Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cannot Start Windows Firewall, Defender/can't share files on network...


  • Please log in to reply
20 replies to this topic

#1 Akunin773

Akunin773

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 12 September 2012 - 09:54 AM

I am running Windows Vista 64 bit. I had a google redirect problem, as well as new tabs open up on their own, while using Chrome, Firefox and IE. So I searched the internet for a fix. I ran Spybot S&D, TDSSKiller, and Ad Aware. That seems to have fixed the my previous problems (except Firefox crashed strangely while I was typing this), but when I went to adjust my Windows Firewall and Defender settings, it says "Due to an unidentified problem, Windows cannot display Windows Firewall settings" when I try to turn on Firewall, and "Application failed to initialize: 0x80070006. The handle is invalid." when I double click on Windows Defender. It also says "Windows Update cannot currently check for updates, because the service is not running. You may need to restart your computer." when I click the Check for updates button in Windows Update.

It also won't let me share files on my network when I try to do so in Windows Media Player "Windows Media sharing has been turned off because a required Windows setting or component has changed." I don't know if I did this while trying to fix the google redirect problem or if it was there previously, but I am here asking for help with this. Here is my FSS log if that helps:


Farbar Service Scanner Version: 06-08-2012
Ran by Born (administrator) on 12-09-2012 at 09:22:23
Running from "C:\Users\Born\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
IE proxy is enabled.



Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-15 13:34] - [2012-01-03 09:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-11 13:45] - [2012-03-30 07:45] - 1423744 ____A (Microsoft Corporation) 46D448E9117464E4D3BBF36D7E3FA48E

C:\Windows\System32\dnsrslvr.dll
[2011-10-06 08:48] - [2011-03-02 11:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2011-11-01 11:08] - [2009-04-11 00:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2011-11-01 11:08] - [2009-04-11 00:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2011-11-01 11:08] - [2009-04-11 00:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2012-07-11 04:06] - [2012-04-23 11:25] - 0174592 ____A (Microsoft Corporation) 62740B9D2A137E8CED41A9E4239A7A31

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:01 AM

Posted 12 September 2012 - 11:20 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 14 September 2012 - 08:08 PM

Here is the TDSSkiller log:

22:59:28.0386 5688 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:59:28.0891 5688 ============================================================
22:59:28.0891 5688 Current date / time: 2012/09/12 22:59:28.0891
22:59:28.0891 5688 SystemInfo:
22:59:28.0891 5688
22:59:28.0891 5688 OS Version: 6.0.6002 ServicePack: 2.0
22:59:28.0891 5688 Product type: Workstation
22:59:28.0891 5688 ComputerName: BORN-PC
22:59:28.0891 5688 UserName: Born
22:59:28.0891 5688 Windows directory: C:\Windows
22:59:28.0891 5688 System windows directory: C:\Windows
22:59:28.0891 5688 Running under WOW64
22:59:28.0891 5688 Processor architecture: Intel x64
22:59:28.0891 5688 Number of processors: 8
22:59:28.0891 5688 Page size: 0x1000
22:59:28.0891 5688 Boot type: Normal boot
22:59:28.0891 5688 ============================================================
22:59:29.0571 5688 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:59:29.0590 5688 Drive \Device\Harddisk6\DR6 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:59:29.0604 5688 ============================================================
22:59:29.0604 5688 \Device\Harddisk0\DR0:
22:59:29.0604 5688 MBR partitions:
22:59:29.0604 5688 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
22:59:29.0604 5688 \Device\Harddisk6\DR6:
22:59:29.0604 5688 MBR partitions:
22:59:29.0604 5688 \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74706D70
22:59:29.0604 5688 ============================================================
22:59:29.0627 5688 C: <-> \Device\Harddisk0\DR0\Partition1
22:59:29.0729 5688 K: <-> \Device\Harddisk6\DR6\Partition1
22:59:29.0729 5688 ============================================================
22:59:29.0729 5688 Initialize success
22:59:29.0729 5688 ============================================================
23:00:48.0865 0448 ============================================================
23:00:48.0865 0448 Scan started
23:00:48.0865 0448 Mode: Manual; TDLFS;
23:00:48.0865 0448 ============================================================
23:00:49.0152 0448 ================ Scan system memory ========================
23:00:49.0152 0448 System memory - ok
23:00:49.0152 0448 ================ Scan services =============================
23:00:49.0273 0448 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
23:00:49.0274 0448 ACPI - ok
23:00:49.0356 0448 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
23:00:49.0361 0448 Ad-Aware Service - ok
23:00:49.0421 0448 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:00:49.0422 0448 AdobeFlashPlayerUpdateSvc - ok
23:00:49.0451 0448 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:00:49.0453 0448 adp94xx - ok
23:00:49.0483 0448 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:00:49.0485 0448 adpahci - ok
23:00:49.0498 0448 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
23:00:49.0499 0448 adpu160m - ok
23:00:49.0515 0448 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:00:49.0517 0448 adpu320 - ok
23:00:49.0539 0448 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:00:49.0540 0448 AeLookupSvc - ok
23:00:49.0576 0448 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
23:00:49.0583 0448 AFD - ok
23:00:49.0643 0448 [ 385471F8147E1BD6A08C031E3AAD3910 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
23:00:49.0648 0448 AgereSoftModem - ok
23:00:49.0671 0448 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:00:49.0672 0448 agp440 - ok
23:00:49.0699 0448 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
23:00:49.0699 0448 aic78xx - ok
23:00:49.0716 0448 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
23:00:49.0716 0448 ALG - ok
23:00:49.0722 0448 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
23:00:49.0723 0448 aliide - ok
23:00:49.0792 0448 ALSysIO - ok
23:00:49.0813 0448 [ 20C8A3E435A47F0408A1EA674AFA6194 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:00:49.0814 0448 AMD External Events Utility - ok
23:00:49.0823 0448 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
23:00:49.0823 0448 amdide - ok
23:00:49.0839 0448 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:00:49.0839 0448 AmdK8 - ok
23:00:50.0012 0448 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:00:50.0057 0448 amdkmdag - ok
23:00:50.0080 0448 [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
23:00:50.0083 0448 amdkmdap - ok
23:00:50.0098 0448 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
23:00:50.0098 0448 Appinfo - ok
23:00:50.0117 0448 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
23:00:50.0117 0448 arc - ok
23:00:50.0129 0448 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:00:50.0129 0448 arcsas - ok
23:00:50.0195 0448 [ F6BDA026E4157DC4E321CA391E9D9BC6 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
23:00:50.0197 0448 AsIO - ok
23:00:50.0274 0448 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:00:50.0274 0448 aspnet_state - ok
23:00:50.0294 0448 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:00:50.0295 0448 AsyncMac - ok
23:00:50.0305 0448 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
23:00:50.0306 0448 atapi - ok
23:00:50.0321 0448 [ 77053BA9ACCFA83458C0643BD55F69BF ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys
23:00:50.0322 0448 AthBTPort - ok
23:00:50.0356 0448 [ EA7DA53EA16417278E910EC8F2808508 ] ATHDFU C:\Windows\system32\Drivers\AthDfu.sys
23:00:50.0356 0448 ATHDFU - ok
23:00:50.0415 0448 [ 2E2B2FEFADA21C49E594A8A989695446 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
23:00:50.0415 0448 AtherosSvc - ok
23:00:50.0586 0448 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:00:50.0632 0448 atikmdag - ok
23:00:50.0665 0448 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:00:50.0667 0448 AudioEndpointBuilder - ok
23:00:50.0673 0448 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:00:50.0675 0448 AudioSrv - ok
23:00:50.0688 0448 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
23:00:50.0689 0448 blbdrive - ok
23:00:50.0709 0448 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:00:50.0710 0448 bowser - ok
23:00:50.0727 0448 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
23:00:50.0728 0448 BrFiltLo - ok
23:00:50.0744 0448 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
23:00:50.0744 0448 BrFiltUp - ok
23:00:50.0767 0448 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
23:00:50.0768 0448 Browser - ok
23:00:50.0798 0448 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
23:00:50.0798 0448 Brserid - ok
23:00:50.0813 0448 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
23:00:50.0814 0448 BrSerWdm - ok
23:00:50.0825 0448 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
23:00:50.0825 0448 BrUsbMdm - ok
23:00:50.0830 0448 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
23:00:50.0830 0448 BrUsbSer - ok
23:00:50.0860 0448 [ D826F7582468F0D8E01F4E6ED2EB9432 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys
23:00:50.0862 0448 BTATH_A2DP - ok
23:00:50.0887 0448 [ FF40D413227C059588D132EB704C570C ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys
23:00:50.0887 0448 BTATH_BUS - ok
23:00:50.0904 0448 [ BCBC0D13BF4DAB5CC72859142546E28F ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys
23:00:50.0905 0448 BTATH_HCRP - ok
23:00:50.0914 0448 [ B92B35974E7430143F13339F51BA6CA4 ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys
23:00:50.0915 0448 BTATH_LWFLT - ok
23:00:50.0933 0448 [ E1C1F7631053D8F5C2B380D4DF230A38 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys
23:00:50.0934 0448 BTATH_RCP - ok
23:00:50.0965 0448 [ 6F8E5F1FE219839B014B6A225E316F36 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
23:00:50.0966 0448 BtFilter - ok
23:00:50.0976 0448 [ 09F926A0D9C0BAFD8417A4307D2ED13C ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
23:00:50.0977 0448 BthEnum - ok
23:00:50.0990 0448 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:00:50.0990 0448 BTHMODEM - ok
23:00:51.0002 0448 [ BEFC5311736B475AC5B60C14FF7C775A ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:00:51.0002 0448 BthPan - ok
23:00:51.0026 0448 [ E1466882252FF51EDDE48C3F7EDA2591 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
23:00:51.0029 0448 BTHPORT - ok
23:00:51.0039 0448 [ 22E65FFD640F16968F855F5B3528D366 ] BthServ C:\Windows\System32\bthserv.dll
23:00:51.0039 0448 BthServ - ok
23:00:51.0047 0448 [ 970192CDED77A128E7E30722E5EE6B9C ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
23:00:51.0047 0448 BTHUSB - ok
23:00:51.0050 0448 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:00:51.0051 0448 cdfs - ok
23:00:51.0068 0448 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:00:51.0069 0448 cdrom - ok
23:00:51.0086 0448 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
23:00:51.0087 0448 CertPropSvc - ok
23:00:51.0097 0448 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:00:51.0097 0448 circlass - ok
23:00:51.0122 0448 [ 125327DF629324FAD78D9A95CCD0F425 ] CLBStor C:\Windows\system32\DRIVERS\CLBStor.sys
23:00:51.0123 0448 CLBStor - ok
23:00:51.0138 0448 [ 9C0CD75FEA24E7E0E835EEE7F14406F7 ] CLBUDF C:\Windows\system32\drivers\CLBUDF.sys
23:00:51.0148 0448 CLBUDF - ok
23:00:51.0171 0448 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
23:00:51.0172 0448 CLFS - ok
23:00:51.0198 0448 [ 4642B5A3E0D2E61D08163DE95FC5B949 ] CLKMSVC10_9EC60124 C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
23:00:51.0199 0448 CLKMSVC10_9EC60124 - ok
23:00:51.0244 0448 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:00:51.0248 0448 clr_optimization_v2.0.50727_32 - ok
23:00:51.0293 0448 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:00:51.0294 0448 clr_optimization_v2.0.50727_64 - ok
23:00:51.0379 0448 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:00:51.0380 0448 clr_optimization_v4.0.30319_32 - ok
23:00:51.0392 0448 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:00:51.0393 0448 clr_optimization_v4.0.30319_64 - ok
23:00:51.0414 0448 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:00:51.0414 0448 cmdide - ok
23:00:51.0433 0448 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
23:00:51.0434 0448 Compbatt - ok
23:00:51.0464 0448 [ 403433D758C2D8908937265C1FB34F34 ] CompFilter64 C:\Windows\system32\DRIVERS\lvbflt64.sys
23:00:51.0464 0448 CompFilter64 - ok
23:00:51.0466 0448 COMSysApp - ok
23:00:51.0492 0448 [ C08063F052308B6F5882482615387F30 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
23:00:51.0493 0448 cpuz135 - ok
23:00:51.0495 0448 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:00:51.0496 0448 crcdisk - ok
23:00:51.0511 0448 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
23:00:51.0511 0448 Creative ALchemy AL6 Licensing Service - ok
23:00:51.0538 0448 [ 62740B9D2A137E8CED41A9E4239A7A31 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:00:51.0540 0448 CryptSvc - ok
23:00:51.0567 0448 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
23:00:51.0571 0448 DcomLaunch - ok
23:00:51.0581 0448 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:00:51.0582 0448 DfsC - ok
23:00:51.0653 0448 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
23:00:51.0667 0448 DFSR - ok
23:00:51.0700 0448 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
23:00:51.0702 0448 Dhcp - ok
23:00:51.0710 0448 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
23:00:51.0711 0448 disk - ok
23:00:51.0733 0448 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:00:51.0734 0448 Dnscache - ok
23:00:51.0749 0448 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
23:00:51.0751 0448 dot3svc - ok
23:00:51.0768 0448 [ 74C02B1717740C3B8039539E23E4B53F ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
23:00:51.0769 0448 Dot4 - ok
23:00:51.0776 0448 [ 08321D1860235BF42CF2854234337AEA ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
23:00:51.0777 0448 Dot4Print - ok
23:00:51.0783 0448 [ 4ADCCF0124F2B6911D3786A5D0E779E5 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
23:00:51.0783 0448 dot4usb - ok
23:00:51.0800 0448 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
23:00:51.0801 0448 DPS - ok
23:00:51.0808 0448 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:00:51.0808 0448 drmkaud - ok
23:00:51.0836 0448 [ 32CF29C8B49AF7A96468253C20C4820F ] dvdfab C:\Windows\system32\drivers\dvdfab.sys
23:00:51.0981 0448 dvdfab - ok
23:00:52.0023 0448 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:00:52.0027 0448 DXGKrnl - ok
23:00:52.0047 0448 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
23:00:52.0047 0448 E1G60 - ok
23:00:52.0068 0448 [ B37F6853D6E0C6F5F8EFDE33E831B5F8 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
23:00:52.0069 0448 e1yexpress - ok
23:00:52.0087 0448 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
23:00:52.0088 0448 EapHost - ok
23:00:52.0095 0448 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
23:00:52.0096 0448 Ecache - ok
23:00:52.0133 0448 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:00:52.0135 0448 ehRecvr - ok
23:00:52.0142 0448 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
23:00:52.0143 0448 ehSched - ok
23:00:52.0150 0448 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
23:00:52.0150 0448 ehstart - ok
23:00:52.0173 0448 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:00:52.0175 0448 elxstor - ok
23:00:52.0204 0448 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
23:00:52.0206 0448 EMDMgmt - ok
23:00:52.0213 0448 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:00:52.0213 0448 ErrDev - ok
23:00:52.0226 0448 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
23:00:52.0228 0448 EventSystem - ok
23:00:52.0255 0448 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
23:00:52.0256 0448 exfat - ok
23:00:52.0277 0448 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:00:52.0278 0448 fastfat - ok
23:00:52.0289 0448 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:00:52.0289 0448 fdc - ok
23:00:52.0300 0448 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
23:00:52.0301 0448 fdPHost - ok
23:00:52.0311 0448 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
23:00:52.0312 0448 FDResPub - ok
23:00:52.0315 0448 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:00:52.0315 0448 FileInfo - ok
23:00:52.0329 0448 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:00:52.0330 0448 Filetrace - ok
23:00:52.0336 0448 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:00:52.0337 0448 flpydisk - ok
23:00:52.0341 0448 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:00:52.0343 0448 FltMgr - ok
23:00:52.0389 0448 [ DE67B1AFAB1DDB6CA0BBA89A776F26FA ] FontCache C:\Windows\system32\FntCache.dll
23:00:52.0394 0448 FontCache - ok
23:00:52.0412 0448 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:00:52.0413 0448 FontCache3.0.0.0 - ok
23:00:52.0459 0448 [ 37C2FF67A2565286F1C1C1072BE74678 ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
23:00:52.0460 0448 Freemake Improver - ok
23:00:52.0477 0448 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:00:52.0478 0448 Fs_Rec - ok
23:00:52.0487 0448 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:00:52.0489 0448 gagp30kx - ok
23:00:52.0511 0448 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
23:00:52.0515 0448 gpsvc - ok
23:00:52.0534 0448 [ 5E114600F350F3BEE3F92516E51144F1 ] gwfilt64 C:\Windows\system32\drivers\gwfilt64.sys
23:00:52.0536 0448 gwfilt64 - ok
23:00:52.0563 0448 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:00:52.0568 0448 HdAudAddService - ok
23:00:52.0590 0448 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:00:52.0594 0448 HDAudBus - ok
23:00:52.0603 0448 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:00:52.0605 0448 HidBth - ok
23:00:52.0613 0448 [ 5F47839455D01FF6403B008D481A6F5B ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:00:52.0615 0448 HidIr - ok
23:00:52.0628 0448 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
23:00:52.0628 0448 hidserv - ok
23:00:52.0631 0448 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:00:52.0632 0448 HidUsb - ok
23:00:52.0644 0448 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
23:00:52.0645 0448 hkmsvc - ok
23:00:52.0659 0448 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
23:00:52.0661 0448 HpCISSs - ok
23:00:52.0720 0448 [ 4B3E718F72B0C48603C2EB8A0E34CD43 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
23:00:52.0721 0448 hpqcxs08 - ok
23:00:52.0756 0448 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
23:00:52.0757 0448 hpqddsvc - ok
23:00:52.0768 0448 [ 81FC369485C12837DE3D708B7C8FDA7D ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
23:00:52.0998 0448 HTCAND64 - ok
23:00:53.0019 0448 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:00:53.0029 0448 HTTP - ok
23:00:53.0040 0448 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
23:00:53.0042 0448 i2omp - ok
23:00:53.0060 0448 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:00:53.0063 0448 i8042prt - ok
23:00:53.0079 0448 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
23:00:53.0084 0448 iaStorV - ok
23:00:53.0132 0448 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:00:53.0145 0448 idsvc - ok
23:00:53.0160 0448 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:00:53.0162 0448 iirsp - ok
23:00:53.0190 0448 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
23:00:53.0192 0448 IKEEXT - ok
23:00:53.0228 0448 [ 6FDF709500C20362FFC5057F0D1E0C8D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:00:53.0250 0448 IntcAzAudAddService - ok
23:00:53.0295 0448 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
23:00:53.0296 0448 intelide - ok
23:00:53.0312 0448 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:00:53.0313 0448 intelppm - ok
23:00:53.0325 0448 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:00:53.0326 0448 IPBusEnum - ok
23:00:53.0338 0448 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:00:53.0340 0448 IpFilterDriver - ok
23:00:53.0354 0448 IpInIp - ok
23:00:53.0369 0448 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
23:00:53.0372 0448 IPMIDRV - ok
23:00:53.0392 0448 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
23:00:53.0395 0448 IPNAT - ok
23:00:53.0410 0448 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:00:53.0412 0448 IRENUM - ok
23:00:53.0441 0448 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:00:53.0443 0448 isapnp - ok
23:00:53.0467 0448 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
23:00:53.0469 0448 iScsiPrt - ok
23:00:53.0487 0448 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
23:00:53.0489 0448 iteatapi - ok
23:00:53.0513 0448 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
23:00:53.0515 0448 iteraid - ok
23:00:53.0528 0448 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:00:53.0530 0448 kbdclass - ok
23:00:53.0544 0448 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:00:53.0546 0448 kbdhid - ok
23:00:53.0554 0448 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
23:00:53.0555 0448 KeyIso - ok
23:00:53.0577 0448 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:00:53.0585 0448 KSecDD - ok
23:00:53.0600 0448 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:00:53.0602 0448 ksthunk - ok
23:00:53.0619 0448 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
23:00:53.0621 0448 KtmRm - ok
23:00:53.0639 0448 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
23:00:53.0641 0448 LanmanServer - ok
23:00:53.0662 0448 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:00:53.0664 0448 LanmanWorkstation - ok
23:00:53.0677 0448 [ FA4A45C179AB0E0F1A31B9751D4B18D7 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
23:00:53.0787 0448 LightScribeService - ok
23:00:53.0796 0448 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:00:53.0798 0448 lltdio - ok
23:00:53.0821 0448 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:00:53.0826 0448 lltdsvc - ok
23:00:53.0843 0448 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:00:53.0844 0448 lmhosts - ok
23:00:53.0862 0448 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:00:53.0865 0448 LSI_FC - ok
23:00:53.0873 0448 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:00:53.0876 0448 LSI_SAS - ok
23:00:53.0915 0448 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:00:53.0918 0448 LSI_SCSI - ok
23:00:53.0921 0448 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
23:00:53.0924 0448 luafv - ok
23:00:53.0962 0448 [ EF2BE2F45D4F06410A3BD2A3467325B0 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
23:00:53.0972 0448 LVRS64 - ok
23:00:53.0990 0448 [ 0034F69D0007D3F77F6B96FA51228E85 ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
23:00:53.0992 0448 LVUSBS64 - ok
23:00:54.0080 0448 [ AC22F92C6078640FE8A70D662A2F3AD5 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
23:00:54.0158 0448 LVUVC64 - ok
23:00:54.0171 0448 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:00:54.0172 0448 Mcx2Svc - ok
23:00:54.0192 0448 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
23:00:54.0194 0448 megasas - ok
23:00:54.0229 0448 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
23:00:54.0236 0448 MegaSR - ok
23:00:54.0250 0448 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
23:00:54.0251 0448 MMCSS - ok
23:00:54.0266 0448 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
23:00:54.0268 0448 Modem - ok
23:00:54.0282 0448 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:00:54.0283 0448 monitor - ok
23:00:54.0292 0448 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:00:54.0293 0448 mouclass - ok
23:00:54.0304 0448 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:00:54.0306 0448 mouhid - ok
23:00:54.0309 0448 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
23:00:54.0311 0448 MountMgr - ok
23:00:54.0341 0448 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:00:54.0342 0448 MozillaMaintenance - ok
23:00:54.0366 0448 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
23:00:54.0369 0448 mpio - ok
23:00:54.0382 0448 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:00:54.0384 0448 mpsdrv - ok
23:00:54.0397 0448 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
23:00:54.0399 0448 Mraid35x - ok
23:00:54.0418 0448 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:00:54.0421 0448 MRxDAV - ok
23:00:54.0433 0448 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:00:54.0436 0448 mrxsmb - ok
23:00:54.0451 0448 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:00:54.0455 0448 mrxsmb10 - ok
23:00:54.0458 0448 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:00:54.0461 0448 mrxsmb20 - ok
23:00:54.0464 0448 [ AA459F2AB3AB603C357FF117CAE3D818 ] msahci C:\Windows\system32\drivers\msahci.sys
23:00:54.0465 0448 msahci - ok
23:00:54.0484 0448 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:00:54.0487 0448 msdsm - ok
23:00:54.0497 0448 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
23:00:54.0500 0448 MSDTC - ok
23:00:54.0505 0448 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:00:54.0506 0448 Msfs - ok
23:00:54.0527 0448 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:00:54.0528 0448 msisadrv - ok
23:00:54.0536 0448 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:00:54.0539 0448 MSiSCSI - ok
23:00:54.0541 0448 msiserver - ok
23:00:54.0550 0448 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:00:54.0552 0448 MSKSSRV - ok
23:00:54.0563 0448 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:00:54.0564 0448 MSPCLOCK - ok
23:00:54.0569 0448 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:00:54.0571 0448 MSPQM - ok
23:00:54.0589 0448 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:00:54.0593 0448 MsRPC - ok
23:00:54.0601 0448 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:00:54.0602 0448 mssmbios - ok
23:00:54.0615 0448 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:00:54.0616 0448 MSTEE - ok
23:00:54.0633 0448 [ 6936198F2CC25B39CF5262436C80DF46 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
23:00:54.0634 0448 MTsensor - ok
23:00:54.0638 0448 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
23:00:54.0640 0448 Mup - ok
23:00:54.0660 0448 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
23:00:54.0663 0448 napagent - ok
23:00:54.0677 0448 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:00:54.0681 0448 NativeWifiP - ok
23:00:54.0700 0448 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:00:54.0704 0448 NDIS - ok
23:00:54.0715 0448 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:00:54.0716 0448 NdisTapi - ok
23:00:54.0721 0448 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:00:54.0723 0448 Ndisuio - ok
23:00:54.0733 0448 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:00:54.0737 0448 NdisWan - ok
23:00:54.0743 0448 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:00:54.0745 0448 NDProxy - ok
23:00:54.0761 0448 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
23:00:54.0762 0448 Net Driver HPZ12 - ok
23:00:54.0765 0448 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:00:54.0767 0448 NetBIOS - ok
23:00:54.0774 0448 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
23:00:54.0778 0448 netbt - ok
23:00:54.0788 0448 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
23:00:54.0789 0448 Netlogon - ok
23:00:54.0803 0448 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
23:00:54.0806 0448 Netman - ok
23:00:54.0831 0448 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:00:54.0835 0448 NetMsmqActivator - ok
23:00:54.0837 0448 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:00:54.0838 0448 NetPipeActivator - ok
23:00:54.0855 0448 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
23:00:54.0857 0448 netprofm - ok
23:00:54.0860 0448 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:00:54.0861 0448 NetTcpActivator - ok
23:00:54.0864 0448 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:00:54.0865 0448 NetTcpPortSharing - ok
23:00:54.0872 0448 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:00:54.0875 0448 nfrd960 - ok
23:00:54.0884 0448 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
23:00:54.0886 0448 NlaSvc - ok
23:00:54.0896 0448 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:00:54.0898 0448 Npfs - ok
23:00:54.0917 0448 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
23:00:54.0919 0448 nsi - ok
23:00:54.0928 0448 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:00:54.0930 0448 nsiproxy - ok
23:00:54.0964 0448 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:00:54.0985 0448 Ntfs - ok
23:00:55.0007 0448 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
23:00:55.0009 0448 Null - ok
23:00:55.0020 0448 [ 285ACEC1B13A15BA520AAE06BACB9CFF ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
23:00:55.0022 0448 nusb3hub - ok
23:00:55.0036 0448 [ F6D625FF7B56BB6EA063F0D3A5BBC996 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
23:00:55.0038 0448 nusb3xhc - ok
23:00:55.0048 0448 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:00:55.0052 0448 nvraid - ok
23:00:55.0054 0448 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:00:55.0056 0448 nvstor - ok
23:00:55.0067 0448 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:00:55.0070 0448 nv_agp - ok
23:00:55.0073 0448 NwlnkFlt - ok
23:00:55.0076 0448 NwlnkFwd - ok
23:00:55.0128 0448 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:00:55.0136 0448 odserv - ok
23:00:55.0166 0448 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
23:00:55.0167 0448 ohci1394 - ok
23:00:55.0196 0448 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:00:55.0199 0448 ose - ok
23:00:55.0222 0448 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
23:00:55.0228 0448 p2pimsvc - ok
23:00:55.0238 0448 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
23:00:55.0243 0448 p2psvc - ok
23:00:55.0270 0448 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
23:00:55.0273 0448 Parport - ok
23:00:55.0288 0448 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:00:55.0290 0448 partmgr - ok
23:00:55.0297 0448 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
23:00:55.0299 0448 PcaSvc - ok
23:00:55.0303 0448 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
23:00:55.0305 0448 pci - ok
23:00:55.0313 0448 [ 2657F6C0B78C36D95034BE109336E382 ] pciide C:\Windows\system32\drivers\pciide.sys
23:00:55.0314 0448 pciide - ok
23:00:55.0333 0448 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:00:55.0337 0448 pcmcia - ok
23:00:55.0353 0448 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:00:55.0365 0448 PEAUTH - ok
23:00:55.0421 0448 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:00:55.0422 0448 PerfHost - ok
23:00:55.0451 0448 [ 37EA62238E17AE88E4713D9246CA1C1C ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
23:00:55.0470 0448 PID_PEPI - ok
23:00:55.0493 0448 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
23:00:55.0514 0448 pla - ok
23:00:55.0547 0448 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:00:55.0550 0448 PlugPlay - ok
23:00:55.0568 0448 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
23:00:55.0570 0448 Pml Driver HPZ12 - ok
23:00:55.0601 0448 [ A010F13D27C1033A8BE09D5FA9BF348B ] pneteth C:\Windows\system32\DRIVERS\pneteth.sys
23:00:55.0700 0448 pneteth - ok
23:00:55.0713 0448 PnkBstrA - ok
23:00:55.0731 0448 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
23:00:55.0735 0448 PNRPAutoReg - ok
23:00:55.0745 0448 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
23:00:55.0749 0448 PNRPsvc - ok
23:00:55.0776 0448 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:00:55.0785 0448 PolicyAgent - ok
23:00:55.0804 0448 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:00:55.0807 0448 PptpMiniport - ok
23:00:55.0829 0448 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
23:00:55.0831 0448 Processor - ok
23:00:55.0843 0448 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
23:00:55.0845 0448 ProfSvc - ok
23:00:55.0855 0448 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
23:00:55.0856 0448 ProtectedStorage - ok
23:00:55.0876 0448 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
23:00:55.0879 0448 PSched - ok
23:00:55.0898 0448 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
23:00:55.0900 0448 PxHlpa64 - ok
23:00:55.0927 0448 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:00:55.0944 0448 ql2300 - ok
23:00:55.0963 0448 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:00:55.0967 0448 ql40xx - ok
23:00:55.0985 0448 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
23:00:55.0987 0448 QWAVE - ok
23:00:55.0989 0448 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:00:55.0991 0448 QWAVEdrv - ok
23:00:56.0029 0448 RaMediaServer - ok
23:00:56.0036 0448 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:00:56.0038 0448 RasAcd - ok
23:00:56.0044 0448 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
23:00:56.0047 0448 RasAuto - ok
23:00:56.0053 0448 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:00:56.0055 0448 Rasl2tp - ok
23:00:56.0080 0448 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
23:00:56.0082 0448 RasMan - ok
23:00:56.0094 0448 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:00:56.0096 0448 RasPppoe - ok
23:00:56.0099 0448 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:00:56.0102 0448 RasSstp - ok
23:00:56.0109 0448 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:00:56.0114 0448 rdbss - ok
23:00:56.0124 0448 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:00:56.0125 0448 RDPCDD - ok
23:00:56.0140 0448 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
23:00:56.0146 0448 rdpdr - ok
23:00:56.0148 0448 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:00:56.0150 0448 RDPENCDD - ok
23:00:56.0182 0448 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:00:56.0186 0448 RDPWD - ok
23:00:56.0205 0448 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:00:56.0208 0448 RemoteAccess - ok
23:00:56.0220 0448 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:00:56.0225 0448 RemoteRegistry - ok
23:00:56.0247 0448 [ CD71E053D7260E4102D99A28F9196070 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:00:56.0251 0448 RFCOMM - ok
23:00:56.0290 0448 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
23:00:56.0292 0448 RichVideo - ok
23:00:56.0315 0448 [ 0DE22421179D5A8440B68517DDF2B051 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
23:00:56.0317 0448 RimVSerPort - ok
23:00:56.0323 0448 [ 6A0CF73B019CBC9255E23C9192EC3702 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
23:00:56.0325 0448 ROOTMODEM - ok
23:00:56.0337 0448 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
23:00:56.0339 0448 RpcLocator - ok
23:00:56.0358 0448 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
23:00:56.0362 0448 RpcSs - ok
23:00:56.0365 0448 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:00:56.0368 0448 rspndr - ok
23:00:56.0386 0448 RSUSBSTOR - ok
23:00:56.0418 0448 [ F8DA8FC39CE5859C0D8C0FE6524CE465 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
23:00:56.0422 0448 RTHDMIAzAudService - ok
23:00:56.0435 0448 [ 335352091ACC9884B9C527EDCDD643BB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys
23:00:56.0439 0448 RTL8169 - ok
23:00:56.0456 0448 [ 462308D94E4E3318503267991B0CDC7F ] RTL8187Se C:\Windows\system32\DRIVERS\RTL8187Se.sys
23:00:56.0461 0448 RTL8187Se - ok
23:00:56.0472 0448 Rts516xIR - ok
23:00:56.0474 0448 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
23:00:56.0475 0448 SamSs - ok
23:00:56.0606 0448 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
23:00:56.0623 0448 SBAMSvc - ok
23:00:56.0645 0448 [ 6E342316E72F4B6FA39C99E06373A1A3 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
23:00:56.0647 0448 sbapifs - ok
23:00:56.0659 0448 [ B671EEF468D13016B9286F5835A06AE1 ] sbhips C:\Windows\system32\drivers\sbhips.sys
23:00:56.0662 0448 sbhips - ok
23:00:56.0673 0448 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:00:56.0675 0448 sbp2port - ok
23:00:56.0705 0448 [ 9ACEB2A2362FC87A3825963E61BA9076 ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
23:00:56.0707 0448 SBRE - ok
23:00:56.0730 0448 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:00:56.0735 0448 SCardSvr - ok
23:00:56.0760 0448 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
23:00:56.0764 0448 Schedule - ok
23:00:56.0777 0448 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:00:56.0778 0448 SCPolicySvc - ok
23:00:56.0797 0448 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:00:56.0799 0448 SDRSVC - ok
23:00:56.0806 0448 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:00:56.0807 0448 secdrv - ok
23:00:56.0811 0448 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
23:00:56.0813 0448 seclogon - ok
23:00:56.0817 0448 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
23:00:56.0819 0448 SENS - ok
23:00:56.0828 0448 [ 2449316316411D65BD2C761A6FFB2CE2 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:00:56.0830 0448 Serenum - ok
23:00:56.0834 0448 [ 4B438170BE2FC8E0BD35EE87A960F84F ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:00:56.0837 0448 Serial - ok
23:00:56.0849 0448 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:00:56.0850 0448 sermouse - ok
23:00:56.0862 0448 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
23:00:56.0864 0448 SessionEnv - ok
23:00:56.0866 0448 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:00:56.0868 0448 sffdisk - ok
23:00:56.0870 0448 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:00:56.0872 0448 sffp_mmc - ok
23:00:56.0878 0448 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:00:56.0880 0448 sffp_sd - ok
23:00:56.0882 0448 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:00:56.0884 0448 sfloppy - ok
23:00:56.0902 0448 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:00:56.0904 0448 ShellHWDetection - ok
23:00:56.0907 0448 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
23:00:56.0909 0448 SiSRaid2 - ok
23:00:56.0911 0448 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:00:56.0914 0448 SiSRaid4 - ok
23:00:56.0963 0448 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
23:00:56.0975 0448 slsvc - ok
23:00:56.0978 0448 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
23:00:56.0981 0448 SLUINotify - ok
23:00:56.0984 0448 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:00:56.0987 0448 Smb - ok
23:00:57.0010 0448 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:00:57.0012 0448 SNMPTRAP - ok
23:00:57.0028 0448 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
23:00:57.0030 0448 spldr - ok
23:00:57.0046 0448 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
23:00:57.0048 0448 Spooler - ok
23:00:57.0068 0448 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
23:00:57.0076 0448 srv - ok
23:00:57.0084 0448 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:00:57.0088 0448 srv2 - ok
23:00:57.0091 0448 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:00:57.0094 0448 srvnet - ok
23:00:57.0113 0448 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:00:57.0115 0448 SSDPSRV - ok
23:00:57.0143 0448 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:00:57.0145 0448 SstpSvc - ok
23:00:57.0180 0448 Steam Client Service - ok
23:00:57.0210 0448 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
23:00:57.0214 0448 stisvc - ok
23:00:57.0225 0448 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:00:57.0227 0448 swenum - ok
23:00:57.0245 0448 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
23:00:57.0254 0448 swprv - ok
23:00:57.0292 0448 [ 438FAFE708C93B2236FC26B6F2BD5FD0 ] Symantec Core LC C:\PROGRA~2\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
23:00:57.0310 0448 Symantec Core LC - ok
23:00:57.0322 0448 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
23:00:57.0324 0448 Symc8xx - ok
23:00:57.0330 0448 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
23:00:57.0332 0448 Sym_hi - ok
23:00:57.0334 0448 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
23:00:57.0336 0448 Sym_u3 - ok
23:00:57.0346 0448 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
23:00:57.0351 0448 SysMain - ok
23:00:57.0363 0448 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:00:57.0365 0448 TabletInputService - ok
23:00:57.0379 0448 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:00:57.0381 0448 TapiSrv - ok
23:00:57.0387 0448 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
23:00:57.0388 0448 TBS - ok
23:00:57.0427 0448 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:00:57.0447 0448 Tcpip - ok
23:00:57.0494 0448 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
23:00:57.0500 0448 Tcpip6 - ok
23:00:57.0516 0448 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:00:57.0518 0448 tcpipreg - ok
23:00:57.0526 0448 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:00:57.0528 0448 TDPIPE - ok
23:00:57.0537 0448 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:00:57.0539 0448 TDTCP - ok
23:00:57.0548 0448 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:00:57.0550 0448 tdx - ok
23:00:57.0564 0448 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:00:57.0566 0448 TermDD - ok
23:00:57.0587 0448 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
23:00:57.0590 0448 TermService - ok
23:00:57.0602 0448 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
23:00:57.0604 0448 Themes - ok
23:00:57.0616 0448 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
23:00:57.0617 0448 THREADORDER - ok
23:00:57.0628 0448 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
23:00:57.0630 0448 TrkWks - ok
23:00:57.0645 0448 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:00:57.0647 0448 TrustedInstaller - ok
23:00:57.0651 0448 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:00:57.0652 0448 tssecsrv - ok
23:00:57.0654 0448 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
23:00:57.0656 0448 tunmp - ok
23:00:57.0694 0448 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:00:57.0695 0448 tunnel - ok
23:00:57.0709 0448 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:00:57.0711 0448 uagp35 - ok
23:00:57.0726 0448 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:00:57.0732 0448 udfs - ok
23:00:57.0742 0448 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:00:57.0745 0448 UI0Detect - ok
23:00:57.0757 0448 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:00:57.0760 0448 uliagpkx - ok
23:00:57.0766 0448 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
23:00:57.0772 0448 uliahci - ok
23:00:57.0775 0448 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
23:00:57.0779 0448 UlSata - ok
23:00:57.0783 0448 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
23:00:57.0786 0448 ulsata2 - ok
23:00:57.0796 0448 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:00:57.0798 0448 umbus - ok
23:00:57.0817 0448 [ 01ABE05C401E70795B43A8933B44831E ] UMPass C:\Windows\system32\DRIVERS\umpass.sys
23:00:57.0820 0448 UMPass - ok
23:00:57.0868 0448 [ 927754ABF077AEB5504BE4E0F2C60C1B ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
23:00:57.0870 0448 UMVPFSrv - ok
23:00:57.0883 0448 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
23:00:57.0885 0448 upnphost - ok
23:00:57.0909 0448 [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:00:57.0911 0448 usbaudio - ok
23:00:57.0933 0448 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:00:57.0935 0448 usbccgp - ok
23:00:57.0937 0448 USBCCID - ok
23:00:57.0940 0448 [ 8C39D53E1A343F4C47EE8F3C052126D8 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
23:00:57.0943 0448 usbcir - ok
23:00:57.0951 0448 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:00:57.0953 0448 usbehci - ok
23:00:57.0962 0448 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:00:57.0967 0448 usbhub - ok
23:00:57.0973 0448 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:00:57.0974 0448 usbohci - ok
23:00:57.0984 0448 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:00:57.0986 0448 usbprint - ok
23:00:57.0989 0448 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
23:00:57.0991 0448 usbscan - ok
23:00:57.0996 0448 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:00:57.0997 0448 USBSTOR - ok
23:00:57.0999 0448 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:00:58.0001 0448 usbuhci - ok
23:00:58.0029 0448 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:00:58.0033 0448 usbvideo - ok
23:00:58.0069 0448 [ 1E36BB1A3C5AAF2AA9FA9A126DF8C16C ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
23:00:58.0071 0448 usb_rndisx - ok
23:00:58.0087 0448 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
23:00:58.0089 0448 UxSms - ok
23:00:58.0105 0448 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
23:00:58.0114 0448 vds - ok
23:00:58.0126 0448 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:00:58.0128 0448 vga - ok
23:00:58.0130 0448 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:00:58.0132 0448 VgaSave - ok
23:00:58.0134 0448 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
23:00:58.0136 0448 viaide - ok
23:00:58.0149 0448 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:00:58.0151 0448 volmgr - ok
23:00:58.0172 0448 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:00:58.0179 0448 volmgrx - ok
23:00:58.0188 0448 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:00:58.0193 0448 volsnap - ok
23:00:58.0216 0448 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:00:58.0220 0448 vsmraid - ok
23:00:58.0254 0448 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
23:00:58.0261 0448 VSS - ok
23:00:58.0272 0448 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
23:00:58.0275 0448 W32Time - ok
23:00:58.0286 0448 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:00:58.0288 0448 WacomPen - ok
23:00:58.0301 0448 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
23:00:58.0303 0448 Wanarp - ok
23:00:58.0306 0448 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:00:58.0306 0448 Wanarpv6 - ok
23:00:58.0314 0448 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:00:58.0317 0448 wcncsvc - ok
23:00:58.0328 0448 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:00:58.0331 0448 WcsPlugInService - ok
23:00:58.0348 0448 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
23:00:58.0350 0448 Wd - ok
23:00:58.0380 0448 [ D02E7E4567DA1E7582FBF6A91144B0DF ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:00:58.0393 0448 Wdf01000 - ok
23:00:58.0406 0448 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:00:58.0408 0448 WdiServiceHost - ok
23:00:58.0410 0448 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:00:58.0411 0448 WdiSystemHost - ok
23:00:58.0427 0448 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
23:00:58.0429 0448 WebClient - ok
23:00:58.0443 0448 [ BD9A749F36710FFA02E0E530F7451936 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:00:58.0448 0448 Wecsvc - ok
23:00:58.0455 0448 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:00:58.0458 0448 wercplsupport - ok
23:00:58.0470 0448 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
23:00:58.0472 0448 WerSvc - ok
23:00:58.0476 0448 WinHttpAutoProxySvc - ok
23:00:58.0500 0448 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:00:58.0501 0448 Winmgmt - ok
23:00:58.0532 0448 [ 42717DB2BE3A075D0F0CD5C927C27A43 ] WinRM C:\Windows\system32\WsmSvc.dll
23:00:58.0549 0448 WinRM - ok
23:00:58.0585 0448 [ 7F2F9E48566B2087F2AAAD258CB2A8D4 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
23:00:58.0587 0448 WinUSB - ok
23:00:58.0608 0448 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:00:58.0612 0448 Wlansvc - ok
23:00:58.0696 0448 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:00:58.0705 0448 wlidsvc - ok
23:00:58.0716 0448 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:00:58.0716 0448 WmiAcpi - ok
23:00:58.0725 0448 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:00:58.0729 0448 wmiApSrv - ok
23:00:58.0735 0448 WMPNetworkSvc - ok
23:00:58.0751 0448 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:00:58.0756 0448 WPCSvc - ok
23:00:58.0764 0448 [ A27C8F92D84E2DDC151978E4692C978E ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:00:58.0766 0448 WPDBusEnum - ok
23:00:58.0797 0448 [ 6329D1990DB931073B86AB5946D8E317 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
23:00:58.0799 0448 WpdUsb - ok
23:00:58.0906 0448 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:00:58.0921 0448 WPFFontCache_v0400 - ok
23:00:58.0932 0448 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:00:58.0933 0448 ws2ifsl - ok
23:00:58.0936 0448 WSearch - ok
23:00:58.0945 0448 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:00:58.0948 0448 WUDFRd - ok
23:00:58.0971 0448 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:00:58.0973 0448 wudfsvc - ok
23:00:59.0003 0448 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
23:00:59.0239 0448 xusb21 - ok
23:00:59.0241 0448 ZDPNDIS4 - ok
23:00:59.0292 0448 ================ Scan global ===============================
23:00:59.0307 0448 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
23:00:59.0340 0448 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
23:00:59.0355 0448 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
23:00:59.0372 0448 [ E2D076F2C1239AA6C7412BA6B8B1DE4E ] C:\Windows\system32\services.exe
23:00:59.0376 0448 [Global] - ok
23:00:59.0376 0448 ================ Scan MBR ==================================
23:00:59.0386 0448 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
23:00:59.0726 0448 \Device\Harddisk0\DR0 - ok
23:01:00.0216 0448 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk6\DR6
23:01:00.0316 0448 \Device\Harddisk6\DR6 - ok
23:01:00.0316 0448 ================ Scan VBR ==================================
23:01:00.0318 0448 [ AC830503BA1958A76F7FC532819EDD9C ] \Device\Harddisk0\DR0\Partition1
23:01:00.0319 0448 \Device\Harddisk0\DR0\Partition1 - ok
23:01:00.0349 0448 [ F55078DF5FFB4D1CC2922C6214E153E6 ] \Device\Harddisk6\DR6\Partition1
23:01:00.0351 0448 \Device\Harddisk6\DR6\Partition1 - ok
23:01:00.0351 0448 ============================================================
23:01:00.0351 0448 Scan finished
23:01:00.0351 0448 ============================================================
23:01:00.0356 5456 Detected object count: 0
23:01:00.0356 5456 Actual detected object count: 0
23:02:52.0851 5996 Deinitialize success

#4 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 14 September 2012 - 08:10 PM

Here is the aswMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-13 08:13:39
-----------------------------
08:13:39.140 OS Version: Windows x64 6.0.6002 Service Pack 2
08:13:39.140 Number of processors: 8 586 0x1A04
08:13:39.140 ComputerName: BORN-PC UserName: Born
08:13:41.214 Initialize success
08:13:46.727 AVAST engine defs: 12091201
08:14:04.400 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-4
08:14:04.402 Disk 0 Vendor: WDC_WD7501AALS-00J7B0 05.00K05 Size: 715404MB BusType: 3
08:14:04.438 Disk 0 MBR read successfully
08:14:04.440 Disk 0 MBR scan
08:14:04.443 Disk 0 Windows VISTA default MBR code
08:14:04.459 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 715402 MB offset 2048
08:14:04.503 Disk 0 scanning C:\Windows\system32\drivers
08:14:18.170 Service scanning
08:14:31.650 Modules scanning
08:14:31.650 Disk 0 trace - called modules:
08:14:31.676 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
08:14:31.677 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800f3d6790]
08:14:31.677 3 CLASSPNP.SYS[fffffa6000dc4c33] -> nt!IofCallDriver -> [0xfffffa800df76520]
08:14:31.678 5 acpi.sys[fffffa60008fcfde] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP4T0L0-4[0xfffffa800df78940]
08:14:33.724 AVAST engine scan C:\Windows
08:15:11.109 AVAST engine scan C:\Windows\system32
08:17:52.847 AVAST engine scan C:\Windows\system32\drivers
08:18:04.476 AVAST engine scan C:\Users\Born
08:18:04.717 File: C:\Users\Born\0.8395786382562958.exe **INFECTED** Win32:Alureon-AVP [Trj]
09:28:42.448 AVAST engine scan C:\ProgramData
09:34:35.411 Scan finished successfully
08:03:42.588 Disk 0 MBR has been saved successfully to "C:\Users\Born\Desktop\MBR.dat"
08:03:42.592 The log file has been saved successfully to "C:\Users\Born\Desktop\aswMBR log.txt"

#5 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 14 September 2012 - 08:11 PM

I then ran ESET Online Scanner as you directed, but it said there were no threats found, so there is nothing for me to post from that.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:01 AM

Posted 14 September 2012 - 08:55 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 17 September 2012 - 06:00 PM

I ran MBAM until I got a clean log.

Then I ran mini toolbox. Here are the results:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Born (administrator) on 17-09-2012 at 16:50:03
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.0) = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Born-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : F4-6D-04-12-D9-DA
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::84a:329a:b754:de7b%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.10.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, September 17, 2012 8:39:48 AM
Lease Expires . . . . . . . . . . : Monday, September 24, 2012 8:39:53 AM
Default Gateway . . . . . . . . . : 192.168.10.1
DHCP Server . . . . . . . . . . . : 192.168.10.1
DHCPv6 IAID . . . . . . . . . . . : 267676932
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-1E-4D-2F-F4-6D-04-12-D9-DA
DNS Servers . . . . . . . . . . . : 192.168.10.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{4DCB6DBA-008D-4EBA-AB0F-65F65DEEB0B4}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: Wireless
Address: 192.168.10.1

Name: google.com
Addresses: 2607:f8b0:4009:800::1006
74.125.225.135
74.125.225.131
74.125.225.132
74.125.225.137
74.125.225.128
74.125.225.142
74.125.225.133
74.125.225.136
74.125.225.134
74.125.225.129
74.125.225.130



Pinging google.com [74.125.225.130] with 32 bytes of data:

Reply from 74.125.225.130: bytes=32 time=5ms TTL=54

Reply from 74.125.225.130: bytes=32 time=4ms TTL=54



Ping statistics for 74.125.225.130:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 4ms, Maximum = 5ms, Average = 4ms

Server: Wireless
Address: 192.168.10.1

Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=992ms TTL=49

Reply from 72.30.38.140: bytes=32 time=1157ms TTL=49



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 992ms, Maximum = 1157ms, Average = 1074ms

Server: Wireless
Address: 192.168.10.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
10 ...f4 6d 04 12 d9 da ...... Realtek RTL8169/8110 Family PCI Gigabit Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
18 ...00 00 00 00 00 00 00 e0 isatap.{4DCB6DBA-008D-4EBA-AB0F-65F65DEEB0B4}
11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.10.1 192.168.10.101 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.10.0 255.255.255.0 On-link 192.168.10.101 276
192.168.10.101 255.255.255.255 On-link 192.168.10.101 276
192.168.10.255 255.255.255.255 On-link 192.168.10.101 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.10.101 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.10.101 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::84a:329a:b754:de7b/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [34304] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [44032] (Microsoft Corporation)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog9 11 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/17/2012 04:49:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (09/17/2012 08:40:25 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/16/2012 00:01:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/16/2012 00:01:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/16/2012 00:01:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/16/2012 00:01:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/16/2012 00:01:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/16/2012 00:01:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/16/2012 00:01:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/16/2012 11:59:10 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (09/17/2012 08:40:29 AM) (Source: Service Control Manager) (User: )
Description: i8042prt
SBRE

Error: (09/17/2012 08:40:29 AM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (09/17/2012 08:40:29 AM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (09/17/2012 08:40:29 AM) (Source: Service Control Manager) (User: )
Description: Computer Browser%%1060

Error: (09/17/2012 08:40:17 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070424

Error: (09/17/2012 08:39:55 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070424

Error: (09/16/2012 00:01:19 PM) (Source: Service Control Manager) (User: )
Description: Windows Presentation Foundation Font Cache 3.0.0.0%%1053

Error: (09/16/2012 00:01:19 PM) (Source: Service Control Manager) (User: )
Description: 30000Windows Presentation Foundation Font Cache 3.0.0.0

Error: (09/16/2012 11:59:32 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070424

Error: (09/16/2012 11:59:11 AM) (Source: Service Control Manager) (User: )
Description: i8042prt


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 7.2.8)
Agere Systems PCI-SV92EX Soft Modem
AMD APP SDK Runtime (Version: 10.0.923.1)
AMD AVIVO64 Codecs (Version: 12.4.100.20405)
AMD Catalyst Install Manager (Version: 8.0.873.0)
ASUS Bluetooth Suite (Version: 7.02.000.60)
BurnInTest v7.0 Standard (Version: 7.0)
ccc-utility64 (Version: 2012.0405.2205.37728)
Core Temp 1.0 RC2 (Version: 1.0)
CPUID CPU-Z 1.59
CutePDF Writer 2.8
EverQuest II
Ghost Recon Online (NCSA-Live) (Version: 1.24.7880.2)
Google Chrome (Version: 21.0.1180.89)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photosmart C4600 All-In-One Driver Software 14.0 Rel. 5 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
Intel® Network Connections Drivers
LWS VideoEffects (Version: 13.30.1379.0)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT Redists (Version: 1.0)
Spotify (Version: 0.8.4.124.ga3559d86)
Vegas Pro 10.0 (64-bit) (Version: 10.0.470)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)

========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 16383.05 MB
Available physical RAM: 10645.2 MB
Total Pagefile: 32761.13 MB
Available Pagefile: 26817.45 MB
Total Virtual: 4095.88 MB
Available Virtual: 3995.69 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:698.63 GB) (Free:200.62 GB) NTFS
8 Drive k: (Elements) (Fixed) (Total:931.51 GB) (Free:98.32 GB) NTFS

========================= Users: ========================================

User accounts for \\BORN-PC

Administrator ASPNET Born
Guest Mcx1


**** End of log ****

#8 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 17 September 2012 - 06:02 PM

Then I ran FSS, and the log is here:

Farbar Service Scanner Version: 06-08-2012
Ran by Born (administrator) on 17-09-2012 at 16:53:37
Running from "C:\Users\Born\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-15 13:34] - [2012-01-03 09:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-11 13:45] - [2012-03-30 07:45] - 1423744 ____A (Microsoft Corporation) 46D448E9117464E4D3BBF36D7E3FA48E

C:\Windows\System32\dnsrslvr.dll
[2011-10-06 08:48] - [2011-03-02 11:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2011-11-01 11:08] - [2009-04-11 00:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2011-11-01 11:08] - [2009-04-11 00:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2011-11-01 11:08] - [2009-04-11 00:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2012-07-11 04:06] - [2012-04-23 11:25] - 0174592 ____A (Microsoft Corporation) 62740B9D2A137E8CED41A9E4239A7A31

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****

Edited by Akunin773, 17 September 2012 - 06:03 PM.


#9 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 17 September 2012 - 06:04 PM

Finally, I ran Adware Cleaner:

# AdwCleaner v2.001 - Logfile created 09/17/2012 at 16:56:36
# Updated 09/09/2012 by Xplode
# Operating system : Windows ™ Vista Home Premium Service Pack 2 (64 bits)
# User : Born - BORN-PC
# Boot Mode : Normal
# Running from : C:\Users\Born\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Users\Born\AppData\Local\Conduit
Deleted on reboot : C:\Users\Born\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojpijjmpahflnipadmlpgbjmagmjchkk
Deleted on reboot : C:\Users\Born\AppData\LocalLow\boost_interprocess
Deleted on reboot : C:\Users\Born\AppData\LocalLow\Conduit

***** [Registry] *****

Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ojpijjmpahflnipadmlpgbjmagmjchkk

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Users\Born\AppData\Roaming\Mozilla\Firefox\Profiles\kcl5v9d1.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v21.0.1180.89

File : C:\Users\Born\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [2103 octets] - [17/09/2012 16:56:36]

########## EOF - C:\AdwCleaner[S1].txt - [2163 octets] ##########

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:01 AM

Posted 17 September 2012 - 10:59 PM

Please run ASWMBR again and post the new log

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Post the new FSS log

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#11 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 18 September 2012 - 11:14 AM

Here is the new ASWMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-17 23:29:55
-----------------------------
23:29:55.880 OS Version: Windows x64 6.0.6002 Service Pack 2
23:29:55.881 Number of processors: 8 586 0x1A04
23:29:55.881 ComputerName: BORN-PC UserName: Born
23:29:57.666 Initialize success
23:45:10.816 AVAST engine defs: 12091400
08:34:00.649 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-4
08:34:00.651 Disk 0 Vendor: WDC_WD7501AALS-00J7B0 05.00K05 Size: 715404MB BusType: 3
08:34:00.660 Disk 0 MBR read successfully
08:34:00.662 Disk 0 MBR scan
08:34:00.710 Disk 0 Windows VISTA default MBR code
08:34:00.713 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 715402 MB offset 2048
08:34:00.735 Disk 0 scanning C:\Windows\system32\drivers
08:34:06.847 Service scanning
08:34:19.998 Modules scanning
08:34:20.003 Disk 0 trace - called modules:
08:34:20.016 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
08:34:20.019 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800f393610]
08:34:20.023 3 CLASSPNP.SYS[fffffa6000fd3c33] -> nt!IofCallDriver -> [0xfffffa800de377e0]
08:34:20.026 5 acpi.sys[fffffa60008f9fde] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP4T0L0-4[0xfffffa800df5f060]
08:34:21.940 AVAST engine scan C:\Windows
08:34:26.006 AVAST engine scan C:\Windows\system32
08:36:48.056 AVAST engine scan C:\Windows\system32\drivers
08:36:57.650 AVAST engine scan C:\Users\Born
09:35:31.899 AVAST engine scan C:\ProgramData
09:37:41.534 Scan finished successfully
09:51:00.308 Disk 0 MBR has been saved successfully to "C:\Users\Born\Desktop\MBR.dat"
09:51:00.312 The log file has been saved successfully to "C:\Users\Born\Desktop\aswMBR log 2.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-18 10:24:04
-----------------------------
10:24:04.681 OS Version: Windows x64 6.0.6002 Service Pack 2
10:24:04.681 Number of processors: 8 586 0x1A04
10:24:04.682 ComputerName: BORN-PC UserName: Born
10:24:06.126 Initialize success
10:56:25.881 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-4
10:56:25.884 Disk 0 Vendor: WDC_WD7501AALS-00J7B0 05.00K05 Size: 715404MB BusType: 3
10:56:25.893 Disk 0 MBR read successfully
10:56:25.895 Disk 0 MBR scan
10:56:25.897 Disk 0 Windows VISTA default MBR code
10:56:25.901 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 715402 MB offset 2048
10:56:25.917 Disk 0 scanning C:\Windows\system32\drivers
10:56:30.243 Service scanning
10:56:38.236 Modules scanning
10:56:38.241 Disk 0 trace - called modules:
10:56:38.250 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
10:56:38.253 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800f0546f0]
10:56:38.256 3 CLASSPNP.SYS[fffffa6000fcec33] -> nt!IofCallDriver -> [0xfffffa800df7d520]
10:56:38.259 5 acpi.sys[fffffa60008fcfde] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP4T0L0-4[0xfffffa800df79940]
10:56:38.263 Scan finished successfully
10:57:13.048 Disk 0 MBR has been saved successfully to "C:\Users\Born\Desktop\MBR.dat"
10:57:13.252 The log file has been saved successfully to "C:\Users\Born\Desktop\aswMBR log 2.txt"

#12 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 18 September 2012 - 11:16 AM

I ran the Services Repair. It didn't show a results log, but I then ran FSS. Here is the log:

Farbar Service Scanner Version: 06-08-2012
Ran by Born (administrator) on 18-09-2012 at 11:06:38
Running from "C:\Users\Born\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-15 13:34] - [2012-01-03 09:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-11 13:45] - [2012-03-30 07:45] - 1423744 ____A (Microsoft Corporation) 46D448E9117464E4D3BBF36D7E3FA48E

C:\Windows\System32\dnsrslvr.dll
[2011-10-06 08:48] - [2011-03-02 11:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2011-11-01 11:08] - [2009-04-11 00:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2011-11-01 11:08] - [2009-04-11 00:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2011-11-01 11:08] - [2009-04-11 00:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2012-07-11 04:06] - [2012-04-23 11:25] - 0174592 ____A (Microsoft Corporation) 62740B9D2A137E8CED41A9E4239A7A31

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2011-11-01 11:09] - [2009-04-11 00:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****

#13 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 18 September 2012 - 11:18 AM

Here is the RKILL log:

Rkill 2.3.15 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/18/2012 11:08:33 AM in x64 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (PID: 1252) [AU-HEUR]
* C:\Windows\MHotKey.exe (PID: 3612) [WD-HEUR]
* C:\Windows\CNYHKey.exe (PID: 3852) [WD-HEUR]
* C:\Windows\SysWOW64\UMonit.exe (PID: 3892) [WD-HEUR]
* C:\Windows\ModLedKey.exe (PID: 1456) [WD-HEUR]
* C:\Windows\ChiFuncExt.exe (PID: 4208) [WD-HEUR]
* C:\Users\Born\Downloads\FSS(2).exe (PID: 5440) [UP-HEUR]

7 proccesses terminated!

Possibly Patched Files.

* C:\Windows\system32\services.exe

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* ALERT: ZEROACCESS rootkit symptoms found!

* HKEY_CLASSES_ROOT\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32 [ZA Reg Hijack]
* C:\Users\Born\AppData\Local\{0dfed22a-e13f-055e-ed94-2ad086490154}\ [ZA Dir]
* C:\Users\Born\AppData\Local\{0dfed22a-e13f-055e-ed94-2ad086490154}\L\ [ZA Dir]
* C:\Users\Born\AppData\Local\{0dfed22a-e13f-055e-ed94-2ad086490154}\U\ [ZA Dir]
* C:\Windows\installer\{0dfed22a-e13f-055e-ed94-2ad086490154}\ [ZA Dir]
* C:\Windows\installer\{0dfed22a-e13f-055e-ed94-2ad086490154}\L\ [ZA Dir]
* C:\Windows\installer\{0dfed22a-e13f-055e-ed94-2ad086490154}\L\00000004.@ [ZA File]
* C:\Windows\installer\{0dfed22a-e13f-055e-ed94-2ad086490154}\L\201d3dde [ZA File]
* C:\Windows\installer\{0dfed22a-e13f-055e-ed94-2ad086490154}\U\ [ZA Dir]

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* C:\Windows\System32\services.exe [NoSig]
+-> C:\Windows\SoftwareDistribution\Download\fce438afafdfd7622141fad99a8dd451\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_2d69d4f782c83d8c\services.exe : 384,512 : 04/11/2009 00:10 AM : 934e0b7d77ff78c18d9f8891221b6de3 [Pos Repl]
+-> C:\Windows\SoftwareDistribution\Download\fce438afafdfd7622141fad99a8dd451\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe : 279,552 : 04/11/2009 00:27 AM : d4e6d91c1349b7bfb3599a6ada56851b [Pos Repl]
+-> C:\Windows\SysWOW64\services.exe : 279,552 : 04/10/2009 11:28 PM : d4e6d91c1349b7bfb3599a6ada56851b [Pos Repl]
+-> C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_2b7e5beb85a67240\services.exe : 384,512 : 01/20/2008 08:49 PM : dfac660f0f139276cc9299812de42719 [Pos Repl]
+-> C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_2d69d4f782c83d8c\services.exe : 384,512 : 04/11/2009 08:10 AM : 934e0b7d77ff78c18d9f8891221b6de3 [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe : 279,040 : 01/20/2008 08:50 PM : 2b336ab6286d6c81fa02cbab914e3c6c [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe : 279,552 : 04/10/2009 11:28 PM : d4e6d91c1349b7bfb3599a6ada56851b [Pos Repl]

Program finished at: 09/18/2012 11:10:08 AM
Execution time: 0 hours(s), 1 minute(s), and 35 seconds(s)

#14 Akunin773

Akunin773
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:01 AM

Posted 18 September 2012 - 11:22 AM

Finally, here is the Autoruns log:

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AthBtTray" "Bluetooth Tray" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\athbttray.exe"
+ "AtherosBtStack" "Bluetooth Stack Server" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\btvstack.exe"
+ "RunDLLEntry" "AmbRun Endpoints Dynamic Link Library" "Creative Technology Ltd." "c:\windows\system32\ambrune.dll"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Ad-Aware Browsing Protection" "Ad-Aware Browsing Protection" "Lavasoft" "c:\programdata\ad-aware browsing protection\adawarebp.exe"
+ "Adobe Reader Speed Launcher" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\reader 8.0\reader\reader_sl.exe"
+ "BDRegion" "brs" "cyberlink" "c:\program files (x86)\cyberlink\shared files\brs.exe"
+ "CLMLServer" "CyberLink MediaLibray Service" "CyberLink" "c:\program files (x86)\cyberlink\power2go\clmlsvc.exe"
+ "DivXUpdate" "DivX Update" "" "c:\program files (x86)\divx\divx update\divxupdate.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "InstantBurn" "InstantBurn UDF Tool" "CyberLink Corporation." "c:\program files (x86)\cyberlink\instantburn\win2k\iburn.exe"
+ "LchDrvKey" "" "" "c:\windows\lchdrvkey.exe"
+ "LedKey" "Creative Multimedia Driver" "Creative" "c:\windows\cnyhkey.exe"
+ "LWS" "Logitech Webcam Software" "Logitech Inc." "c:\program files (x86)\logitech\lws\webcam software\lws.exe"
+ "NUSB3MON" "USB 3.0 Monitor" "Renesas Electronics Corporation" "c:\program files (x86)\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
+ "QFan Help" "" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\fan xpert\qfanhelp.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "RemoteControl9" "PowerDVD RC Service" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\pdvd9serv.exe"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "UMonit" "ChangeIcon MFC Application" "" "c:\windows\syswow64\umonit.exe"
+ "UpdatePDRShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdirector\muitransfer\muistartmenu.exe"
+ "UpdatePSTShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files (x86)\cyberlink\blu-ray disc suite\muitransfer\muistartmenu.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "HP Digital Imaging Monitor.lnk" "HP Digital Imaging Monitor" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe"
+ "SmartCopy.lnk" "SmartCopy MFC Application" "" "c:\program files (x86)\northstar\smartcopy\smartcopy.exe"
+ "SmartLauncher.lnk" "SmartLauncher" "North Star com." "c:\program files (x86)\northstar\smartlauncher\smartlauncher.exe"
+ "Tenda Wireless Utility.lnk" "Tenda Wireless LAN Card Utility" "Tenda Technology, Corp." "c:\program files (x86)\tenda\common\raui.exe"
+ "WinZip Quick Pick.lnk" "WinZip Executable" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzqkpick.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "LightScribe Control Panel" "" "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lsrunonce.exe"
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "DVDFab Passkey" "DVDFab Passkey is a Windows-based driver that works on-the-fly to unprotect encrypted movie DVDs and Blu-ray discs. - x86" "Fengtao Software Inc." "c:\program files (x86)\dvdfab passkey\dvdfabpasskey.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\born\appdata\local\google\update\googleupdate.exe"
+ "LightScribe Control Panel" "" "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lightscribecontrolpanel.exe"
+ "Logitech Vid" "Logitech Vid HD" "Logitech Inc." "c:\program files (x86)\logitech\vid hd\vid.exe"
+ "Spotify" "Spotify" "Spotify Ltd" "c:\users\born\appdata\roaming\spotify\spotify.exe"
+ "Spotify Web Helper" "" "" "c:\users\born\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "Steam" "Steam" "Valve Corporation" "c:\program files (x86)\steam\steam.exe"
+ "supertintin_skype" "Supertintin Skype Video Call Recorder" "Imtiger Software Inc." "c:\program files (x86)\supertintin for skype\supertintin_skype.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Atheros" "Bluetooth Application Extension" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\btvappext.dll"
+ "DVDFAB64" "DVDFab Shell Extension - x64" "Fengtao Software Inc." "c:\program files (x86)\dvdfab 8 qt\dvdfabshellex.dll"
+ "FormatFactoryShell" "FormatFactory Shell Menu Module" "Free Time" "c:\program files (x86)\freetime\formatfactory\shellex64_101.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DVDFAB32" "DVDFab Shell Extension - x86" "Fengtao Software Inc." "c:\program files (x86)\dvdfab 8 qt\dvdfabshellex32.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "FTShellContext" "ShellContextExt Module" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\shellcontextext.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "FormatFactoryShell" "FormatFactory Shell Menu Module" "Free Time" "c:\program files (x86)\freetime\formatfactory\shellex64_101.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "Ath_CopyHook" "AthCopyHook Dynamic Link Library" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\athcopyhook.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files (x86)\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Reader Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelper.dll"
+ "CIESpeechBHO Class" "Bluetooth IE PlugIn" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\ieplugin.dll"
+ "DivX Plus Web Player HTML5 <video>" "DivX Plus Web Player HTML5 <video> version 2.1.2.145" "DivX, LLC" "c:\program files (x86)\divx\divx plus web player\ie\divxhtml5\divxhtml5.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\3.1.415.1646\swg.dll"
+ "HP Print Enhancer" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll"
+ "HP Smart BHO Class" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\ssv.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Send by Bluetooth to" "Bluetooth IE PlugIn" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\ieplugin.dll"
+ "Show or hide HP Smart Web Printing" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
"Task Scheduler" "" "" ""
+ "\Ad-Aware Antivirus Scheduled Scan" "" "" "File not found: C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe"
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.3 r300" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\ASUS\ASUS RegRun Loader" "" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\aasp\1.01.04\asloader.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1962436503-1996317759-1613448393-1000Core" "Google Installer" "Google Inc." "c:\users\born\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1962436503-1996317759-1613448393-1000UA" "Google Installer" "Google Inc." "c:\users\born\appdata\local\google\update\googleupdate.exe"
+ "\MHotkey" "Multimedia Keyboard Driver" "" "c:\windows\mhotkey.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Windows Defender Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "AtherosSvc" "Atheros BT Stack Service Agent" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\adminservice.exe"
+ "CLKMSVC10_9EC60124" "CyberLink KM Service" "CyberLink" "c:\program files (x86)\cyberlink\powerdvd9\navfilter\kmsvc.exe"
+ "Creative ALchemy AL6 Licensing Service" "Provides licensing services for Creative ALchemy." "Creative Labs" "c:\program files (x86)\common files\creative labs shared\service\al6licensing.exe"
+ "Freemake Improver" "Freemake Improver" "Freemake" "c:\programdata\freemake\freemakeutilsservice\freemakeutilsservice.exe"
+ "hpqcxs08" "HP CUE Context Manager Objects" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc" "This service detects and monitors CUE devices on the system." "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lssrvc.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "PnkBstrA" "PunkBuster Service Component [v1034] http://www.evenbalance.com" "" "c:\windows\syswow64\pnkbstra.exe"
+ "RaMediaServer" "RaMediaServer. If the service is disabled, UPnP Media Server function will not work." "" "File not found: C:\Program Files (x86)\Tenda\Common\RaMediaServer.exe"
+ "RichVideo" "RichVideo Module" "" "c:\program files (x86)\cyberlink\shared files\richvideo.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "Symantec Core LC" "Symantec Core LC" "" "c:\program files (x86)\common files\symantec shared\ccpd-lc\symlcsvc.exe"
+ "UMVPFSrv" "UMVPF is a user mode Logitech driver" "Logitech Inc." "c:\program files (x86)\common files\logishrd\lvmvfm\umvpfsrv.exe"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AgereSoftModem" "SoftModem Device Driver" "Agere Systems" "c:\windows\system32\drivers\agrsm64.sys"
+ "ALSysIO" "" "" "File not found: C:\Users\Born\AppData\Local\Temp\ALSysIO64.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "AsIO" "" "" "c:\windows\syswow64\drivers\asio.sys"
+ "AthBTPort" "Atheros FILTER driver" "Atheros" "c:\windows\system32\drivers\btath_flt.sys"
+ "ATHDFU" "BulkUsb Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\athdfu.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "BTATH_A2DP" "Atheros A2DP driver" "Atheros" "c:\windows\system32\drivers\btath_a2dp.sys"
+ "BTATH_BUS" "Atheros BUS driver" "Atheros" "c:\windows\system32\drivers\btath_bus.sys"
+ "BTATH_HCRP" "Atheros HCRP driver" "Atheros" "c:\windows\system32\drivers\btath_hcrp.sys"
+ "BTATH_LWFLT" "Atheros FILTER driver" "Atheros" "c:\windows\system32\drivers\btath_lwflt.sys"
+ "BTATH_RCP" "Atheros AVRCP driver" "Atheros" "c:\windows\system32\drivers\btath_rcp.sys"
+ "BtFilter" "BtFilter Driver" "Atheros" "c:\windows\system32\drivers\btfilter.sys"
+ "CLBStor" "InstantBurn Storage Helper Driver" "Cyberlink Co.,Ltd." "c:\windows\system32\drivers\clbstor.sys"
+ "CLBUDF" "UDF File System Driver " "CyberLink Corporation." "c:\windows\system32\drivers\clbudf.sys"
+ "CompFilter64" "Logitech USB Video Class Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvbflt64.sys"
+ "cpuz135" "CPUID Driver" "CPUID" "c:\windows\system32\drivers\cpuz135_x64.sys"
+ "dvdfab" "DVDFab Passkey Driver - x64" "Fengtao Software Inc." "c:\windows\system32\drivers\dvdfab.sys"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g6032e.sys"
+ "e1yexpress" "Intel® Gigabit Network Connection NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1y60x64.sys"
+ "gwfilt64" "Creative Audio Driver" "Creative Technology Ltd." "c:\windows\system32\drivers\gwfilt64.sys"
+ "HTCAND64" "ADB Interface" "HTC1124 Inc" "c:\windows\system32\drivers\androidusb.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys"
+ "LVRS64" "Logitech Kernel Audio Improvement Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvrs64.sys"
+ "LVUSBS64" "USB Statistic Driver" "Logitech Inc." "c:\windows\system32\drivers\lvusbs64.sys"
+ "LVUVC64" "Logitech USB Video Class Driver" "Logitech Inc." "c:\windows\system32\drivers\lvuvc64.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "MTsensor" "ATK0110 ACPI Utility" "" "c:\windows\system32\drivers\asacpi.sys"
+ "nusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys"
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys"
+ "PID_PEPI" "Logitech QuickCam Driver" "Logitech Inc." "c:\windows\system32\drivers\lv302v64.sys"
+ "pneteth" "PdaNet Broadband Adapter Driver" "June Fabrics Technology Inc." "c:\windows\system32\drivers\pneteth.sys"
+ "PxHlpa64" "Px Engine Device Driver for 64-bit Windows" "Sonic Solutions" "c:\windows\system32\drivers\pxhlpa64.sys"
+ "RimVSerPort" "RIM Virtual Serial Driver" "Research in Motion Ltd" "c:\windows\system32\drivers\rimserial_amd64.sys"
+ "RSUSBSTOR" "" "" "File not found: System32\Drivers\RTS5121.sys"
+ "RTHDMIAzAudService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rthdmivx.sys"
+ "RTL8169" "Realtek 8101E/8168/8169 NDIS6 64-bit Driver " "Realtek Corporation " "c:\windows\system32\drivers\rtlh64.sys"
+ "RTL8187Se" "Realtek RTL8187S PCIE NDIS Driverr" "Realtek Semiconductor Corporation " "c:\windows\system32\drivers\rtl8187se.sys"
+ "Rts516xIR" "" "" "File not found: system32\DRIVERS\Rts516xIR.sys"
+ "SBRE" "" "" "File not found: C:\Windows\system32\drivers\SBREdrv.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "USBCCID" "" "" "File not found: system32\DRIVERS\Rts5161ccid.sys"
+ "ZDPNDIS4" "" "" "File not found: C:\Windows\system32\ZDPNDIS4.SYS"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "VIDC.FPS1" "Fraps" "Beepa P/L" "c:\windows\system32\frapsv64.dll"
+ "vidc.i420" "Video Codec" "Logitech Inc." "c:\windows\system32\lvcod64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.ac3filter" "" "" "File not found: ac3filter.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
+ "VIDC.FFDS" "" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ff_vfw.dll"
+ "VIDC.FPS1" "Fraps" "Beepa P/L" "c:\windows\syswow64\frapsvid.dll"
+ "vidc.i420" "Helix I420 YUV Codec" "www.helixcommunity.org" "c:\windows\syswow64\i420vfw.dll"
+ "vidc.XVID" "" "" "c:\windows\syswow64\xvidvfw.dll"
+ "vidc.yv12" "Helix YV12 YUV Codec" "www.helixcommunity.org" "c:\windows\syswow64\yv12vfw.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "LAME Audio Encoder" "LAME Audio Encoder" "" "c:\windows\syswow64\lame.ax"
+ "Sony Amplitude Modulation" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"
+ "Sony Chorus" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"
+ "Sony Distortion" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"
+ "Sony Dither" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sftrkfx1_x64.dll"
+ "Sony ExpressFX Amplitude Modulation" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx2_x64.dll"
+ "Sony ExpressFX Audio Restoration" "Sony ExpressFX Audio Restoration" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\xpvinyl_x64.dll"
+ "Sony ExpressFX Chorus" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx2_x64.dll"
+ "Sony ExpressFX Delay" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx2_x64.dll"
+ "Sony ExpressFX Distortion" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx1_x64.dll"
+ "Sony ExpressFX Dynamics" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx3_x64.dll"
+ "Sony ExpressFX Equalization" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx2_x64.dll"
+ "Sony ExpressFX Flange/Wah-Wah" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx1_x64.dll"
+ "Sony ExpressFX Graphic EQ" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx3_x64.dll"
+ "Sony ExpressFX Noise Gate" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx3_x64.dll"
+ "Sony ExpressFX Reverb" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx1_x64.dll"
+ "Sony ExpressFX Stutter" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx1_x64.dll"
+ "Sony ExpressFX Time Stretch" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx3_x64.dll"
+ "Sony Flange/Wah-wah" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"
+ "Sony Gapper/Snipper" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"
+ "Sony Graphic Dynamics" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"
+ "Sony Graphic EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"
+ "Sony Multi-Band Dynamics" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"
+ "Sony Multi-Tap Delay" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"
+ "Sony Noise Gate" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"
+ "Sony Pan" "Sound Forge Pro Pan and Volume 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sffrgpnv_x64.dll"
+ "Sony Paragraphic EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"
+ "Sony Parametric EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"
+ "Sony Pitch Shift" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"
+ "Sony Resonant Filter" "Sony Resonant Filter" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfresfilter_x64.dll"
+ "Sony Reverb" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"
+ "Sony Simple Delay" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"
+ "Sony Smooth/Enhance" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"
+ "Sony Time Stretch" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"
+ "Sony Track Compressor" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sftrkfx1_x64.dll"
+ "Sony Track EQ" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sftrkfx1_x64.dll"
+ "Sony Track Noise Gate" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sftrkfx1_x64.dll"
+ "Sony Vibrato" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"
+ "Sony Volume" "Sound Forge Pro Pan and Volume 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\sffrgpnv_x64.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "AMD MJPEG Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Sony Wave Hammer Surround" "Sony Wave Hammer 5.1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio_x64\mchammer_x64.dll"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Theora Encode Filter" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsftheoraencoder.dll"
+ "WebM Muxer Filter" "WebM Multiplexer Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\x64\webmmux.dll"
+ "WebM Splitter Filter" "Webm Splitter Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\x64\webmsplit.dll"
+ "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\x64\vp8decoder.dll"
+ "WebM VP8 Encoder Filter" "WebM VP8 Encoder Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\x64\vp8encoder.dll"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Xiph.Org FLAC Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfflacdecoder.dll"
+ "Xiph.Org FLAC Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfflacencoder.dll"
+ "Xiph.Org Native FLAC Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfnativeflacsource.dll"
+ "Xiph.Org Ogg Demuxer" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfoggdemux2.dll"
+ "Xiph.Org Ogg Muxer" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfoggmux.dll"
+ "Xiph.Org Speex Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfspeexdecoder.dll"
+ "Xiph.Org Speex Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfspeexencoder.dll"
+ "Xiph.Org Theora Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsftheoradecoder.dll"
+ "Xiph.Org Vorbis Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfvorbisdecoder.dll"
+ "Xiph.Org Vorbis Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\x64\dsfvorbisencoder.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "aac_parser" "Direct show parser filter for ADTS" "" "c:\windows\syswow64\aac_parser.ax"
+ "AC3Filter" "ac3filter" "" "c:\windows\syswow64\ac3dx.ax"
+ "AMD MJPEG Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "CoreAAC Audio Decoder" "CoreAAC" "" "c:\windows\syswow64\coreaac.ax"
+ "CoreAVC Video Decoder" "CoreAVC DirectShow Video Decoder" "CoreCodec" "c:\windows\syswow64\avcdx.ax"
+ "CyberLink Audio Commercial Cut Analyzer" "CLAudCM" "Cyberlink Corp." "c:\program files (x86)\cyberlink\powerproducer\claudcm.ax"
+ "CyberLink Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\se_claud.ax"
+ "CyberLink Audio Decoder (PDVD9)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claud.ax"
+ "CyberLink Audio Decoder(PDVD9 UPnP)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\claud.ax"
+ "CyberLink Audio Effect (PDVD9)" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claudfx.ax"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio Spectrum Analyzer (PDVD9)" "CLAudSpa.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claudspa.ax"
+ "CyberLink Audio Spectrum Analyzer(PDVD9 UPnP)" "CLAudSpa.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\claudspa.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink Audio Wizard" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claudwizard.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "CyberLink AudioCD Filter (PDVD9)" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claudiocd.ax"
+ "CyberLink AVCHD Navigator" "CLBDROMNav" "cyberlink" "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clavchdnav.ax"
+ "CyberLink Demultiplexer" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\cldemuxer.ax"
+ "CyberLink Demultiplexer(PDVD9 UPnP)" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\cldemuxer.ax"
+ "Cyberlink Demuxer 2.0" "CLDemuxer2" "Cyberlink" "c:\program files (x86)\cyberlink\powerdvd9\navfilter\cldemuxer2.ax"
+ "CyberLink Digest Filter (PDVD9)" "DigestFilter Dynamic Link Library" "" "c:\program files (x86)\cyberlink\powerdvd9\digestfilter.dll"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\se_cldumpdispatch.ax"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdump.ax"
+ "CyberLink DV Buffer" "DV dump Filter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerproducer\ppdvdump.ax"
+ "CyberLink DVD Navigator (PDVD9)" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clnavx.ax"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll"
+ "CyberLink Editing Service 4.5 (Source)" "CES Kernel (LT15)" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\cledtkrn.dll"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink FLV Splitter (PDVD9)" "CyberLink FLV Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clflvsplitter.ax"
+ "CyberLink Frame Parser" "CLFParser" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\clfparser.ax"
+ "CyberLink H.264/AVC Decoder" "CyberLink 264 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\cl264dec.ax"
+ "CyberLink HAM Decoder" "CyberLink 264 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clcvd.ax"
+ "CyberLink HD/BD Mixer (PDVD9)" "CLHBMixer" " " "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\clhbmixer.ax"
+ "CyberLink Line21 Decoder (PDVD9)" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clline21.ax"
+ "CyberLink Load Image Filter" "CLImage (LT15)" "CyberLink" "c:\program files (x86)\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink Matroska Splitter (PDVD9)" "CyberLink Matroska Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clmkvsplter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\se_mpgmux.ax"
+ "CyberLink MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\clsplter.ax"
+ "CyberLink MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clsplter.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink MPEG-4 Muxer" "CyberLink MPEG-4 Muxer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\se_clm4muxer.ax"
+ "CyberLink MPEG-4 Muxer" "CyberLink MPEG-4 Muxer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\clm4muxer.ax"
+ "CyberLink MPEG-4 Splitter" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\se_clm4splt.ax"
+ "CyberLink MPEG-4 Splitter" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\clm4splt.ax"
+ "CyberLink MPEG-4 Splitter (PDVD9)" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clm4splt.ax"
+ "CyberLink MPEGV Analyzer" "CLMPEGAnalysis" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\se_clmpegvanalyzer.ax"
+ "CyberLink MPEGV Analyzer" "CLMPEGAnalysis" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\clmpegvanalyzer.ax"
+ "CyberLink Mux Push Source" "Cyberlink push-mode file source" "Cyberlink" "c:\program files (x86)\cyberlink\powerproducer\se_clmuxpushsrc.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink Push-Mode CLStream(PDVD9)" "CLStream" "CyberLink" "c:\program files (x86)\cyberlink\powerdvd9\upnp\clstream(pushmode).ax"
+ "CyberLink RealAudio Decoder (PDVD9)" "CyberLink RealMedia Audio Decoder" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\clrmaud.ax"
+ "CyberLink RealMedia Splitter (PDVD9)" "CyberLink RealMedia Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clrmsplitter.ax"
+ "CyberLink RealVideo Decoder (PDVD9)" "CyberLink RealMedia Video Decoder" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clrmvd.ax"
+ "CyberLink SBE Filter" "CLSBE" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\clsbe.ax"
+ "CyberLink SBE Source Filter" "CLSBESrc" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\clsbesrc.ax"
+ "Cyberlink Scene Detect Filter" "CLScnDt" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppscndt.ax"
+ "CyberLink SnapShotTIP Filter" "CLSShot" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\clsshot.ax"
+ "CyberLink Stamp Effect" "" "CyberLink corporate" "c:\program files (x86)\cyberlink\powerproducer\ppstampeffect.ax"
+ "CyberLink Streamming Filter(PDVD9)" "Cyberlink Streaming Source Filter(Scramble)" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\clstream.ax"
+ "Cyberlink Sub-Picture Filter" "Cyberlink Sub-Picture Filter" "Cyberlink" "c:\program files (x86)\cyberlink\powerproducer\clsubpic.ax"
+ "Cyberlink SubTitle Importor (PDVD9)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clsubtitle.ax"
+ "Cyberlink SubTitle Importor 2.0 (PDVD9)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clsubtitle.ax"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TimeStretch Filter (PDVD9)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\clauts.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\se_cltlmsplter.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax"
+ "Cyberlink TS Information" "CLTSInfo" "Cyberlink" "c:\program files (x86)\cyberlink\powerproducer\pptsinfo.ax"
+ "CyberLink Tzan Filter" "Cyberlink Tzan Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\cltzan.ax"
+ "CyberLink Tzan Filter (PDVD9)" "Cyberlink Tzan Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\cltzan.ax"
+ "CyberLink UltraSpeed/SVRT Demultiplexer" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\se_cledtdemuxer.ax"
+ "CyberLink UltraSpeed/SVRT Demultiplexer" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\cledtdemuxer.ax"
+ "CyberLink Video Decoder (PDVD9)" "CyberLink 264 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clcvd.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax"
+ "CyberLink Video/SP Decoder (PDVD9)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clvsd.ax"
+ "CyberLink Video/SP Decoder(PDVD9 UPnP)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\clvsd.ax"
+ "CyberLink WMV/WMA Demux(PDVD9)" "WMV/WMA Demux" "CyberLink" "c:\program files (x86)\cyberlink\powerdvd9\upnp\clwmfdemux.ax"
+ "Dirac Source" "Dirac Splitter" "Gabest" "c:\windows\syswow64\diracsplitter.ax"
+ "Dirac Splitter" "Dirac Splitter" "Gabest" "c:\windows\syswow64\diracsplitter.ax"
+ "Dirac Video Decoder" "Dirac Splitter" "Gabest" "c:\windows\syswow64\diracsplitter.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\vsfilter.dll"
+ "DivX AAC Decoder" "AAC audio decoder filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx codec\divxdec.ax"
+ "DivX Demux Filter" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX Demux Filter (Unrestricted Edition)" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\divxdech264.ax"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "FLV Video Decoder" "FLV Splitter" "Gabest" "c:\windows\syswow64\flvdx.dll"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\combined community codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "LAME Audio Encoder" "LAME Audio Encoder" "" "c:\windows\syswow64\lame.ax"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavaudio.ax"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavsplitter.ax"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavsplitter.ax"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavvideo.ax"
+ "Matroska Source" "Matroska Splitter" "Gabest" "c:\windows\syswow64\matroskadx.ax"
+ "Matroska Splitter" "Matroska Splitter" "Gabest" "c:\windows\syswow64\matroskadx.ax"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MPC - Avi Source" "Avi Splitter" "Gabest" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\avisplitter.ax"
+ "MPC - Avi Splitter" "Avi Splitter" "Gabest" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\avisplitter.ax"
+ "MPC - MP4 Source" "MP4 Splitter" "MPC-HC Team" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\mp4splitter.ax"
+ "MPC - MP4 Splitter" "MP4 Splitter" "MPC-HC Team" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\mp4splitter.ax"
+ "MPC - Mpeg Source (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\mpegsplitter.ax"
+ "MPC - Mpeg Splitter (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\mpegsplitter.ax"
+ "MPC - MPEG-2 Video Decoder (Gabest)" "MPEG-2 Decoder Filter for DirectShow" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\mpeg2decfilter.ax"
+ "MPC - MPEG4 Video Source" "MP4 Splitter" "MPC-HC Team" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\mp4splitter.ax"
+ "MPC - MPEG4 Video Splitter" "MP4 Splitter" "MPC-HC Team" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\mp4splitter.ax"
+ "MPC - Video decoder" "H.264/VC-1 DXVA video decoder" "MPC HomeCinema" "c:\program files (x86)\freetime\formatfactory\ffmodules\filters\mpcvideodec.ax"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gresample.ax"
+ "PowerProducer Double Tee" "Cyberlink Double Tee Filter" "CtberLink Corporation" "c:\program files (x86)\cyberlink\powerproducer\ppdoubletee.ax"
+ "PP Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\claud.ax"
+ "PP Audio Effect" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerproducer\claudfx.ax"
+ "PP Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\powerproducer\claudenc.ax"
+ "PP Audio Noise Reduction (CES)" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\claunrwrapper.ax"
+ "PP Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\ppaursmpl.ax"
+ "PP Byte Counter" "PP Byte Counter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerproducer\ppbytecounter.ax"
+ "PP DDR" "PP DDR" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\pprender.ax"
+ "PP Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\cldumpdispatch.ax"
+ "PP Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\cldump.ax"
+ "PP DV Buffer" "CLDVBuffer Filter" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppdvbuffer.ax"
+ "PP DV Dump Filter" "DV dump Filter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerproducer\ppdvdump.ax"
+ "PP DV TCR" "DVTCR" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppdvtcr.ax"
+ "PP File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\ppreader.ax"
+ "PP Gate Filter" "CLGate" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppgate.ax"
+ "PP IDM" "idmf" "Cyberlink" "c:\program files (x86)\cyberlink\powerproducer\ppidmf.ax"
+ "PP M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppm2vwriter.ax"
+ "PP MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\mpgmux.ax"
+ "PP MPEG Splitter" "PP MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\ppsplter.ax"
+ "PP MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files (x86)\cyberlink\powerproducer\clvidenc.ax"
+ "PP PCM Wrapper" "PP PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\pppcmenc.ax"
+ "PP Snapshot Filter" "CLSnapShot Filter" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppsnapshot.ax"
+ "PP SnapShotTIP Filter" "CLSShot" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppsshot.ax"
+ "PP TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\clauts.ax"
+ "PP TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\cltlmsplter.ax"
+ "PP TV Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\claudtv.ax"
+ "PP Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\ppgenericvsd.ax"
+ "PP Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppvidfx.ax"
+ "PP Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppresample.ax"
+ "PP Video Regulator" "Video Regulator" "Cyberlink" "c:\program files (x86)\cyberlink\powerproducer\clrgl.ax"
+ "PP WAV Dest" "CLWavDest" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppwavdest.ax"
+ "PP YUY2 Deinterlace" "DitlYuY2" "CyberLink" "c:\program files (x86)\cyberlink\powerproducer\ppditlyuy2.ax"
+ "PP YUY2 Sub-Sampling" "SubYUY2 Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerproducer\ppsubyuy2.ax"
+ "QQ Source" "ImTOO Software Studio" "ImTOO Software Studio" "c:\program files (x86)\imtoo\video converter ultimate 6\yuvsrc.ax"
+ "RadLight Ogg Splitter" "RLOgg" "RadLight" "c:\windows\syswow64\rlogg.ax"
+ "RadLight Speex Decoder" "RadLight Speex Decoder" "" "c:\windows\syswow64\rlspeexdec.ax"
+ "RadLight Theora Decoder" "RadLight Theora Decoder" "RadLight, LLC" "c:\windows\syswow64\rltheoradec.ax"
+ "RadLight Vorbis Decoder" "RLVorbisDec.ax" "RadLight" "c:\windows\syswow64\rlvorbisdec.ax"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\windows\syswow64\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\windows\syswow64\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\windows\syswow64\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\windows\syswow64\realmediasplitter.ax"
+ "SmartSound SDS Reader" "SDS Media File Reader Filter" "SmartSound Software Inc." "c:\program files (x86)\smartsound software\quicktracks\sdsreader.dll"
+ "SmartSound Soundtrack" "Quicktracks Soundtrack source filter" "SmartSound Software Inc." "c:\program files (x86)\smartsound software\quicktracks\directqx.dll"
+ "Subtitle Source" "DirectVobSub" "Gabest" "c:\windows\syswow64\dvobsub.ax"
+ "TAK SourceFilter" "" "" "c:\windows\syswow64\takdsdecoder.ax"
+ "Theora Encode Filter" "" "" "c:\program files (x86)\xiph.org\open codecs\dsftheoraencoder.dll"
+ "Time Regulator" "TimeRegulator" "cyberlink" "c:\program files (x86)\cyberlink\powerproducer\avi_audtr.ax"
+ "WebM Muxer Filter" "WebM Multiplexer Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\webmmux.dll"
+ "WebM Splitter Filter" "Webm Splitter Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\webmsplit.dll"
+ "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\vp8decoder.dll"
+ "WebM VP8 Encoder Filter" "WebM VP8 Encoder Filter" "Google" "c:\program files (x86)\xiph.org\open codecs\vp8encoder.dll"
+ "Xiph.Org FLAC Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfflacdecoder.dll"
+ "Xiph.Org FLAC Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfflacencoder.dll"
+ "Xiph.Org Native FLAC Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfnativeflacsource.dll"
+ "Xiph.Org Ogg Demuxer" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfoggdemux2.dll"
+ "Xiph.Org Ogg Muxer" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfoggmux.dll"
+ "Xiph.Org Speex Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfspeexdecoder.dll"
+ "Xiph.Org Speex Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfspeexencoder.dll"
+ "Xiph.Org Theora Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsftheoradecoder.dll"
+ "Xiph.Org Vorbis Decoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfvorbisdecoder.dll"
+ "Xiph.Org Vorbis Encoder" "" "" "c:\program files (x86)\xiph.org\open codecs\dsfvorbisencoder.dll"
+ "Xvid MPEG-4 Video Decoder" "" "" "c:\windows\syswow64\xvid.ax"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "CutePDF Writer Monitor" "" "" "c:\windows\system32\cpwmon64.dll"
+ "hpf3l083.dll" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l083.dll"
"C:\Users\Born\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\Clock.gadget\en-US\Gadget.xml"
+ "Feed Headlines" "Track the latest news, sports, and entertainment headlines." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\RSSFeeds.Gadget\en-US\Gadget.xml"
+ "Slide Show" "Show a continuous slide show of your pictures." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\SlideShow.Gadget\en-US\Gadget.xml"

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:01 AM

Posted 18 September 2012 - 01:07 PM

Run RKILL again and post the new log

Edited by narenxp, 19 September 2012 - 10:23 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users