Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Security Center says "Virus Protection Not Found" even though I have an AV on


  • Please log in to reply
18 replies to this topic

#1 SoXfused

SoXfused

  • Members
  • 136 posts
  • OFFLINE
  •  
  • Local time:12:27 AM

Posted 28 September 2012 - 09:35 PM

For some reson, Windows Security Center says that Virus Protection is not found even though I have my antivirus on. My AV is Microsoft Security Essentials.

I tried uninstalling and reinstalling MSE and Windows Security Center still keeps saying that I don't have an AV on even though I do. I just got done doing full scans with MSE and with Super AntiSpyware and the both came up clean. I don't know what's going on.

Another thing I might mention is that when I tried to do a system restore, I couldn't do it because apparently it had been turned off, even though I swore I had it set to on before.

Could anyone help? Thank you! B)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:27 AM

Posted 29 September 2012 - 03:02 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 SoXfused

SoXfused
  • Topic Starter

  • Members
  • 136 posts
  • OFFLINE
  •  
  • Local time:12:27 AM

Posted 29 September 2012 - 07:54 PM

Hello, thank you for responding. :) Here are my results:

TDSSkiller

15:13:13.0156 3184 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
15:13:13.0484 3184 ============================================================
15:13:13.0484 3184 Current date / time: 2012/09/29 15:13:13.0484
15:13:13.0484 3184 SystemInfo:
15:13:13.0484 3184
15:13:13.0484 3184 OS Version: 5.1.2600 ServicePack: 3.0
15:13:13.0484 3184 Product type: Workstation
15:13:13.0484 3184 ComputerName: DREAMS
15:13:13.0484 3184 UserName: R
15:13:13.0484 3184 Windows directory: C:\WINDOWS
15:13:13.0484 3184 System windows directory: C:\WINDOWS
15:13:13.0484 3184 Processor architecture: Intel x86
15:13:13.0484 3184 Number of processors: 2
15:13:13.0484 3184 Page size: 0x1000
15:13:13.0484 3184 Boot type: Normal boot
15:13:13.0484 3184 ============================================================
15:13:14.0312 3184 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:13:14.0531 3184 ============================================================
15:13:14.0531 3184 \Device\Harddisk0\DR0:
15:13:14.0531 3184 MBR partitions:
15:13:14.0531 3184 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x8FE48B, BlocksNum 0x24B2B375
15:13:14.0531 3184 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x8FE44C
15:13:14.0531 3184 ============================================================
15:13:14.0593 3184 C: <-> \Device\Harddisk0\DR0\Partition1
15:13:14.0593 3184 D: <-> \Device\Harddisk0\DR0\Partition2
15:13:14.0593 3184 ============================================================
15:13:14.0593 3184 Initialize success
15:13:14.0593 3184 ============================================================
15:13:39.0468 3264 ============================================================
15:13:39.0468 3264 Scan started
15:13:39.0468 3264 Mode: Manual; TDLFS;
15:13:39.0468 3264 ============================================================
15:13:39.0593 3264 ================ Scan system memory ========================
15:13:42.0343 3264 System memory - ok
15:13:42.0343 3264 ================ Scan services =============================
15:13:42.0437 3264 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
15:13:42.0437 3264 !SASCORE - ok
15:13:42.0562 3264 Abiosdsk - ok
15:13:42.0593 3264 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
15:13:42.0593 3264 abp480n5 - ok
15:13:42.0609 3264 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:13:42.0609 3264 ACPI - ok
15:13:42.0640 3264 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
15:13:42.0640 3264 ACPIEC - ok
15:13:42.0687 3264 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:13:42.0859 3264 AdobeFlashPlayerUpdateSvc - ok
15:13:42.0890 3264 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
15:13:42.0890 3264 adpu160m - ok
15:13:42.0937 3264 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:13:42.0937 3264 aec - ok
15:13:42.0984 3264 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:13:42.0984 3264 AFD - ok
15:13:42.0984 3264 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
15:13:42.0984 3264 agp440 - ok
15:13:43.0000 3264 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
15:13:43.0000 3264 agpCPQ - ok
15:13:43.0000 3264 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
15:13:43.0000 3264 Aha154x - ok
15:13:43.0000 3264 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
15:13:43.0000 3264 aic78u2 - ok
15:13:43.0046 3264 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
15:13:43.0046 3264 aic78xx - ok
15:13:43.0078 3264 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:13:43.0078 3264 Alerter - ok
15:13:43.0093 3264 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
15:13:43.0093 3264 ALG - ok
15:13:43.0093 3264 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
15:13:43.0109 3264 AliIde - ok
15:13:43.0109 3264 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
15:13:43.0109 3264 alim1541 - ok
15:13:43.0109 3264 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
15:13:43.0109 3264 amdagp - ok
15:13:43.0125 3264 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
15:13:43.0125 3264 amsint - ok
15:13:43.0156 3264 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
15:13:43.0156 3264 AppMgmt - ok
15:13:43.0187 3264 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
15:13:43.0187 3264 Arp1394 - ok
15:13:43.0203 3264 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
15:13:43.0203 3264 asc - ok
15:13:43.0203 3264 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
15:13:43.0203 3264 asc3350p - ok
15:13:43.0203 3264 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
15:13:43.0218 3264 asc3550 - ok
15:13:43.0500 3264 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:13:43.0515 3264 aspnet_state - ok
15:13:43.0531 3264 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:13:43.0531 3264 AsyncMac - ok
15:13:43.0562 3264 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:13:43.0562 3264 atapi - ok
15:13:43.0562 3264 Atdisk - ok
15:13:43.0593 3264 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:13:43.0593 3264 Atmarpc - ok
15:13:43.0625 3264 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:13:43.0625 3264 AudioSrv - ok
15:13:43.0656 3264 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:13:43.0656 3264 audstub - ok
15:13:43.0671 3264 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:13:43.0671 3264 Beep - ok
15:13:43.0703 3264 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
15:13:43.0859 3264 BITS - ok
15:13:43.0890 3264 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
15:13:43.0890 3264 Browser - ok
15:13:43.0890 3264 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
15:13:43.0890 3264 cbidf - ok
15:13:43.0890 3264 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:13:43.0890 3264 cbidf2k - ok
15:13:43.0906 3264 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
15:13:43.0906 3264 cd20xrnt - ok
15:13:43.0921 3264 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:13:43.0921 3264 Cdaudio - ok
15:13:43.0937 3264 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:13:43.0937 3264 Cdfs - ok
15:13:43.0968 3264 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:13:43.0968 3264 Cdrom - ok
15:13:43.0968 3264 Changer - ok
15:13:44.0000 3264 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:13:44.0000 3264 CiSvc - ok
15:13:44.0031 3264 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:13:44.0031 3264 ClipSrv - ok
15:13:44.0109 3264 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:13:44.0140 3264 clr_optimization_v2.0.50727_32 - ok
15:13:44.0187 3264 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:13:44.0296 3264 clr_optimization_v4.0.30319_32 - ok
15:13:44.0312 3264 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
15:13:44.0312 3264 CmBatt - ok
15:13:44.0343 3264 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
15:13:44.0359 3264 CmdIde - ok
15:13:44.0359 3264 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
15:13:44.0359 3264 Compbatt - ok
15:13:44.0359 3264 COMSysApp - ok
15:13:44.0375 3264 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
15:13:44.0390 3264 Cpqarray - ok
15:13:44.0406 3264 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:13:44.0406 3264 CryptSvc - ok
15:13:44.0437 3264 [ 177BC4EE3840119A780EAFAD5A010F8F ] ctac32k C:\WINDOWS\system32\drivers\ctac32k.sys
15:13:44.0468 3264 ctac32k - ok
15:13:44.0500 3264 [ EB0C0D62D8D2B8F41DA149C866E93397 ] ctaud2k C:\WINDOWS\system32\drivers\ctaud2k.sys
15:13:44.0531 3264 ctaud2k - ok
15:13:44.0562 3264 [ 7D7EEA7FFBC19E1B712D241490BE51ED ] ctprxy2k C:\WINDOWS\system32\drivers\ctprxy2k.sys
15:13:44.0562 3264 ctprxy2k - ok
15:13:44.0593 3264 [ 538122D33DD4B04CC189D5CA72BD6706 ] ctsfm2k C:\WINDOWS\system32\drivers\ctsfm2k.sys
15:13:44.0593 3264 ctsfm2k - ok
15:13:44.0640 3264 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
15:13:44.0640 3264 dac2w2k - ok
15:13:44.0656 3264 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
15:13:44.0656 3264 dac960nt - ok
15:13:44.0687 3264 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:13:44.0703 3264 DcomLaunch - ok
15:13:44.0750 3264 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:13:44.0765 3264 Dhcp - ok
15:13:44.0765 3264 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:13:44.0765 3264 Disk - ok
15:13:44.0781 3264 dmadmin - ok
15:13:44.0812 3264 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:13:44.0843 3264 dmboot - ok
15:13:44.0859 3264 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:13:44.0859 3264 dmio - ok
15:13:44.0859 3264 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:13:44.0859 3264 dmload - ok
15:13:44.0890 3264 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
15:13:44.0890 3264 dmserver - ok
15:13:44.0921 3264 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:13:44.0921 3264 DMusic - ok
15:13:44.0937 3264 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:13:44.0937 3264 Dnscache - ok
15:13:44.0984 3264 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:13:44.0984 3264 Dot3svc - ok
15:13:44.0984 3264 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
15:13:44.0984 3264 dpti2o - ok
15:13:45.0015 3264 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:13:45.0015 3264 drmkaud - ok
15:13:45.0046 3264 [ 00192F0C612591D585594E9467E6CA8B ] e1express C:\WINDOWS\system32\DRIVERS\e1e5132.sys
15:13:45.0062 3264 e1express - ok
15:13:45.0078 3264 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:13:45.0093 3264 EapHost - ok
15:13:45.0156 3264 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
15:13:45.0156 3264 ehRecvr - ok
15:13:45.0187 3264 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
15:13:45.0187 3264 ehSched - ok
15:13:45.0218 3264 [ 1B8A7905EAF8291CACE5089EF7D1D122 ] ELacpi C:\WINDOWS\system32\DRIVERS\ELacpi.sys
15:13:45.0218 3264 ELacpi - ok
15:13:45.0234 3264 [ C22E0FA4402FC4E2C8B24C494D7BDA0D ] ELhid C:\WINDOWS\System32\Drivers\Elhid.sys
15:13:45.0265 3264 ELhid - ok
15:13:45.0281 3264 [ BD18A73709A43704424BBE88BC79942C ] ELkbd C:\WINDOWS\System32\Drivers\Elkbd.sys
15:13:45.0296 3264 ELkbd - ok
15:13:45.0312 3264 [ 1720514E8AEF9FF424E634F277C1FBFD ] ELmon C:\WINDOWS\System32\Drivers\Elmon.sys
15:13:45.0328 3264 ELmon - ok
15:13:45.0343 3264 [ 8DB2B8F8C31665F7989FCB46FC465D1A ] ELmou C:\WINDOWS\System32\Drivers\Elmou.sys
15:13:45.0359 3264 ELmou - ok
15:13:45.0421 3264 [ 82111D249C4229ED99ED03A37A222DFE ] ELService C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology Drivers\Elservice.exe
15:13:45.0437 3264 ELService - ok
15:13:45.0453 3264 [ 8E0EB62BE9F9BEE7C2E4C50685038E8D ] emupia C:\WINDOWS\system32\drivers\emupia2k.sys
15:13:45.0453 3264 emupia - ok
15:13:45.0484 3264 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:13:45.0484 3264 ERSvc - ok
15:13:45.0515 3264 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
15:13:45.0515 3264 Eventlog - ok
15:13:45.0562 3264 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
15:13:45.0562 3264 EventSystem - ok
15:13:45.0593 3264 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:13:45.0609 3264 Fastfat - ok
15:13:45.0640 3264 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:13:45.0656 3264 FastUserSwitchingCompatibility - ok
15:13:45.0671 3264 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
15:13:45.0671 3264 Fdc - ok
15:13:45.0703 3264 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:13:45.0703 3264 Fips - ok
15:13:45.0718 3264 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
15:13:45.0734 3264 Flpydisk - ok
15:13:45.0765 3264 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:13:45.0765 3264 FltMgr - ok
15:13:45.0843 3264 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:13:45.0843 3264 FontCache3.0.0.0 - ok
15:13:45.0875 3264 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:13:45.0875 3264 Fs_Rec - ok
15:13:45.0875 3264 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:13:45.0875 3264 Ftdisk - ok
15:13:45.0906 3264 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:13:45.0906 3264 Gpc - ok
15:13:45.0968 3264 [ F2607D0D89F57D3564CF65A61A237F1A ] ha20x2k C:\WINDOWS\system32\drivers\ha20x2k.sys
15:13:46.0000 3264 ha20x2k - ok
15:13:46.0015 3264 [ 9C1A84CB7D209CBECB1909DE4875E9D6 ] HECI C:\WINDOWS\system32\DRIVERS\HECI.sys
15:13:46.0015 3264 HECI - ok
15:13:46.0109 3264 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:13:46.0109 3264 helpsvc - ok
15:13:46.0140 3264 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
15:13:46.0140 3264 HidServ - ok
15:13:46.0156 3264 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:13:46.0156 3264 HidUsb - ok
15:13:46.0187 3264 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:13:46.0187 3264 hkmsvc - ok
15:13:46.0203 3264 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
15:13:46.0203 3264 hpn - ok
15:13:46.0234 3264 [ C02DC9D4358E43D088F2061C2B2BF30E ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
15:13:46.0234 3264 HSFHWBS2 - ok
15:13:46.0281 3264 [ CBF6831420A97E8FBB91E5F52B707EF7 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
15:13:46.0312 3264 HSF_DPV - ok
15:13:46.0359 3264 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:13:46.0359 3264 HTTP - ok
15:13:46.0390 3264 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:13:46.0390 3264 HTTPFilter - ok
15:13:46.0406 3264 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
15:13:46.0406 3264 i2omgmt - ok
15:13:46.0406 3264 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
15:13:46.0406 3264 i2omp - ok
15:13:46.0453 3264 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:13:46.0453 3264 i8042prt - ok
15:13:46.0484 3264 [ 019CF5F31C67030841233C545A0E217A ] iaStor C:\WINDOWS\system32\DRIVERS\IASTOR.SYS
15:13:46.0484 3264 iaStor - ok
15:13:46.0562 3264 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:13:46.0593 3264 idsvc - ok
15:13:46.0656 3264 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:13:46.0656 3264 Imapi - ok
15:13:46.0687 3264 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
15:13:46.0687 3264 ImapiService - ok
15:13:46.0703 3264 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
15:13:46.0703 3264 ini910u - ok
15:13:46.0703 3264 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
15:13:46.0703 3264 IntelIde - ok
15:13:46.0734 3264 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:13:46.0734 3264 intelppm - ok
15:13:46.0750 3264 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:13:46.0750 3264 Ip6Fw - ok
15:13:46.0781 3264 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:13:46.0781 3264 IpFilterDriver - ok
15:13:46.0781 3264 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:13:46.0796 3264 IpInIp - ok
15:13:46.0828 3264 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:13:46.0828 3264 IpNat - ok
15:13:46.0859 3264 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:13:46.0875 3264 IPSec - ok
15:13:46.0875 3264 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:13:46.0875 3264 IRENUM - ok
15:13:46.0906 3264 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:13:46.0906 3264 isapnp - ok
15:13:47.0000 3264 [ 0E410EDC8D0527801B899CF29E60597C ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
15:13:47.0000 3264 JavaQuickStarterService - ok
15:13:47.0015 3264 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:13:47.0015 3264 Kbdclass - ok
15:13:47.0046 3264 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:13:47.0046 3264 kbdhid - ok
15:13:47.0062 3264 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:13:47.0062 3264 kmixer - ok
15:13:47.0281 3264 [ 162A5E3A691B903111526147C8D29E6D ] Kodak AiO Network Discovery Service C:\Program Files\Kodak\AiO\Center\EKAiOHostService.exe
15:13:47.0296 3264 Kodak AiO Network Discovery Service - ok
15:13:47.0390 3264 [ B5E53FCA219A6491E9A1BA146A5D2452 ] Kodak AiO Status Monitor Service C:\Program Files\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
15:13:47.0421 3264 Kodak AiO Status Monitor Service - ok
15:13:47.0453 3264 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:13:47.0453 3264 KSecDD - ok
15:13:47.0500 3264 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:13:47.0500 3264 lanmanserver - ok
15:13:47.0531 3264 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:13:47.0531 3264 lanmanworkstation - ok
15:13:47.0562 3264 [ BE2DC24D403643A2D1D98F33C7087B38 ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
15:13:47.0562 3264 LBeepKE - ok
15:13:47.0562 3264 lbrtfdc - ok
15:13:47.0656 3264 [ 910344E2A984010435AE84783B25E5EB ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
15:13:47.0656 3264 LBTServ - ok
15:13:47.0687 3264 [ 01CC7FB6E790EF044B411377F3A1FF41 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
15:13:47.0687 3264 LHidFilt - ok
15:13:47.0718 3264 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:13:47.0734 3264 LmHosts - ok
15:13:47.0781 3264 [ A2E7EAE8898D7B4B8C302B8F4E836BB5 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
15:13:47.0781 3264 LMouFilt - ok
15:13:47.0812 3264 [ 050AF61670D668610F27AA2C99996AFD ] MAUSBFASTTRACKPRO C:\WINDOWS\system32\DRIVERS\MAudioFastTrackPro.sys
15:13:47.0859 3264 MAUSBFASTTRACKPRO - ok
15:13:47.0890 3264 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
15:13:47.0890 3264 MBAMProtector - ok
15:13:47.0937 3264 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:13:47.0953 3264 MBAMScheduler - ok
15:13:47.0984 3264 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
15:13:48.0015 3264 MBAMService - ok
15:13:48.0046 3264 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
15:13:48.0062 3264 McrdSvc - ok
15:13:48.0078 3264 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
15:13:48.0078 3264 mdmxsdk - ok
15:13:48.0109 3264 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:13:48.0109 3264 Messenger - ok
15:13:48.0140 3264 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
15:13:48.0140 3264 MHN - ok
15:13:48.0171 3264 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
15:13:48.0171 3264 MHNDRV - ok
15:13:48.0250 3264 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
15:13:48.0250 3264 Microsoft Office Groove Audit Service - ok
15:13:48.0265 3264 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:13:48.0265 3264 mnmdd - ok
15:13:48.0296 3264 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
15:13:48.0296 3264 mnmsrvc - ok
15:13:48.0328 3264 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:13:48.0328 3264 Modem - ok
15:13:48.0343 3264 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:13:48.0343 3264 Mouclass - ok
15:13:48.0359 3264 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:13:48.0359 3264 mouhid - ok
15:13:48.0390 3264 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:13:48.0390 3264 MountMgr - ok
15:13:48.0437 3264 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
15:13:48.0437 3264 MpFilter - ok
15:13:48.0609 3264 [ A69630D039C38018689190234F866D77 ] MpKsl6397d6fb c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7D3880C8-4B17-4878-BB33-68F5B02A8BA8}\MpKsl6397d6fb.sys
15:13:48.0609 3264 MpKsl6397d6fb - ok
15:13:48.0609 3264 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
15:13:48.0625 3264 mraid35x - ok
15:13:48.0625 3264 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:13:48.0625 3264 MRxDAV - ok
15:13:48.0687 3264 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:13:48.0703 3264 MRxSmb - ok
15:13:48.0734 3264 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
15:13:48.0734 3264 MSDTC - ok
15:13:48.0750 3264 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:13:48.0750 3264 Msfs - ok
15:13:48.0750 3264 MSIServer - ok
15:13:48.0781 3264 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:13:48.0781 3264 MSKSSRV - ok
15:13:48.0828 3264 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
15:13:48.0828 3264 MsMpSvc - ok
15:13:48.0843 3264 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:13:48.0843 3264 MSPCLOCK - ok
15:13:48.0843 3264 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:13:48.0843 3264 MSPQM - ok
15:13:48.0875 3264 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:13:48.0875 3264 mssmbios - ok
15:13:48.0921 3264 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:13:48.0921 3264 Mup - ok
15:13:48.0953 3264 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:13:48.0968 3264 napagent - ok
15:13:49.0046 3264 [ 6B2DE42F8E9AEF946F4DBF02375766F3 ] NCUpdateSvc C:\Program Files\Netscape Internet Service\ncupdatesvc.exe
15:13:49.0046 3264 NCUpdateSvc - ok
15:13:49.0078 3264 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:13:49.0093 3264 NDIS - ok
15:13:49.0125 3264 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:13:49.0125 3264 NdisTapi - ok
15:13:49.0140 3264 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:13:49.0140 3264 Ndisuio - ok
15:13:49.0156 3264 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:13:49.0156 3264 NdisWan - ok
15:13:49.0187 3264 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:13:49.0187 3264 NDProxy - ok
15:13:49.0203 3264 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:13:49.0203 3264 NetBIOS - ok
15:13:49.0218 3264 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:13:49.0234 3264 NetBT - ok
15:13:49.0265 3264 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
15:13:49.0265 3264 NetDDE - ok
15:13:49.0265 3264 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:13:49.0265 3264 NetDDEdsdm - ok
15:13:49.0296 3264 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:13:49.0296 3264 Netlogon - ok
15:13:49.0328 3264 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
15:13:49.0328 3264 Netman - ok
15:13:49.0375 3264 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:13:49.0453 3264 NetTcpPortSharing - ok
15:13:49.0468 3264 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
15:13:49.0468 3264 NIC1394 - ok
15:13:49.0484 3264 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
15:13:49.0500 3264 Nla - ok
15:13:49.0515 3264 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:13:49.0515 3264 Npfs - ok
15:13:49.0546 3264 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:13:49.0562 3264 Ntfs - ok
15:13:49.0562 3264 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
15:13:49.0562 3264 NtLmSsp - ok
15:13:49.0609 3264 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:13:49.0625 3264 NtmsSvc - ok
15:13:49.0671 3264 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
15:13:49.0671 3264 Null - ok
15:13:50.0265 3264 [ 062C16F3364C7706713282163586988E ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
15:13:50.0828 3264 nv - ok
15:13:50.0859 3264 [ B2F5AC506C9B1103827B62BA18A2C514 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
15:13:50.0859 3264 NVSvc - ok
15:13:50.0984 3264 [ 844A25C9E3076EDEF2B12E0BEDED755D ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
15:13:51.0046 3264 nvUpdatusService - ok
15:13:51.0062 3264 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:13:51.0078 3264 NwlnkFlt - ok
15:13:51.0078 3264 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:13:51.0078 3264 NwlnkFwd - ok
15:13:51.0203 3264 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:13:51.0218 3264 odserv - ok
15:13:51.0265 3264 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
15:13:51.0265 3264 ohci1394 - ok
15:13:51.0296 3264 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:13:51.0312 3264 ose - ok
15:13:51.0343 3264 [ 611B58C2FD89AA9E80743A197BA62277 ] ossrv C:\WINDOWS\system32\drivers\ctoss2k.sys
15:13:51.0343 3264 ossrv - ok
15:13:51.0375 3264 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:13:51.0390 3264 Parport - ok
15:13:51.0390 3264 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:13:51.0390 3264 PartMgr - ok
15:13:51.0406 3264 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:13:51.0406 3264 ParVdm - ok
15:13:51.0406 3264 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:13:51.0406 3264 PCI - ok
15:13:51.0406 3264 PCIDump - ok
15:13:51.0421 3264 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
15:13:51.0421 3264 PCIIde - ok
15:13:51.0453 3264 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
15:13:51.0453 3264 Pcmcia - ok
15:13:51.0453 3264 PDCOMP - ok
15:13:51.0453 3264 PDFRAME - ok
15:13:51.0468 3264 PDRELI - ok
15:13:51.0468 3264 PDRFRAME - ok
15:13:51.0468 3264 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
15:13:51.0468 3264 perc2 - ok
15:13:51.0468 3264 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
15:13:51.0484 3264 perc2hib - ok
15:13:51.0515 3264 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
15:13:51.0515 3264 PlugPlay - ok
15:13:51.0531 3264 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:13:51.0546 3264 PolicyAgent - ok
15:13:51.0562 3264 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:13:51.0562 3264 PptpMiniport - ok
15:13:51.0593 3264 [ 33D7285F12D934268A34206DFC4AD1B3 ] PrismXL C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
15:13:51.0593 3264 PrismXL - ok
15:13:51.0609 3264 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:13:51.0609 3264 ProtectedStorage - ok
15:13:51.0609 3264 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
15:13:51.0625 3264 PSched - ok
15:13:51.0625 3264 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:13:51.0625 3264 Ptilink - ok
15:13:51.0640 3264 [ 40FEDD328F98245AD201CF5F9F311724 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:13:51.0640 3264 PxHelp20 - ok
15:13:51.0640 3264 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
15:13:51.0640 3264 ql1080 - ok
15:13:51.0656 3264 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
15:13:51.0656 3264 Ql10wnt - ok
15:13:51.0687 3264 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
15:13:51.0687 3264 ql12160 - ok
15:13:51.0687 3264 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
15:13:51.0687 3264 ql1240 - ok
15:13:51.0687 3264 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
15:13:51.0687 3264 ql1280 - ok
15:13:51.0718 3264 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:13:51.0718 3264 RasAcd - ok
15:13:51.0734 3264 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:13:51.0750 3264 RasAuto - ok
15:13:51.0750 3264 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:13:51.0750 3264 Rasl2tp - ok
15:13:51.0796 3264 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:13:51.0796 3264 RasMan - ok
15:13:51.0812 3264 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:13:51.0812 3264 RasPppoe - ok
15:13:51.0828 3264 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:13:51.0828 3264 Raspti - ok
15:13:51.0859 3264 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:13:51.0859 3264 Rdbss - ok
15:13:51.0890 3264 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:13:51.0890 3264 RDPCDD - ok
15:13:51.0906 3264 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:13:51.0921 3264 rdpdr - ok
15:13:51.0953 3264 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:13:51.0953 3264 RDPWD - ok
15:13:51.0984 3264 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:13:51.0984 3264 RDSessMgr - ok
15:13:52.0000 3264 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:13:52.0000 3264 redbook - ok
15:13:52.0031 3264 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:13:52.0031 3264 RemoteAccess - ok
15:13:52.0078 3264 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
15:13:52.0078 3264 RemoteRegistry - ok
15:13:52.0093 3264 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
15:13:52.0093 3264 RpcLocator - ok
15:13:52.0109 3264 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
15:13:52.0125 3264 RpcSs - ok
15:13:52.0156 3264 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
15:13:52.0156 3264 RSVP - ok
15:13:52.0171 3264 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
15:13:52.0171 3264 SamSs - ok
15:13:52.0218 3264 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:13:52.0218 3264 SASDIFSV - ok
15:13:52.0218 3264 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:13:52.0234 3264 SASKUTIL - ok
15:13:52.0250 3264 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:13:52.0250 3264 SCardSvr - ok
15:13:52.0281 3264 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:13:52.0281 3264 Schedule - ok
15:13:52.0328 3264 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
15:13:52.0328 3264 sdbus - ok
15:13:52.0359 3264 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:13:52.0359 3264 Secdrv - ok
15:13:52.0390 3264 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
15:13:52.0406 3264 seclogon - ok
15:13:52.0421 3264 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
15:13:52.0437 3264 SENS - ok
15:13:52.0437 3264 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:13:52.0453 3264 Serenum - ok
15:13:52.0453 3264 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:13:52.0453 3264 Serial - ok
15:13:52.0484 3264 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
15:13:52.0484 3264 Sfloppy - ok
15:13:52.0515 3264 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:13:52.0531 3264 SharedAccess - ok
15:13:52.0562 3264 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:13:52.0562 3264 ShellHWDetection - ok
15:13:52.0562 3264 Simbad - ok
15:13:52.0593 3264 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
15:13:52.0593 3264 sisagp - ok
15:13:52.0625 3264 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
15:13:52.0625 3264 Sparrow - ok
15:13:52.0640 3264 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:13:52.0640 3264 splitter - ok
15:13:52.0671 3264 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:13:52.0671 3264 Spooler - ok
15:13:52.0687 3264 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:13:52.0687 3264 sr - ok
15:13:52.0718 3264 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
15:13:52.0734 3264 srservice - ok
15:13:52.0781 3264 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:13:52.0781 3264 Srv - ok
15:13:52.0812 3264 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:13:52.0828 3264 SSDPSRV - ok
15:13:52.0843 3264 [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
15:13:52.0843 3264 StillCam - ok
15:13:52.0890 3264 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:13:52.0906 3264 stisvc - ok
15:13:52.0921 3264 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:13:52.0921 3264 swenum - ok
15:13:52.0937 3264 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:13:52.0937 3264 swmidi - ok
15:13:52.0937 3264 SwPrv - ok
15:13:52.0953 3264 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
15:13:52.0953 3264 symc810 - ok
15:13:52.0953 3264 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
15:13:52.0953 3264 symc8xx - ok
15:13:52.0953 3264 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
15:13:52.0953 3264 sym_hi - ok
15:13:52.0968 3264 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
15:13:52.0968 3264 sym_u3 - ok
15:13:52.0968 3264 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:13:52.0984 3264 sysaudio - ok
15:13:53.0000 3264 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:13:53.0000 3264 SysmonLog - ok
15:13:53.0031 3264 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:13:53.0031 3264 TapiSrv - ok
15:13:53.0078 3264 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:13:53.0093 3264 Tcpip - ok
15:13:53.0125 3264 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:13:53.0125 3264 TDPIPE - ok
15:13:53.0140 3264 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:13:53.0140 3264 TDTCP - ok
15:13:53.0156 3264 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:13:53.0156 3264 TermDD - ok
15:13:53.0171 3264 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
15:13:53.0187 3264 TermService - ok
15:13:53.0187 3264 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
15:13:53.0203 3264 Themes - ok
15:13:53.0218 3264 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
15:13:53.0234 3264 TlntSvr - ok
15:13:53.0250 3264 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
15:13:53.0250 3264 TosIde - ok
15:13:53.0265 3264 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:13:53.0265 3264 TrkWks - ok
15:13:53.0312 3264 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:13:53.0312 3264 Udfs - ok
15:13:53.0328 3264 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
15:13:53.0343 3264 ultra - ok
15:13:53.0390 3264 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:13:53.0406 3264 Update - ok
15:13:53.0437 3264 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:13:53.0437 3264 upnphost - ok
15:13:53.0468 3264 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
15:13:53.0468 3264 UPS - ok
15:13:53.0500 3264 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
15:13:53.0500 3264 usbaudio - ok
15:13:53.0531 3264 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:13:53.0531 3264 usbccgp - ok
15:13:53.0562 3264 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:13:53.0562 3264 usbehci - ok
15:13:53.0578 3264 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:13:53.0593 3264 usbhub - ok
15:13:53.0625 3264 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:13:53.0625 3264 usbstor - ok
15:13:53.0656 3264 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:13:53.0656 3264 usbuhci - ok
15:13:53.0671 3264 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:13:53.0671 3264 VgaSave - ok
15:13:53.0687 3264 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
15:13:53.0687 3264 viaagp - ok
15:13:53.0687 3264 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
15:13:53.0687 3264 ViaIde - ok
15:13:53.0687 3264 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:13:53.0703 3264 VolSnap - ok
15:13:53.0718 3264 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
15:13:53.0750 3264 VSS - ok
15:13:53.0781 3264 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
15:13:53.0781 3264 W32Time - ok
15:13:53.0828 3264 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:13:53.0828 3264 Wanarp - ok
15:13:53.0859 3264 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
15:13:53.0875 3264 Wdf01000 - ok
15:13:53.0875 3264 WDICA - ok
15:13:53.0890 3264 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:13:53.0890 3264 wdmaud - ok
15:13:53.0906 3264 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
15:13:53.0906 3264 WebClient - ok
15:13:53.0968 3264 [ 59D043485A6EDA2ED2685C81489AE5BD ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
15:13:54.0000 3264 winachsf - ok
15:13:54.0046 3264 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:13:54.0046 3264 winmgmt - ok
15:13:54.0078 3264 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:13:54.0078 3264 WmdmPmSN - ok
15:13:54.0125 3264 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
15:13:54.0140 3264 Wmi - ok
15:13:54.0171 3264 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:13:54.0171 3264 WmiApSrv - ok
15:13:54.0250 3264 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
15:13:54.0265 3264 WMPNetworkSvc - ok
15:13:54.0296 3264 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:13:54.0296 3264 WpdUsb - ok
15:13:54.0437 3264 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:13:54.0484 3264 WPFFontCache_v0400 - ok
15:13:54.0515 3264 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:13:54.0515 3264 WS2IFSL - ok
15:13:54.0531 3264 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:13:54.0546 3264 wscsvc - ok
15:13:54.0562 3264 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:13:54.0562 3264 wuauserv - ok
15:13:54.0609 3264 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:13:54.0609 3264 WudfPf - ok
15:13:54.0640 3264 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:13:54.0640 3264 WudfRd - ok
15:13:54.0656 3264 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:13:54.0656 3264 WudfSvc - ok
15:13:54.0703 3264 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:13:54.0718 3264 WZCSVC - ok
15:13:54.0750 3264 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:13:54.0765 3264 xmlprov - ok
15:13:54.0765 3264 ================ Scan global ===============================
15:13:54.0796 3264 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
15:13:54.0812 3264 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
15:13:54.0828 3264 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
15:13:54.0875 3264 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
15:13:54.0875 3264 [Global] - ok
15:13:54.0875 3264 ================ Scan MBR ==================================
15:13:54.0875 3264 [ B20939CD98B7710036274839082AE757 ] \Device\Harddisk0\DR0
15:13:55.0109 3264 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:13:55.0109 3264 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:13:55.0109 3264 ================ Scan VBR ==================================
15:13:55.0109 3264 [ E122F90D527904E92C55EFA86AAC58A7 ] \Device\Harddisk0\DR0\Partition1
15:13:55.0109 3264 \Device\Harddisk0\DR0\Partition1 - ok
15:13:55.0109 3264 [ 412FEA820FEB1554B656835388F53DEF ] \Device\Harddisk0\DR0\Partition2
15:13:55.0109 3264 \Device\Harddisk0\DR0\Partition2 - ok
15:13:55.0109 3264 ============================================================
15:13:55.0109 3264 Scan finished
15:13:55.0109 3264 ============================================================
15:13:55.0125 3984 Detected object count: 1
15:13:55.0125 3984 Actual detected object count: 1
15:16:42.0625 3984 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
15:16:42.0656 3984 \Device\Harddisk0\DR0\TDLFS\tdlcmd.dll - copied to quarantine
15:16:43.0125 3984 \Device\Harddisk0\DR0\TDLFS\tdlwsp.dll - copied to quarantine
15:16:43.0406 3984 \Device\Harddisk0\DR0\TDLFS - deleted
15:16:43.0406 3984 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
15:17:12.0718 2212 Deinitialize success

aswMBR

swMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-29 15:33:52
-----------------------------
15:33:52.980 OS Version: Windows 5.1.2600 Service Pack 3
15:33:52.996 Number of processors: 2 586 0xF06
15:33:52.996 ComputerName: DREAMS UserName: R
15:33:53.683 Initialize success
15:34:11.736 AVAST engine defs: 12092900
15:34:17.847 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
15:34:17.847 Disk 0 Vendor: WDC_WD32 21.0 Size: 305245MB BusType: 3
15:34:17.879 Disk 0 MBR read successfully
15:34:17.894 Disk 0 MBR scan
15:34:17.926 Disk 0 unknown MBR code
15:34:17.941 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 300630 MB offset 9430155
15:34:17.941 Disk 0 Partition 2 00 0B FAT32 RECOVERY 4604 MB offset 63
15:34:17.957 Disk 0 scanning sectors +625121280
15:34:18.160 Disk 0 scanning C:\WINDOWS\system32\drivers
15:34:43.762 Service scanning
15:34:57.298 Service MpKsl6397d6fb c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7D3880C8-4B17-4878-BB33-68F5B02A8BA8}\MpKsl6397d6fb.sys **LOCKED** 32
15:35:13.396 Modules scanning
15:35:33.919 Disk 0 trace - called modules:
15:35:33.950 ntkrnlpa.exe CLASSPNP.SYS disk.sys IASTOR.SYS hal.dll
15:35:33.950 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86b47030]
15:35:33.950 3 CLASSPNP.SYS[f75bafd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x86b6a030]
15:35:34.685 AVAST engine scan C:\WINDOWS
15:35:54.722 AVAST engine scan C:\WINDOWS\system32
15:43:19.927 AVAST engine scan C:\WINDOWS\system32\drivers
15:44:11.991 AVAST engine scan C:\Documents and Settings\R
16:33:35.608 AVAST engine scan C:\Documents and Settings\All Users
16:35:42.303 Scan finished successfully
16:42:23.896 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
16:42:24.006 The log file has been saved successfully to "C:\aswMBR.txt"

ESET online scanner

No threats found.
------------------------------

For the aswMBR scan, I didn't click the FixMBR button because I wasn't sure if I was supposed to or not. Should I have clicked it? If so, I can run it again and then click it.

Thank you for your help! :)

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:27 AM

Posted 29 September 2012 - 08:35 PM

DO not click on FIXMBR

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Launch it and after scan gets completed,post the generated log here.

NOTE: For vista and windows 7 right click on the tool and select run as administrator

#5 SoXfused

SoXfused
  • Topic Starter

  • Members
  • 136 posts
  • OFFLINE
  •  
  • Local time:12:27 AM

Posted 30 September 2012 - 12:13 AM

Here are the results of all the scans:

Malwarebytes

Malwarebytes Anti-Malware (PRO) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.29.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
R :: DREAMS [administrator]

Protection: Enabled

9/29/2012 9:49:32 PM
mbam-log-2012-09-29 (21-49-32).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 347836
Time elapsed: 1 hour(s), 34 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Mini Toolbox

MiniToolBox by Farbar Version: 23-07-2012
Ran by R (administrator) on 29-09-2012 at 23:42:51
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82562V 10/100 Network Connection = Local Area Connection (Connected)
1394 Net Adapter = 1394 Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : Dreams

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : Belkin



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . : Belkin

Description . . . . . . . . . . . : Intel® 82562V 10/100 Network Connection

Physical Address. . . . . . . . . : 00-16-76-D9-65-BD

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.2.4

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.2.1

DHCP Server . . . . . . . . . . . : 192.168.2.1

DNS Servers . . . . . . . . . . . : 192.168.2.1

192.168.2.1

Lease Obtained. . . . . . . . . . : Saturday, September 29, 2012 9:44:41 PM

Lease Expires . . . . . . . . . . : Monday, September 27, 2021 9:44:41 PM

Server: TOTALLY-HOT.hsd1.il.comcast.net
Address: 192.168.2.1

Name: google.com
Addresses: 74.125.225.8, 74.125.225.14, 74.125.225.0, 74.125.225.9
74.125.225.2, 74.125.225.1, 74.125.225.3, 74.125.225.6, 74.125.225.7
74.125.225.4, 74.125.225.5



Pinging google.com [74.125.225.5] with 32 bytes of data:



Reply from 74.125.225.5: bytes=32 time=18ms TTL=55

Reply from 74.125.225.5: bytes=32 time=16ms TTL=55



Ping statistics for 74.125.225.5:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 16ms, Maximum = 18ms, Average = 17ms

Server: TOTALLY-HOT.hsd1.il.comcast.net
Address: 192.168.2.1

Name: yahoo.com
Addresses: 72.30.38.140, 98.139.183.24, 98.138.253.109



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=79ms TTL=51

Reply from 98.138.253.109: bytes=32 time=54ms TTL=51



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 54ms, Maximum = 79ms, Average = 66ms

Server: TOTALLY-HOT.hsd1.il.comcast.net
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 16 76 d9 65 bd ...... Intel® 82562V 10/100 Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.4 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.2.0 255.255.255.0 192.168.2.4 192.168.2.4 20
192.168.2.4 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.2.255 255.255.255.255 192.168.2.4 192.168.2.4 20
224.0.0.0 240.0.0.0 192.168.2.4 192.168.2.4 20
255.255.255.255 255.255.255.255 192.168.2.4 192.168.2.4 1
Default Gateway: 192.168.2.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Program Files\Netscape Internet Service\Netscape Web Accelerator\sliplsp.dll [81920] ()
Catalog9 02 C:\Program Files\Netscape Internet Service\Netscape Web Accelerator\sliplsp.dll [81920] ()
Catalog9 03 C:\Program Files\Netscape Internet Service\Netscape Web Accelerator\sliplsp.dll [81920] ()
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 09 C:\Program Files\Netscape Internet Service\Netscape Web Accelerator\sliplsp.dll [81920] ()
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/28/2012 02:18:44 PM) (Source: Microsoft Security Client) (User: )
Description: mssecurityclientmsseces.exe4.0.1526.00x80508018scheduledscancmainwindow__onautoscancomplete0security essentialsNILNILNIL

Error: (09/28/2012 02:13:47 PM) (Source: Microsoft Security Client) (User: )
Description: mssecurityclientsetup.exe4.0.1526.00x80041002morrobootstraper__cinstallflow__internalrun - getenablefirewallactionmorrobootstraper__cflow__processflowactionresult0security essentialsNILNILNIL

Error: (09/28/2012 02:13:44 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 0x80070003, P2 moac, P3 cachereset, P4 4.0.1526.0, P5 unspecified, P6 unspecified, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (09/28/2012 01:59:50 PM) (Source: Application Error) (User: )
Description: Fault bucket -1119226485.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (09/28/2012 01:59:45 PM) (Source: Application Error) (User: )
Description: Faulting application MsMpEng.exe, version 4.1.522.0, faulting module mpengine.dll, version 1.1.8800.0, fault address 0x0019703f.
Processing media-specific event for [MsMpEng.exe!ws!]

Error: (09/28/2012 01:57:28 PM) (Source: Application Error) (User: )
Description: Fault bucket -1119226485.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (09/28/2012 01:57:26 PM) (Source: Application Error) (User: )
Description: Faulting application MsMpEng.exe, version 4.1.522.0, faulting module mpengine.dll, version 1.1.8800.0, fault address 0x0019703f.
Processing media-specific event for [MsMpEng.exe!ws!]

Error: (09/28/2012 01:54:36 PM) (Source: Application Error) (User: )
Description: Faulting application MsMpEng.exe, version 4.1.522.0, faulting module mpengine.dll, version 1.1.8800.0, fault address 0x0019703f.
Processing media-specific event for [MsMpEng.exe!ws!]

Error: (09/28/2012 01:40:29 PM) (Source: Application Error) (User: )
Description: Fault bucket -1119226485.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (09/28/2012 01:40:24 PM) (Source: Microsoft Security Client) (User: )
Description: mssecurityclientmsseces.exe4.1.522.00x800106bastartservicecmainwindow__onantimalwareenabled0security essentialsNILNILNIL


System errors:
=============
Error: (09/29/2012 09:44:56 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (09/29/2012 09:44:56 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured
password due to the following error:
%%1330

To ensure that the service is
configured properly, use the Services snap-in in Microsoft Management
Console (MMC).

Error: (09/29/2012 06:33:46 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (09/29/2012 06:33:46 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured
password due to the following error:
%%1330

To ensure that the service is
configured properly, use the Services snap-in in Microsoft Management
Console (MMC).

Error: (09/29/2012 03:00:54 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (09/29/2012 03:00:54 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured
password due to the following error:
%%1330

To ensure that the service is
configured properly, use the Services snap-in in Microsoft Management
Console (MMC).

Error: (09/28/2012 10:03:21 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (09/28/2012 10:03:21 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured
password due to the following error:
%%1330

To ensure that the service is
configured properly, use the Services snap-in in Microsoft Management
Console (MMC).

Error: (09/28/2012 02:35:51 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (09/28/2012 02:35:51 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured
password due to the following error:
%%1330

To ensure that the service is
configured properly, use the Services snap-in in Microsoft Management
Console (MMC).


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Adobe AIR (Version: 2.7.0.19530)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.265)
Adobe Reader X (10.1.4) (Version: 10.1.4)
aioscnnr (Version: 7.3.4.0)
C4USelfUpdater (Version: 1.00.0000)
CCleaner (Version: 3.22)
center (Version: 6.2.5.0)
Coupon Printer for Windows (Version: 5.0.0.1)
Digital Media Reader (Version: 2.01.00.02)
eReg (Version: 1.20.138.34)
essentials (Version: 6.0.14.0)
Google Toolbar for Internet Explorer
GWCares (Version: 1.10.0000)
Intel® Management Engine Interface
Intel® PRO Network Connections Drivers
Intel® Quick Resume Technology Drivers
IrfanView (remove only) (Version: 4.30)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Kodak AIO Printer (Version: 7.5.0.0)
KODAK AiO Software (Version: 7.5.9.60)
Logitech SetPoint 6.32 (Version: 6.32.20)
M-Audio FastTrackPro Driver 6.0.7 (x86) (Version: 6.0.7)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2604042)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Download Manager (Version: 1.2.1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 5.1.10516.0)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 08.05.0818)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0)
Netscape Internet Service
Netscape Web Accelerator
NVIDIA Control Panel 296.10 (Version: 296.10)
NVIDIA Graphics Driver 296.10 (Version: 296.10)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA nView 136.18 (Version: 136.18)
NVIDIA nView Desktop Manager (Version: 6.14.10.13594)
NVIDIA Update 1.7.11 (Version: 1.7.11)
NVIDIA Update Components (Version: 1.7.11)
ocr (Version: 6.2.3.50)
Octoshape add-in for Adobe Flash Player
PHOTOfunSTUDIO 6.0 (Version: 6.00.135)
PreReq (Version: 6.2.4.0)
Quick Media Converter
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.6)
RealUpgrade 1.1 (Version: 1.1.0)
Soft Data Fax Modem with SmartCP
SONAR 6 Producer Edition (Version: 15.0)
Sonic Encoders (Version: 1.00)
SUPERAntiSpyware (Version: 4.55.1000)
Switch Sound File Converter
System Requirements Lab
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update Rollup 2 for Windows XP Media Center Edition 2005
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Memory info: ===================================

Percentage of memory in use: 72%
Total physical RAM: 1005.59 MB
Available physical RAM: 276.76 MB
Total Pagefile: 2421.2 MB
Available Pagefile: 1846.64 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.99 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:293.58 GB) (Free:177.08 GB) NTFS
2 Drive d: () (Fixed) (Total:4.49 GB) (Free:1.72 GB) FAT32

========================= Users: ========================================

User accounts for \\DREAMS

Administrator ASPNET Guest
HelpAssistant R SUPPORT_388945a0
UpdatusUser

========================= Restore Points ==================================

28-09-2012 19:38:46 System Checkpoint
28-09-2012 23:13:48 Software Distribution Service 3.0
29-09-2012 02:42:26 Software Distribution Service 3.0
30-09-2012 01:24:30 Removed Java™ 6 Update 33
30-09-2012 01:24:46 Installed Java 7 Update 7

**** End of log ****

Farbar Service Scanner

Farbar Service Scanner Version: 19-09-2012
Ran by R (administrator) on 29-09-2012 at 23:51:02
Running from "C:\Documents and Settings\R\My Documents"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
0x0700000004000000010000000200000003000000050000000600000007000000
IpSec Tag value is correct.

**** End of log ****

Adware Cleaner

# AdwCleaner v2.003 - Logfile created 09/29/2012 at 23:52:21
# Updated 23/09/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : R - DREAMS
# Boot Mode : Normal
# Running from : C:\Documents and Settings\R\Local Settings\Temporary Internet Files\Content.IE5\J1CFB3JW\adwcleaner[1].exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\R\Application Data\Toolbar4

***** [Registry] *****

Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKCU\Software\SMTTB2009
Key Deleted : HKCU\Software\Somoto Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\SMBarBroker.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009.3
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{338B4DFE-2E2C-4338-9E41-E176D497299E}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{338B4DFE-2E2C-4338-9E41-E176D497299E}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

*************************

AdwCleaner[S1].txt - [6087 octets] - [29/09/2012 23:52:21]

########## EOF - C:\AdwCleaner[S1].txt - [6147 octets] ##########

Junkware Removal Tool

Junkware Removal Tool (JRT) by Thisisu
Version: 1.1.7 (09.29.2012)
OS: Microsoft Windows XP x86
Ran by R on Sun 09/30/2012 at 0:02:59.93
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_current_user\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}
Successfully deleted: [KEY] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}



*** Files:

Successfully deleted: [FILE] C:\eula.1028.txt
Successfully deleted: [FILE] C:\eula.1031.txt
Successfully deleted: [FILE] C:\eula.1033.txt
Successfully deleted: [FILE] C:\eula.1036.txt
Successfully deleted: [FILE] C:\eula.1040.txt
Successfully deleted: [FILE] C:\eula.1041.txt
Successfully deleted: [FILE] C:\eula.1042.txt
Successfully deleted: [FILE] C:\eula.2052.txt
Successfully deleted: [FILE] C:\install.res.1028.dll
Successfully deleted: [FILE] C:\install.res.1031.dll
Successfully deleted: [FILE] C:\install.res.1033.dll
Successfully deleted: [FILE] C:\install.res.1036.dll
Successfully deleted: [FILE] C:\install.res.1040.dll
Successfully deleted: [FILE] C:\install.res.1041.dll
Successfully deleted: [FILE] C:\install.res.1042.dll
Successfully deleted: [FILE] C:\install.res.2052.dll
Successfully deleted: [FILE] C:\install.res.3082.dll



*** Folders: 0 Detections



Removed the following from [PREFS.JS] :



*** Event Viewer Logs - NOT cleared





**************************************************************
Scan was completed on Sun 09/30/2012 at 0:03:10.82
End of Report

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:27 AM

Posted 30 September 2012 - 03:59 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#7 SoXfused

SoXfused
  • Topic Starter

  • Members
  • 136 posts
  • OFFLINE
  •  
  • Local time:12:27 AM

Posted 30 September 2012 - 04:25 AM

Here are the logs:

RKILL

Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/30/2012 04:17:53 AM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* RpcSs => %SystemRoot%\system32\svchost.exe -k rpcss [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* C:\WINDOWS\System32\drivers\mqac.sys [NoSig]
+-> C:\WINDOWS\$hf_mig$\KB971032\SP2QFE\mqac.sys : 91,776 : 06/22/2009 00:30 AM : 9229e191fe206628be17d1e67a5faed9 [Pos Repl]
+-> C:\WINDOWS\$NtUninstallKB971032$\mqac.sys : 72,960 : 08/10/2004 02:00 PM : db07b0088cdfd20c2a22e675120ede34 [Pos Repl]
+-> C:\WINDOWS\ServicePackFiles\i386\mqac.sys : 92,544 : 04/13/2008 01:39 PM : 70c14f5cca5cf73f8a645c73a01d8726 [Pos Repl]
+-> C:\WINDOWS\system32\dllcache\mqac.sys : 91,776 : 06/22/2009 01:48 AM : eee50bf24caeedb515a8f3b22756d3bb [Pos Repl]

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 09/30/2012 04:18:53 AM
Execution time: 0 hours(s), 1 minute(s), and 0 seconds(s)

AutoRuns

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "EKStatusMonitor" "Status Monitor for KODAK AiO Printer (32-Bit Intel® Pentium™ 4 Optimized Build)" "Eastman Kodak Company" "c:\program files\kodak\aio\statusmonitor\ekstatusmonitor.exe"
+ "EvtMgr6" "Logitech SetPoint Event Manager (UNICODE)" "Logitech, Inc." "c:\program files\logitech\setpointp\setpoint.exe"
+ "GrooveMonitor" "GrooveMonitor Utility" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovemonitor.exe"
+ "M-Audio Taskbar Icon" "M-Audio Task Bar Icon Applet" "Avid Technology, Inc." "c:\windows\system32\m-audiotaskbaricon.exe"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
+ "NvCplDaemon" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
+ "NvMediaCenter" "NVIDIA Media Center Library" "NVIDIA Corporation" "c:\windows\system32\nvmctray.dll"
+ "nwiz" "NVIDIA nView Wizard, Version 136.18 " "NVIDIA Corporation" "c:\program files\nvidia corporation\nview\nwiz.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
+ "TkBellExe" "RealNetworks Scheduler" "RealNetworks, Inc." "c:\program files\real\realplayer\update\realsched.exe"
"C:\Documents and Settings\All Users\Start Menu\Programs\Startup" "" "" ""
+ "PHOTOfunSTUDIO 6.0.lnk" "AutoStartService" "Panasonic Corporation" "c:\program files\common files\panasonic\photofunstudio autostart\autostartupservice.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Address Book 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe"
+ "Microsoft Outlook Express 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "grooveLocalGWS" "GrooveSystemServices Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovesystemservices.dll"
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "ms-itss" "Microsoft® InfoTech Storage System Library" "Microsoft Corporation" "c:\program files\common files\microsoft shared\information retrieval\msitss.dll"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components" "" "" ""
+ "0" "" "" "File not found: About:Home"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "SABShellExecuteHook Class" "ShellExecuteHook" "SuperAdBlocker.com" "c:\program files\superantispyware\sasseh.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "00nView" "NVIDIA Desktop Explorer, Version 136.18 " "NVIDIA Corporation" "c:\program files\nvidia corporation\nview\nvshell.dll"
+ "NvCplDesktopContext" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Google Toolbar Helper" "Google IE Client Toolbar" "Google Inc." "c:\program files\google\googletoolbar1.dll"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
+ "PBlockHelper Class" "Popup Block Helper Object DLL" "planetscott.ca" "c:\program files\netscape internet service\netscape web accelerator\pbhelper.dll"
+ "RealPlayer Download and Record Plugin for Internet Explorer" "RealPlayer Download and Record Plugin" "RealPlayer" "c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "&Google" "Google IE Client Toolbar" "Google Inc." "c:\program files\google\googletoolbar1.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office12\onbttnie.dll"
+ "Windows Messenger" "Windows Messenger" "Microsoft Corporation" "c:\program files\messenger\msmsgs.exe"
"Task Scheduler" "" "" ""
+ "Adobe Flash Player Updater.job" "Adobe® Flash® Player Update Service 11.4 r402" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Microsoft Antimalware Scheduled Scan.job" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "RealUpgradeLogonTaskS-1-5-21-2479052316-1817693236-3316508212-1006.job" "RealUpgrade Launcher" "RealNetworks, Inc." "c:\program files\real\realupgrade\realupgrade.exe"
+ "RealUpgradeScheduledTaskS-1-5-21-2479052316-1817693236-3316508212-1006.job" "RealUpgrade Launcher" "RealNetworks, Inc." "c:\program files\real\realupgrade\realupgrade.exe"
+ "switchShakeIcon.job" "Switch Sound File Converter" "NCH Software" "c:\program files\nch swift sound\switch\switch.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "!SASCORE" "SUPERAntiSpyware Core Service" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sascore.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "ELService" "Intel® Quick Resume Technology Service" "Intel Corporation" "c:\program files\intel\inteldh\intel® quick resume technology drivers\elservice.exe"
+ "JavaQuickStarterService" "Prefetches JRE files for faster startup of Java applets and applications" "Oracle Corporation" "c:\program files\java\jre7\bin\jqs.exe"
+ "Kodak AiO Network Discovery Service" "Kodak mDNS Network Discovery Service" "Eastman Kodak Company" "c:\program files\kodak\aio\center\ekaiohostservice.exe"
+ "Kodak AiO Status Monitor Service" "Kodak Status Monitor SDK Service" "Eastman Kodak Company" "c:\program files\kodak\aio\statusmonitor\ekprintersdk.exe"
+ "LBTServ" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtserv.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveauditservice.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe"
+ "NCUpdateSvc" "Netscape Update Service" "Netscape Communications Corporation" "c:\program files\netscape internet service\ncupdatesvc.exe"
+ "NVSvc" "NVIDIA Driver Helper Service, Version 296.10" "NVIDIA Corporation" "c:\windows\system32\nvsvc32.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files\nvidia corporation\nvidia update core\daemonu.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "PrismXL" "PrismXL Service" "New Boundary Technologies, Inc." "c:\program files\common files\new boundary\prismxl\prismxl.sys"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AliIde" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdagp" "AMD Win2000 AGP Filter" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\amdagp.sys"
+ "asc" "AdvanSys SCSI Controller Driver" "Advanced System Products, Inc." "c:\windows\system32\drivers\asc.sys"
+ "asc3550" "AdvanSys Ultra-Wide PCI SCSI Driver" "Advanced System Products, Inc." "c:\windows\system32\drivers\asc3550.sys"
+ "Changer" "" "" "File not found: C:\WINDOWS\System32\Drivers\Changer.sys"
+ "CmdIde" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "ctac32k" "Creative AC3 SW Decoder Device Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctac32k.sys"
+ "ctaud2k" "Creative WDM Audio Device Driver" "Creative Technology Ltd" "c:\windows\system32\drivers\ctaud2k.sys"
+ "ctprxy2k" "Creative Proxy Device Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctprxy2k.sys"
+ "ctsfm2k" "SoundFont® Manager (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctsfm2k.sys"
+ "dac2w2k" "Mylex Disk Array Controller Driver" "Mylex Corporation" "c:\windows\system32\drivers\dac2w2k.sys"
+ "e1express" "Intel® PRO/1000 Adapter NDIS 5.2 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1e5132.sys"
+ "ELacpi" "" "Intel Corporation" "c:\windows\system32\drivers\elacpi.sys"
+ "ELhid" "Elhid" "Intel Corporation" "c:\windows\system32\drivers\elhid.sys"
+ "ELkbd" "ELkbd" "Intel Corporation" "c:\windows\system32\drivers\elkbd.sys"
+ "ELmon" "ELmon" "Intel Corporation" "c:\windows\system32\drivers\elmon.sys"
+ "ELmou" "ELmou" "Intel Corporation" "c:\windows\system32\drivers\elmou.sys"
+ "emupia" "E-mu Plug-in Architecture Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\emupia2k.sys"
+ "ha20x2k" "Creative 20X HAL (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ha20x2k.sys"
+ "HECI" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\heci.sys"
+ "HSF_DPV" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsf_dpv.sys"
+ "HSFHWBS2" "HSF_HWB2 WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsfhwbs2.sys"
+ "iaStor" "Intel Matrix Storage Manager driver" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "LBeepKE" "Logitech Consumer Control Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lbeepke.sys"
+ "lbrtfdc" "" "" "File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys"
+ "LHidFilt" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhidfilt.sys"
+ "LMouFilt" "Logitech Mouse Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lmoufilt.sys"
+ "MAUSBFASTTRACKPRO" "M-Audio USB Audio Driver (WDM)" "Avid Technology, Inc." "c:\windows\system32\drivers\maudiofasttrackpro.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "mdmxsdk" "Diagnostic Interface DRIVER" "Conexant" "c:\windows\system32\drivers\mdmxsdk.sys"
+ "MpKsl498a9193" "KSLDriver" "Microsoft Corporation" "c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{462e9db4-1a53-43bd-9976-1980cc0444c6}\mpksl498a9193.sys"
+ "mraid35x" "MegaRAID RAID Controller Driver for Windows Whistler 32" "American Megatrends Inc." "c:\windows\system32\drivers\mraid35x.sys"
+ "nv" "NVIDIA Windows XP Miniport Driver, Version 296.10 " "NVIDIA Corporation" "c:\windows\system32\drivers\nv4_mini.sys"
+ "ossrv" "Creative OS Services Driver (WDM)" "Creative Technology Ltd." "c:\windows\system32\drivers\ctoss2k.sys"
+ "PCIDump" "" "" "File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys"
+ "PDCOMP" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys"
+ "PDFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys"
+ "PDRELI" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys"
+ "PDRFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys"
+ "Ptilink" "Direct Parallel Link Driver" "Parallel Technologies, Inc." "c:\windows\system32\drivers\ptilink.sys"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys"
+ "ql1080" "Miniport Driver for QLogic ISP PCI Adapters" "QLogic Corporation" "c:\windows\system32\drivers\ql1080.sys"
+ "ql12160" "Miniport Driver for QLogic ISP PCI Adapters" "QLogic Corporation" "c:\windows\system32\drivers\ql12160.sys"
+ "ql1280" "Miniport Driver for QLogic ISP PCI Adapters" "QLogic Corporation" "c:\windows\system32\drivers\ql1280.sys"
+ "SASDIFSV" "SASDIFSV.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv.sys"
+ "SASKUTIL" "SASKUTIL.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil.sys"
+ "Secdrv" "SafeDisc driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "sisagp" "SiS NT AGP Filter" "Silicon Integrated Systems Corporation" "c:\windows\system32\drivers\sisagp.sys"
+ "Sparrow" "Adaptec AIC-6x60 series SCSI miniport" "Adaptec, Inc." "c:\windows\system32\drivers\sparrow.sys"
+ "sym_hi" "Symbios Hi-Perf SCSI Miniport Driver" "LSI Logic" "c:\windows\system32\drivers\sym_hi.sys"
+ "sym_u3" "Symbios Ultra3 SCSI Miniport Driver" "LSI Logic" "c:\windows\system32\drivers\sym_u3.sys"
+ "symc810" "Symbios Logic Inc. SCSI Miniport Driver" "Symbios Logic Inc." "c:\windows\system32\drivers\symc810.sys"
+ "symc8xx" "Symbios 8XX SCSI Miniport Driver" "LSI Logic" "c:\windows\system32\drivers\symc8xx.sys"
+ "ultra" "Promise Ultra66 Miniport Driver" "Promise Technology, Inc." "c:\windows\system32\drivers\ultra.sys"
+ "WDICA" "" "" "File not found: C:\WINDOWS\System32\Drivers\WDICA.sys"
+ "winachsf" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsf_cnxt.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.iac2" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.l3codecp" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecp.acm"
+ "msacm.sl_anet" "Audio codec for MS ACM" "Sipro Lab Telecom Inc." "c:\windows\system32\sl_anet.acm"
+ "msacm.trspch" "DSP Group TrueSpeech™ Audio Codec for MSACM V3.50" "DSP GROUP, INC." "c:\windows\system32\tssoft32.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "vidc.iv31" "" "" "c:\windows\system32\ir32_32.dll"
+ "vidc.iv32" "" "" "c:\windows\system32\ir32_32.dll"
+ "vidc.iv41" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "vidc.iv50" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Alien Connections ReValver SE" "ReValver Guitar Amp DX plugin" "Alien Connections" "c:\program files\cakewalk\shared dxi\revalver se\revalver se.dll"
+ "Alien Connections ReValver SE" "ReValver Guitar Amp DX plugin" "Alien Connections" "c:\program files\cakewalk\shared dxi\revalver se\revalver se.dll"
+ "Cakewalk Amp Sim" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\ampsim.ax"
+ "Cakewalk Amp Sim" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\ampsim.ax"
+ "Cakewalk Chorus" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\stereodelay.ax"
+ "Cakewalk Chorus" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\stereodelay.ax"
+ "Cakewalk Delay" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\stereodelay.ax"
+ "Cakewalk Delay" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\stereodelay.ax"
+ "Cakewalk Flanger" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\stereodelay.ax"
+ "Cakewalk Flanger" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\stereodelay.ax"
+ "Cakewalk FX2 Tape Sim" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\tapesim.ax"
+ "Cakewalk FX2 Tape Sim" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\tapesim.ax"
+ "Cakewalk FxChorus" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxchorus.ax"
+ "Cakewalk FxChorus" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxchorus.ax"
+ "Cakewalk FxDelay" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxdelay.ax"
+ "Cakewalk FxDelay" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxdelay.ax"
+ "Cakewalk FxEq" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxeq.ax"
+ "Cakewalk FxEq" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxeq.ax"
+ "Cakewalk FxFlange" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxflange.ax"
+ "Cakewalk FxFlange" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxflange.ax"
+ "Cakewalk FxReverb" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxreverb.ax"
+ "Cakewalk FxReverb" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\fxreverb.ax"
+ "Cakewalk Parametric EQ" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\parametriceq.ax"
+ "Cakewalk Parametric EQ" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\parametriceq.ax"
+ "Cakewalk Pitch Shifter" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\pitch.ax"
+ "Cakewalk Pitch Shifter" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\pitch.ax"
+ "Cakewalk Reverb" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\stereoreverb.ax"
+ "Cakewalk Reverb" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\stereoreverb.ax"
+ "Cakewalk Time/Pitch Stretch 2" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\sonar 6 producer edition\stretch.ax"
+ "Cakewalk Time/Pitch Stretch 2" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\sonar 6 producer edition\stretch.ax"
+ "Cakewalk Tuner" "CWTuner Plug-In" "" "c:\program files\cakewalk\shared plugins\cwtuner.dll"
+ "Cakewalk Tuner" "CWTuner Plug-In" "" "c:\program files\cakewalk\shared plugins\cwtuner.dll"
+ "Cronus" "V-Vocal" "Roland Corporation." "c:\program files\cakewalk\shared dxi\vvocal\cronus.dll"
+ "Cronus" "V-Vocal" "Roland Corporation." "c:\program files\cakewalk\shared dxi\vvocal\cronus.dll"
+ "Elecard MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "Elecard Ltd." "c:\windows\system32\empgdmx.ax"
+ "Elecard MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "Elecard Ltd." "c:\windows\system32\empgdmx.ax"
+ "GroovePlayer" "GroovePlayer DLL" "Cakewalk" "c:\program files\cakewalk\shared dxi\groove player\grooveplayer.dll"
+ "GroovePlayer" "GroovePlayer DLL" "Cakewalk" "c:\program files\cakewalk\shared dxi\groove player\grooveplayer.dll"
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Lexicon Pantheon" "Pantheon DirectX Plugin" "Lexicon" "c:\program files\cakewalk\shared plugins\pantheon.dll"
+ "Lexicon Pantheon" "Pantheon DirectX Plugin" "Lexicon" "c:\program files\cakewalk\shared plugins\pantheon.dll"
+ "Sonitus:fx Compressor" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxcompressor.dll"
+ "Sonitus:fx Compressor" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxcompressor.dll"
+ "Sonitus:fx Delay" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxdelay.dll"
+ "Sonitus:fx Delay" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxdelay.dll"
+ "Sonitus:fx Equalizer" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxequalizer.dll"
+ "Sonitus:fx Equalizer" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxequalizer.dll"
+ "Sonitus:fx Gate" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxgate.dll"
+ "Sonitus:fx Gate" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxgate.dll"
+ "Sonitus:fx Modulator" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxmodulator.dll"
+ "Sonitus:fx Modulator" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxmodulator.dll"
+ "Sonitus:fx Multiband" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxmultiband.dll"
+ "Sonitus:fx Multiband" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxmultiband.dll"
+ "Sonitus:fx Phase" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxphase.dll"
+ "Sonitus:fx Phase" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxphase.dll"
+ "Sonitus:fx Reverb" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxreverb.dll"
+ "Sonitus:fx Reverb" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxreverb.dll"
+ "Sonitus:fx Surround" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxsurround.dll"
+ "Sonitus:fx Surround" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxsurround.dll"
+ "Sonitus:fx SurroundComp" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxsurroundcompressor.dll"
+ "Sonitus:fx SurroundComp" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxsurroundcompressor.dll"
+ "Sonitus:fx Wahwah" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxwahwah.dll"
+ "Sonitus:fx Wahwah" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxwahwah.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "AC3File" "" "" "c:\windows\system32\vscodecpack_173\general\filters\ac3file.ax"
+ "ACELP.net Audio Decoder" "ACELP.net Audio Decoder" "Sipro Lab Telecom Inc." "c:\windows\system32\acelpdec.ax"
+ "Allocator Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Bitmap" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Cakewalk Analyst" "Analyst DLL" "" "c:\program files\cakewalk\shared plugins\analyst.dll"
+ "Cakewalk TTS-1" "Cakewalk TTS-1 HQ Software Synthesizer" "Twelve Tone Systems Inc." "c:\program files\cakewalk\shared dxi\tts-1\tts-1.dll"
+ "CyberLink HAM Decoder" "CyberLink 264 Decoder Filter" "CyberLink Corp." "c:\windows\system32\vscodecpack_173\general\filters\clcvd.ax"
+ "CyberLink Video Decoder" "CyberLink 264 Decoder Filter" "CyberLink Corp." "c:\windows\system32\vscodecpack_173\general\filters\clcvd.ax"
+ "CyberLink Video/SP Decoder (PDVD9)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\windows\system32\vscodecpack_173\general\filters\clvsd.ax"
+ "Cyclone" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared dxi\cyclone\cyclone.dll"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\windows\system32\vscodecpack_173\general\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\windows\system32\vscodecpack_173\general\filters\vsfilter.dll"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\windows\system32\divxdech264.ax"
+ "Elecard MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "Elecard Ltd." "c:\windows\system32\empgdmx.ax"
+ "Elecard Stream Parser" "MPEG-1/2 Demultiplexer" "Elecard Ltd." "c:\windows\system32\empgdmx.ax"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\windows\system32\vscodecpack_173\general\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\windows\system32\vscodecpack_173\general\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\windows\system32\vscodecpack_173\general\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\windows\system32\vscodecpack_173\general\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\windows\system32\vscodecpack_173\general\ffdshow\ffdshow.ax"
+ "File Source (Monkey Audio)" "" "" "c:\windows\system32\vscodecpack_173\general\filters\monkeysource.ax"
+ "Frame Eater" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\windows\system32\vscodecpack_173\general\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\windows\system32\vscodecpack_173\general\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\windows\system32\vscodecpack_173\general\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\windows\system32\vscodecpack_173\general\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\windows\system32\vscodecpack_173\general\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\windows\system32\vscodecpack_173\general\filters\haali\splitter.ax"
+ "Indeo® audio software" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "madFlac Decoder" "DirectShow FLAC Decoder" "www.madshi.net" "c:\windows\system32\vscodecpack_173\general\filters\madflac.ax"
+ "madFlac Source" "DirectShow FLAC Decoder" "www.madshi.net" "c:\windows\system32\vscodecpack_173\general\filters\madflac.ax"
+ "MONOGRAM AMR Decoder" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\windows\system32\vscodecpack_173\general\filters\mmamr.ax"
+ "MONOGRAM AMR Encoder" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\windows\system32\vscodecpack_173\general\filters\mmamr.ax"
+ "MONOGRAM AMR Mux" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\windows\system32\vscodecpack_173\general\filters\mmamr.ax"
+ "MONOGRAM AMR Splitter" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\windows\system32\vscodecpack_173\general\filters\mmamr.ax"
+ "MONOGRAM Musepack Decoder" "mmmpcdec" "" "c:\windows\system32\vscodecpack_173\general\filters\mmmpcdec.ax"
+ "MONOGRAM Musepack Splitter" "mmmpcdmx" "" "c:\windows\system32\vscodecpack_173\general\filters\mmmpcdmx.ax"
+ "MPC - CDXA Reader" "CDXA Reader Filter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\cdxareader.ax"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\flvsplitter.ax"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\flvsplitter.ax"
+ "MPC - MP4 Source" "MP4 Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\mp4splitter.ax"
+ "MPC - MP4 Splitter" "MP4 Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\mp4splitter.ax"
+ "MPC - Mpeg Source (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\mpegsplitter.ax"
+ "MPC - Mpeg Splitter (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\mpegsplitter.ax"
+ "MPC - MPEG4 Video Source" "MP4 Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\mp4splitter.ax"
+ "MPC - MPEG4 Video Splitter" "MP4 Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\general\filters\mp4splitter.ax"
+ "MPC - RealAudio Decoder" "RealMedia Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\real\realmediasplitter.ax"
+ "MPC - RealMedia Source" "RealMedia Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\real\realmediasplitter.ax"
+ "MPC - RealMedia Splitter" "RealMedia Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\real\realmediasplitter.ax"
+ "MPC - RealVideo Decoder" "RealMedia Splitter" "MPC-HC Team" "c:\windows\system32\vscodecpack_173\real\realmediasplitter.ax"
+ "MPEG Layer-3 Decoder" "MPEG Layer-3 Audio Decoder" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecx.ax"
+ "MPV Decoder Filter" "MPEG-1/2 Decoder Filter for DirectShow" "Gabest" "c:\windows\system32\mpeg2decfilter.ax"
+ "Pentagon I" "P1DXi DLL" "" "c:\program files\cakewalk\shared dxi\pentagon i\p1dxi.dll"
+ "PSYN II" "" "" "c:\program files\cakewalk\shared dxi\psynii\psyn ii.dll"
+ "QTSrc" "QuickTime Source Filter" "CyberLink Corp" "c:\windows\system32\clqtsrc.ax"
+ "RealPlayer Audio Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Transcode Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Video Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "Record Queue" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Roland GrooveSynth" "GrooveSynth Software Synthesizer" "Cakewalk / Roland" "c:\program files\cakewalk\shared dxi\p5antom\p5antom.dll"
+ "RXP" "RXP Groove Player" "Cakewalk " "c:\program files\cakewalk\shared dxi\rxp\rxp.dll"
+ "ShotDetect" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Sonitus:fx Compressor" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxcompressor.dll"
+ "Sonitus:fx Delay" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxdelay.dll"
+ "Sonitus:fx Equalizer" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxequalizer.dll"
+ "Sonitus:fx Gate" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxgate.dll"
+ "Sonitus:fx Modulator" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxmodulator.dll"
+ "Sonitus:fx Multiband" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxmultiband.dll"
+ "Sonitus:fx Phase" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxphase.dll"
+ "Sonitus:fx Reverb" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxreverb.dll"
+ "Sonitus:fx Surround" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxsurround.dll"
+ "Sonitus:fx SurroundComp" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxsurroundcompressor.dll"
+ "Sonitus:fx Wahwah" "" "Twelve Tone Systems, Inc.." "c:\program files\cakewalk\shared plugins\sonitusfxwahwah.dll"
+ "Stetch" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "T" "VP7 Decompression Filter" "On2.com Inc." "c:\windows\system32\vscodecpack_173\general\filters\vp7dec.ax"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\windows\system32\vscodecpack_173\general\filters\wavpackdsdecoder.ax"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\windows\system32\vscodecpack_173\general\filters\wavpackdssplitter.ax"
+ "WIA Stream Snapshot Filter" "WIA Stream Snapshot Filter" "MyCompanyName" "c:\windows\system32\wiasf.ax"
+ "WM VIH2 Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Screen capture Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "LBTWlgn" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtwlgn.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries" "" "" ""
+ "000000000001" "" "" "c:\program files\netscape internet service\netscape web accelerator\sliplsp.dll"
+ "000000000002" "" "" "c:\program files\netscape internet service\netscape web accelerator\sliplsp.dll"
+ "000000000003" "" "" "c:\program files\netscape internet service\netscape web accelerator\sliplsp.dll"
+ "000000000009" "" "" "c:\program files\netscape internet service\netscape web accelerator\sliplsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "KODAK All-in-One Printer" "Language Monitor for KODAK AiO Printer (32-Bit Intel® Pentium™ 4 Optimized Build)" "Eastman Kodak Company" "c:\windows\system32\ekaio2mon.dll"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:27 AM

Posted 30 September 2012 - 05:30 AM

Press Windows+R key and type

cmd and click ok and run these commands

cd c:\windows\system32\wbem
net stop winmgmt /y
ren repository repository.old
net start winmgmt


Let me know if security center works now

#9 SoXfused

SoXfused
  • Topic Starter

  • Members
  • 136 posts
  • OFFLINE
  •  
  • Local time:12:27 AM

Posted 30 September 2012 - 06:24 AM

I just typed in everything you said to and after I restarted my computer, Windows Security Center is still saying "Virus Protection - Not found", even though my AV is on. :(

Edited by SoXfused, 30 September 2012 - 06:25 AM.


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:27 AM

Posted 30 September 2012 - 06:45 AM

Do you receive any error while receiving this command?

ren repository repository.old

Also download this update and install it

http://www.microsoft.com/en-us/download/details.aspx?id=13021

Restart the PC and see if it works now

Edited by narenxp, 30 September 2012 - 06:52 AM.


#11 SoXfused

SoXfused
  • Topic Starter

  • Members
  • 136 posts
  • OFFLINE
  •  
  • Local time:12:27 AM

Posted 30 September 2012 - 07:02 AM

Do you receive any error while receiving this command?

ren repository repository.old

Also download this update and install it

http://www.microsoft.com/en-us/download/details.aspx?id=13021

Restart the PC and see if it works now


Yes, I did get an error message with that command. It said, "The system cannot find the file specified".

I'm downloading the update right now and getting ready to install it. I'll let you know what happens when I restart the computer.

#12 SoXfused

SoXfused
  • Topic Starter

  • Members
  • 136 posts
  • OFFLINE
  •  
  • Local time:12:27 AM

Posted 30 September 2012 - 07:12 AM

I just tried installing that download and I got a message that said, "Update cannot be installed as a newer or same timezone update has already been installed on the system".

I also restarted the computer and I'm still getting the "Virus Protection - Not Found" in Windows Security Center. :blink:

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:27 AM

Posted 30 September 2012 - 07:15 AM

Yes, I did get an error message with that command. It said, "The system cannot find the file specified".


I guess you missed running a command

Press Windows+R key and type

cmd and click ok and run this command

net stop winmgmt /y

Now press Windows+R key and type

wbem and click ok

Delete the REPOSITORY folder

Restart the PC and let me know if that helps

#14 SoXfused

SoXfused
  • Topic Starter

  • Members
  • 136 posts
  • OFFLINE
  •  
  • Local time:12:27 AM

Posted 30 September 2012 - 03:56 PM

I ran the command and deleted the Repository folder. When I did the net stop winmgmt /y command, it made the Windows Security Alert icon in my taskbar go away, but then when I restarted the computer, it came back with that message again.

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:27 AM

Posted 30 September 2012 - 10:40 PM

Reinstall microsoft security essentials and see if it works now.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users