - ok
07:50:54.0761 1264 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
07:50:54.0763 1264 SENS - ok
07:50:54.0796 1264 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
07:50:54.0797 1264 Serenum - ok
07:50:54.0814 1264 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
07:50:54.0815 1264 Serial - ok
07:50:54.0841 1264 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
07:50:54.0841 1264 sermouse - ok
07:50:54.0900 1264 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
07:50:54.0903 1264 SessionEnv - ok
07:50:54.0920 1264 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
07:50:54.0921 1264 sffdisk - ok
07:50:54.0934 1264 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
07:50:54.0935 1264 sffp_mmc - ok
07:50:54.0949 1264 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
07:50:54.0950 1264 sffp_sd - ok
07:50:54.0965 1264 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
07:50:54.0966 1264 sfloppy - ok
07:50:54.0998 1264 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
07:50:55.0001 1264 SharedAccess - ok
07:50:55.0062 1264 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
07:50:55.0066 1264 ShellHWDetection - ok
07:50:55.0093 1264 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
07:50:55.0094 1264 sisagp - ok
07:50:55.0110 1264 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
07:50:55.0110 1264 SiSRaid2 - ok
07:50:55.0136 1264 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
07:50:55.0137 1264 SiSRaid4 - ok
07:50:55.0358 1264 Skype C2C Service (0f97e7a47a52f4a36969f0fc319654c2) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
07:50:55.0380 1264 Skype C2C Service - ok
07:50:55.0449 1264 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
07:50:55.0451 1264 SkypeUpdate - ok
07:50:55.0699 1264 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
07:50:55.0725 1264 slsvc - ok
07:50:55.0801 1264 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
07:50:55.0804 1264 SLUINotify - ok
07:50:55.0848 1264 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
07:50:55.0849 1264 Smb - ok
07:50:55.0877 1264 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
07:50:55.0879 1264 SNMPTRAP - ok
07:50:55.0886 1264 SoC PC-Camera Service - ok
07:50:55.0917 1264 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
07:50:55.0918 1264 spldr - ok
07:50:55.0978 1264 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
07:50:55.0981 1264 Spooler - ok
07:50:56.0039 1264 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
07:50:56.0042 1264 srv - ok
07:50:56.0092 1264 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
07:50:56.0094 1264 srv2 - ok
07:50:56.0107 1264 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
07:50:56.0108 1264 srvnet - ok
07:50:56.0138 1264 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
07:50:56.0141 1264 SSDPSRV - ok
07:50:56.0184 1264 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
07:50:56.0187 1264 SstpSvc - ok
07:50:56.0232 1264 Steam Client Service - ok
07:50:56.0286 1264 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
07:50:56.0292 1264 stisvc - ok
07:50:56.0304 1264 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
07:50:56.0304 1264 swenum - ok
07:50:56.0345 1264 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
07:50:56.0349 1264 swprv - ok
07:50:56.0374 1264 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
07:50:56.0375 1264 Symc8xx - ok
07:50:56.0392 1264 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
07:50:56.0393 1264 Sym_hi - ok
07:50:56.0413 1264 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
07:50:56.0414 1264 Sym_u3 - ok
07:50:56.0485 1264 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
07:50:56.0491 1264 SysMain - ok
07:50:56.0536 1264 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
07:50:56.0539 1264 TabletInputService - ok
07:50:56.0578 1264 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
07:50:56.0582 1264 TapiSrv - ok
07:50:56.0611 1264 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
07:50:56.0614 1264 TBS - ok
07:50:56.0694 1264 Tcpip (2756186e287139310997090797e0182b) C:\Windows\system32\drivers\tcpip.sys
07:50:56.0700 1264 Tcpip - ok
07:50:56.0714 1264 Tcpip6 (2756186e287139310997090797e0182b) C:\Windows\system32\DRIVERS\tcpip.sys
07:50:56.0721 1264 Tcpip6 - ok
07:50:56.0756 1264 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
07:50:56.0757 1264 tcpipreg - ok
07:50:56.0782 1264 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
07:50:56.0782 1264 TDPIPE - ok
07:50:56.0812 1264 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
07:50:56.0813 1264 TDTCP - ok
07:50:56.0856 1264 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
07:50:56.0857 1264 tdx - ok
07:50:56.0882 1264 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
07:50:56.0884 1264 TermDD - ok
07:50:56.0935 1264 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
07:50:56.0941 1264 TermService - ok
07:50:56.0994 1264 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
07:50:56.0998 1264 Themes - ok
07:50:57.0029 1264 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:50:57.0031 1264 THREADORDER - ok
07:50:57.0045 1264 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
07:50:57.0048 1264 TrkWks - ok
07:50:57.0092 1264 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
07:50:57.0092 1264 TrustedInstaller - ok
07:50:57.0130 1264 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
07:50:57.0131 1264 tssecsrv - ok
07:50:57.0164 1264 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
07:50:57.0165 1264 tunmp - ok
07:50:57.0204 1264 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
07:50:57.0206 1264 tunnel - ok
07:50:57.0240 1264 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
07:50:57.0241 1264 uagp35 - ok
07:50:57.0281 1264 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
07:50:57.0284 1264 udfs - ok
07:50:57.0324 1264 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
07:50:57.0326 1264 UI0Detect - ok
07:50:57.0337 1264 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
07:50:57.0338 1264 uliagpkx - ok
07:50:57.0366 1264 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
07:50:57.0368 1264 uliahci - ok
07:50:57.0387 1264 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
07:50:57.0388 1264 UlSata - ok
07:50:57.0407 1264 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
07:50:57.0409 1264 ulsata2 - ok
07:50:57.0464 1264 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
07:50:57.0464 1264 umbus - ok
07:50:57.0506 1264 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
07:50:57.0510 1264 upnphost - ok
07:50:57.0558 1264 USBAAPL (026f7f224f088ee11e383bca448fff81) C:\Windows\system32\Drivers\usbaapl.sys
07:50:57.0559 1264 USBAAPL - ok
07:50:57.0592 1264 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
07:50:57.0593 1264 usbccgp - ok
07:50:57.0613 1264 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
07:50:57.0614 1264 usbcir - ok
07:50:57.0651 1264 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
07:50:57.0653 1264 usbehci - ok
07:50:57.0702 1264 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
07:50:57.0704 1264 usbhub - ok
07:50:57.0742 1264 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
07:50:57.0742 1264 usbohci - ok
07:50:57.0773 1264 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
07:50:57.0773 1264 usbprint - ok
07:50:57.0809 1264 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
07:50:57.0810 1264 usbscan - ok
07:50:57.0822 1264 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:50:57.0823 1264 USBSTOR - ok
07:50:57.0848 1264 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
07:50:57.0849 1264 usbuhci - ok
07:50:57.0878 1264 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
07:50:57.0881 1264 UxSms - ok
07:50:57.0939 1264 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
07:50:57.0944 1264 vds - ok
07:50:57.0963 1264 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
07:50:57.0964 1264 vga - ok
07:50:57.0985 1264 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
07:50:57.0986 1264 VgaSave - ok
07:50:58.0013 1264 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
07:50:58.0014 1264 viaagp - ok
07:50:58.0039 1264 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
07:50:58.0040 1264 ViaC7 - ok
07:50:58.0059 1264 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
07:50:58.0060 1264 viaide - ok
07:50:58.0090 1264 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
07:50:58.0091 1264 volmgr - ok
07:50:58.0136 1264 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
07:50:58.0138 1264 volmgrx - ok
07:50:58.0188 1264 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
07:50:58.0190 1264 volsnap - ok
07:50:58.0219 1264 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
07:50:58.0221 1264 vsmraid - ok
07:50:58.0300 1264 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
07:50:58.0310 1264 VSS - ok
07:50:58.0349 1264 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
07:50:58.0354 1264 W32Time - ok
07:50:58.0394 1264 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
07:50:58.0395 1264 WacomPen - ok
07:50:58.0424 1264 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:50:58.0426 1264 Wanarp - ok
07:50:58.0431 1264 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:50:58.0433 1264 Wanarpv6 - ok
07:50:58.0484 1264 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
07:50:58.0490 1264 wcncsvc - ok
07:50:58.0505 1264 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
07:50:58.0508 1264 WcsPlugInService - ok
07:50:58.0523 1264 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
07:50:58.0523 1264 Wd - ok
07:50:58.0578 1264 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
07:50:58.0583 1264 Wdf01000 - ok
07:50:58.0615 1264 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:50:58.0618 1264 WdiServiceHost - ok
07:50:58.0622 1264 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:50:58.0626 1264 WdiSystemHost - ok
07:50:58.0668 1264 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
07:50:58.0672 1264 WebClient - ok
07:50:58.0707 1264 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
07:50:58.0710 1264 Wecsvc - ok
07:50:58.0739 1264 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
07:50:58.0742 1264 wercplsupport - ok
07:50:58.0776 1264 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
07:50:58.0780 1264 WerSvc - ok
07:50:58.0839 1264 winachsf (72cc6a8ca7891031d6380db5025c773c) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
07:50:58.0844 1264 winachsf - ok
07:50:58.0912 1264 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
07:50:58.0915 1264 WinDefend - ok
07:50:58.0923 1264 WinHttpAutoProxySvc - ok
07:50:58.0990 1264 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
07:50:58.0992 1264 Winmgmt - ok
07:50:59.0075 1264 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
07:50:59.0086 1264 WinRM - ok
07:50:59.0159 1264 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
07:50:59.0166 1264 Wlansvc - ok
07:50:59.0318 1264 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
07:50:59.0330 1264 wlidsvc - ok
07:50:59.0448 1264 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
07:50:59.0449 1264 WmiAcpi - ok
07:50:59.0546 1264 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
07:50:59.0547 1264 wmiApSrv - ok
07:50:59.0658 1264 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
07:50:59.0664 1264 WMPNetworkSvc - ok
07:50:59.0688 1264 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
07:50:59.0692 1264 WPCSvc - ok
07:50:59.0723 1264 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
07:50:59.0726 1264 WPDBusEnum - ok
07:50:59.0772 1264 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
07:50:59.0772 1264 WpdUsb - ok
07:50:59.0795 1264 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
07:50:59.0796 1264 ws2ifsl - ok
07:50:59.0823 1264 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
07:50:59.0826 1264 wscsvc - ok
07:50:59.0831 1264 WSearch - ok
07:50:59.0953 1264 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
07:50:59.0969 1264 wuauserv - ok
07:51:00.0118 1264 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
07:51:00.0119 1264 WUDFRd - ok
07:51:00.0211 1264 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
07:51:00.0215 1264 wudfsvc - ok
07:51:00.0247 1264 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
07:51:00.0247 1264 XAudio - ok
07:51:00.0296 1264 XAudioService (cd5f291a1161f15896d1a4d63daff5df) C:\Windows\system32\DRIVERS\xaudio.exe
07:51:00.0299 1264 XAudioService - ok
07:51:00.0329 1264 MBR (0x1B8) (8913823ff508ccf109db74b636c301da) \Device\Harddisk0\DR0
07:51:00.0368 1264 \Device\Harddisk0\DR0 - ok
07:51:00.0373 1264 Boot (0x1200) (ddc1941058871f17974e4df6e4b4197a) \Device\Harddisk0\DR0\Partition0
07:51:00.0374 1264 \Device\Harddisk0\DR0\Partition0 - ok
07:51:00.0381 1264 Boot (0x1200) (3111012d56e66e7082ff30c74e770282) \Device\Harddisk0\DR0\Partition1
07:51:00.0383 1264 \Device\Harddisk0\DR0\Partition1 - ok
07:51:00.0385 1264 ============================================================
07:51:00.0385 1264 Scan finished
07:51:00.0385 1264 ============================================================
07:51:00.0401 0980 Detected object count: 0
07:51:00.0401 0980 Actual detected object count: 0






aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-10 07:46:20
-----------------------------
07:46:20.494 OS Version: Windows 6.0.6002 Service Pack 2
07:46:20.494 Number of processors: 2 586 0x4B02
07:46:20.495 ComputerName: KYLE-PC UserName: Kyle
07:46:34.990 Initialize success
07:47:05.975 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005d
07:47:05.978 Disk 0 Vendor: ST332082 3.AH Size: 305245MB BusType: 6
07:47:06.010 Disk 0 MBR read successfully
07:47:06.012 Disk 0 MBR scan
07:47:06.015 Disk 0 unknown MBR code
07:47:06.031 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 298834 MB offset 63
07:47:06.061 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 6408 MB offset 612012240
07:47:06.091 Disk 0 scanning sectors +625136400
07:47:06.218 Disk 0 scanning C:\Windows\system32\drivers
07:47:25.444 Service scanning
07:47:41.673 Modules scanning
07:48:13.549 Disk 0 trace - called modules:
07:48:13.568 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys
07:48:13.573 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x868a6ac8]
07:48:13.579 3 CLASSPNP.SYS[82fa48b3] -> nt!IofCallDriver -> [0x85b5ab68]
07:48:13.585 5 acpi.sys[8060c6bc] -> nt!IofCallDriver -> \Device\0000005d[0x85b5ac90]
07:48:13.592 Scan finished successfully
07:48:36.318 Disk 0 MBR has been saved successfully to "C:\Users\Kyle\Desktop\MBR.dat"
07:48:36.341 The log file has been saved successfully to "C:\Users\Kyle\Desktop\aswMBR.txt"

Attached Files

  • Attached File  MBR.zip   580bytes   0 downloads


#8 nasdaq

nasdaq

  • Malware Response Team
  • 40,464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:24 PM

Posted 10 August 2012 - 10:45 AM

Please continue with these scans.

Please download ComboFix from any of the links below, and save it to your desktop. For information regarding this download, please visit this web page: http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Link 1
Link 2


* IMPORTANT !!! Save ComboFix.exe to your Desktop

IMPORTANT....

1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

3. Do not install any other programs until this if fixed.


How to : Disable Anti-virus and Firewall...
http://www.bleepingcomputer.com/forums/topic114351.html

Double click on ComboFix.exe & follow the prompts.
  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt
Note:
Do not mouse click ComboFix's window while it's running. That may cause it to stall


Note: If you have difficulty properly disabling your protective programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html


Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
===

Third party programs if not up to date can be the cause infiltration of an infection.

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

Please post the logs for my review.

Edited by nasdaq, 10 August 2012 - 10:46 AM.


#9 MrBug708

MrBug708
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:24 PM

Posted 10 August 2012 - 05:58 PM

Working on it, but previously I had did a run of combofix on my own (before coming here) and it had been about a day and a half and it was still on the blue screen. Just wanted to let you know!

#10 nasdaq

nasdaq

  • Malware Response Team
  • 40,464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:24 PM

Posted 11 August 2012 - 07:41 AM

If ComboFix fails to complete and generate a log run this tool.


  • Download OTL to your Desktop.
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Check the boxes beside LOP Check and Purity Check.
  • Under the Custom Scan box paste this in

    netsvcs
    %SYSTEMDRIVE%\*.exe
    %systemroot%\system32\drivers\*.sys /90
    %systemroot%\*. /mp /s
    c:\$recycle.bin\*.* /s
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
    /md5start
    eventlog.dll
    scecli.dll
    netlogon.dll
    cngaudit.dll
    sceclt.dll
    ntelogon.dll
    logevent.dll
    iaStor.sys
    nvstor.sys
    atapi.sys
    IdeChnDr.sys
    viasraid.sys
    AGP440.sys
    vaxscsi.sys
    nvatabus.sys
    viamraid.sys
    nvata.sys
    nvgts.sys
    iastorv.sys
    ViPrt.sys
    eNetHook.dll
    explorer.exe
    svchost.exe
    userinit.exe
    qmgr.dll
    proquota.exe
    kernel32.dll
    ndis.sys
    autochk.exe
    spoolsv.exe
    xmlprov.dll
    ntmssvc.dll
    mswsock.dll
    Beep.SYS
    ntfs.sys
    termsrv.dll
    sfcfiles.dll
    st3shark.sys
    ahcix86.sys
    srsvc.dll
    /md5stop
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them all in.
===

#11 MrBug708

MrBug708
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:24 PM

Posted 11 August 2012 - 10:03 AM

Thanks! I'll give it more time this time, epecially since GMER took 4 days to complete

#12 nasdaq

nasdaq

  • Malware Response Team
  • 40,464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:24 PM

Posted 11 August 2012 - 10:05 AM

I would not wait. Close the process associated with ComboFix and try the OTL tool.

#13 MrBug708

MrBug708
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:24 PM

Posted 11 August 2012 - 10:10 AM

I just closed a window that said rootkit found, process might take some time, but I can defer to this new advice!

#14 nasdaq

nasdaq

  • Malware Response Team
  • 40,464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:24 PM

Posted 11 August 2012 - 12:56 PM

It should never take more than one hour.

Stop the process...

#15 MrBug708

MrBug708
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:24 PM

Posted 11 August 2012 - 07:19 PM

OTL


OTL logfile created on: 8/11/2012 2:46:25 PM - Run 1
OTL by OldTimer - Version 3.2.57.0 Folder = C:\Users\Kyle\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19120)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.50 Gb Total Physical Memory | 2.75 Gb Available Physical Memory | 78.65% Memory free
7.18 Gb Paging File | 6.56 Gb Available in Paging File | 91.40% Paging File free
Paging file location(s): ?:\pagefile.sys

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 291.83 Gb Total Space | 83.39 Gb Free Space | 28.57% Space Free | Partition Type: NTFS
Drive D: | 6.26 Gb Total Space | 0.88 Gb Free Space | 14.09% Space Free | Partition Type: NTFS

Computer Name: KYLE-PC | User Name: Kyle | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Kyle\Downloads\OTL (1).exe (OldTimer Tools)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
PRC - \\?\C:\Windows\System32\wbem\WMIADAP.EXE ()
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\Runservice.exe ()


========== Modules (No Company Name) ==========


========== Win32 Services (SafeList) ==========

SRV - (SBSDWSCService) -- C:\Program Files\Spybot File not found
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
SRV - (McciServiceHost) -- C:\Program Files\Common Files\Motive\McciServiceHost.exe (Alcatel-Lucent)
SRV - (Amazon Download Agent) -- C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe (Amazon.com)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (LiveUpdate Notice Service) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
SRV - (LiveUpdate) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE (Symantec Corporation)
SRV - (Automatic LiveUpdate Scheduler) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe (Symantec Corporation)
SRV - (LicCtrlService) -- C:\Windows\Runservice.exe ()
SRV - (LiveUpdate Notice Ex) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
SRV - (ccSetMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
SRV - (ccEvtMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)


========== Driver Services (SafeList) ==========

DRV - (SoC PC-Camera Service) -- system32\DRIVERS\pfc027.sys File not found
DRV - (RimUsb) -- System32\Drivers\RimUsb.sys File not found
DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (MRENDIS5) -- C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS File not found
DRV - (MREMPR5) -- C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys File not found
DRV - (cdrom) -- system32\DRIVERS\cdrom.sys File not found
DRV - (catchme) -- C:\Users\Kyle\AppData\Local\Temp\catchme.sys File not found
DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found
DRV - (hitmanpro35) -- C:\Windows\System32\drivers\hitmanpro35.sys ()
DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (BVRPMPR5) -- C:\Windows\System32\drivers\BVRPMPR5.SYS (Avanquest Software)
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvmfdx32.sys (NVIDIA Corporation)
DRV - (HSXHWBS2) -- C:\Windows\System32\drivers\HSXHWBS2.sys (Conexant Systems, Inc.)
DRV - (HSF_DP) -- C:\Windows\System32\drivers\HSX_DP.sys (Conexant Systems, Inc.)
DRV - (nvstor32) -- C:\Windows\System32\drivers\nvstor32.sys (NVIDIA Corporation)
DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.)
DRV - (MCSTRM) -- C:\Windows\System32\drivers\mcstrm.sys (RealNetworks, Inc.)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (Ps2) -- C:\Windows\System32\drivers\PS2.sys (Hewlett-Packard Company)
DRV - (PID_0928) -- C:\Windows\System32\drivers\LV561AV.SYS (Logitech Inc.)
DRV - (LVUSBSta) -- C:\Windows\System32\drivers\LVUSBSta.sys (Logitech Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/?ocid=OIE9HP
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [Binary data over 100 bytes]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?ocid=OIE9HP
IE - HKLM\..\URLSearchHook: {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/?ocid=OIE9HP
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?ocid=OIE9HP
IE - HKCU\..\SearchScopes,DefaultScope = {EAD11A32-A762-464D-9CFD-D22AC70E7724}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)
FF - HKLM\Software\MozillaPlugins\@fileplanet.com/fpdlm: C:\Program Files\Download Manager\npfpdlm.dll (IGN Entertainment)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.3: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.1.13: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.1.13: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Users\Kyle\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)
FF - HKCU\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine: C:\Users\Kyle\AppData\Roaming\nprhapengine.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Kyle\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Kyle\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/01/21 10:51:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/06/17 22:10:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{d5bc46d8-67c7-11dc-8c1d-0097498c2b7a}: C:\Users\Kyle\Program Files\DNA [2011/05/13 05:53:15 | 000,000,000 | ---D | M]

[2012/03/11 16:23:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/07/16 15:59:09 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/06/17 22:10:12 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/12/20 21:30:41 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/12/20 21:30:41 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.75\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.75\gcswf32.dll
CHR - plugin: Skype Click to Call (Enabled) = C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.1.0.10441_0\npSkypeChromePlugin.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U30 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: Motive Plugin (Enabled) = C:\Program Files\Common Files\Motive\npMotive.dll
CHR - plugin: DNA Plug-in (Enabled) = C:\Program Files\DNA\plugins\npbtdna.dll
CHR - plugin: IGN Download Manager Plug-in (Enabled) = C:\Program Files\Download Manager\npfpdlm.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
CHR - plugin: RealNetworks Rhapsody Player Engine (Enabled) = C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: RealNetworks™ Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = c:\program files\real\realplayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = c:\program files\real\realplayer\Netscape6\nprpjplug.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = c:\program files\real\realplayer\Netscape6\nprjplug.dll
CHR - Extension: YouTube = C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Skype Click to Call = C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.1.0.10441_0\
CHR - Extension: Gmail = C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

Hosts file not found
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (no name) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - No CLSID value found.
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (AIM Toolbar Loader) - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (AIM Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AIM Toolbar) - {61539ECD-CC67-4437-A03C-9AACCBD14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{56717430-C007-489A-97FF-BD28BDD088D5}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper:
O24 - Desktop BackupWallPaper:
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/12/28 12:25:44 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...com [@ = comfile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

========== Files/Folders - Created Within 30 Days ==========

[2012/08/10 09:24:05 | 000,000,000 | --SD | C] -- C:\ComboFix
[2012/07/19 17:48:49 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\Kyle\Desktop\dds.scr
[2012/07/19 09:57:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2012/07/19 09:57:24 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2012/07/19 09:57:24 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2012/07/16 16:10:58 | 004,728,003 | R--- | C] (Swearware) -- C:\Users\Kyle\Desktop\ComboFix.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/08/11 14:51:01 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-75477861-3126569615-284358301-1000UA.job
[2012/08/11 14:49:22 | 000,642,134 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/08/11 14:49:22 | 000,120,926 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/08/11 14:43:43 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/08/11 14:42:13 | 000,019,721 | -HS- | M] () -- C:\Windows\System32\mmf.sys
[2012/08/11 14:42:08 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/08/11 14:42:08 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/08/11 14:42:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/08/11 14:35:29 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/08/11 09:51:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-75477861-3126569615-284358301-1000Core.job
[2012/08/10 09:23:40 | 004,728,003 | R--- | M] (Swearware) -- C:\Users\Kyle\Desktop\ComboFix.exe
[2012/08/10 08:39:42 | 000,001,973 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/08/10 07:49:19 | 000,000,580 | ---- | M] () -- C:\Users\Kyle\Desktop\MBR.zip
[2012/08/10 07:48:36 | 000,000,512 | ---- | M] () -- C:\Users\Kyle\Desktop\MBR.dat
[2012/07/25 08:41:22 | 260,247,674 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/07/21 21:51:12 | 000,244,736 | ---- | M] () -- C:\Users\Kyle\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/07/19 17:48:55 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\Kyle\Desktop\dds.scr
[2012/07/19 17:43:35 | 000,000,000 | ---- | M] () -- C:\Users\Kyle\defogger_reenable
[2012/07/19 12:56:58 | 000,322,224 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/07/19 10:04:56 | 000,000,908 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/07/19 09:57:32 | 000,001,802 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/08/10 07:49:19 | 000,000,580 | ---- | C] () -- C:\Users\Kyle\Desktop\MBR.zip
[2012/08/10 07:48:36 | 000,000,512 | ---- | C] () -- C:\Users\Kyle\Desktop\MBR.dat
[2012/07/25 08:22:10 | 260,247,674 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/07/19 17:52:37 | 000,302,592 | ---- | C] () -- C:\Users\Kyle\Desktop\gmer.exe
[2012/07/19 17:43:35 | 000,000,000 | ---- | C] () -- C:\Users\Kyle\defogger_reenable
[2012/07/19 12:56:29 | 000,322,224 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/07/19 10:04:56 | 000,000,908 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/07/19 09:57:32 | 000,001,802 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/06/15 08:33:00 | 000,141,152 | ---- | C] () -- C:\Windows\hpoins14.dat.temp
[2012/06/15 08:33:00 | 000,002,000 | ---- | C] () -- C:\Windows\hpomdl14.dat.temp
[2012/03/11 16:19:13 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2012/01/07 16:26:42 | 000,140,604 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/12/26 09:14:57 | 000,794,408 | ---- | C] () -- C:\Windows\System32\Pbsvc.exe
[2011/12/15 15:13:19 | 000,004,952 | -HS- | C] () -- C:\Users\Kyle\AppData\Local\786687y7c168q428n153s8xbl4s1
[2011/12/15 15:13:19 | 000,004,952 | -HS- | C] () -- C:\ProgramData\786687y7c168q428n153s8xbl4s1
[2011/10/12 07:05:20 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/09/25 22:21:54 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/09/25 22:21:54 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/09/25 22:21:54 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/09/25 22:21:54 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/09/25 22:21:54 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/09/25 22:04:33 | 000,023,624 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2011/07/05 15:54:15 | 000,016,024 | -HS- | C] () -- C:\Users\Kyle\AppData\Local\1hu4i5i6c1wx6ngdh3brb4vh33mo74i8k66043
[2011/07/05 15:54:15 | 000,016,024 | -HS- | C] () -- C:\ProgramData\1hu4i5i6c1wx6ngdh3brb4vh33mo74i8k66043
[2011/05/13 23:12:18 | 000,016,016 | -HS- | C] () -- C:\Users\Kyle\AppData\Local\l1mt4nci68jk2ni176
[2011/05/13 23:12:18 | 000,016,016 | -HS- | C] () -- C:\ProgramData\l1mt4nci68jk2ni176
[2008/05/03 00:01:14 | 000,001,356 | ---- | C] () -- C:\Users\Kyle\AppData\Local\d3d9caps.dat
[2007/06/15 02:12:18 | 000,244,736 | ---- | C] () -- C:\Users\Kyle\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/04/17 11:21:15 | 000,018,509 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate

========== LOP Check ==========

[2012/08/11 14:41:22 | 000,032,548 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >
[2003/07/23 21:13:22 | 000,090,112 | ---- | M] () -- C:\JavaLoader.exe

< %systemroot%\system32\drivers\*.sys /90 >
[2012/07/03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\system32\drivers\mbam.sys

< %systemroot%\*. /mp /s >

< c:\$recycle.bin\*.* /s >
[2012/07/21 21:47:45 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-75477861-3126569615-284358301-1000\desktop.ini
[2012/07/25 08:32:23 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-75477861-3126569615-284358301-1004\$IOPC43K.url
[2012/05/20 21:25:07 | 000,000,134 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-75477861-3126569615-284358301-1004\$ROPC43K.url
[2012/07/25 08:12:24 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-75477861-3126569615-284358301-1004\desktop.ini

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >

< MD5 for: AGP440.SYS >
[2008/01/19 00:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/19 00:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/19 00:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/19 00:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006/11/02 02:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006/11/02 02:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/04/10 23:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/10 23:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/10 23:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/19 00:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/19 00:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 02:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008/02/14 03:01:53 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[2008/02/14 03:01:53 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008/02/14 03:01:52 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009/04/10 23:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009/04/10 23:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008/01/19 00:33:01 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
[2006/11/02 02:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe

< MD5 for: BEEP.SYS >
[2008/01/18 22:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\Windows\System32\drivers\beep.sys
[2008/01/18 22:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6001.18000_none_c420a153079d485b\beep.sys
[2006/11/02 01:51:03 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=AC3DD1708B22761EBD7CBE14DCC3B5D7 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6000.16386_none_c1e9df570ab23787\beep.sys

< MD5 for: CNGAUDIT.DLL >
[2006/11/02 02:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006/11/02 02:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

< MD5 for: EXPLORER.EXE >
[2008/10/28 23:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/28 23:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/29 20:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2007/11/15 10:51:46 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2007/11/15 10:51:45 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/27 19:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006/11/02 02:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
[2008/01/19 00:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: IASTORV.SYS >
[2008/01/19 00:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008/01/19 00:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006/11/02 02:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006/11/02 02:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys

< MD5 for: KERNEL32.DLL >
[2009/02/13 01:21:09 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=1987D817D08F5EAF0B7F334026FDDB79 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.22376_none_9401d8206f9c7e67\kernel32.dll
[2006/11/02 02:46:05 | 000,874,496 | ---- | M] (Microsoft Corporation) MD5=1E36AE445E4DA83B82D51FEB2D4F8772 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.16386_none_91872345596077da\kernel32.dll
[2011/04/12 07:53:05 | 000,890,368 | ---- | M] (Microsoft Corporation) MD5=306835D4E74E49A5D10F0FCA0B422EB1 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18631_none_939e812b5662e4c2\kernel32.dll
[2011/04/12 07:30:37 | 000,892,928 | ---- | M] (Microsoft Corporation) MD5=497A2DA8181560B3E2F8FFE0092FD1E6 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.22898_none_93ee425a6faadaba\kernel32.dll
[2011/04/12 09:07:38 | 000,892,416 | ---- | M] (Microsoft Corporation) MD5=574B473FACAA0E91702B86578440B525 -- C:\Windows\System32\kernel32.dll
[2011/04/12 09:07:38 | 000,892,416 | ---- | M] (Microsoft Corporation) MD5=574B473FACAA0E91702B86578440B525 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.18449_none_9582275d538a1db6\kernel32.dll
[2011/04/12 08:08:23 | 000,893,440 | ---- | M] (Microsoft Corporation) MD5=7062DEB220FA1CCB1B65FC40D6E7D807 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.22625_none_961d64be6c9b1d69\kernel32.dll
[2009/02/13 00:26:37 | 000,875,520 | ---- | M] (Microsoft Corporation) MD5=B82C7AC1D559F0FD088792171D64C7F3 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.16820_none_91c20a8f593529ed\kernel32.dll
[2009/02/13 00:13:01 | 000,875,520 | ---- | M] (Microsoft Corporation) MD5=BB792054BD990EC05D9E260D50FEAD39 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.21010_none_92564f68724ae108\kernel32.dll
[2009/04/10 23:28:20 | 000,891,392 | ---- | M] (Microsoft Corporation) MD5=BB8509089E7DF514310814E1B2593FFC -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.18005_none_95a95e4d536d53fa\kernel32.dll
[2009/02/13 01:49:05 | 000,888,832 | ---- | M] (Microsoft Corporation) MD5=DB6E3731E6F5C8AE2843F80B5787F7C6 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18215_none_93b81a93564f1da0\kernel32.dll
[2008/01/19 00:34:36 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=DC2338093F91BA4E0512208E60206DDD -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18000_none_93bde541564b88ae\kernel32.dll

< MD5 for: MSWSOCK.DLL >
[2006/11/02 02:46:10 | 000,227,328 | ---- | M] (Microsoft Corporation) MD5=54E9576169A248AD62A1EB9773225826 -- C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6000.16386_none_b61c950a3060adba\mswsock.dll
[2009/04/10 23:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=8617350C9B590B63E620881092751BCB -- C:\Windows\System32\mswsock.dll
[2009/04/10 23:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=8617350C9B590B63E620881092751BCB -- C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6002.18005_none_ba3ed0122a6d89da\mswsock.dll
[2008/01/19 00:35:15 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=89FD0595EEA4E505CABEFCF7008F2612 -- C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6001.18000_none_b85357062d4bbe8e\mswsock.dll

< MD5 for: NDIS.SYS >
[2009/04/10 23:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009/04/10 23:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2006/11/02 02:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
[2008/01/19 00:43:31 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys

< MD5 for: NETLOGON.DLL >
[2006/11/02 02:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2009/04/10 23:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/10 23:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/19 00:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

< MD5 for: NTFS.SYS >
[2008/01/13 09:27:19 | 001,060,920 | ---- | M] (Microsoft Corporation) MD5=2620822A21B76375F5FD6E0986407CD1 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16586_none_a43a6b8d2000830d\ntfs.sys
[2007/12/16 15:50:41 | 001,060,920 | ---- | M] (Microsoft Corporation) MD5=37430AA7A66D7A63407ADC2C0D05E9F6 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16615_none_a4851c9d1fc8a346\ntfs.sys
[2006/11/02 02:51:47 | 001,056,360 | ---- | M] (Microsoft Corporation) MD5=3F379380A4A2637F559444E338CF1B51 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16386_none_a43a67c1200088bf\ntfs.sys
[2009/04/10 23:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\System32\drivers\ntfs.sys
[2009/04/10 23:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.18005_none_a85ca2c91a0d64df\ntfs.sys
[2008/01/19 00:43:40 | 001,081,912 | ---- | M] (Microsoft Corporation) MD5=B4EFFE29EB4F15538FD8A9681108492D -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6001.18000_none_a67129bd1ceb9993\ntfs.sys
[2008/01/13 09:27:18 | 001,061,432 | ---- | M] (Microsoft Corporation) MD5=B5BE45B1F554DF9E1976CBC855365E60 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20709_none_a51d8a7c38da8c7b\ntfs.sys
[2007/12/16 15:52:59 | 001,061,944 | ---- | M] (Microsoft Corporation) MD5=F08824715CA6076F5E73E005AB83B9C8 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20740_none_a4e9483239031830\ntfs.sys

< MD5 for: NTMSSVC.DLL >
[2006/11/02 05:36:25 | 000,460,288 | ---- | M] (Microsoft Corporation) MD5=957CC0F372BB5D79C477363952276859 -- C:\Windows\winsxs\x86_microsoft-windows-r..emanagement-service_31bf3856ad364e35_6.0.6000.16386_none_0c076ff411279f33\ntmssvc.dll
[2008/01/19 00:35:58 | 000,460,288 | ---- | M] (Microsoft Corporation) MD5=A7DFF9642D510BE1EEC6664CD0369953 -- C:\Windows\winsxs\x86_microsoft-windows-r..emanagement-service_31bf3856ad364e35_6.0.6001.18000_none_0e3e31f00e12b007\ntmssvc.dll

< MD5 for: NVSTOR.SYS >
[2007/01/05 21:59:42 | 000,035,920 | ---- | M] (NVIDIA Corporation) MD5=4A5FCAB82D9BF6AF8A023A66802FE9E9 -- C:\Windows\System32\drivers\nvstor.sys
[2007/01/05 21:59:42 | 000,035,920 | ---- | M] (NVIDIA Corporation) MD5=4A5FCAB82D9BF6AF8A023A66802FE9E9 -- C:\Windows\System32\DriverStore\FileRepository\nvstor.inf_bd7fd3de\nvstor.sys
[2006/11/02 02:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/19 00:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/19 00:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys

< MD5 for: PROQUOTA.EXE >
[2006/11/02 02:45:33 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=C31AE90F24870B9A51655C36A9EB4BF3 -- C:\Windows\System32\proquota.exe
[2006/11/02 02:45:33 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=C31AE90F24870B9A51655C36A9EB4BF3 -- C:\Windows\winsxs\x86_microsoft-windows-proquota_31bf3856ad364e35_6.0.6000.16386_none_259035db957a1715\proquota.exe

< MD5 for: QMGR.DLL >
[2008/01/19 00:36:13 | 000,758,272 | ---- | M] (Microsoft Corporation) MD5=02ED7B4DBC2A3232A389106DA7515C3D -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6001.18000_none_2390c4ecf9720b8c\qmgr.dll
[2006/11/02 02:46:12 | 000,749,568 | ---- | M] (Microsoft Corporation) MD5=733FB484A06B9D6A44DD9CA1D3BE937B -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6000.16386_none_215a02f0fc86fab8\qmgr.dll
[2009/04/10 23:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\System32\qmgr.dll
[2009/04/10 23:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6002.18005_none_257c3df8f693d6d8\qmgr.dll
[2007/08/30 10:03:51 | 000,750,080 | ---- | M] (Microsoft Corporation) MD5=DA551697E34D2B9943C8B1C8EAFFE89A -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6000.16531_none_218b14e6fc62ea9e\qmgr.dll
[2007/08/30 10:03:51 | 000,750,080 | ---- | M] (Microsoft Corporation) MD5=F1148566FA5173A4FD48AF8E8BC09401 -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6000.20647_none_220fe38215833e63\qmgr.dll

< MD5 for: SCECLI.DLL >
[2008/01/19 00:36:19 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2006/11/02 02:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
[2009/04/10 23:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009/04/10 23:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll

< MD5 for: SPOOLSV.EXE >
[2010/08/17 06:32:33 | 000,126,464 | ---- | M] (Microsoft Corporation) MD5=3665F79026A3F91FBCA63F2C65A09B19 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18511_none_d641dcfdc18fec21\spoolsv.exe
[2009/04/10 23:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) MD5=524BFBEA40E6E404737CCBC754647A2E -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18005_none_d8371c2dbeaa9062\spoolsv.exe
[2008/01/19 00:33:32 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=846CDF9A3CF4DA9B306ADFB7D55EE4C2 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18000_none_d64ba321c188c516\spoolsv.exe
[2010/08/17 07:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\System32\spoolsv.exe
[2010/08/17 07:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18294_none_d7d4d063bef46cd2\spoolsv.exe
[2010/08/17 07:20:09 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=AAE98B295E88D439A6E0F6E8929424FB -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.22468_none_d882e000d7f61b4c\spoolsv.exe
[2006/11/02 02:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=DA612EF2556776DF2630B68BF2D48935 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6000.16386_none_d414e125c49db442\spoolsv.exe
[2010/08/17 06:27:48 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=E807FC542C295BA256CE3567829E02A6 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.22743_none_d6ad0c7edac40f93\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2006/11/02 02:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
[2008/01/19 00:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/19 00:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
[2012/07/03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe

< MD5 for: TERMSRV.DLL >
[2009/04/10 23:28:24 | 000,449,024 | ---- | M] (Microsoft Corporation) MD5=BB95DA09BEF6E7A131BFF3BA5032090D -- C:\Windows\System32\termsrv.dll
[2009/04/10 23:28:24 | 000,449,024 | ---- | M] (Microsoft Corporation) MD5=BB95DA09BEF6E7A131BFF3BA5032090D -- C:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_908abad45165e2ae\termsrv.dll
[2008/01/19 00:36:39 | 000,448,512 | ---- | M] (Microsoft Corporation) MD5=D605031E225AACCBCEB5B76A4F1603A6 -- C:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6001.18000_none_8e9f41c854441762\termsrv.dll
[2006/11/02 02:46:13 | 000,427,520 | ---- | M] (Microsoft Corporation) MD5=FAD71C1E8E4047B154E899AE31EB8CAA -- C:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6000.16386_none_8c687fcc5759068e\termsrv.dll

< MD5 for: USERINIT.EXE >
[2008/01/19 00:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/19 00:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2006/11/02 02:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe

========== Alternate Data Streams ==========

@Alternate Data Stream - 7606 bytes -> C:\Users\Kyle\Documents\apt4_ancient_india_480p_16x9.mpg.mpg:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Kyle\Desktop\apt4_ancient_india_480p_16x9.mpg.mov:TOC.WMV
@Alternate Data Stream - 205 bytes -> C:\ProgramData\TEMP:517B507A
@Alternate Data Stream - 192 bytes -> C:\ProgramData\TEMP:7920E530
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1

< End of report >

Extras


OTL Extras logfile created on: 8/11/2012 2:46:25 PM - Run 1
OTL by OldTimer - Version 3.2.57.0 Folder = C:\Users\Kyle\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19120)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.50 Gb Total Physical Memory | 2.75 Gb Available Physical Memory | 78.65% Memory free
7.18 Gb Paging File | 6.56 Gb Available in Paging File | 91.40% Paging File free
Paging file location(s): ?:\pagefile.sys

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 291.83 Gb Total Space | 83.39 Gb Free Space | 28.57% Space Free | Partition Type: NTFS
Drive D: | 6.26 Gb Total Space | 0.88 Gb Free Space | 14.09% Space Free | Partition Type: NTFS

Computer Name: KYLE-PC | User Name: Kyle | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- Reg Error: Key error. File not found
.cmd [@ = cmdfile] -- Reg Error: Key error. File not found
.com [@ = comfile] -- Reg Error: Key error. File not found
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.pif [@ = piffile] -- Reg Error: Key error. File not found
.vbs [@ = VBSFile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 1
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{4AC80CAF-4046-451E-817B-33E59B455B8D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{76D965EF-90EA-4843-8839-4F91AC643046}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{95C1C235-3B8C-40C1-BD64-C5BE4931682F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{9AA233DD-1DCF-42D9-BA18-419DAC2DBD24}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01667137-211D-483A-889B-30878676134E}" = protocol=17 | dir=in | app=c:\program files\sports interactive\football manager 2011\fm.exe |
"{06B2BB27-B62B-4C22-9A66-9FD80B402A13}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{07D01512-EDDD-42C3-9AD3-51D2240958FF}" = dir=in | app=c:\program files\hp connections\6811507\program\hp connections |
"{0A3D2280-82F0-4C23-A1E7-2EA100DB5EC2}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\port royale 2\pr2config.exe |
"{0BFFB7EF-E4F9-47D4-9F6C-4363DEBF314D}" = protocol=6 | dir=in | app=c:\program files\aim\aim.exe |
"{0FD85F2E-EAAE-48A7-A820-B21218497F9A}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{12DD7E03-1428-4D8C-B369-E2A3C34FFA49}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{1A85F18D-06F5-42AE-A1E6-A62A07C35504}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{1D8FB3CE-368B-40EE-B2A0-60604EF316D3}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\football manager 2012\fm.exe |
"{1E840054-6CE3-4F1A-8A9F-1A6D4AC7C09D}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\football manager 2010\fm.exe |
"{225981F2-BC5B-4C70-B0DD-94B95BC3AB24}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{2356E5C8-8579-49C3-ABE4-84D8878C6346}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\port royale 2\pr2config.exe |
"{27399456-AC2B-4B73-ABD1-3717DA709F36}" = protocol=17 | dir=in | app=c:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe |
"{28144CEA-F354-4C1D-816A-6022F787BAD2}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\medieval ii total war\launcher.exe |
"{28C11F48-67B9-4A85-BC16-A9A62CA76619}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\torchlight\torchlight.exe |
"{2CD021A0-3154-43BF-B299-B68B088D4405}" = protocol=6 | dir=in | app=c:\program files\common files\motive\mcciservicehost.exe |
"{2D496194-AC7D-47AF-944F-4E85D489A6DC}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{2F3D017D-9BB1-49F3-A64A-00470C6020A4}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{30A90A4A-A357-4ACE-9EFB-68012708E51A}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\torchlight\torchlight.exe |
"{32EF57CA-BC29-4EAA-A058-933A567B5A97}" = protocol=17 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{344CCB58-7509-42F3-B5EB-4A19F7C135C5}" = protocol=17 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization 4 gold\warlords\civ4warlords.exe |
"{3C0A00B2-5A15-428F-B92C-662FD2A59480}" = protocol=17 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization 4 gold\beyond the sword\civ4beyondsword_pitboss.exe |
"{4298780B-B0A1-4FE9-A79A-2E7ADDC76AFD}" = protocol=6 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{44A21F77-07F5-452F-8311-7A050BDB4232}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{502A45AC-5995-42BD-B616-E5EFD86E78ED}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\port royale 2\pr2.exe |
"{5310C2F0-9D3F-48A1-988F-72189BBAEF51}" = protocol=17 | dir=in | app=c:\program files\common files\motive\mcciservicehost.exe |
"{5F1E10A3-B47D-4C3D-BF76-E81791CAEA0D}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\football manager 2010\fm.exe |
"{61DE36AA-9912-4484-B17D-A822360CFF54}" = protocol=17 | dir=in | app=c:\program files\aim\aim.exe |
"{625551C5-E9C0-453F-B2BE-DAA8967E891D}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\port royale 2\pr2.exe |
"{62D22A19-EC4B-4A22-85D6-B3C298B7BE77}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\torchlight\torchlight.exe |
"{6467F007-DDC1-4E64-B3F1-AD708E8D2785}" = protocol=17 | dir=in | app=c:\program files\sports interactive\football manager 2009\fm.exe |
"{6C12D894-A144-4A9B-AF1C-CFADBACDE335}" = protocol=17 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{6CA8A169-5CFD-45CB-88CA-BBC1CDC123D7}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\fate of the world\bin\fotw.exe |
"{7211EF5F-C213-4C06-B1B6-812787889D5D}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\medieval ii total war\launcher.exe |
"{73C622AC-554F-412D-9464-0A446C3B1359}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\football manager 2012\fm.exe |
"{7B28C641-9A8D-430D-BB1B-536A9B13B4F6}" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe |
"{7C68CDEC-E67D-4E97-B044-74CD65E8666D}" = protocol=6 | dir=in | app=c:\program files\sports interactive\football manager 2011\fm.exe |
"{81A48888-F1D6-4D13-8CE3-A9B52D677AEE}" = protocol=6 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization iv colonization\colonization.exe |
"{8222C8E4-7404-4233-BCDA-A3E69718503F}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\fate of the world\bin\fotw.exe |
"{84736B27-261C-4EC7-B7F9-336C507B0F5E}" = protocol=6 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{8827AB95-6AE3-45C9-AFB5-39A05F757B63}" = protocol=6 | dir=in | app=c:\program files\thq\company of heroes\reliccoh.exe |
"{89CAD34E-39A5-4E0D-8FD2-BEDD1F1BC334}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{8A1AA4EF-A48B-4AD9-908E-9F8DA8AFD2DD}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\port royale 2\pr2.exe |
"{8C4ED951-9358-4FA2-807A-DA3904BBCE0F}" = protocol=17 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization iv colonization\colonization.exe |
"{8D160506-C7AC-4574-8816-E5C7617B4C2A}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\port royale 2\pr2config.exe |
"{8E19EEC3-7A3B-4B19-8E37-10922C29B4C7}" = protocol=17 | dir=in | app=c:\program files\thq\company of heroes\reliccoh.exe |
"{99ED889D-A4E1-4AD7-AA1C-8339B1EA0570}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\medieval ii total war\launcher.exe |
"{9BC428B6-4EBB-46A9-9431-EDF11B074A03}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\fate of the world\bin\fotw.exe |
"{9D11F3C8-3BED-4E9F-B489-04C393D011C0}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yserver.exe |
"{9FE508E5-AA2D-413A-97C5-19F334DD7121}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{A280F1D3-6B88-4808-B7C7-2EC52894A82F}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\football manager 2010\fm.exe |
"{A4417FD6-3C13-49F1-87AA-87DA98B3D08E}" = protocol=6 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{A90D9F9B-AAA5-4FCE-B710-EF1CF1123BC6}" = protocol=6 | dir=in | app=c:\program files\sports interactive\football manager 2009\fm.exe |
"{AACA21D4-4F58-4DD9-BA6F-BF726270387E}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\port royale 2\pr2.exe |
"{AE2E0661-45CE-48CF-A85E-34806A3FDE99}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yserver.exe |
"{B2A9B2EB-8E3E-467A-8A8F-19089C02CD8B}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\football manager 2010\fm.exe |
"{B314CD49-C372-46DA-AEEE-99BE56EFB4B2}" = protocol=17 | dir=in | app=c:\program files\rhapsody\rhapsody.exe |
"{B495D539-377A-48E6-B762-7AE962A69C5A}" = protocol=6 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization 4 gold\civilization4.exe |
"{B5188D97-F61A-43C4-B003-F3759A232728}" = protocol=17 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization 4 gold\beyond the sword\civ4beyondsword.exe |
"{B66B86B4-A2BB-4B77-8253-9A8D5547373B}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{B958A15D-9DAF-4760-B813-BD47CD472CEC}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{BBEC7921-7837-4B29-A47F-B1CCBA47CAA4}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{BC80160F-2CB0-4959-9341-12374F50326D}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\medieval ii total war\launcher.exe |
"{BEF0D345-8CEB-4D91-9F05-856C205C2E9F}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{BFB24DA5-AF0D-4AAD-80BB-C34EF0CD1586}" = protocol=6 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization 4 gold\warlords\civ4warlords.exe |
"{C135FB57-2D69-48E4-AA14-35B4DC888A9A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{C5A4E89B-D9A7-482A-9E8C-E5C10DC16592}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{CB297111-1CA7-4DA6-9EA8-B2CB80E7FC31}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{D106630A-23ED-4BB5-9BEE-846911962A44}" = protocol=6 | dir=in | app=c:\program files\rhapsody\rhapsody.exe |
"{D55CE3E4-FDB6-4746-859C-0022BDD55ED9}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{D662C5B5-D157-4E19-B74D-F2BB77F5AE8C}" = protocol=6 | dir=in | app=c:\program files\thq\company of heroes\relicdownloader\relicdownloader.exe |
"{DA5C11CF-3BB8-4D08-9CEF-17D57603F0CB}" = protocol=6 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization 4 gold\beyond the sword\civ4beyondsword.exe |
"{DAD8135B-C0DC-4A54-BAAF-438595BB5D06}" = protocol=17 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization 4 gold\civilization4.exe |
"{DF94CD98-920B-4E04-B99C-C632792C6F79}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\torchlight\torchlight.exe |
"{E0D7BAD4-354C-485A-8F3C-A270DF572566}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E1060555-767E-4667-9204-E39583034092}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{E10A04A1-3340-4E65-9F94-8902A860C9CD}" = protocol=6 | dir=in | app=c:\program files\2k games\firaxis games\sid meier's civilization 4 gold\beyond the sword\civ4beyondsword_pitboss.exe |
"{E71119F9-1C4F-4396-A6FE-AD8708EBC8EF}" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe |
"{EB66931E-2AAA-49CF-8AE9-1F4231CA68B2}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\fate of the world\bin\fotw.exe |
"{F60CD5F7-96B1-41F9-A095-57DAAF794CD9}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\port royale 2\pr2config.exe |
"TCP Query User{033A36E6-39BA-49B1-A7A2-11D9218B9C0D}C:\users\kyle\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\kyle\program files\dna\btdna.exe |
"TCP Query User{145EE010-E384-41FA-9FDD-547A0D8F7832}C:\program files\ufoai-2.2.1\ufo.exe" = protocol=6 | dir=in | app=c:\program files\ufoai-2.2.1\ufo.exe |
"TCP Query User{1BCC83F6-8EC7-479B-A384-41930E2B186A}C:\program files\bittorrent\bittorrent.exe" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"TCP Query User{25FB9CD0-DE96-453D-822B-C001067FC369}C:\program files\bittorrent\bittorrent.exe" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"TCP Query User{3FA8EF18-AD43-4D26-962C-74A32CC31C35}C:\program files\hamachi\hamachi.exe" = protocol=6 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"TCP Query User{46042F76-1764-4084-AFB5-0008329156FE}C:\program files\out of the park developments\ootp baseball 10\ootp10.exe" = protocol=6 | dir=in | app=c:\program files\out of the park developments\ootp baseball 10\ootp10.exe |
"TCP Query User{4D91D157-0933-4E0C-A2C1-A1506C8154A1}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{51F79FCB-2CFA-4B28-AF21-9D7F8035AC57}C:\program files\hamachi\hamachi.exe" = protocol=6 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"TCP Query User{5A7EF179-2D01-4C37-AC8F-00DF8F9A2932}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{6A22DF6A-B0D8-4360-BF0A-6B548320E138}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"TCP Query User{B0EC01AA-6C32-4262-B5FA-D7EF1ABD7A32}C:\program files\sports interactive\football manager 2009\fm.exe" = protocol=6 | dir=in | app=c:\program files\sports interactive\football manager 2009\fm.exe |
"TCP Query User{B92DB22D-174E-4086-8C84-53AEE2F6E017}C:\program files\rhapsody\rhapsody.exe" = protocol=6 | dir=in | app=c:\program files\rhapsody\rhapsody.exe |
"TCP Query User{C424642E-5811-4E55-8518-04E731B6FB2B}C:\program files\2k sports\mlb 2k10\mlb2k10.exe" = protocol=6 | dir=in | app=c:\program files\2k sports\mlb 2k10\mlb2k10.exe |
"TCP Query User{CC356721-DDF9-406B-8094-EAA5210B6CD2}C:\program files\hp games\jeopardy\jeopardy!.exe" = protocol=6 | dir=in | app=c:\program files\hp games\jeopardy\jeopardy!.exe |
"TCP Query User{D1C10986-07B4-4B74-A854-B9EC480667EF}C:\program files\aim\aim.exe" = protocol=6 | dir=in | app=c:\program files\aim\aim.exe |
"TCP Query User{D86DC39C-BCD7-44D6-878F-BD10C497A636}C:\users\kyle\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\kyle\program files\dna\btdna.exe |
"TCP Query User{D9B5C7DC-583D-47B7-8154-268F889D81D9}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{0A3EF856-1EB3-4A0E-8E5B-B085CE71928F}C:\users\kyle\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\kyle\program files\dna\btdna.exe |
"UDP Query User{0BC3C8B1-8136-4043-879E-B4DC0EBB6AA3}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"UDP Query User{14D11882-8581-4466-BA7D-EF6FA3230C32}C:\program files\ufoai-2.2.1\ufo.exe" = protocol=17 | dir=in | app=c:\program files\ufoai-2.2.1\ufo.exe |
"UDP Query User{20FCA684-8C1D-4AC7-9836-C683AC5B7783}C:\program files\sports interactive\football manager 2009\fm.exe" = protocol=17 | dir=in | app=c:\program files\sports interactive\football manager 2009\fm.exe |
"UDP Query User{42E8E50E-8F13-4EF1-8CDB-F61CA7F59F18}C:\program files\rhapsody\rhapsody.exe" = protocol=17 | dir=in | app=c:\program files\rhapsody\rhapsody.exe |
"UDP Query User{77822AB0-2B60-4F48-8D94-B2BF1D79D400}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{795E4A6E-C7BF-4425-997F-28EBE92E9A03}C:\program files\aim\aim.exe" = protocol=17 | dir=in | app=c:\program files\aim\aim.exe |
"UDP Query User{8186926A-1A32-4223-8724-DC85E6621E01}C:\program files\hamachi\hamachi.exe" = protocol=17 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"UDP Query User{95D4B5C9-3C91-45D1-A033-B29267623B40}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{993712E8-8EC1-4214-A034-5B2BA1C328A6}C:\program files\bittorrent\bittorrent.exe" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"UDP Query User{B3C8E448-A996-4E1A-A61F-4D7486DF1595}C:\program files\hp games\jeopardy\jeopardy!.exe" = protocol=17 | dir=in | app=c:\program files\hp games\jeopardy\jeopardy!.exe |
"UDP Query User{CD9BD5B5-C863-454A-841B-557FD8B544EA}C:\program files\out of the park developments\ootp baseball 10\ootp10.exe" = protocol=17 | dir=in | app=c:\program files\out of the park developments\ootp baseball 10\ootp10.exe |
"UDP Query User{D582E516-8403-4583-9132-E899F860FBFD}C:\users\kyle\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\kyle\program files\dna\btdna.exe |
"UDP Query User{D9CB7DA5-8C19-4958-9454-62741B7F7AA8}C:\program files\bittorrent\bittorrent.exe" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"UDP Query User{DB09822F-A817-4F44-BA20-6A9ED210A7F8}C:\program files\hamachi\hamachi.exe" = protocol=17 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"UDP Query User{E90CFB9B-871D-4B1B-953E-6B3D2FD63167}C:\program files\2k sports\mlb 2k10\mlb2k10.exe" = protocol=17 | dir=in | app=c:\program files\2k sports\mlb 2k10\mlb2k10.exe |
"UDP Query User{ECD02F7A-7D98-424A-BAE3-3CC78859D310}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0394CDC8-FABD-4ed8-B104-03393876DFDF}" = Roxio Creator Tools
"{04465757-9F76-47E2-81C0-C36CE2644A94}" = JavaLoader
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D397393-9B50-4c52-84D5-77E344289F87}" = Roxio Creator Data
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}" = Roxio Creator EasyArchive
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{141154CC-B23D-40E0-8242-1A747CA9B482}" = Sid Meier's Railroads!
"{14574B7F-75D1-4718-B7F2-EBF6E2862A35}" = Company of Heroes - FAKEMSI
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{199E6632-EB28-4F73-AECB-3E192EB92D18}" = Company of Heroes - FAKEMSI
"{1A655D51-1423-48A3-B748-8F5A0BE294C8}" = Microsoft Visual J# .NET Redistributable Package 1.1
"{1B15D991-5619-4BC1-B71E-3DE793B792FC}" = ArcSoft MediaConverter 2
"{1E04F83B-2AB9-4301-9EF7-E86307F79C72}" = Google Earth
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery
"{22C29E59-2EF5-4B64-9B7F-9F7A69BC7D1A}" = FMRTE
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{25724802-CC14-4B90-9F3B-3D6955EE27B1}" = Company of Heroes - FAKEMSI
"{2614F54E-A828-49FA-93BA-45A3F756BFAA}" = 32 Bit HP CIO Components Installer
"{26A24AE4-039D-4CA4-87B4-2F83216027FF}" = Java™ 6 Update 30
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}" = Rhapsody Player Engine
"{2EEC2A94-7204-45C6-93BB-67EAEB19E4D6}" = Safari
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{32C4A4EB-C97D-414E-99C5-38F8DFD31D5D}" = Company of Heroes - FAKEMSI
"{32E4F0D2-C135-475E-A841-1D59A0D22989}" = Sid Meier's Civilization 4 - Beyond the Sword
"{36FDBE6E-6684-462B-AE98-9A39A1B200CC}" = HP Product Assistant
"{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}" = ccCommon
"{40F7AED3-0C7D-4582-99F6-484A515C73F2}" = HP Easy Setup - Frontend
"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A49BF17-D3D0-49F1-B17E-ACAE15F94CE2}}_is1" = New Star Soccer 5 v0.908
"{50193078-F553-4EBA-AA77-64C9FAA12F98}" = Company of Heroes - FAKEMSI
"{51D718D1-DA81-4FAD-919F-5C1CE3C33379}" = Company of Heroes - FAKEMSI
"{5211BF94-F97C-47E7-BC7C-BE804A79F8A2}" = MLB 2K10
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{55502C49-F061-428C-BF26-06ECDFB3AC29}" = Sid Meier's Civilization 4 Gold
"{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}" = HP Picasso Media Center Add-In
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{589F7ECB-B6B7-4A40-AC42-0EF54F93102C}}_is1" = Crusader Kings II Demo version 1.0
"{59C80C5E-8C92-40FF-B910-2BB5C7281F61}" = Europa Universalis III
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{61CA2080-38ED-11DF-72AE-006FF94E2CD6}" = Baseball Mogul 2011
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{66F78C51-D108-4F0C-A93C-1CBE74CE338F}" = Company of Heroes - FAKEMSI
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{73A43E42-3658-4DD9-8551-FACDA3632538}" = HP Advisor
"{75E71ADD-042C-4F30-BFAC-A9EC42351313}" = Python 2.4.3
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{77CEF490-8C06-437D-A91A-725765DFE6E0}" = Sengoku
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX
"{7F4B1592-222F-4E5F-A100-E5AFD61A0BB3}" = Company of Heroes - FAKEMSI
"{7FD14A8A-FBCC-4442-ACAC-A0E9EC223AED}" = Europa Universalis - Rome
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{80D03817-7943-4839-8E96-B9F924C5E67D}" = Company of Heroes - FAKEMSI
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{83FFCFC7-88C6-41c6-8752-958A45325C82}" = Roxio Creator Audio
"{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{894084B6-BC69-43B7-BF06-B93AECFEA520}" = GameSpy Comrade
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A809006-C25A-4A3A-9DAB-94659BCDB107}" = NVIDIA PhysX
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{91F7F3F3-CE80-48C3-8327-7D24A0A5716A}" = iTunes
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97E5205F-EA4F-438F-B211-F1846419F1C1}" = Company of Heroes - FAKEMSI
"{99A7722D-9ACB-43F3-A222-ABC7133F159E}" = Company of Heroes - FAKEMSI
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DBA770F-BF73-4D39-B1DF-6035D95268FC}" = HP Customer Feedback
"{9DE4E17F-0C99-4A57-8F7D-5B69CC95D7A9}" = NHL Eastside Hockey Manager 2007
"{A30269D0-4F0B-44BB-A169-C665CA856EEC}}_is1" = Crusader Kings II version 1.05c
"{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}" = F4100_Help
"{A6C265BE-E2C1-483e-843D-6B4C1E912AE0}" = F4100
"{A7A34FC9-DF24-4A36-00AD-D4EFE94CC116}" = SimCity 4 Deluxe
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AB40272D-92AB-4F30-B36B-22EDE16F8FE5}" = HP Update
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB5E289E-76BF-4251-9F3F-9B763F681AE0}" = HP Customer Experience Enhancements
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B10914FD-8812-47A4-85A1-50FCDE7F1F33}" = Windows Live Sync
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.3.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B4509BCE-7BAD-4a8c-B1AE-4D0CE7467C42}" = F4100_doccd
"{B4F35A00-24FD-4fb3-BF5E-413D5423434D}" = DJ_AIO_Software_min
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B7C61755-DB48-4003-948F-3D34DB8EAF69}" = MSRedist
"{B83A15A7-2BD5-4416-BC43-AF5F9A4B08A9}" = muvee autoProducer 5.0
"{BA801B94-C28D-46EE-B806-E1E021A3D519}" = Company of Heroes - FAKEMSI
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{BD122A11-4F3A-41D3-AC5E-B2138AF6D6B2}" = Front Office Football 2007
"{C3DC29BC-A8CF-4578-9DFC-37F049C44771}" = OcxSetup
"{C4124E95-5061-4776-8D5D-E3D931C778E1}" = Microsoft VC9 runtime libraries
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator Basic v9
"{CA50045C-5119-48e7-9BA7-6B317379857A}" = DJ_AIO_Software
"{CA5DD6E1-B508-4922-815D-479E3228B17A}" = Europa Universalis 2
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}" = Windows Resource Kit Tools - SubInAcl.exe
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D4D244D1-05E0-4D24-86A2-B2433C435671}" = Company of Heroes - FAKEMSI
"{D6B8ED44-CA4A-4702-924D-34596E5450DB}" = Crusader Kings
"{D75326C0-B21F-11DF-6DF1-096C35431649}" = Football Mogul 2012
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E142615E-5ED8-4511-9BF0-0284BFA25766}" = ArcSoft PhotoImpression
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E548726E-F4E8-459f-BAB8-45551BC071E9}" = DJ_AIO_ProductContext
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{EA450D5D-95EA-4FD0-B8B0-6D8E68FBE2C7}" = Impulse
"{EAF636A9-F664-4703-A659-85A894DA264F}" = Company of Heroes - FAKEMSI
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
"{EF36A836-BF89-4A4F-B079-057B0C68C1E0}" = Sid Meier's Civilization IV Colonization
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F44DA61E-720D-4E79-871F-F6E628B33242}" = OpenOffice.org 3.0
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{F8131A35-47FD-27AD-116D-0E79AF5DE5EE}" = Acrobat.com
"{F94234DB-FD06-42C3-B88D-6FC4DC9F988C}" = HP Easy Setup - Core
"{FA8A44D7-3E8A-4034-9C4F-088FA6B72BC4}" = HP Deskjet All-In-One Software 9.0
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"AIM Toolbar" = AIM Toolbar
"AIM_7" = AIM 7
"Amazon Games & Software Downloader_is1" = Amazon Games & Software Downloader
"ATT-SST" = AT&T Service & Support Tool
"BFGC" = Big Fish Games: Game Manager
"BFG-Youda Marina" = Youda Marina
"BFG-Youda Sushi Chef" = Youda Sushi Chef
"Bowl Bound College Football" = Bowl Bound College Football
"Bowl Bound College Football Update 1.52" = Bowl Bound College Football Update 1.52
"CCleaner" = CCleaner
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1" = Soft Data Fax Modem with SmartCP
"CoH" = City of Heroes (remove only)
"Company of Heroes" = Company of Heroes
"Cutthroats" = Cutthroats
"Deus Vult_is1" = Deus Vult
"Download Manager" = Download Manager 2.3.9
"Draft Day Sports: College Basketball" = Draft Day Sports: College Basketball
"Draft Day Sports: Pro Basketball" = Draft Day Sports: Pro Basketball
"Draft Day Sports: Pro Basketball 2" = Draft Day Sports: Pro Basketball 2
"ESET Online Scanner" = ESET Online Scanner v3
"Fast Break College Basketball 2010 Demo_is1" = Fast Break College Basketball 2010 Demo
"Fast Break College Basketball 2010_is1" = Fast Break College Basketball 2010
"Fast Break College Basketball_is1" = Fast Break College Basketball
"FM Genie Scout 11_is1" = FM Genie Scout 11 version 1.00
"Football Manager 2009" = Football Manager 2009
"Football Manager 2011" = Football Manager 2011
"GamersGate Downloader_is1" = GamersGate Downloader
"Google Chrome" = Google Chrome
"Heir to the Throne_is1" = Heir to the Throne version 4.1
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPExtendedCapabilities" = HP Customer Participation Program 9.0
"HPOOVClient-6811507 Uninstaller" = HP Connections (remove only)
"Impulse" = Impulse
"In Nomine_is1" = In Nomine 3.1
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.62.0.1300
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mount&Blade" = Mount&Blade
"Mount&Blade Warband" = Mount&Blade Warband
"Mozilla Firefox 13.0.1 (x86 en-US)" = Mozilla Firefox 13.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Napoleon's Ambition_is1" = Napoleon's Ambition 2.2
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"Out of the Park 10" = Out of the Park 10
"Out of the Park Baseball 6" = Out of the Park Baseball 6
"Out of the Park Baseball 6.51a" = Out of the Park Baseball 6.51a
"Out of the Park Baseball13" = Out of the Park Baseball 13
"Out of the Park Baseball9" = Out of the Park Baseball 9
"PricePeep" = PricePeep for FireFox
"PunkBusterSvc" = PunkBuster Services
"RealPlayer 15.0" = RealPlayer
"Rhapsody" = Rhapsody
"Rock Legend_is1" = Rock Legend
"Steam App 102600" = Orcs Must Die!
"Steam App 105450" = Age of Empires® III: Complete Collection
"Steam App 12470" = Port Royale 2
"Steam App 24860" = Battlefield 2
"Steam App 33210" = Dawn of Discovery
"Steam App 34000" = Football Manager 2010
"Steam App 37220" = Cooking Dash
"Steam App 39800" = Nation Red
"Steam App 41500" = Torchlight
"Steam App 4700" = Medieval II: Total War
"Steam App 71270" = Football Manager 2012
"Steam App 80200" = Fate of the World
"SymSetup.{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}" = Norton Internet Security (Symantec Corporation)
"SymSetupTemp.{C1C185CA-C531-49F5-A6FA-B838405A049D}" = Norton Internet Security
"SystemRequirementsLab" = System Requirements Lab
"The College Years" = The College Years
"The Fourth Edition" = The Fourth Edition
"Total College Basketball" = Total College Basketball
"Tropico3" = Tropico 3 1.00
"UFO:Alien Invasion" = UFO:AI 2.2.1
"Wall Street Raider_is1" = Wall Street Raider 4.10
"Westward" = Westward
"WildTangent hpdesktop Master Uninstall" = My HP Games
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Yahoo! Companion" = Yahoo! Toolbar for Internet Explorer
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Toolbar" = Yahoo! Toolbar

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"10d2f181c2b3d79a" = GamersGate Downloader
"961737271c92f180" = GamersGate Downloader
"BitTorrent" = BitTorrent
"BitTorrent DNA" = DNA
"Google Chrome" = Google Chrome
"Stainless Steel" = Stainless Steel

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 7/19/2012 2:55:04 PM | Computer Name = Kyle-PC | Source = VSS | ID = 8193
Description = Volume Shadow Copy Service error: Unexpected error calling routine
CoCreateInstance. hr = 0x8007043c. Operation: Instantiating VSS server

Error - 7/19/2012 8:56:26 PM | Computer Name = Kyle-PC | Source = Perflib | ID = 1010
Description =

Error - 7/22/2012 12:51:30 AM | Computer Name = Kyle-PC | Source = Application Error | ID = 1000
Description = Faulting application Explorer.EXE, version 6.0.6002.18005, time stamp
0x49e01da5, faulting module hxmedpltfm.dll_unloaded, version 0.0.0.0, time stamp
0x4ed57291, exception code 0xc0000005, fault offset 0x6510c390, process id 0x620,
application start time 0x01cd65e97707a37d.

Error - 7/25/2012 11:38:54 AM | Computer Name = Kyle-PC | Source = Windows Search Service | ID = 3024
Description = The update cannot be started because the content sources cannot be
accessed. Fix the errors and try the update again. Context: Application, SystemIndex
Catalog

Error - 7/25/2012 11:58:52 AM | Computer Name = Kyle-PC | Source = Perflib | ID = 1010
Description =

Error - 7/28/2012 1:20:15 PM | Computer Name = Kyle-PC | Source = Perflib | ID = 1010
Description =

Error - 8/4/2012 10:28:52 AM | Computer Name = Kyle-PC | Source = Perflib | ID = 1010
Description =

Error - 8/10/2012 10:48:13 AM | Computer Name = Kyle-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/10/2012 3:10:24 PM | Computer Name = Kyle-PC | Source = Application Error | ID = 1000
Description = Faulting application swxcacls.3XE, version 1.0.1.1, time stamp 0x2a425e19,
faulting module swxcacls.3XE, version 1.0.1.1, time stamp 0x2a425e19, exception
code 0xc0000005, fault offset 0x00004b2a, process id 0xab4, application start time
0x01cd771523c42a4f.

Error - 8/10/2012 9:41:04 PM | Computer Name = Kyle-PC | Source = Application Error | ID = 1000
Description = Faulting application swxcacls.3XE, version 1.0.1.1, time stamp 0x2a425e19,
faulting module swxcacls.3XE, version 1.0.1.1, time stamp 0x2a425e19, exception
code 0xc0000005, fault offset 0x00004b2a, process id 0x85c, application start time
0x01cd774b9096f5ef.

[ Media Center Events ]
Error - 8/28/2008 5:49:01 AM | Computer Name = Kyle-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

[ System Events ]
Error - 8/10/2012 12:15:12 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 8/10/2012 12:19:35 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7023
Description =

Error - 8/10/2012 12:19:35 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/10/2012 12:19:35 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 8/10/2012 12:23:53 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 8/10/2012 12:27:45 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 8/10/2012 12:27:51 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7030
Description =

Error - 8/11/2012 5:43:52 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7023
Description =

Error - 8/11/2012 5:43:52 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/11/2012 5:43:52 PM | Computer Name = Kyle-PC | Source = Service Control Manager | ID = 7026
Description =


< End of report >




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users