Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Another google redirect infection


  • Please log in to reply
15 replies to this topic

#1 Celeras

Celeras

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 09 September 2012 - 05:11 AM

I've run TDSS, Malwarebytes, Spybot, Eset, Combofix. Still getting redirects.

I read every thread on this page for the same issue(so many!) and did almost everything suggested. I'm getting the impression this is something new that these programs haven't picked up on yet, seeing as almost every thread ends with "still getting it". Very frustrating, but I'm prepared to jump through whatever hoops you want me to. Lets do it.

[edit] The redirects URL started with 63.209.69.107. I googled that IP, and apparently its a known thing (Scour malware).. so I dont know why none of these programs can find/fix it!

Edited by Celeras, 09 September 2012 - 05:47 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 AM

Posted 09 September 2012 - 06:28 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Celeras

Celeras
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 09 September 2012 - 11:14 PM

All clean. ESET found two threats on my E:/ but those are both game mods

22:54:59.0806 4832 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:55:00.0036 4832 ============================================================
22:55:00.0036 4832 Current date / time: 2012/09/09 22:55:00.0036
22:55:00.0036 4832 SystemInfo:
22:55:00.0036 4832
22:55:00.0036 4832 OS Version: 6.1.7601 ServicePack: 1.0
22:55:00.0036 4832 Product type: Workstation
22:55:00.0036 4832 ComputerName: STEPHEN
22:55:00.0037 4832 UserName: Steve
22:55:00.0037 4832 Windows directory: C:\Windows
22:55:00.0037 4832 System windows directory: C:\Windows
22:55:00.0037 4832 Running under WOW64
22:55:00.0037 4832 Processor architecture: Intel x64
22:55:00.0037 4832 Number of processors: 4
22:55:00.0037 4832 Page size: 0x1000
22:55:00.0037 4832 Boot type: Normal boot
22:55:00.0037 4832 ============================================================
22:55:00.0179 4832 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:55:00.0179 4832 Drive \Device\Harddisk1\DR1 - Size: 0x4A85C4DE00 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:55:00.0187 4832 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:55:00.0190 4832 ============================================================
22:55:00.0190 4832 \Device\Harddisk0\DR0:
22:55:00.0190 4832 MBR partitions:
22:55:00.0190 4832 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3B000
22:55:00.0190 4832 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3B800, BlocksNum 0xEE40800
22:55:00.0190 4832 \Device\Harddisk1\DR1:
22:55:00.0190 4832 MBR partitions:
22:55:00.0190 4832 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D000
22:55:00.0190 4832 \Device\Harddisk2\DR2:
22:55:00.0190 4832 MBR partitions:
22:55:00.0190 4832 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC34F800
22:55:00.0190 4832 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x683B4800
22:55:00.0191 4832 ============================================================
22:55:00.0192 4832 C: <-> \Device\Harddisk0\DR0\Partition2
22:55:00.0217 4832 E: <-> \Device\Harddisk2\DR2\Partition2
22:55:00.0230 4832 F: <-> \Device\Harddisk1\DR1\Partition1
22:55:00.0252 4832 D: <-> \Device\Harddisk2\DR2\Partition1
22:55:00.0252 4832 ============================================================
22:55:00.0252 4832 Initialize success
22:55:00.0252 4832 ============================================================
22:55:16.0216 1500 ============================================================
22:55:16.0216 1500 Scan started
22:55:16.0216 1500 Mode: Manual; TDLFS;
22:55:16.0216 1500 ============================================================
22:55:16.0336 1500 ================ Scan system memory ========================
22:55:16.0336 1500 System memory - ok
22:55:16.0337 1500 ================ Scan services =============================
22:55:16.0364 1500 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
22:55:16.0366 1500 1394ohci - ok
22:55:16.0371 1500 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:55:16.0374 1500 ACPI - ok
22:55:16.0377 1500 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:55:16.0378 1500 AcpiPmi - ok
22:55:16.0388 1500 [ DB60662DF272B991449C72CA9B54B5A6 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
22:55:16.0395 1500 AcrSch2Svc - ok
22:55:16.0398 1500 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
22:55:16.0399 1500 Adobe LM Service - ok
22:55:16.0402 1500 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:55:16.0403 1500 AdobeARMservice - ok
22:55:16.0416 1500 [ 0D4C486A24A711A45FD83ACDF4D18506 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:55:16.0418 1500 AdobeFlashPlayerUpdateSvc - ok
22:55:16.0422 1500 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:55:16.0425 1500 adp94xx - ok
22:55:16.0429 1500 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:55:16.0431 1500 adpahci - ok
22:55:16.0434 1500 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:55:16.0436 1500 adpu320 - ok
22:55:16.0438 1500 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:55:16.0439 1500 AeLookupSvc - ok
22:55:16.0443 1500 [ B794DD8ACC5CC76177156463DAB4BEBB ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
22:55:16.0445 1500 afcdp - ok
22:55:16.0463 1500 [ ED8B4CF3357DE01F8060D206254648C9 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
22:55:16.0479 1500 afcdpsrv - ok
22:55:16.0484 1500 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:55:16.0486 1500 AFD - ok
22:55:16.0488 1500 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:55:16.0489 1500 agp440 - ok
22:55:16.0491 1500 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:55:16.0492 1500 ALG - ok
22:55:16.0493 1500 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:55:16.0494 1500 aliide - ok
22:55:16.0498 1500 ALSysIO - ok
22:55:16.0500 1500 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:55:16.0500 1500 amdide - ok
22:55:16.0502 1500 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:55:16.0503 1500 AmdK8 - ok
22:55:16.0504 1500 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:55:16.0505 1500 AmdPPM - ok
22:55:16.0506 1500 [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:55:16.0507 1500 amdsata - ok
22:55:16.0510 1500 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:55:16.0511 1500 amdsbs - ok
22:55:16.0513 1500 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:55:16.0513 1500 amdxata - ok
22:55:16.0515 1500 [ A1434F35B7B171CB697D74D33F7D029F ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
22:55:16.0515 1500 amd_sata - ok
22:55:16.0517 1500 [ E9B5A82FA268BB2D1B012030D5F4E096 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
22:55:16.0517 1500 amd_xata - ok
22:55:16.0519 1500 [ D69F1E9A944A5F46A494AF901ED41118 ] androidusb C:\Windows\system32\Drivers\motoandroid.sys
22:55:16.0519 1500 androidusb - ok
22:55:16.0521 1500 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:55:16.0522 1500 AppID - ok
22:55:16.0524 1500 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:55:16.0524 1500 AppIDSvc - ok
22:55:16.0526 1500 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:55:16.0526 1500 Appinfo - ok
22:55:16.0529 1500 [ 557F35D1CA42AEA14A6690E21887A31F ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
22:55:16.0530 1500 Apple Mobile Device - ok
22:55:16.0532 1500 [ 43F86AE638618EEC90460F2238B7B1DD ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
22:55:16.0532 1500 AppleCharger - ok
22:55:16.0534 1500 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
22:55:16.0534 1500 AppleChargerSrv - ok
22:55:16.0537 1500 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
22:55:16.0538 1500 AppMgmt - ok
22:55:16.0540 1500 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:55:16.0541 1500 arc - ok
22:55:16.0543 1500 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:55:16.0543 1500 arcsas - ok
22:55:16.0550 1500 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:55:16.0553 1500 aspnet_state - ok
22:55:16.0554 1500 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:55:16.0555 1500 AsyncMac - ok
22:55:16.0556 1500 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:55:16.0557 1500 atapi - ok
22:55:16.0561 1500 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:55:16.0565 1500 AudioEndpointBuilder - ok
22:55:16.0570 1500 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:55:16.0571 1500 AudioSrv - ok
22:55:16.0574 1500 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:55:16.0575 1500 AxInstSV - ok
22:55:16.0579 1500 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:55:16.0582 1500 b06bdrv - ok
22:55:16.0585 1500 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:55:16.0587 1500 b57nd60a - ok
22:55:16.0590 1500 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:55:16.0590 1500 BDESVC - ok
22:55:16.0592 1500 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:55:16.0592 1500 Beep - ok
22:55:16.0598 1500 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:55:16.0601 1500 BFE - ok
22:55:16.0607 1500 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
22:55:16.0612 1500 BITS - ok
22:55:16.0614 1500 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:55:16.0614 1500 blbdrive - ok
22:55:16.0617 1500 [ 3F56903E124E820AEECE6D471583C6C1 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
22:55:16.0618 1500 Bonjour Service - ok
22:55:16.0620 1500 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:55:16.0621 1500 bowser - ok
22:55:16.0622 1500 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:55:16.0623 1500 BrFiltLo - ok
22:55:16.0624 1500 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:55:16.0625 1500 BrFiltUp - ok
22:55:16.0627 1500 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:55:16.0628 1500 BridgeMP - ok
22:55:16.0631 1500 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:55:16.0632 1500 Browser - ok
22:55:16.0635 1500 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:55:16.0637 1500 Brserid - ok
22:55:16.0639 1500 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:55:16.0640 1500 BrSerWdm - ok
22:55:16.0641 1500 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:55:16.0642 1500 BrUsbMdm - ok
22:55:16.0644 1500 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:55:16.0644 1500 BrUsbSer - ok
22:55:16.0646 1500 btaudio - ok
22:55:16.0647 1500 BTDriver - ok
22:55:16.0649 1500 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
22:55:16.0650 1500 BthEnum - ok
22:55:16.0651 1500 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:55:16.0652 1500 BTHMODEM - ok
22:55:16.0654 1500 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
22:55:16.0655 1500 BthPan - ok
22:55:16.0659 1500 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
22:55:16.0662 1500 BTHPORT - ok
22:55:16.0664 1500 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:55:16.0665 1500 bthserv - ok
22:55:16.0667 1500 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
22:55:16.0668 1500 BTHUSB - ok
22:55:16.0670 1500 [ 2641A3FE3D7B0646308F33B67F3B5300 ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
22:55:16.0671 1500 btusbflt - ok
22:55:16.0676 1500 [ 3AFF6DC496B8A8D12C867E3FC7C86FAC ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
22:55:16.0678 1500 btwampfl - ok
22:55:16.0680 1500 [ 336BBA0909B3636AB7D06A71D7B1C0DC ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
22:55:16.0681 1500 btwaudio - ok
22:55:16.0684 1500 [ 9FF58F76024D25784755B01F926B00BE ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
22:55:16.0684 1500 btwavdt - ok
22:55:16.0693 1500 [ 26A80D7ACA49E03A403806418B5FED46 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
22:55:16.0697 1500 btwdins - ok
22:55:16.0699 1500 BTWDNDIS - ok
22:55:16.0700 1500 btwhid - ok
22:55:16.0702 1500 [ B1ACFD00CDD13B48D86F46BFEC153BF9 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
22:55:16.0702 1500 btwl2cap - ok
22:55:16.0704 1500 [ EDD953D635F3AA89EF902E3F82D60D22 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
22:55:16.0704 1500 btwrchid - ok
22:55:16.0706 1500 [ A765F4A60A1B5B2A3CD2544B324DDA23 ] BTWUSB C:\Windows\system32\Drivers\btwusb.sys
22:55:16.0707 1500 BTWUSB - ok
22:55:16.0708 1500 catchme - ok
22:55:16.0710 1500 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:55:16.0711 1500 cdfs - ok
22:55:16.0713 1500 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:55:16.0715 1500 cdrom - ok
22:55:16.0717 1500 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:55:16.0717 1500 CertPropSvc - ok
22:55:16.0719 1500 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:55:16.0720 1500 circlass - ok
22:55:16.0723 1500 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:55:16.0725 1500 CLFS - ok
22:55:16.0728 1500 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:55:16.0729 1500 clr_optimization_v2.0.50727_32 - ok
22:55:16.0731 1500 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:55:16.0733 1500 clr_optimization_v2.0.50727_64 - ok
22:55:16.0738 1500 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:55:16.0746 1500 clr_optimization_v4.0.30319_32 - ok
22:55:16.0749 1500 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:55:16.0751 1500 clr_optimization_v4.0.30319_64 - ok
22:55:16.0752 1500 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:55:16.0753 1500 CmBatt - ok
22:55:16.0754 1500 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:55:16.0755 1500 cmdide - ok
22:55:16.0759 1500 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:55:16.0761 1500 CNG - ok
22:55:16.0763 1500 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:55:16.0764 1500 Compbatt - ok
22:55:16.0765 1500 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:55:16.0766 1500 CompositeBus - ok
22:55:16.0767 1500 COMSysApp - ok
22:55:16.0769 1500 cpuz130 - ok
22:55:16.0771 1500 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:55:16.0772 1500 crcdisk - ok
22:55:16.0775 1500 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:55:16.0776 1500 CryptSvc - ok
22:55:16.0780 1500 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
22:55:16.0783 1500 CSC - ok
22:55:16.0788 1500 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
22:55:16.0791 1500 CscService - ok
22:55:16.0868 1500 [ 80861969541971176E005D2C09DAE851 ] DAUpdaterSvc E:\Games\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
22:55:16.0869 1500 DAUpdaterSvc - ok
22:55:16.0880 1500 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:55:16.0886 1500 DcomLaunch - ok
22:55:16.0890 1500 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:55:16.0892 1500 defragsvc - ok
22:55:16.0894 1500 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:55:16.0895 1500 DfsC - ok
22:55:16.0899 1500 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:55:16.0901 1500 Dhcp - ok
22:55:16.0902 1500 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:55:16.0903 1500 discache - ok
22:55:16.0905 1500 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:55:16.0905 1500 Disk - ok
22:55:16.0908 1500 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:55:16.0909 1500 Dnscache - ok
22:55:16.0912 1500 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:55:16.0914 1500 dot3svc - ok
22:55:16.0916 1500 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:55:16.0918 1500 DPS - ok
22:55:16.0919 1500 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:55:16.0920 1500 drmkaud - ok
22:55:16.0929 1500 dump_wmimmc - ok
22:55:16.0936 1500 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:55:16.0939 1500 DXGKrnl - ok
22:55:16.0942 1500 [ EAFCB4551836FF44EE775CEDDFA7A77E ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys
22:55:16.0943 1500 e1cexpress - ok
22:55:16.0945 1500 EagleX64 - ok
22:55:16.0948 1500 [ 55851F4864F8AD6E98B02307ECA29DB4 ] eamon C:\Windows\system32\DRIVERS\eamon.sys
22:55:16.0948 1500 eamon - ok
22:55:16.0950 1500 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:55:16.0951 1500 EapHost - ok
22:55:16.0969 1500 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:55:16.0984 1500 ebdrv - ok
22:55:16.0986 1500 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:55:16.0987 1500 EFS - ok
22:55:16.0990 1500 [ 62C96B617AC7C4C8A9C29D57A36AA874 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
22:55:16.0991 1500 ehdrv - ok
22:55:16.0996 1500 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:55:17.0000 1500 ehRecvr - ok
22:55:17.0002 1500 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:55:17.0003 1500 ehSched - ok
22:55:17.0005 1500 [ 6160F4CC52847923910CD5BB5DFF4B31 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
22:55:17.0005 1500 EhttpSrv - ok
22:55:17.0011 1500 [ A5F63285C1B6C4B396D9ACE0DFFC88EF ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
22:55:17.0014 1500 ekrn - ok
22:55:17.0017 1500 [ 4778EEECB75C6FB419745BEED3530B9D ] ElRawDisk C:\Windows\system32\drivers\dddskx64.sys
22:55:17.0017 1500 ElRawDisk - ok
22:55:17.0021 1500 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:55:17.0025 1500 elxstor - ok
22:55:17.0027 1500 [ 12C061D9F9621BE916D58191872EC281 ] ENTECH64 C:\Windows\system32\DRIVERS\ENTECH64.sys
22:55:17.0027 1500 ENTECH64 - ok
22:55:17.0029 1500 [ 275395BFA2D37AC63B4C94CFA6A397CD ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
22:55:17.0030 1500 epfwwfpr - ok
22:55:17.0031 1500 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:55:17.0032 1500 ErrDev - ok
22:55:17.0038 1500 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:55:17.0040 1500 EventSystem - ok
22:55:17.0042 1500 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:55:17.0044 1500 exfat - ok
22:55:17.0046 1500 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:55:17.0048 1500 fastfat - ok
22:55:17.0053 1500 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:55:17.0057 1500 Fax - ok
22:55:17.0058 1500 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:55:17.0059 1500 fdc - ok
22:55:17.0060 1500 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:55:17.0061 1500 fdPHost - ok
22:55:17.0062 1500 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:55:17.0063 1500 FDResPub - ok
22:55:17.0065 1500 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:55:17.0065 1500 FileInfo - ok
22:55:17.0067 1500 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:55:17.0067 1500 Filetrace - ok
22:55:17.0072 1500 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:55:17.0076 1500 FLEXnet Licensing Service - ok
22:55:17.0077 1500 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:55:17.0078 1500 flpydisk - ok
22:55:17.0081 1500 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:55:17.0082 1500 FltMgr - ok
22:55:17.0085 1500 [ E94E042BC24BB301767A8125D529B705 ] fltsrv C:\Windows\system32\DRIVERS\fltsrv.sys
22:55:17.0086 1500 fltsrv - ok
22:55:17.0092 1500 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:55:17.0098 1500 FontCache - ok
22:55:17.0101 1500 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:55:17.0101 1500 FontCache3.0.0.0 - ok
22:55:17.0103 1500 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:55:17.0104 1500 FsDepends - ok
22:55:17.0105 1500 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:55:17.0106 1500 Fs_Rec - ok
22:55:17.0109 1500 [ 0D015D3584704EC814A58276232F143B ] Futuremark SystemInfo Service C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
22:55:17.0110 1500 Futuremark SystemInfo Service - ok
22:55:17.0113 1500 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:55:17.0114 1500 fvevol - ok
22:55:17.0116 1500 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:55:17.0117 1500 gagp30kx - ok
22:55:17.0119 1500 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
22:55:17.0119 1500 gdrv - ok
22:55:17.0121 1500 [ D279181E1CF2D85D31CDCFFD56B16795 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:55:17.0121 1500 GEARAspiWDM - ok
22:55:17.0126 1500 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:55:17.0130 1500 gpsvc - ok
22:55:17.0133 1500 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
22:55:17.0134 1500 GVTDrv64 - ok
22:55:17.0135 1500 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:55:17.0136 1500 hcw85cir - ok
22:55:17.0139 1500 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:55:17.0141 1500 HdAudAddService - ok
22:55:17.0143 1500 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:55:17.0144 1500 HDAudBus - ok
22:55:17.0146 1500 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:55:17.0147 1500 HidBatt - ok
22:55:17.0148 1500 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:55:17.0149 1500 HidBth - ok
22:55:17.0151 1500 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:55:17.0151 1500 HidIr - ok
22:55:17.0153 1500 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
22:55:17.0154 1500 hidserv - ok
22:55:17.0156 1500 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:55:17.0156 1500 HidUsb - ok
22:55:17.0158 1500 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:55:17.0159 1500 hkmsvc - ok
22:55:17.0162 1500 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:55:17.0164 1500 HomeGroupListener - ok
22:55:17.0166 1500 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:55:17.0168 1500 HomeGroupProvider - ok
22:55:17.0170 1500 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:55:17.0170 1500 HpSAMD - ok
22:55:17.0175 1500 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:55:17.0179 1500 HTTP - ok
22:55:17.0181 1500 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:55:17.0181 1500 hwpolicy - ok
22:55:17.0183 1500 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:55:17.0184 1500 i8042prt - ok
22:55:17.0188 1500 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
22:55:17.0190 1500 iaStor - ok
22:55:17.0192 1500 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:55:17.0192 1500 IAStorDataMgrSvc - ok
22:55:17.0196 1500 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:55:17.0198 1500 iaStorV - ok
22:55:17.0200 1500 [ 33D4D4A24791587E83F7EE05A446FB7E ] ICCS C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
22:55:17.0202 1500 ICCS - ok
22:55:17.0204 1500 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:55:17.0205 1500 IDriverT - ok
22:55:17.0211 1500 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:55:17.0216 1500 idsvc - ok
22:55:17.0217 1500 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:55:17.0218 1500 iirsp - ok
22:55:17.0224 1500 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:55:17.0228 1500 IKEEXT - ok
22:55:17.0242 1500 [ 490947A9AFF7CA31EF2E08F5776105EB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:55:17.0253 1500 IntcAzAudAddService - ok
22:55:17.0256 1500 [ D7B978F4504D3DA95A21002863D0E7EE ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
22:55:17.0257 1500 Intel® PROSet Monitoring Service - ok
22:55:17.0259 1500 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:55:17.0259 1500 intelide - ok
22:55:17.0261 1500 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:55:17.0261 1500 intelppm - ok
22:55:17.0263 1500 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:55:17.0264 1500 IPBusEnum - ok
22:55:17.0266 1500 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:55:17.0267 1500 IpFilterDriver - ok
22:55:17.0271 1500 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:55:17.0274 1500 iphlpsvc - ok
22:55:17.0276 1500 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:55:17.0277 1500 IPMIDRV - ok
22:55:17.0279 1500 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:55:17.0280 1500 IPNAT - ok
22:55:17.0285 1500 [ E8E568EA584973DFD99AAC7D00A16287 ] iPod Service C:\Program Files (x86)\iPod\bin\iPodService.exe
22:55:17.0288 1500 iPod Service - ok
22:55:17.0289 1500 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:55:17.0290 1500 IRENUM - ok
22:55:17.0292 1500 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:55:17.0292 1500 isapnp - ok
22:55:17.0295 1500 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:55:17.0297 1500 iScsiPrt - ok
22:55:17.0299 1500 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
22:55:17.0299 1500 iusb3hcs - ok
22:55:17.0302 1500 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
22:55:17.0303 1500 iusb3hub - ok
22:55:17.0310 1500 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
22:55:17.0312 1500 iusb3xhc - ok
22:55:17.0327 1500 [ F3A41EC4C6506E76E07A219B3A1DF8D2 ] JMB36X C:\Windows\SysWOW64\XSrvSetup.exe
22:55:17.0328 1500 JMB36X - ok
22:55:17.0330 1500 [ 1C368C1A2733DCC5B8E15420AA2B0F6D ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
22:55:17.0331 1500 JRAID - ok
22:55:17.0332 1500 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:55:17.0333 1500 kbdclass - ok
22:55:17.0334 1500 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:55:17.0335 1500 kbdhid - ok
22:55:17.0336 1500 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:55:17.0337 1500 KeyIso - ok
22:55:17.0339 1500 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:55:17.0339 1500 KSecDD - ok
22:55:17.0341 1500 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:55:17.0342 1500 KSecPkg - ok
22:55:17.0344 1500 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:55:17.0344 1500 ksthunk - ok
22:55:17.0348 1500 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:55:17.0350 1500 KtmRm - ok
22:55:17.0352 1500 [ B8040D3B97B16B89701E31A17353856C ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
22:55:17.0353 1500 L1C - ok
22:55:17.0356 1500 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
22:55:17.0357 1500 LanmanServer - ok
22:55:17.0359 1500 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:55:17.0361 1500 LanmanWorkstation - ok
22:55:17.0366 1500 [ 7772DFAB22611050B79504E671B06E6E ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
22:55:17.0368 1500 LBTServ - ok
22:55:17.0370 1500 [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
22:55:17.0371 1500 LHidFilt - ok
22:55:17.0372 1500 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:55:17.0373 1500 lltdio - ok
22:55:17.0376 1500 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:55:17.0378 1500 lltdsvc - ok
22:55:17.0379 1500 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:55:17.0380 1500 lmhosts - ok
22:55:17.0382 1500 [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
22:55:17.0382 1500 LMouFilt - ok
22:55:17.0385 1500 [ C56E64BA70DC822B84D100A6F8D690D3 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:55:17.0387 1500 LMS - ok
22:55:17.0390 1500 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:55:17.0391 1500 LSI_FC - ok
22:55:17.0393 1500 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:55:17.0394 1500 LSI_SAS - ok
22:55:17.0396 1500 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:55:17.0397 1500 LSI_SAS2 - ok
22:55:17.0399 1500 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:55:17.0399 1500 LSI_SCSI - ok
22:55:17.0401 1500 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:55:17.0402 1500 luafv - ok
22:55:17.0404 1500 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:55:17.0405 1500 Mcx2Svc - ok
22:55:17.0406 1500 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:55:17.0407 1500 megasas - ok
22:55:17.0410 1500 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:55:17.0412 1500 MegaSR - ok
22:55:17.0413 1500 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:55:17.0414 1500 MEIx64 - ok
22:55:17.0419 1500 Microsoft SharePoint Workspace Audit Service - ok
22:55:17.0421 1500 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:55:17.0421 1500 MMCSS - ok
22:55:17.0423 1500 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:55:17.0424 1500 Modem - ok
22:55:17.0425 1500 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:55:17.0425 1500 monitor - ok
22:55:17.0427 1500 [ 3CC500C9B0E4D476802D277353CB2C89 ] MotDev C:\Windows\system32\DRIVERS\motodrv.sys
22:55:17.0428 1500 MotDev - ok
22:55:17.0430 1500 [ 683232BFDAAFB94192ED772AD30806C4 ] MotioninJoyUSBFilter C:\Windows\system32\DRIVERS\MijUfilt.sys
22:55:17.0431 1500 MotioninJoyUSBFilter - ok
22:55:17.0433 1500 [ FC44AD48746FFA5FD640EF1260AB5EC2 ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
22:55:17.0433 1500 MotioninJoyXFilter - ok
22:55:17.0434 1500 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:55:17.0435 1500 mouclass - ok
22:55:17.0436 1500 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:55:17.0437 1500 mouhid - ok
22:55:17.0439 1500 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:55:17.0439 1500 mountmgr - ok
22:55:17.0442 1500 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:55:17.0443 1500 MozillaMaintenance - ok
22:55:17.0445 1500 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:55:17.0447 1500 mpio - ok
22:55:17.0449 1500 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:55:17.0449 1500 mpsdrv - ok
22:55:17.0455 1500 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:55:17.0459 1500 MpsSvc - ok
22:55:17.0462 1500 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:55:17.0463 1500 MRxDAV - ok
22:55:17.0466 1500 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:55:17.0467 1500 mrxsmb - ok
22:55:17.0470 1500 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:55:17.0472 1500 mrxsmb10 - ok
22:55:17.0474 1500 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:55:17.0475 1500 mrxsmb20 - ok
22:55:17.0476 1500 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
22:55:17.0477 1500 msahci - ok
22:55:17.0479 1500 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:55:17.0480 1500 msdsm - ok
22:55:17.0482 1500 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:55:17.0484 1500 MSDTC - ok
22:55:17.0486 1500 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:55:17.0487 1500 Msfs - ok
22:55:17.0488 1500 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:55:17.0489 1500 mshidkmdf - ok
22:55:17.0490 1500 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:55:17.0490 1500 msisadrv - ok
22:55:17.0493 1500 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:55:17.0494 1500 MSiSCSI - ok
22:55:17.0495 1500 msiserver - ok
22:55:17.0497 1500 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:55:17.0498 1500 MSKSSRV - ok
22:55:17.0499 1500 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:55:17.0500 1500 MSPCLOCK - ok
22:55:17.0501 1500 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:55:17.0501 1500 MSPQM - ok
22:55:17.0505 1500 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:55:17.0507 1500 MsRPC - ok
22:55:17.0509 1500 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:55:17.0509 1500 mssmbios - ok
22:55:17.0511 1500 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:55:17.0511 1500 MSTEE - ok
22:55:17.0513 1500 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:55:17.0513 1500 MTConfig - ok
22:55:17.0515 1500 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:55:17.0515 1500 Mup - ok
22:55:17.0519 1500 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:55:17.0522 1500 napagent - ok
22:55:17.0525 1500 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:55:17.0527 1500 NativeWifiP - ok
22:55:17.0533 1500 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
22:55:17.0538 1500 NDIS - ok
22:55:17.0540 1500 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:55:17.0540 1500 NdisCap - ok
22:55:17.0542 1500 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:55:17.0542 1500 NdisTapi - ok
22:55:17.0544 1500 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:55:17.0545 1500 Ndisuio - ok
22:55:17.0547 1500 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:55:17.0548 1500 NdisWan - ok
22:55:17.0550 1500 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:55:17.0551 1500 NDProxy - ok
22:55:17.0552 1500 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:55:17.0553 1500 NetBIOS - ok
22:55:17.0556 1500 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:55:17.0557 1500 NetBT - ok
22:55:17.0559 1500 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:55:17.0559 1500 Netlogon - ok
22:55:17.0562 1500 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:55:17.0565 1500 Netman - ok
22:55:17.0570 1500 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:55:17.0573 1500 NetMsmqActivator - ok
22:55:17.0574 1500 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:55:17.0575 1500 NetPipeActivator - ok
22:55:17.0578 1500 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:55:17.0581 1500 netprofm - ok
22:55:17.0583 1500 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:55:17.0584 1500 NetTcpActivator - ok
22:55:17.0585 1500 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:55:17.0586 1500 NetTcpPortSharing - ok
22:55:17.0588 1500 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:55:17.0588 1500 nfrd960 - ok
22:55:17.0592 1500 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:55:17.0594 1500 NlaSvc - ok
22:55:17.0595 1500 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:55:17.0596 1500 Npfs - ok
22:55:17.0598 1500 npggsvc - ok
22:55:17.0600 1500 NPPTNT2 - ok
22:55:17.0602 1500 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:55:17.0602 1500 nsi - ok
22:55:17.0604 1500 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:55:17.0604 1500 nsiproxy - ok
22:55:17.0614 1500 [ 05D78AA5CB5F3F5C31160BDB955D0B7C ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:55:17.0622 1500 Ntfs - ok
22:55:17.0623 1500 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:55:17.0624 1500 Null - ok
22:55:17.0626 1500 [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
22:55:17.0627 1500 nusb3hub - ok
22:55:17.0630 1500 [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
22:55:17.0632 1500 nusb3xhc - ok
22:55:17.0633 1500 NVHDA - ok
22:55:17.0698 1500 [ 79060E6631DC2C91DA8E601E2584A623 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:55:17.0732 1500 nvlddmkm - ok
22:55:17.0740 1500 [ BDBC8E51FF2F3B800FF7B90DCDA31B48 ] nvsvc C:\Windows\system32\nvvsvc.exe
22:55:17.0745 1500 nvsvc - ok
22:55:17.0747 1500 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:55:17.0748 1500 ohci1394 - ok
22:55:17.0752 1500 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:55:17.0754 1500 ose - ok
22:55:17.0779 1500 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:55:17.0801 1500 osppsvc - ok
22:55:17.0809 1500 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:55:17.0811 1500 p2pimsvc - ok
22:55:17.0815 1500 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:55:17.0818 1500 p2psvc - ok
22:55:17.0820 1500 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:55:17.0821 1500 Parport - ok
22:55:17.0823 1500 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:55:17.0824 1500 partmgr - ok
22:55:17.0826 1500 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:55:17.0828 1500 PcaSvc - ok
22:55:17.0830 1500 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:55:17.0831 1500 pci - ok
22:55:17.0833 1500 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:55:17.0833 1500 pciide - ok
22:55:17.0836 1500 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:55:17.0837 1500 pcmcia - ok
22:55:17.0839 1500 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:55:17.0839 1500 pcw - ok
22:55:17.0844 1500 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:55:17.0847 1500 PEAUTH - ok
22:55:17.0856 1500 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
22:55:17.0863 1500 PeerDistSvc - ok
22:55:17.0877 1500 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:55:17.0877 1500 PerfHost - ok
22:55:17.0888 1500 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:55:17.0895 1500 pla - ok
22:55:17.0899 1500 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:55:17.0902 1500 PlugPlay - ok
22:55:17.0904 1500 PnkBstrA - ok
22:55:17.0906 1500 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:55:17.0907 1500 PNRPAutoReg - ok
22:55:17.0910 1500 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:55:17.0912 1500 PNRPsvc - ok
22:55:17.0916 1500 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:55:17.0919 1500 PolicyAgent - ok
22:55:17.0922 1500 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:55:17.0923 1500 Power - ok
22:55:17.0925 1500 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:55:17.0926 1500 PptpMiniport - ok
22:55:17.0928 1500 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:55:17.0928 1500 Processor - ok
22:55:17.0932 1500 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
22:55:17.0934 1500 ProfSvc - ok
22:55:17.0935 1500 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:55:17.0936 1500 ProtectedStorage - ok
22:55:17.0938 1500 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:55:17.0939 1500 Psched - ok
22:55:17.0948 1500 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:55:17.0956 1500 ql2300 - ok
22:55:17.0958 1500 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:55:17.0959 1500 ql40xx - ok
22:55:17.0962 1500 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:55:17.0964 1500 QWAVE - ok
22:55:17.0966 1500 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:55:17.0966 1500 QWAVEdrv - ok
22:55:17.0968 1500 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:55:17.0968 1500 RasAcd - ok
22:55:17.0970 1500 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:55:17.0971 1500 RasAgileVpn - ok
22:55:17.0973 1500 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:55:17.0974 1500 RasAuto - ok
22:55:17.0976 1500 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:55:17.0977 1500 Rasl2tp - ok
22:55:17.0981 1500 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:55:17.0983 1500 RasMan - ok
22:55:17.0985 1500 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:55:17.0986 1500 RasPppoe - ok
22:55:17.0988 1500 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:55:17.0989 1500 RasSstp - ok
22:55:17.0992 1500 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:55:17.0994 1500 rdbss - ok
22:55:17.0995 1500 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:55:17.0996 1500 rdpbus - ok
22:55:17.0997 1500 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:55:17.0998 1500 RDPCDD - ok
22:55:18.0001 1500 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
22:55:18.0002 1500 RDPDR - ok
22:55:18.0004 1500 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:55:18.0004 1500 RDPENCDD - ok
22:55:18.0007 1500 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:55:18.0007 1500 RDPREFMP - ok
22:55:18.0010 1500 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:55:18.0012 1500 RdpVideoMiniport - ok
22:55:18.0015 1500 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:55:18.0016 1500 RDPWD - ok
22:55:18.0019 1500 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:55:18.0020 1500 rdyboost - ok
22:55:18.0022 1500 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:55:18.0023 1500 RemoteAccess - ok
22:55:18.0026 1500 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:55:18.0027 1500 RemoteRegistry - ok
22:55:18.0030 1500 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
22:55:18.0031 1500 RFCOMM - ok
22:55:18.0033 1500 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:55:18.0034 1500 RpcEptMapper - ok
22:55:18.0036 1500 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:55:18.0036 1500 RpcLocator - ok
22:55:18.0040 1500 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
22:55:18.0042 1500 RpcSs - ok
22:55:18.0044 1500 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:55:18.0045 1500 rspndr - ok
22:55:18.0046 1500 [ 4B60EF388071E0BAF299496E3D6590AE ] RTCore64 C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
22:55:18.0046 1500 RTCore64 - ok
22:55:18.0048 1500 [ 5DC26837E5AF8244233F78CB9C3AC988 ] rtkio C:\Program Files (x86)\Realtek\Smart Dual Lan\rtkio.sys
22:55:18.0049 1500 rtkio - ok
22:55:18.0052 1500 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:55:18.0054 1500 RTL8167 - ok
22:55:18.0056 1500 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
22:55:18.0056 1500 s3cap - ok
22:55:18.0058 1500 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:55:18.0058 1500 SamSs - ok
22:55:18.0060 1500 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:55:18.0061 1500 sbp2port - ok
22:55:18.0064 1500 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:55:18.0066 1500 SCardSvr - ok
22:55:18.0068 1500 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:55:18.0068 1500 scfilter - ok
22:55:18.0075 1500 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:55:18.0081 1500 Schedule - ok
22:55:18.0083 1500 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:55:18.0083 1500 SCPolicySvc - ok
22:55:18.0085 1500 [ B0E6CA5D36DC5F0019A73B8AAB35C5DC ] SDLService C:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exe
22:55:18.0086 1500 SDLService - ok
22:55:18.0088 1500 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:55:18.0090 1500 SDRSVC - ok
22:55:18.0091 1500 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:55:18.0092 1500 secdrv - ok
22:55:18.0094 1500 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:55:18.0095 1500 seclogon - ok
22:55:18.0096 1500 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
22:55:18.0097 1500 SENS - ok
22:55:18.0099 1500 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:55:18.0100 1500 SensrSvc - ok
22:55:18.0102 1500 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:55:18.0102 1500 Serenum - ok
22:55:18.0104 1500 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:55:18.0104 1500 Serial - ok
22:55:18.0106 1500 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:55:18.0107 1500 sermouse - ok
22:55:18.0111 1500 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:55:18.0112 1500 SessionEnv - ok
22:55:18.0113 1500 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:55:18.0114 1500 sffdisk - ok
22:55:18.0116 1500 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:55:18.0116 1500 sffp_mmc - ok
22:55:18.0118 1500 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:55:18.0118 1500 sffp_sd - ok
22:55:18.0120 1500 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:55:18.0120 1500 sfloppy - ok
22:55:18.0124 1500 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:55:18.0126 1500 SharedAccess - ok
22:55:18.0130 1500 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:55:18.0132 1500 ShellHWDetection - ok
22:55:18.0134 1500 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:55:18.0134 1500 SiSRaid2 - ok
22:55:18.0136 1500 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:55:18.0137 1500 SiSRaid4 - ok
22:55:18.0140 1500 [ 68EA68D03BF58389FE6AD2B38FAD798C ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:55:18.0141 1500 SkypeUpdate - ok
22:55:18.0143 1500 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:55:18.0144 1500 Smb - ok
22:55:18.0149 1500 [ BBFB94699C8C265A6AF5FD51BDE26DFC ] snapman C:\Windows\system32\DRIVERS\snapman.sys
22:55:18.0150 1500 snapman - ok
22:55:18.0152 1500 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:55:18.0153 1500 SNMPTRAP - ok
22:55:18.0155 1500 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\Windows\syswow64\speedfan.sys
22:55:18.0156 1500 speedfan - ok
22:55:18.0157 1500 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:55:18.0158 1500 spldr - ok
22:55:18.0162 1500 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
22:55:18.0165 1500 Spooler - ok
22:55:18.0183 1500 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:55:18.0200 1500 sppsvc - ok
22:55:18.0202 1500 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:55:18.0203 1500 sppuinotify - ok
22:55:18.0208 1500 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:55:18.0210 1500 srv - ok
22:55:18.0214 1500 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:55:18.0216 1500 srv2 - ok
22:55:18.0219 1500 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:55:18.0220 1500 srvnet - ok
22:55:18.0223 1500 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:55:18.0225 1500 SSDPSRV - ok
22:55:18.0227 1500 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:55:18.0228 1500 SstpSvc - ok
22:55:18.0229 1500 Steam Client Service - ok
22:55:18.0231 1500 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:55:18.0232 1500 stexstor - ok
22:55:18.0237 1500 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:55:18.0240 1500 stisvc - ok
22:55:18.0242 1500 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
22:55:18.0242 1500 storflt - ok
22:55:18.0244 1500 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
22:55:18.0245 1500 storvsc - ok
22:55:18.0246 1500 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:55:18.0246 1500 swenum - ok
22:55:18.0252 1500 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:55:18.0254 1500 SwitchBoard - ok
22:55:18.0258 1500 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:55:18.0262 1500 swprv - ok
22:55:18.0291 1500 [ D9C742A07E8C500B9497ABDDFD118D07 ] syncagentsrv C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
22:55:18.0318 1500 syncagentsrv - ok
22:55:18.0320 1500 Synth3dVsc - ok
22:55:18.0331 1500 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:55:18.0339 1500 SysMain - ok
22:55:18.0341 1500 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:55:18.0343 1500 TabletInputService - ok
22:55:18.0345 1500 [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
22:55:18.0345 1500 tap0901t - ok
22:55:18.0348 1500 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:55:18.0351 1500 TapiSrv - ok
22:55:18.0353 1500 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:55:18.0353 1500 TBS - ok
22:55:18.0364 1500 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:55:18.0373 1500 Tcpip - ok
22:55:18.0384 1500 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:55:18.0389 1500 TCPIP6 - ok
22:55:18.0392 1500 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:55:18.0392 1500 tcpipreg - ok
22:55:18.0395 1500 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:55:18.0395 1500 TDPIPE - ok
22:55:18.0403 1500 [ 9C1A823D4E729C965167B6E71E984296 ] tdrpman C:\Windows\system32\DRIVERS\tdrpman.sys
22:55:18.0409 1500 tdrpman - ok
22:55:18.0411 1500 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:55:18.0412 1500 TDTCP - ok
22:55:18.0414 1500 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:55:18.0415 1500 tdx - ok
22:55:18.0416 1500 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:55:18.0417 1500 TermDD - ok
22:55:18.0422 1500 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:55:18.0426 1500 TermService - ok
22:55:18.0428 1500 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:55:18.0429 1500 Themes - ok
22:55:18.0430 1500 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:55:18.0431 1500 THREADORDER - ok
22:55:18.0437 1500 [ 990447334615A0DB84F620E1426DCFE0 ] timounter C:\Windows\system32\DRIVERS\timntr.sys
22:55:18.0442 1500 timounter - ok
22:55:18.0444 1500 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:55:18.0446 1500 TrkWks - ok
22:55:18.0448 1500 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:55:18.0450 1500 TrustedInstaller - ok
22:55:18.0452 1500 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:55:18.0452 1500 tssecsrv - ok
22:55:18.0454 1500 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:55:18.0455 1500 TsUsbFlt - ok
22:55:18.0456 1500 tsusbhub - ok
22:55:18.0459 1500 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:55:18.0460 1500 tunnel - ok
22:55:18.0464 1500 [ CC71BC6CBA3FB1E7733E9A8667231B9E ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
22:55:18.0468 1500 TunngleService - ok
22:55:18.0470 1500 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:55:18.0471 1500 uagp35 - ok
22:55:18.0474 1500 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:55:18.0476 1500 udfs - ok
22:55:18.0479 1500 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:55:18.0480 1500 UI0Detect - ok
22:55:18.0482 1500 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:55:18.0483 1500 uliagpkx - ok
22:55:18.0484 1500 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
22:55:18.0485 1500 umbus - ok
22:55:18.0487 1500 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:55:18.0487 1500 UmPass - ok
22:55:18.0490 1500 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
22:55:18.0492 1500 UmRdpService - ok
22:55:18.0495 1500 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:55:18.0498 1500 upnphost - ok
22:55:18.0501 1500 [ A2D6C837F4BC7D0E084A67D7704C4EA8 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:55:18.0502 1500 USBAAPL64 - ok
22:55:18.0504 1500 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:55:18.0505 1500 usbaudio - ok
22:55:18.0506 1500 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:55:18.0507 1500 usbccgp - ok
22:55:18.0509 1500 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:55:18.0510 1500 usbcir - ok
22:55:18.0512 1500 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:55:18.0512 1500 usbehci - ok
22:55:18.0516 1500 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:55:18.0518 1500 usbhub - ok
22:55:18.0519 1500 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:55:18.0520 1500 usbohci - ok
22:55:18.0522 1500 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:55:18.0522 1500 usbprint - ok
22:55:18.0524 1500 [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:55:18.0525 1500 USBSTOR - ok
22:55:18.0527 1500 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:55:18.0527 1500 usbuhci - ok
22:55:18.0529 1500 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:55:18.0530 1500 UxSms - ok
22:55:18.0531 1500 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:55:18.0532 1500 VaultSvc - ok
22:55:18.0534 1500 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:55:18.0534 1500 vdrvroot - ok
22:55:18.0538 1500 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:55:18.0541 1500 vds - ok
22:55:18.0543 1500 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:55:18.0544 1500 vga - ok
22:55:18.0545 1500 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:55:18.0546 1500 VgaSave - ok
22:55:18.0547 1500 VGPU - ok
22:55:18.0550 1500 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
22:55:18.0551 1500 vhdmp - ok
22:55:18.0553 1500 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:55:18.0553 1500 viaide - ok
22:55:18.0556 1500 [ EE12FAFFDD1FB13BE0D6EF67CB0D1617 ] vididr C:\Windows\system32\DRIVERS\vididr.sys
22:55:18.0557 1500 vididr - ok
22:55:18.0560 1500 [ 2DFD1EB9DE564460003DE1605A275E8D ] vidsflt61 C:\Windows\system32\DRIVERS\vsflt61.sys
22:55:18.0560 1500 vidsflt61 - ok
22:55:18.0563 1500 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
22:55:18.0564 1500 vmbus - ok
22:55:18.0566 1500 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
22:55:18.0567 1500 VMBusHID - ok
22:55:18.0569 1500 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:55:18.0569 1500 volmgr - ok
22:55:18.0573 1500 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:55:18.0575 1500 volmgrx - ok
22:55:18.0578 1500 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:55:18.0580 1500 volsnap - ok
22:55:18.0582 1500 [ F004AEB456CD886DFDB123B6297D89C9 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
22:55:18.0584 1500 vpcbus - ok
22:55:18.0586 1500 [ A7FAE0A70E7A6D7A9469A2BF0A1CAC5F ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys
22:55:18.0586 1500 vpcnfltr - ok
22:55:18.0588 1500 [ 4CDF15CEAF71F068BD26B9841D4E3E2B ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
22:55:18.0589 1500 vpcusb - ok
22:55:18.0593 1500 [ E7EA9E3FBF1B0F517584E03638511E86 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys
22:55:18.0594 1500 vpcvmm - ok
22:55:18.0597 1500 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:55:18.0598 1500 vsmraid - ok
22:55:18.0608 1500 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:55:18.0616 1500 VSS - ok
22:55:18.0618 1500 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:55:18.0618 1500 vwifibus - ok
22:55:18.0622 1500 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:55:18.0625 1500 W32Time - ok
22:55:18.0627 1500 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:55:18.0628 1500 WacomPen - ok
22:55:18.0630 1500 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:55:18.0631 1500 WANARP - ok
22:55:18.0632 1500 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:55:18.0633 1500 Wanarpv6 - ok
22:55:18.0640 1500 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:55:18.0647 1500 WatAdminSvc - ok
22:55:18.0656 1500 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:55:18.0663 1500 wbengine - ok
22:55:18.0667 1500 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:55:18.0669 1500 WbioSrvc - ok
22:55:18.0672 1500 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:55:18.0675 1500 wcncsvc - ok
22:55:18.0677 1500 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:55:18.0678 1500 WcsPlugInService - ok
22:55:18.0679 1500 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:55:18.0680 1500 Wd - ok
22:55:18.0685 1500 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:55:18.0688 1500 Wdf01000 - ok
22:55:18.0690 1500 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:55:18.0692 1500 WdiServiceHost - ok
22:55:18.0693 1500 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:55:18.0694 1500 WdiSystemHost - ok
22:55:18.0697 1500 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:55:18.0699 1500 WebClient - ok
22:55:18.0702 1500 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:55:18.0704 1500 Wecsvc - ok
22:55:18.0706 1500 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:55:18.0707 1500 wercplsupport - ok
22:55:18.0709 1500 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:55:18.0710 1500 WerSvc - ok
22:55:18.0712 1500 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:55:18.0712 1500 WfpLwf - ok
22:55:18.0714 1500 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:55:18.0715 1500 WIMMount - ok
22:55:18.0716 1500 WinDefend - ok
22:55:18.0718 1500 WinHttpAutoProxySvc - ok
22:55:18.0723 1500 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:55:18.0725 1500 Winmgmt - ok
22:55:18.0736 1500 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:55:18.0746 1500 WinRM - ok
22:55:18.0751 1500 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:55:18.0751 1500 WinUsb - ok
22:55:18.0757 1500 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:55:18.0762 1500 Wlansvc - ok
22:55:18.0764 1500 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:55:18.0764 1500 WmiAcpi - ok
22:55:18.0768 1500 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:55:18.0769 1500 wmiApSrv - ok
22:55:18.0770 1500 WMPNetworkSvc - ok
22:55:18.0772 1500 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:55:18.0773 1500 WPCSvc - ok
22:55:18.0775 1500 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:55:18.0777 1500 WPDBusEnum - ok
22:55:18.0778 1500 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:55:18.0779 1500 ws2ifsl - ok
22:55:18.0781 1500 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
22:55:18.0782 1500 wscsvc - ok
22:55:18.0783 1500 WSearch - ok
22:55:18.0798 1500 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:55:18.0811 1500 wuauserv - ok
22:55:18.0813 1500 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:55:18.0814 1500 WudfPf - ok
22:55:18.0817 1500 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:55:18.0818 1500 WUDFRd - ok
22:55:18.0820 1500 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:55:18.0822 1500 wudfsvc - ok
22:55:18.0824 1500 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:55:18.0826 1500 WwanSvc - ok
22:55:18.0830 1500 [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
22:55:18.0830 1500 xusb21 - ok
22:55:18.0838 1500 ================ Scan global ===============================
22:55:18.0839 1500 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:55:18.0842 1500 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:55:18.0846 1500 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:55:18.0848 1500 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:55:18.0851 1500 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:55:18.0854 1500 [Global] - ok
22:55:18.0854 1500 ================ Scan MBR ==================================
22:55:18.0855 1500 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:55:19.0025 1500 \Device\Harddisk0\DR0 - ok
22:55:19.0026 1500 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
22:55:19.0082 1500 \Device\Harddisk1\DR1 - ok
22:55:19.0112 1500 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
22:55:19.0167 1500 \Device\Harddisk2\DR2 - ok
22:55:19.0168 1500 ================ Scan VBR ==================================
22:55:19.0171 1500 [ C559BFE120946B518AAB6BB39F040660 ] \Device\Harddisk0\DR0\Partition1
22:55:19.0172 1500 \Device\Harddisk0\DR0\Partition1 - ok
22:55:19.0175 1500 [ 9808BCDE49E52B2F5081E88CE10625E9 ] \Device\Harddisk0\DR0\Partition2
22:55:19.0176 1500 \Device\Harddisk0\DR0\Partition2 - ok
22:55:19.0179 1500 [ F500C9A79946300A60298EF9A9793C0C ] \Device\Harddisk1\DR1\Partition1
22:55:19.0180 1500 \Device\Harddisk1\DR1\Partition1 - ok
22:55:19.0205 1500 [ 15876DF7B29A2CD71CBD48ED3FD9E62D ] \Device\Harddisk2\DR2\Partition1
22:55:19.0206 1500 \Device\Harddisk2\DR2\Partition1 - ok
22:55:19.0215 1500 [ 432250BCF8A7E637E96AAAC661A1D201 ] \Device\Harddisk2\DR2\Partition2
22:55:19.0216 1500 \Device\Harddisk2\DR2\Partition2 - ok
22:55:19.0216 1500 ============================================================
22:55:19.0216 1500 Scan finished
22:55:19.0216 1500 ============================================================
22:55:19.0220 5924 Detected object count: 0
22:55:19.0220 5924 Actual detected object count: 0
22:55:30.0815 4896 Deinitialize success

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-09 22:57:11
-----------------------------
22:57:11.545 OS Version: Windows x64 6.1.7601 Service Pack 1
22:57:11.545 Number of processors: 4 586 0x3A09
22:57:11.546 ComputerName: STEPHEN UserName: Steve
22:57:11.727 Initialize success
22:57:53.734 AVAST engine defs: 12090901
22:58:14.970 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:58:14.972 Disk 0 Vendor: M4-CT128 0309 Size: 122104MB BusType: 3
22:58:14.974 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
22:58:14.977 Disk 1 Vendor: WDC_WD32 21.0 Size: 305244MB BusType: 3
22:58:14.979 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IAAStorageDevice-3
22:58:14.982 Disk 2 Vendor: WDC_WD10 05.0 Size: 953868MB BusType: 3
22:58:14.986 Disk 0 MBR read successfully
22:58:14.989 Disk 0 MBR scan
22:58:14.994 Disk 0 Windows 7 default MBR code
22:58:14.997 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 118 MB offset 2048
22:58:15.000 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 121985 MB offset 243712
22:58:15.003 Disk 0 scanning C:\Windows\system32\drivers
22:58:16.833 Service scanning
22:58:22.504 Modules scanning
22:58:22.514 Disk 0 trace - called modules:
22:58:22.522 ntoskrnl.exe fltsrv.sys tdrpman.sys CLASSPNP.SYS disk.sys vsflt61.sys ACPI.sys iaStor.sys hal.dll
22:58:22.527 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006fbc060]
22:58:22.531 3 CLASSPNP.SYS[fffff88001f2b43f] -> nt!IofCallDriver -> [0xfffffa8006ed6b30]
22:58:22.534 5 vsflt61.sys[fffff88000f880fd] -> nt!IofCallDriver -> [0xfffffa80069ae6a0]
22:58:22.537 7 ACPI.sys[fffff88000ed77a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006aa8050]
22:58:22.762 AVAST engine scan C:\Windows
22:58:23.256 AVAST engine scan C:\Windows\system32
22:59:01.686 AVAST engine scan C:\Windows\system32\drivers
22:59:04.143 AVAST engine scan C:\Users\Steve
22:59:16.744 AVAST engine scan C:\ProgramData
22:59:30.269 Scan finished successfully
22:59:41.200 Disk 0 MBR has been saved successfully to "E:\Desktop-Documents\Desktop\MBR.dat"
22:59:41.202 The log file has been saved successfully to "E:\Desktop-Documents\Desktop\aswMBR.txt"

E:\Games\Bulletstorm\Binaries\Win32\xlive.dll a variant of Win32/Packed.VMProtect.AAD trojan cleaned by deleting - quarantined
E:\Games\The Witcher 2\bin\paul.dll a variant of Win32/Packed.VMProtect.AAA trojan cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 AM

Posted 10 September 2012 - 02:03 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 Celeras

Celeras
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 10 September 2012 - 06:06 AM

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.10.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Steve :: STEPHEN [administrator]

9/10/2012 6:47:48 AM
mbam-log-2012-09-10 (06-47-48).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 399324
Time elapsed: 8 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

MiniToolBox by Farbar Version: 23-07-2012
Ran by Steve (administrator) on 10-09-2012 at 06:57:46
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection 5 (Connected)
TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection 5 (Media disconnected)
Intel® 82579V Gigabit Network Connection = Local Area Connection 4 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
set subinterface interface=?D subinterface=ethernet_17 mtu=1477
set subinterface interface=?D subinterface=ethernet_23 mtu=1477


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Stephen
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 5:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 90-2B-34-3A-8D-0A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::949b:d73:77ad:7b58%34(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, September 09, 2012 6:07:34 AM
Lease Expires . . . . . . . . . . : Tuesday, September 11, 2012 5:13:49 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 730868532
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-0A-A1-F4-00-1A-4D-4F-62-E8
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection 4:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
Physical Address. . . . . . . . . : 90-2B-34-3A-8D-3B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection 5:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network) #5
Physical Address. . . . . . . . . : 00-02-72-A2-F8-2F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Tunngle:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TAP-Win32 Adapter V9 (Tunngle)
Physical Address. . . . . . . . . : 00-FF-0E-47-A9-D8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{0EE1D172-06DC-489F-8A59-97AEA80DA67E}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:18c7:b1a:e740:4a53(Preferred)
Link-local IPv6 Address . . . . . : fe80::18c7:b1a:e740:4a53%10(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{57B1A595-2E6E-48EC-BCA2-AEFCB0211436}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{0E47A9D8-9E6E-404E-84F6-C7F18D79AFB2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{33141B09-AF84-4DD3-8B8F-EFA80C5B1A25}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: my.router
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4006:803::1008
173.194.43.37
173.194.43.35
173.194.43.38
173.194.43.36
173.194.43.40
173.194.43.34
173.194.43.33
173.194.43.39
173.194.43.41
173.194.43.32
173.194.43.46


Pinging google.com [173.194.43.46] with 32 bytes of data:
Reply from 173.194.43.46: bytes=32 time=11ms TTL=55
Reply from 173.194.43.46: bytes=32 time=12ms TTL=55

Ping statistics for 173.194.43.46:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 11ms, Maximum = 12ms, Average = 11ms
Server: my.router
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=1177ms TTL=49
Reply from 72.30.38.140: bytes=32 time=1047ms TTL=50

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1047ms, Maximum = 1177ms, Average = 1112ms
Server: my.router
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
34...90 2b 34 3a 8d 0a ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
33...90 2b 34 3a 8d 3b ......Intel® 82579V Gigabit Network Connection
28...00 02 72 a2 f8 2f ......Bluetooth Device (Personal Area Network) #5
16...00 ff 0e 47 a9 d8 ......TAP-Win32 Adapter V9 (Tunngle)
1...........................Software Loopback Interface 1
30...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
10...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
32...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.7 10
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 192.168.1.7 286
169.254.255.255 255.255.255.255 On-link 192.168.1.7 266
192.168.1.0 255.255.255.0 On-link 192.168.1.7 266
192.168.1.7 255.255.255.255 On-link 192.168.1.7 266
192.168.1.255 255.255.255.255 On-link 192.168.1.7 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.7 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.7 266
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
10 58 ::/0 On-link
1 306 ::1/128 On-link
10 58 2001::/32 On-link
10 306 2001:0:4137:9e76:18c7:b1a:e740:4a53/128
On-link
34 266 fe80::/64 On-link
10 306 fe80::/64 On-link
10 306 fe80::18c7:b1a:e740:4a53/128
On-link
34 266 fe80::949b:d73:77ad:7b58/128
On-link
1 306 ff00::/8 On-link
10 306 ff00::/8 On-link
34 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [193024] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/09/2012 11:00:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/09/2012 11:00:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/09/2012 11:00:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/09/2012 11:00:13 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/09/2012 06:07:35 AM) (Source: Application Error) (User: )
Description: Faulting application name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Faulting module name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Exception code: 0xc0000005
Fault offset: 0x000000000000176c
Faulting process id: 0x8ec
Faulting application start time: 0xSDLService.exe0
Faulting application path: SDLService.exe1
Faulting module path: SDLService.exe2
Report Id: SDLService.exe3

Error: (09/09/2012 05:59:34 AM) (Source: Application Error) (User: )
Description: Faulting application name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Faulting module name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Exception code: 0xc0000005
Fault offset: 0x000000000000176c
Faulting process id: 0x8f0
Faulting application start time: 0xSDLService.exe0
Faulting application path: SDLService.exe1
Faulting module path: SDLService.exe2
Report Id: SDLService.exe3

Error: (09/09/2012 05:39:55 AM) (Source: Application Error) (User: )
Description: Faulting application name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Faulting module name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Exception code: 0xc0000005
Fault offset: 0x000000000000176c
Faulting process id: 0x8d8
Faulting application start time: 0xSDLService.exe0
Faulting application path: SDLService.exe1
Faulting module path: SDLService.exe2
Report Id: SDLService.exe3

Error: (09/08/2012 06:59:05 AM) (Source: Application Error) (User: )
Description: Faulting application name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Faulting module name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Exception code: 0xc0000005
Fault offset: 0x000000000000176c
Faulting process id: 0x8d4
Faulting application start time: 0xSDLService.exe0
Faulting application path: SDLService.exe1
Faulting module path: SDLService.exe2
Report Id: SDLService.exe3

Error: (09/08/2012 06:38:11 AM) (Source: Application Error) (User: )
Description: Faulting application name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Faulting module name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Exception code: 0xc0000005
Fault offset: 0x000000000000176c
Faulting process id: 0x8ec
Faulting application start time: 0xSDLService.exe0
Faulting application path: SDLService.exe1
Faulting module path: SDLService.exe2
Report Id: SDLService.exe3

Error: (09/08/2012 06:35:43 AM) (Source: Application Error) (User: )
Description: Faulting application name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Faulting module name: SDLService.exe, version: 0.0.0.0, time stamp: 0x4b84d322
Exception code: 0xc0000005
Fault offset: 0x000000000000176c
Faulting process id: 0x8fc
Faulting application start time: 0xSDLService.exe0
Faulting application path: SDLService.exe1
Faulting module path: SDLService.exe2
Report Id: SDLService.exe3


System errors:
=============
Error: (09/09/2012 06:07:58 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (09/09/2012 06:07:58 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (09/09/2012 06:07:58 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (09/09/2012 06:07:58 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (09/09/2012 06:07:58 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (09/09/2012 06:07:58 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (09/09/2012 06:07:47 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (09/09/2012 06:07:47 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (09/09/2012 06:07:47 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (09/09/2012 06:07:36 AM) (Source: Service Control Manager) (User: )
Description: The SDLService service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (09/09/2012 11:00:23 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\Desktop-Documents\Desktop\esetsmartinstaller_enu.exe

Error: (09/09/2012 11:00:19 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\Desktop-Documents\Desktop\esetsmartinstaller_enu.exe

Error: (09/09/2012 11:00:19 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\Desktop-Documents\Desktop\esetsmartinstaller_enu.exe

Error: (09/09/2012 11:00:13 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\Desktop-Documents\Desktop\esetsmartinstaller_enu.exe

Error: (09/09/2012 06:07:35 AM) (Source: Application Error)(User: )
Description: SDLService.exe0.0.0.04b84d322SDLService.exe0.0.0.04b84d322c0000005000000000000176c8ec01cd8e72ef2975cbC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exeC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exe2d30b373-fa66-11e1-ae44-902b343a8d0a

Error: (09/09/2012 05:59:34 AM) (Source: Application Error)(User: )
Description: SDLService.exe0.0.0.04b84d322SDLService.exe0.0.0.04b84d322c0000005000000000000176c8f001cd8e71d0071cd4C:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exeC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exe0e6b6ea5-fa65-11e1-9992-902b343a8d0a

Error: (09/09/2012 05:39:55 AM) (Source: Application Error)(User: )
Description: SDLService.exe0.0.0.04b84d322SDLService.exe0.0.0.04b84d322c0000005000000000000176c8d801cd8e6f10d30833C:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exeC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exe4fc3bb91-fa62-11e1-9b17-902b343a8d0a

Error: (09/08/2012 06:59:05 AM) (Source: Application Error)(User: )
Description: SDLService.exe0.0.0.04b84d322SDLService.exe0.0.0.04b84d322c0000005000000000000176c8d401cd8db0f6005dedC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exeC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exe348f6942-f9a4-11e1-bd86-902b343a8d0a

Error: (09/08/2012 06:38:11 AM) (Source: Application Error)(User: )
Description: SDLService.exe0.0.0.04b84d322SDLService.exe0.0.0.04b84d322c0000005000000000000176c8ec01cd8dae0a83400bC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exeC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exe48ea9f1d-f9a1-11e1-bc2b-902b343a8d0a

Error: (09/08/2012 06:35:43 AM) (Source: Application Error)(User: )
Description: SDLService.exe0.0.0.04b84d322SDLService.exe0.0.0.04b84d322c0000005000000000000176c8fc01cd8dadb2133c55C:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exeC:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exef08e7188-f9a0-11e1-b494-902b343a8d0a


=========================== Installed Programs ============================

3DMark 11 (Version: 1.0.3)
3DMark Vantage (Version: 1.0.1.1)
AAC Decoder (Version: 7.1.0)
Acronis True Image Home 2012 (Version: 15.0.6154)
Actual Multiple Monitors 4.0 (Version: 4.0)
Adobe AIR (Version: 2.5.1.17730)
Adobe Bridge 1.0 (Version: 001.000.004)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 10 ActiveX (Version: 10.0.32.18)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.228)
Adobe Help Center 1.0 (Version: 001.000.000)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Shockwave Player 11.5 (Version: 11.5.7.609)
Adobe Stock Photos 1.0 (Version: 001.000.000)
AIM 7
Alien Swarm
AMD Catalyst Install Manager (Version: 3.0.868.0)
AOL Instant Messenger
Apple Mobile Device Support (Version: 2.5.2.2)
Apple Software Update (Version: 2.1.1.116)
ARMA 2
ARMA 2: Operation Arrowhead
Aspell English Dictionary-0.50-2
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 2.0.4.4)
Audacity 1.2.6
AutoHotkey 1.0.48.05 (Version: 1.0.48.05)
AutoUpdate (Version: 1.1)
Battlefield 3™ (Version: 1.0.0.0)
Battlefield: Bad Company™ 2 (Version: 1.0.0.0)
Battlelog Web Plugins (Version: 1.122.0)
Bloodline Champions Beta (Version: 0.8.2)
Bonjour (Version: 1.0.106)
Bulletstorm (Version: 1.0.0000.130)
BulletStorm (Version: 1.0.0001.130)
Camtasia Studio 6 (Version: 6.0.2)
CCleaner (Version: 2.35)
Chief Architect X1 (Version: 11.0.6.41)
Compatibility Pack for the 2007 Office system (Version: 12.0.6514.5001)
Crysis WARHEAD®
Crysis WARHEAD® (Version: 1.0)
Curse Client (Version: 4.0.1.104)
Data Lifeguard Diagnostic for Windows 1.21
DeadAIM (Version: 4.5.11)
Diablo II
Diablo III (Version: 1.0.3.10485)
DivX Codec (Version: 6.8.5)
DivX Converter (Version: 7.1.0)
DivX Player (Version: 7.2.0)
DivX Plus DirectShow Filters
DivX Version Checker (Version: 7.1.0.2)
DivX Web Player (Version: 1.5.0)
DivXLand Bitrate Calculator
Dolby Axon - 1.4.0.2 (Version: 1.4.0.2)
Download Updater (AOL LLC)
DraftDominator Version 10.0h Full
Dragon Age II (Version: 1.00)
Dragon Age: Origins (Version: 1.00)
Driver Sweeper 2.0.5
Dropbox (Version: 1.2.52)
eReg (Version: 1.20.138.34)
ESET NOD32 Antivirus (Version: 4.0.437.0)
ESN Sonar (Version: 0.70.0)
ESN Sonar (Version: 0.70.4)
EVEREST Ultimate Edition v5.50 (Version: 5.50)
EVGA OC Scanner X 2.0.1
FINAL FANTASY XIV (Version: 1.0.0000)
foobar2000 v0.9.6.8 (Version: 0.9.6.8)
FormatFactory 2.60 (Version: 2.60)
Framebuffer Crysis WARHEAD Benchmark Tool (Version: 1.2.9)
Fraps (remove only)
Futuremark SystemInfo (Version: 4.6.0)
Ghost Recon Online (NCSA-Live) (Version: 1.23.9297.2)
Gigabyte Raid Configurer (Version: 1.00.0001)
GmoteServer (Version: 2.0.2)
GNU Aspell 0.50-3
GTK+ Runtime 2.14.7 rev a (remove only)
Guild Wars 2
H.264 Decoder (Version: 1.1.0)
HandBrake 0.9.6 (Version: 0.9.6)
Heaven DX11 Benchmark version 3.0 (Version: 3.0)
Hero Editor V1.03
Heroes of Newerth (Version: 0.9.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 8.0.0.1351)
Intel® Network Connections 16.5.2.0 (Version: 16.5.2.0)
Intel® Rapid Storage Technology (Version: 11.0.0.1032)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 1.0.3.214)
iTunes (Version: 8.2.1.6)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 32 (Version: 6.0.320)
League of Legends (Version: 1.25.000)
Left 4 Dead 2
Legend of Grimrock
LJ-SecInstall (Version: 1.0.1)
Logitech SetPoint 6.32 (Version: 6.32.20)
Magicka - Demo
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Mass Effect 2 (Version: 1.00)
Media Player Classic - Home Cinema v1.5.2.3456 x64 (Version: 1.5.2.3456)
MediaInfo 0.7.20 (Version: 0.7.20)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Games for Windows - LIVE (Version: 3.3.24.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.2.3.0)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4763.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
MKV Splitter (Version: 1.0.1)
MotioninJoy ds3 driver version 0.6.0003 (Version: 0.5.0001)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
Mp3tag v2.45 (Version: v2.45)
MSI Afterburner 2.2.0 (Version: 2.2.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NCsoft Launcher (Version: 1.5.4.2)
NEC Electronics USB 3.0 Host Controller Driver (Version: 1.0.18.0)
NVIDIA Control Panel 306.02 (Version: 306.02)
NVIDIA Graphics Driver 306.02 (Version: 306.02)
NVIDIA Install Application (Version: 2.1002.82.513)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Supersonic Sled demo
Octoshape Streaming Services
ON_OFF Charge B10.0409.1 (Version: 1.00.0001)
Origin (Version: 8.5.0.4550)
PDF Settings CS5 (Version: 10.0)
Pidgin-Musictracker plugin (remove only)
Pidgin (Version: 2.10.3)
PokerStars.net
PolarClock3 Screen Saver
Prototype™ (Version: 1.0)
PunkBuster Services (Version: 0.991)
QuickTime (Version: 7.62.14.0)
Rainmeter (Version: 2.3 beta r1334)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.17.304.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6069)
Rosetta Stone Version 3 (Version: 3.3.5.2)
Sam and Max - Season Two - Sam and Max Episode 201 - Ice Station Santa (Version: 1.0.0.1)
Sam and Max - Season Two - Sam and Max Episode 202 - Moai Better Blues (Version: 1.0.0.7)
Sam and Max - Season Two - Sam and Max Episode 203 - Night of the Raving Dead (Version: 1.0.2.8)
Sam and Max - Season Two - Sam and Max Episode 204 - Chariots of the Dogs (Version: 1.0.1.9)
Sam and Max - Season Two - Sam and Max Episode 205 - What's New, Beelzebub? (Version: 1.0.0.9)
Six Updater (Version: 2.09.7001)
Skype™ 5.9 (Version: 5.9.114)
Smart Dual Lan (Version: 1.00.0000)
Source SDK Base
SpeedFan (remove only)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
SSDlife Free (Version: 2.2.42)
StarCraft II (Version: 1.4.2.20141)
Steam (Version: 1.0.0.0)
Stone Giant 1.0
System Requirements Lab (Version: 4.1.13.0)
System Requirements Lab CYRI (Version: 4.4.26.0)
The Witcher 2 (Version: 1.00.0000)
Tunngle beta
Unigine Heaven Benchmark v2.0 (Version: 2.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0)
Vegas Pro 9.0 (Version: 9.0.772)
Ventrilo Client for Windows x64 (Version: 3.0.5.0)
VLC media player 1.0.1 (Version: 1.0.1)
Vuze (Version: 4.5)
WIDCOMM Bluetooth Software (Version: 6.5.1.2700)
Windows 7 USB/DVD Download Tool (Version: 1.0.30)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows XP Mode (Version: 1.2.7235.0)
WinRAR archiver
World of Warcraft (Version: 4.0.3.13329)
x264vfw - H.264/MPEG-4 AVC codec (remove only)
Xvid 1.2.2 final uninstall (Version: 1.2)

========================= Memory info: ===================================

Percentage of memory in use: 32%
Total physical RAM: 8153.77 MB
Available physical RAM: 5464.46 MB
Total Pagefile: 16305.74 MB
Available Pagefile: 13933.72 MB
Total Virtual: 4095.88 MB
Available Virtual: 3917.17 MB

========================= Partitions: =====================================

1 Drive c: (Solid) (Fixed) (Total:119.13 GB) (Free:41.64 GB) NTFS
2 Drive d: (Dual boot) (Fixed) (Total:97.66 GB) (Free:78.67 GB) NTFS
3 Drive e: (Awesome) (Fixed) (Total:833.85 GB) (Free:435.46 GB) NTFS
4 Drive f: (Backups) (Fixed) (Total:298.09 GB) (Free:49.33 GB) NTFS

========================= Users: ========================================

User accounts for \\STEPHEN

Administrator Guest Mcx1-STEPHEN
Steve


**** End of log ****

Farbar Service Scanner Version: 06-08-2012
Ran by Steve (administrator) on 10-09-2012 at 07:01:20
Running from "E:\Desktop-Documents\Desktop"
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

# AdwCleaner v2.001 - Logfile created 09/10/2012 at 07:03:44
# Updated 09/09/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Steve - STEPHEN
# Boot Mode : Normal
# Running from : E:\Desktop-Documents\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.xpt
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\Software\Viewpoint
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default [Profil par défaut]
File : C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\2g9fw3mo.default\prefs.js

C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\2g9fw3mo.default\user.js ... Deleted !

Deleted : user_pref("gm-notifier.ui.counter.showInbox", true);

Profile name : monitor2
File : C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\7sxdsg9u.monitor2\prefs.js

C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\7sxdsg9u.monitor2\user.js ... Deleted !

Deleted : user_pref("gm-notifier.ui.counter.showInbox", true);

*************************

AdwCleaner[S1].txt - [3322 octets] - [10/09/2012 07:03:44]

########## EOF - C:\AdwCleaner[S1].txt - [3382 octets] ##########

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 AM

Posted 10 September 2012 - 06:45 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#7 Celeras

Celeras
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 10 September 2012 - 07:12 AM

Rkill 2.3.10 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/10/2012 08:09:03 AM in x64 mode.
Windows Version: Windows 7 Ultimate Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

* Windows Firewall Disabled

[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/10/2012 08:09:03 AM
Execution time: 0 hours(s), 0 minute(s), and 0 seconds(s)

"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Bluetooth.lnk" "Bluetooth Tray Application" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\bttray.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Acronis True Image Shell Extensions" "Acronis True Image Shell Extensions" "Acronis" "c:\program files (x86)\acronis\trueimagehome\tishell64.dll"
+ "ESET Smart Security - Context Menu Shell Extension" "Shell Extension" "ESET" "c:\program files\eset\eset nod32 antivirus\shellext.dll"
+ "VersionsPageShellExt" "Versions Page" "Acronis" "c:\program files (x86)\acronis\trueimagehome\x64\versions_page.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Acronis True Image Shell Context Menu Extension" "Acronis True Image Shell Extensions" "Acronis" "c:\program files (x86)\acronis\trueimagehome\tishell.dll"
+ "ESET Smart Security - Context Menu Shell Extension" "Shell Extension" "ESET" "c:\program files\eset\eset nod32 antivirus\x86\shellext.dll"
+ "VersionsPageShellExt" "Versions Page" "Acronis" "c:\program files (x86)\acronis\trueimagehome\versions_page.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" ""
+ "VersionsPageShellExt Class" "Versions Page" "Acronis" "c:\program files (x86)\acronis\trueimagehome\x64\versions_page.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\PropertySheetHandlers" "" "" ""
+ "VersionsPageShellExt Class" "Versions Page" "Acronis" "c:\program files (x86)\acronis\trueimagehome\versions_page.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "Monitor" "BTNCopy Module" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btncopy.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Actual Multiple Monitors" "Actual Multiple Monitors Shell Extension Library" "Actual Tools" "c:\program files (x86)\actual multiple monitors\actualmultiplemonitorsshellextension64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Actual Multiple Monitors" "Actual Multiple Monitors Shell Extension Library" "Actual Tools" "c:\program files (x86)\actual multiple monitors\actualmultiplemonitorsshellextension.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Acronis True Image Shell Extensions" "Acronis True Image Shell Extensions" "Acronis" "c:\program files (x86)\acronis\trueimagehome\tishell64.dll"
+ "ESET Smart Security - Context Menu Shell Extension" "Shell Extension" "ESET" "c:\program files\eset\eset nod32 antivirus\shellext.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "VersionsPageShellExt" "Versions Page" "Acronis" "c:\program files (x86)\acronis\trueimagehome\x64\versions_page.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Acronis True Image Shell Context Menu Extension" "Acronis True Image Shell Extensions" "Acronis" "c:\program files (x86)\acronis\trueimagehome\tishell.dll"
+ "ESET Smart Security - Context Menu Shell Extension" "Shell Extension" "ESET" "c:\program files\eset\eset nod32 antivirus\x86\shellext.dll"
+ "VersionsPageShellExt" "Versions Page" "Acronis" "c:\program files (x86)\acronis\trueimagehome\versions_page.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Folder\ShellEx\PropertySheetHandlers" "" "" ""
+ "VersionsPageShellExt Class" "Versions Page" "Acronis" "c:\program files (x86)\acronis\trueimagehome\x64\versions_page.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\PropertySheetHandlers" "" "" ""
+ "VersionsPageShellExt Class" "Versions Page" "Acronis" "c:\program files (x86)\acronis\trueimagehome\versions_page.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Acronis True Image Shell Extensions" "Acronis True Image Shell Extensions" "Acronis" "c:\program files (x86)\acronis\trueimagehome\tishell64.dll"
+ "Acronis True Image Shell Extensions" "Acronis True Image Shell Extensions" "Acronis" "c:\program files (x86)\acronis\trueimagehome\tishell64.dll"
+ "Acronis True Image Shell Extensions" "Acronis True Image Shell Extensions" "Acronis" "c:\program files (x86)\acronis\trueimagehome\tishell64.dll"
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\steve\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "PokerStars.net" "PokerStars Update" "PokerStars" "c:\program files (x86)\pokerstars.net\pokerstarsupdate.exe"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.2 r202" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\AutoKMS" "" "" "File not found: C:\Windows\AutoKMS.exe"
+ "\Express Files Updater" "" "" "File not found: C:\Program Files (x86)\ExpressFiles\EFupdater.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\MSIAfterburner" "MSIAfterburner" "" "c:\program files (x86)\msi afterburner\msiafterburner.exe"
+ "\{5FADF83A-DDBC-410A-A338-15306F6274A9}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AcrSch2Svc" "Task scheduling for Acronis applications." "Acronis" "c:\program files (x86)\common files\acronis\schedule2\schedul2.exe"
+ "Adobe LM Service" "AdobeLM Service" "Adobe Systems" "c:\program files (x86)\common files\adobe systems shared\service\adobelmsvc.exe"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "afcdpsrv" "Provides nonstop backup for partitions of the computer." "Acronis" "c:\program files (x86)\common files\acronis\cdp\afcdpsrv.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\bin\applemobiledeviceservice.exe"
+ "AppleChargerSrv" "Apple mobile devices charging service" "" "c:\windows\system32\applechargersrv.exe"
+ "Bonjour Service" "Bonjour allows applications like iTunes and Safari to advertise and discover services on the local network. Having Bonjour running enables you to connect to hardware devices like Apple TV and software services like iTunes sharing and AirTunes. If you disable Bonjour, any network service that explicitly depends on it will fail to start." "Apple Inc." "c:\program files (x86)\bonjour\mdnsresponder.exe"
+ "btwdins" "Handles installation and removal of Bluetooth devices." "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwdins.exe"
+ "DAUpdaterSvc" "Digital management system for Dragon Age: Origins downloadable content." "BioWare" "e:\games\dragon age\bin_ship\daupdatersvc.service.exe"
+ "EhttpSrv" "ESET HTTP Server" "ESET" "c:\program files\eset\eset nod32 antivirus\ehttpsrv.exe"
+ "ekrn" "ESET Service" "ESET" "c:\program files\eset\eset nod32 antivirus\x86\ekrn.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "Futuremark SystemInfo Service" "Futuremark SystemInfo Service" "Futuremark Corporation" "c:\program files (x86)\common files\futuremark shared\futuremark systeminfo\fmsisvc.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "ICCS" "Intel® Integrated Clock Controller Service - Intel® ICCS" "Intel Corporation" "c:\program files (x86)\intel\intel® integrated clock controller service\iccproxy.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "Intel® PROSet Monitoring Service" "The Intel® PROSet Monitoring Service actively monitors changes to the system and updates affected network devices to keep them running in optimal condition. Stopping this service may negatively affect the performance of the network devices on the system." "Intel Corporation" "c:\windows\system32\iprosetmonitor.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files (x86)\ipod\bin\ipodservice.exe"
+ "JMB36X" "" "" "c:\windows\syswow64\xsrvsetup.exe"
+ "LBTServ" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtserv.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\groove.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "npggsvc" "nProtect GameGuard Service" "INCA Internet Co., Ltd." "c:\windows\syswow64\gamemon.des"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "PnkBstrA" "PunkBuster Service Component [v1036] http://www.evenbalance.com" "" "c:\windows\syswow64\pnkbstra.exe"
+ "SDLService" "" "" "c:\program files (x86)\realtek\smart dual lan\sdlservice.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "SwitchBoard" "Adobe SwitchBoard" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\switchboard\switchboard.exe"
+ "syncagentsrv" "Acronis Sync Agent Service" "Acronis" "c:\program files (x86)\common files\acronis\syncagent\syncagentsrv.exe"
+ "TunngleService" "Tunngle Service" "Tunngle.net GmbH" "c:\program files (x86)\tunngle\tnglctrl.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "afcdp" "Acronis File Level CDP Helper" "Acronis" "c:\windows\system32\drivers\afcdp.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "ALSysIO" "" "" "File not found: C:\Users\Steve\AppData\Local\Temp\ALSysIO64.sys"
+ "amd_sata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amd_sata.sys"
+ "amd_xata" "Stor Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amd_xata.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "androidusb" "ADB Interface" "Motorola" "c:\windows\system32\drivers\motoandroid.sys"
+ "AppleCharger" "Apple mobile devices charging program" "" "c:\windows\system32\drivers\applecharger.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "btaudio" "" "" "File not found: system32\drivers\btaudio.sys"
+ "BTDriver" "" "" "File not found: system32\DRIVERS\btport.sys"
+ "btusbflt" "Widcomm Bluetooth USB Filter for Windows XP" "Broadcom Corporation." "c:\windows\system32\drivers\btusbflt.sys"
+ "btwampfl" "Broadcom Bluetooth USB AMP Filter for Windows Vista" "Broadcom Corporation." "c:\windows\system32\drivers\btwampfl.sys"
+ "btwaudio" "Bluetooth Audio Device" "Broadcom Corporation." "c:\windows\system32\drivers\btwaudio.sys"
+ "btwavdt" "Broadcom Bluetooth AVDT Service" "Broadcom Corporation." "c:\windows\system32\drivers\btwavdt.sys"
+ "BTWDNDIS" "" "" "File not found: system32\DRIVERS\btwdndis.sys"
+ "btwhid" "" "" "File not found: system32\DRIVERS\btwhid.sys"
+ "btwl2cap" "Broadcom Bluetooth L2CAP Service" "Broadcom Corporation." "c:\windows\system32\drivers\btwl2cap.sys"
+ "btwrchid" "Bluetooth Remote Control HID Minidriver" "Broadcom Corporation." "c:\windows\system32\drivers\btwrchid.sys"
+ "BTWUSB" "Driver for Bluetooth USB Devices" "Broadcom Corporation." "c:\windows\system32\drivers\btwusb.sys"
+ "catchme" "" "" "File not found: C:\ComboFix\catchme.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "cpuz130" "" "" "File not found: C:\Users\Steve\AppData\Local\Temp\cpuz130\cpuz_x64.sys"
+ "dump_wmimmc" "" "" "File not found: E:\Games\NCSoft\Aion\bin32\GameGuard\dump_wmimmc.sys"
+ "e1cexpress" "Intel® Gigabit Adapter NDIS 6.x driver" "Intel Corporation" "c:\windows\system32\drivers\e1c62x64.sys"
+ "EagleX64" "" "" "File not found: C:\Windows\system32\drivers\EagleX64.sys"
+ "eamon" "Eset file on-access scanner" "ESET" "c:\windows\system32\drivers\eamon.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "ehdrv" "Eset Helper driver" "ESET" "c:\windows\system32\drivers\ehdrv.sys"
+ "ElRawDisk" "RawDisk Driver. Allows write access to files and raw disk sectors for user mode applications in Windows 2000, XP, 2003, Vista, 2008." "EldoS Corporation" "c:\windows\system32\drivers\dddskx64.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "ENTECH64" "EnTech driver for Windows XP 64" "EnTech Taiwan" "c:\windows\system32\drivers\entech64.sys"
+ "epfwwfpr" "EPFW Filter Driver" "ESET" "c:\windows\system32\drivers\epfwwfpr.sys"
+ "fltsrv" "Acronis Storage Filter Management Driver" "Acronis" "c:\windows\system32\drivers\fltsrv.sys"
+ "gdrv" "GIGABYTE Tools" "Windows ® Server 2003 DDK provider" "c:\windows\gdrv.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "GVTDrv64" "" "" "c:\windows\gvtdrv64.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "iusb3hcs" "Intel® USB 3.0 Host Controller Switch Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3hcs.sys"
+ "iusb3hub" "Intel® USB 3.0 Hub Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3hub.sys"
+ "iusb3xhc" "Intel® USB 3.0 eXtensible Host Controller Driver" "Intel Corporation" "c:\windows\system32\drivers\iusb3xhc.sys"
+ "JRAID" "JMicron JMB36X RAID Driver" "JMicron Technology Corp." "c:\windows\system32\drivers\jraid.sys"
+ "L1C" "Atheros Ar81xx series PCI-E Gigabit Ethernet Controller" "Atheros Communications, Inc." "c:\windows\system32\drivers\l1c62x64.sys"
+ "LHidFilt" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhidfilt.sys"
+ "LMouFilt" "Logitech Mouse Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lmoufilt.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "MotDev" "Motorola USB Composite/Flash Driver" "Motorola Inc" "c:\windows\system32\drivers\motodrv.sys"
+ "MotioninJoyUSBFilter" "Filter Driver for the DS3 USB" "MotioninJoy" "c:\windows\system32\drivers\mijufilt.sys"
+ "MotioninJoyXFilter" "MotioninJoy DS3 driver" "MotioninJoy" "c:\windows\system32\drivers\mijxfilt.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NPPTNT2" "" "" "File not found: C:\Windows\system32\npptNT2.sys"
+ "nusb3hub" "USB 3.0 Hub Driver" "NEC Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "NEC Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys"
+ "NVHDA" "" "" "File not found: system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 306.02 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RTCore64" "" "" "c:\program files (x86)\msi afterburner\rtcore64.sys"
+ "rtkio" "Realtek IODriver" "Windows ® Codename Longhorn DDK provider" "c:\program files (x86)\realtek\smart dual lan\rtkio.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "Serial" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\serial.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "snapman" "Acronis Snapshot API" "Acronis" "c:\windows\system32\drivers\snapman.sys"
+ "speedfan" "SpeedFan x64 Driver" "Almico Software" "c:\windows\syswow64\speedfan.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "Synth3dVsc" "" "" "File not found: System32\drivers\synth3dvsc.sys"
+ "tap0901t" "TAP-Win32 Virtual Network Driver" "Tunngle.net" "c:\windows\system32\drivers\tap0901t.sys"
+ "tdrpman" "Acronis Try&Decide Volume Filter Driver" "Acronis" "c:\windows\system32\drivers\tdrpman.sys"
+ "timounter" "Acronis Backup Archive Explorer" "Acronis" "c:\windows\system32\drivers\timntr.sys"
+ "tsusbhub" "@%SystemRoot%\system32\drivers\tsusbhub.sys,-2" "" "File not found: system32\drivers\tsusbhub.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "VGPU" "" "" "File not found: System32\drivers\rdvgkmd.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vididr" "Virtual Disk Driver Service" "Acronis" "c:\windows\system32\drivers\vididr.sys"
+ "vidsflt61" "Acronis Virtual Disk Storage Filter" "Acronis" "c:\windows\system32\drivers\vsflt61.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.ac3acm" "AC-3 ACM Codec" "fccHandler" "c:\windows\system32\ac3acm.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.lameacm" "" "" "File not found: LameACM.acm"
+ "VIDC.FPS1" "Fraps" "Beepa P/L" "c:\windows\system32\frapsv64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.ac3acm" "AC-3 ACM Codec" "fccHandler" "c:\windows\syswow64\ac3acm.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "msacm.lameacm" "Lame MP3 codec engine" "http://www.mp3dev.org/" "c:\windows\syswow64\lameacm.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
+ "VIDC.FPS1" "Fraps" "Beepa P/L" "c:\windows\syswow64\frapsvid.dll"
+ "VIDC.RTV1" "" "" "c:\windows\syswow64\rtvcvfw32.dll"
+ "vidc.tscc" "TechSmith Screen Capture Codec" "TechSmith Corporation" "c:\windows\syswow64\tsccvid.dll"
+ "vidc.x264" "" "" "c:\windows\syswow64\x264vfw.dll"
+ "vidc.XVID" "" "" "c:\windows\syswow64\xvidvfw.dll"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Sony Amplitude Modulation" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Chorus" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Distortion" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Dither" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sftrkfx1.dll"
+ "Sony ExpressFX Amplitude Modulation" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Audio Restoration" "Sony ExpressFX Audio Restoration" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\xpvinyl.dll"
+ "Sony ExpressFX Chorus" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Delay" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Distortion" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Dynamics" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Equalization" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Flange/Wah-Wah" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Graphic EQ" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Noise Gate" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Reverb" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Stutter" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Time Stretch" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony Flange/Wah-wah" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Gapper/Snipper" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Graphic Dynamics" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Graphic EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Multi-Band Dynamics" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Multi-Tap Delay" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Noise Gate" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Pan" "Sound Forge Pan and Volume 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sffrgpnv.dll"
+ "Sony Paragraphic EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Parametric EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Pitch Shift" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Resonant Filter" "Sony Resonant Filter" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfresfilter.dll"
+ "Sony Reverb" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Simple Delay" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Smooth/Enhance" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Time Stretch" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Track Compressor" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sftrkfx1.dll"
+ "Sony Track EQ" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sftrkfx1.dll"
+ "Sony Track Noise Gate" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sftrkfx1.dll"
+ "Sony Vibrato" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Volume" "Sound Forge Pan and Volume 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sffrgpnv.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "DivX AAC Decoder" "AAC Audio Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter" "DivX® Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx codec\divxdec.ax"
+ "DivX Demux" "DivX® Media Filter" "DivXNetworks" "c:\program files (x86)\divx\divx codec\divxmedia.ax"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\divxdech264.ax"
+ "DivX MKV Demux" "DivX MKV Splitter" "" "c:\program files (x86)\divx\divx plus directshow filters\dmfsource.ax"
+ "DivX Subtitle Decoder" "DivX® Media Filter" "DivXNetworks" "c:\program files (x86)\divx\divx codec\divxmedia.ax"
+ "LAME Audio Encoder" "LAME Audio Encoder" "" "c:\program files (x86)\techsmith\camtasia studio 6\lame_dshow.ax"
+ "Sony Wave Hammer Surround" "Sony Wave Hammer 5.1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\mchammer.dll"
+ "TechSmith Camera Adjust" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith File Source" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Flv Key Frame Setter" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Force Color32A" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith ForceColor 24" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith ForceColor 32" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith ForceColor 555" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith ForceColor 565" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith ForceColor 8" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Frame Rate Tuner" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Frame Skip Filter" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Image Source" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Overlay" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Perf Skip Filter" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith PushBitmap Source" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith PushBitmap Source" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith PushVMR Source" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "Techsmith Quicktime MOV Source" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Simple PIP" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith SimplePushBitmap Source" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Splitter Filter" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "Techsmith Structured Storage Writer" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith SWF Writer" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Time Adjust" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Title Source" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Wave Buffer" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith Wave Dest" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith WMFSDK Writer" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "TechSmith ZoomPIP Filter" "Camtasia Studio DirectShow Filters" "TechSmith Corporation" "c:\program files (x86)\techsmith\camtasia studio 6\camtasiafilters.dll"
+ "Xvid MPEG-4 Video Decoder" "" "" "c:\windows\syswow64\xvid.ax"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "BtwCredentialProvider" "BtwCP DLL" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwcp.dll"
+ "BtwProximityCredentialProvider" "BtwProximityCP DLL" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwproximitycp.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "LBTWlgn" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtwlgn.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages" "" "" ""
+ "C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll" "BtwProximityCP DLL" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwproximitycp.dll"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 AM

Posted 10 September 2012 - 07:22 AM

Do you still have redirects? which browser?

#9 Celeras

Celeras
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 10 September 2012 - 07:40 AM

Yes I am still getting redirected, usually on the first or second click of a new search. Firefox 15.0.1

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 AM

Posted 10 September 2012 - 07:48 AM

Uninstall firefox

Makesure to checkmark Remove my personal data option

Reinstall firefox

Let me know if you still have redirects

#11 Celeras

Celeras
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 10 September 2012 - 08:16 AM

I will be supremely annoyed if reinstalling firefox is the fix, after this headache!

I have uninstalled and reinstalled, backed up only bookmarks (had to be done!) and deleted all other data. Thus far I have not noticed a redirect, but it doesnt happen every single time. I will reply again this evening after having more time to play around with it, I'm off to work.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 AM

Posted 10 September 2012 - 09:04 AM

Ok,browse for a day and let me know if you still have redirects.We will wrap up then

#13 Celeras

Celeras
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 11 September 2012 - 07:43 AM

I cant believe reinstalling firefox worked, how embarrassing.

Before you close the thread, any idea how this could have happened with no traces of malware on the system? Now that I think about it, it seemed to coincide with the 15.0.1 upgrade. Very strange.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 AM

Posted 11 September 2012 - 07:51 AM

Redirect could have occured due to a bad addon It is difficult to find out the extension or addon that is causing the redirects.

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your flash player

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

Edited by narenxp, 11 September 2012 - 07:52 AM.


#15 Celeras

Celeras
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:07:37 AM

Posted 12 September 2012 - 12:29 AM

Done, thanks :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users