Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firefox Redirect Virus? Malware? Help. Please


  • Please log in to reply
7 replies to this topic

#1 afe16rugby

afe16rugby

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:40 PM

Posted 05 October 2012 - 09:06 PM

I have windows 7 Home Premium. Service Pack 1. 64 Bit.

I think I have a virus, or malware, or trojan. Not sure. I get redirected in firefox

To such websites:
click.scour.com
Livesearchnow.com
Urlseek90.vmn.net
lowdownlist.com
merchantcircle.com

When I click back a couple times and then try to click on the right website, I can sometimes get to the one that I want.



I've run malwarebytes and spybot and superantispyware and it says I am clean, but I don't believe so. Please help. All and any help much appreciated.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:40 PM

Posted 05 October 2012 - 09:10 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 afe16rugby

afe16rugby
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:40 PM

Posted 07 October 2012 - 07:35 AM

Thank you for helping me. I was getting redirected in Chrome as well.

Here are the lists:


07:41:24.0386 8080 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
07:41:24.0705 8080 ============================================================
07:41:24.0705 8080 Current date / time: 2012/10/06 07:41:24.0705
07:41:24.0705 8080 SystemInfo:
07:41:24.0705 8080
07:41:24.0705 8080 OS Version: 6.1.7601 ServicePack: 1.0
07:41:24.0705 8080 Product type: Workstation
07:41:24.0705 8080 ComputerName: MAIER1-VAIO
07:41:24.0705 8080 UserName: Afe
07:41:24.0705 8080 Windows directory: C:\Windows
07:41:24.0705 8080 System windows directory: C:\Windows
07:41:24.0705 8080 Running under WOW64
07:41:24.0705 8080 Processor architecture: Intel x64
07:41:24.0705 8080 Number of processors: 2
07:41:24.0705 8080 Page size: 0x1000
07:41:24.0706 8080 Boot type: Normal boot
07:41:24.0706 8080 ============================================================
07:41:25.0347 8080 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
07:41:25.0374 8080 Drive \Device\Harddisk3\DR3 - Size: 0x3C100000 (0.94 Gb), SectorSize: 0x200, Cylinders: 0x7A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:41:25.0376 8080 Drive \Device\Harddisk4\DR4 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:41:39.0497 8080 Drive \Device\Harddisk5\DR5 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:41:48.0785 8080 Drive \Device\Harddisk6\DR6 - Size: 0x1D1C1115E00 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:41:57.0165 8080 ============================================================
07:41:57.0165 8080 \Device\Harddisk0\DR0:
07:41:57.0202 8080 MBR partitions:
07:41:57.0202 8080 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xEB5800, BlocksNum 0x32000
07:41:57.0202 8080 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xEE7800, BlocksNum 0x24546AB0
07:41:57.0202 8080 \Device\Harddisk3\DR3:
07:41:57.0203 8080 MBR partitions:
07:41:57.0203 8080 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x1E07E0
07:41:57.0203 8080 \Device\Harddisk4\DR4:
07:41:57.0213 8080 MBR partitions:
07:41:57.0213 8080 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
07:41:57.0213 8080 \Device\Harddisk5\DR5:
07:41:57.0239 8080 MBR partitions:
07:41:57.0239 8080 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
07:41:57.0239 8080 \Device\Harddisk6\DR6:
07:41:57.0275 8080 MBR partitions:
07:41:57.0275 8080 \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E074C1
07:41:57.0275 8080 ============================================================
07:41:57.0316 8080 C: <-> \Device\Harddisk0\DR0\Partition2
07:41:57.0355 8080 H: <-> \Device\Harddisk5\DR5\Partition1
07:41:57.0382 8080 I: <-> \Device\Harddisk6\DR6\Partition1
07:41:57.0397 8080 J: <-> \Device\Harddisk4\DR4\Partition1
07:41:57.0397 8080 ============================================================
07:41:57.0398 8080 Initialize success
07:41:57.0398 8080 ============================================================
07:42:25.0761 6280 ============================================================
07:42:25.0761 6280 Scan started
07:42:25.0761 6280 Mode: Manual; TDLFS;
07:42:25.0761 6280 ============================================================
07:42:26.0229 6280 ================ Scan system memory ========================
07:42:26.0229 6280 System memory - ok
07:42:26.0230 6280 ================ Scan services =============================
07:42:26.0348 6280 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
07:42:26.0350 6280 !SASCORE - ok
07:42:26.0564 6280 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
07:42:26.0587 6280 1394ohci - ok
07:42:26.0695 6280 [ D5934C8B21C2BBBDD259B691DEFE33BA ] ABBYY.Licensing.FineReader.Corporate.10.0 C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\CE\NetworkLicenseServer.exe
07:42:26.0703 6280 ABBYY.Licensing.FineReader.Corporate.10.0 - ok
07:42:26.0771 6280 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
07:42:26.0773 6280 ACDaemon - ok
07:42:26.0829 6280 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
07:42:26.0835 6280 ACPI - ok
07:42:26.0888 6280 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
07:42:26.0889 6280 AcpiPmi - ok
07:42:26.0979 6280 [ 5DDC0A8D2CD60BDA593DDAF45821CE08 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
07:42:26.0981 6280 Adobe LM Service - ok
07:42:27.0078 6280 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
07:42:27.0079 6280 AdobeARMservice - ok
07:42:27.0227 6280 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
07:42:27.0230 6280 AdobeFlashPlayerUpdateSvc - ok
07:42:27.0288 6280 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
07:42:27.0297 6280 adp94xx - ok
07:42:27.0349 6280 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
07:42:27.0354 6280 adpahci - ok
07:42:27.0392 6280 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
07:42:27.0395 6280 adpu320 - ok
07:42:27.0430 6280 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
07:42:27.0432 6280 AeLookupSvc - ok
07:42:27.0494 6280 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
07:42:27.0513 6280 AFD - ok
07:42:27.0562 6280 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
07:42:27.0588 6280 agp440 - ok
07:42:27.0615 6280 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
07:42:27.0617 6280 ALG - ok
07:42:27.0654 6280 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
07:42:27.0655 6280 aliide - ok
07:42:27.0671 6280 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
07:42:27.0672 6280 amdide - ok
07:42:27.0718 6280 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
07:42:27.0719 6280 AmdK8 - ok
07:42:27.0738 6280 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
07:42:27.0739 6280 AmdPPM - ok
07:42:27.0774 6280 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
07:42:27.0776 6280 amdsata - ok
07:42:27.0813 6280 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
07:42:27.0817 6280 amdsbs - ok
07:42:27.0841 6280 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
07:42:27.0842 6280 amdxata - ok
07:42:27.0898 6280 [ 56BD886820C4AEDF493CFCDF1CCFB004 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
07:42:27.0903 6280 ApfiltrService - ok
07:42:27.0959 6280 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
07:42:27.0961 6280 AppID - ok
07:42:27.0989 6280 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
07:42:27.0991 6280 AppIDSvc - ok
07:42:28.0050 6280 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
07:42:28.0052 6280 Appinfo - ok
07:42:28.0155 6280 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:42:28.0156 6280 Apple Mobile Device - ok
07:42:28.0204 6280 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
07:42:28.0206 6280 arc - ok
07:42:28.0238 6280 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
07:42:28.0240 6280 arcsas - ok
07:42:28.0271 6280 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
07:42:28.0272 6280 ArcSoftKsUFilter - ok
07:42:28.0321 6280 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
07:42:28.0323 6280 AsyncMac - ok
07:42:28.0376 6280 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
07:42:28.0377 6280 atapi - ok
07:42:28.0439 6280 [ 5D4529AC4156E16BEDB01441AE0CF984 ] athr C:\Windows\system32\DRIVERS\athrx.sys
07:42:28.0495 6280 athr - ok
07:42:28.0742 6280 [ DE0EDE41BC530F1759C6FFFCB8C7A0CF ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
07:42:28.0918 6280 atikmdag - ok
07:42:29.0002 6280 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:42:29.0024 6280 AudioEndpointBuilder - ok
07:42:29.0041 6280 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
07:42:29.0049 6280 AudioSrv - ok
07:42:29.0109 6280 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
07:42:29.0112 6280 AxInstSV - ok
07:42:29.0155 6280 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
07:42:29.0172 6280 b06bdrv - ok
07:42:29.0226 6280 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
07:42:29.0232 6280 b57nd60a - ok
07:42:29.0330 6280 [ 825F81A6F7DD073509DB101F0BA6DC59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
07:42:29.0332 6280 BBSvc - ok
07:42:29.0377 6280 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
07:42:29.0379 6280 BDESVC - ok
07:42:29.0403 6280 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
07:42:29.0405 6280 Beep - ok
07:42:29.0477 6280 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
07:42:29.0506 6280 BFE - ok
07:42:29.0562 6280 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
07:42:29.0631 6280 BITS - ok
07:42:29.0674 6280 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
07:42:29.0675 6280 blbdrive - ok
07:42:29.0779 6280 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:42:29.0784 6280 Bonjour Service - ok
07:42:29.0838 6280 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
07:42:29.0840 6280 bowser - ok
07:42:29.0882 6280 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:42:29.0883 6280 BrFiltLo - ok
07:42:29.0899 6280 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:42:29.0900 6280 BrFiltUp - ok
07:42:29.0972 6280 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
07:42:29.0974 6280 BridgeMP - ok
07:42:30.0018 6280 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
07:42:30.0022 6280 Browser - ok
07:42:30.0062 6280 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
07:42:30.0068 6280 Brserid - ok
07:42:30.0085 6280 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
07:42:30.0087 6280 BrSerWdm - ok
07:42:30.0110 6280 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
07:42:30.0111 6280 BrUsbMdm - ok
07:42:30.0127 6280 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
07:42:30.0128 6280 BrUsbSer - ok
07:42:30.0195 6280 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
07:42:30.0197 6280 BthEnum - ok
07:42:30.0221 6280 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
07:42:30.0223 6280 BTHMODEM - ok
07:42:30.0265 6280 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
07:42:30.0268 6280 BthPan - ok
07:42:30.0335 6280 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
07:42:30.0353 6280 BTHPORT - ok
07:42:30.0397 6280 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
07:42:30.0400 6280 bthserv - ok
07:42:30.0425 6280 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
07:42:30.0427 6280 BTHUSB - ok
07:42:30.0502 6280 [ 9887CA12F407D7FBC7F48F3678F5F0B6 ] BVRPMPR5a64 C:\Windows\system32\drivers\BVRPMPR5a64.SYS
07:42:30.0503 6280 BVRPMPR5a64 - ok
07:42:30.0540 6280 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
07:42:30.0542 6280 cdfs - ok
07:42:30.0633 6280 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
07:42:30.0637 6280 cdrom - ok
07:42:30.0684 6280 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
07:42:30.0687 6280 CertPropSvc - ok
07:42:30.0723 6280 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
07:42:30.0724 6280 circlass - ok
07:42:30.0764 6280 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
07:42:30.0772 6280 CLFS - ok
07:42:30.0843 6280 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:42:30.0844 6280 clr_optimization_v2.0.50727_32 - ok
07:42:30.0882 6280 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:42:30.0884 6280 clr_optimization_v2.0.50727_64 - ok
07:42:30.0977 6280 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:42:30.0997 6280 clr_optimization_v4.0.30319_32 - ok
07:42:31.0061 6280 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:42:31.0064 6280 clr_optimization_v4.0.30319_64 - ok
07:42:31.0097 6280 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
07:42:31.0099 6280 CmBatt - ok
07:42:31.0131 6280 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
07:42:31.0132 6280 cmdide - ok
07:42:31.0192 6280 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
07:42:31.0200 6280 CNG - ok
07:42:31.0284 6280 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
07:42:31.0285 6280 Compbatt - ok
07:42:31.0337 6280 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
07:42:31.0339 6280 CompositeBus - ok
07:42:31.0357 6280 COMSysApp - ok
07:42:31.0429 6280 [ 17719A7F571D4CD08223F0B30F71B8B8 ] cpuz134 C:\Windows\system32\drivers\cpuz134_x64.sys
07:42:31.0429 6280 cpuz134 - ok
07:42:31.0455 6280 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
07:42:31.0456 6280 crcdisk - ok
07:42:31.0515 6280 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
07:42:31.0518 6280 CryptSvc - ok
07:42:31.0588 6280 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
07:42:31.0597 6280 DcomLaunch - ok
07:42:31.0652 6280 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
07:42:31.0659 6280 defragsvc - ok
07:42:31.0703 6280 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
07:42:31.0705 6280 DfsC - ok
07:42:31.0765 6280 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
07:42:31.0772 6280 Dhcp - ok
07:42:31.0798 6280 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
07:42:31.0801 6280 discache - ok
07:42:31.0863 6280 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
07:42:31.0864 6280 Disk - ok
07:42:31.0901 6280 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
07:42:31.0906 6280 Dnscache - ok
07:42:31.0956 6280 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
07:42:31.0962 6280 dot3svc - ok
07:42:32.0028 6280 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
07:42:32.0032 6280 Dot4 - ok
07:42:32.0083 6280 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
07:42:32.0085 6280 Dot4Print - ok
07:42:32.0117 6280 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
07:42:32.0119 6280 dot4usb - ok
07:42:32.0165 6280 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
07:42:32.0169 6280 DPS - ok
07:42:32.0203 6280 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
07:42:32.0204 6280 drmkaud - ok
07:42:32.0269 6280 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
07:42:32.0316 6280 DXGKrnl - ok
07:42:32.0349 6280 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
07:42:32.0352 6280 EapHost - ok
07:42:32.0462 6280 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
07:42:32.0558 6280 ebdrv - ok
07:42:32.0659 6280 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
07:42:32.0662 6280 EFS - ok
07:42:32.0749 6280 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
07:42:32.0770 6280 ehRecvr - ok
07:42:32.0818 6280 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
07:42:32.0820 6280 ehSched - ok
07:42:32.0889 6280 [ 594F6168A9658B20FC89B02F897BBD25 ] elagopro C:\Windows\system32\DRIVERS\elagop64.sys
07:42:32.0890 6280 elagopro - ok
07:42:32.0914 6280 [ 5D47A65314942C5125E603A3316E9B09 ] elaunidr C:\Windows\system32\DRIVERS\elauni64.sys
07:42:32.0914 6280 elaunidr - ok
07:42:32.0954 6280 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
07:42:32.0972 6280 elxstor - ok
07:42:33.0012 6280 [ 9EAFB3B3B60B8AD958985152A9309ACA ] epmntdrv C:\Windows\system32\epmntdrv.sys
07:42:33.0013 6280 epmntdrv - ok
07:42:33.0029 6280 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
07:42:33.0030 6280 ErrDev - ok
07:42:33.0084 6280 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
07:42:33.0086 6280 EuGdiDrv - ok
07:42:33.0135 6280 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
07:42:33.0143 6280 EventSystem - ok
07:42:33.0186 6280 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
07:42:33.0191 6280 exfat - ok
07:42:33.0220 6280 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
07:42:33.0224 6280 fastfat - ok
07:42:33.0292 6280 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
07:42:33.0313 6280 Fax - ok
07:42:33.0338 6280 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
07:42:33.0340 6280 fdc - ok
07:42:33.0369 6280 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
07:42:33.0371 6280 fdPHost - ok
07:42:33.0381 6280 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
07:42:33.0383 6280 FDResPub - ok
07:42:33.0401 6280 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
07:42:33.0403 6280 FileInfo - ok
07:42:33.0425 6280 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
07:42:33.0426 6280 Filetrace - ok
07:42:33.0449 6280 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
07:42:33.0450 6280 flpydisk - ok
07:42:33.0493 6280 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
07:42:33.0496 6280 FltMgr - ok
07:42:33.0535 6280 [ 6CD6BB45BD3E0EEF6CE496BF52854FF1 ] FlyUsb C:\Windows\system32\DRIVERS\FlyUsb.sys
07:42:33.0536 6280 FlyUsb - ok
07:42:33.0695 6280 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
07:42:33.0733 6280 FontCache - ok
07:42:33.0816 6280 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:42:33.0817 6280 FontCache3.0.0.0 - ok
07:42:33.0855 6280 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
07:42:33.0857 6280 FsDepends - ok
07:42:33.0928 6280 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
07:42:33.0930 6280 fssfltr - ok
07:42:33.0973 6280 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
07:42:33.0975 6280 Fs_Rec - ok
07:42:34.0038 6280 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
07:42:34.0042 6280 fvevol - ok
07:42:34.0083 6280 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
07:42:34.0084 6280 gagp30kx - ok
07:42:34.0153 6280 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:42:34.0154 6280 GEARAspiWDM - ok
07:42:34.0215 6280 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
07:42:34.0246 6280 gpsvc - ok
07:42:34.0295 6280 [ B9893A68032A6D9ADDB5B98287C630F7 ] grmnusb C:\Windows\system32\drivers\grmnusb.sys
07:42:34.0295 6280 grmnusb - ok
07:42:34.0459 6280 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:42:34.0462 6280 gupdate - ok
07:42:34.0493 6280 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:42:34.0495 6280 gupdatem - ok
07:42:34.0560 6280 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
07:42:34.0561 6280 gusvc - ok
07:42:34.0665 6280 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
07:42:34.0666 6280 hcw85cir - ok
07:42:34.0722 6280 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:42:34.0730 6280 HdAudAddService - ok
07:42:34.0764 6280 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
07:42:34.0767 6280 HDAudBus - ok
07:42:34.0798 6280 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
07:42:34.0800 6280 HidBatt - ok
07:42:34.0821 6280 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
07:42:34.0823 6280 HidBth - ok
07:42:34.0856 6280 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
07:42:34.0857 6280 HidIr - ok
07:42:34.0894 6280 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
07:42:34.0896 6280 hidserv - ok
07:42:34.0943 6280 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
07:42:34.0944 6280 HidUsb - ok
07:42:34.0979 6280 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
07:42:34.0983 6280 hkmsvc - ok
07:42:35.0021 6280 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:42:35.0027 6280 HomeGroupListener - ok
07:42:35.0074 6280 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:42:35.0080 6280 HomeGroupProvider - ok
07:42:35.0267 6280 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
07:42:35.0269 6280 hpqcxs08 - ok
07:42:35.0327 6280 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
07:42:35.0329 6280 hpqddsvc - ok
07:42:35.0374 6280 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
07:42:35.0376 6280 HpSAMD - ok
07:42:35.0440 6280 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
07:42:35.0451 6280 HPSLPSVC - ok
07:42:35.0610 6280 [ 447256D1C026654C5CD3CC17E7B20631 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
07:42:35.0620 6280 HsfXAudioService - ok
07:42:35.0682 6280 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
07:42:35.0705 6280 HTTP - ok
07:42:35.0754 6280 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
07:42:35.0756 6280 hwpolicy - ok
07:42:35.0821 6280 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
07:42:35.0824 6280 i8042prt - ok
07:42:35.0882 6280 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
07:42:35.0886 6280 IAANTMON - ok
07:42:35.0927 6280 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
07:42:35.0930 6280 iaStor - ok
07:42:35.0994 6280 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
07:42:36.0001 6280 iaStorV - ok
07:42:36.0073 6280 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:42:36.0109 6280 idsvc - ok
07:42:36.0335 6280 [ DFEAF0A1D98D397035012C8E28D1520F ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
07:42:36.0532 6280 igfx - ok
07:42:36.0565 6280 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
07:42:36.0601 6280 iirsp - ok
07:42:36.0681 6280 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
07:42:36.0710 6280 IKEEXT - ok
07:42:36.0798 6280 [ B16FC828CE7A76A8F1CE682E6EAD2627 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
07:42:36.0854 6280 IntcAzAudAddService - ok
07:42:36.0900 6280 [ 88A20FA54C73DED4E8DAC764E9130AE9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
07:42:36.0902 6280 IntcHdmiAddService - ok
07:42:36.0923 6280 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
07:42:36.0924 6280 intelide - ok
07:42:36.0958 6280 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
07:42:36.0960 6280 intelppm - ok
07:42:36.0997 6280 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
07:42:37.0000 6280 IPBusEnum - ok
07:42:37.0047 6280 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:42:37.0050 6280 IpFilterDriver - ok
07:42:37.0099 6280 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
07:42:37.0119 6280 iphlpsvc - ok
07:42:37.0166 6280 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
07:42:37.0168 6280 IPMIDRV - ok
07:42:37.0198 6280 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
07:42:37.0200 6280 IPNAT - ok
07:42:37.0325 6280 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
07:42:37.0354 6280 iPod Service - ok
07:42:37.0378 6280 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
07:42:37.0379 6280 IRENUM - ok
07:42:37.0419 6280 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
07:42:37.0420 6280 isapnp - ok
07:42:37.0464 6280 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
07:42:37.0470 6280 iScsiPrt - ok
07:42:37.0492 6280 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
07:42:37.0494 6280 kbdclass - ok
07:42:37.0534 6280 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
07:42:37.0536 6280 kbdhid - ok
07:42:37.0551 6280 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
07:42:37.0553 6280 KeyIso - ok
07:42:37.0661 6280 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
07:42:37.0663 6280 KSecDD - ok
07:42:37.0713 6280 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
07:42:37.0715 6280 KSecPkg - ok
07:42:37.0728 6280 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
07:42:37.0730 6280 ksthunk - ok
07:42:37.0758 6280 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
07:42:37.0764 6280 KtmRm - ok
07:42:37.0836 6280 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
07:42:37.0842 6280 LanmanServer - ok
07:42:37.0887 6280 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:42:37.0892 6280 LanmanWorkstation - ok
07:42:38.0133 6280 [ 3C879D04BB6466E2853C3155B635CC45 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
07:42:38.0284 6280 LeapFrog Connect Device Service - ok
07:42:38.0332 6280 [ 02538E602280C07438C94489DCBE77D5 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
07:42:38.0333 6280 libusb0 - ok
07:42:38.0381 6280 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
07:42:38.0383 6280 lltdio - ok
07:42:38.0419 6280 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
07:42:38.0427 6280 lltdsvc - ok
07:42:38.0443 6280 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
07:42:38.0446 6280 lmhosts - ok
07:42:38.0488 6280 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
07:42:38.0491 6280 LSI_FC - ok
07:42:38.0507 6280 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
07:42:38.0510 6280 LSI_SAS - ok
07:42:38.0541 6280 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:42:38.0543 6280 LSI_SAS2 - ok
07:42:38.0568 6280 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:42:38.0607 6280 LSI_SCSI - ok
07:42:38.0673 6280 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
07:42:38.0675 6280 luafv - ok
07:42:38.0715 6280 [ DE585D1D266805E5EEDAE911FDD16F38 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
07:42:38.0716 6280 ManyCam - ok
07:42:38.0823 6280 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
07:42:38.0823 6280 MBAMProtector - ok
07:42:38.0907 6280 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
07:42:38.0911 6280 MBAMScheduler - ok
07:42:38.0967 6280 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
07:42:38.0984 6280 MBAMService - ok
07:42:39.0027 6280 [ 2E7FFDEF8BAFD04CBB517507B821E878 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
07:42:39.0029 6280 mcaudrv_simple - ok
07:42:39.0139 6280 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
07:42:39.0141 6280 McComponentHostService - ok
07:42:39.0197 6280 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
07:42:39.0206 6280 Mcx2Svc - ok
07:42:39.0230 6280 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
07:42:39.0231 6280 mdmxsdk - ok
07:42:39.0265 6280 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
07:42:39.0266 6280 megasas - ok
07:42:39.0311 6280 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
07:42:39.0317 6280 MegaSR - ok
07:42:39.0414 6280 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
07:42:39.0415 6280 Microsoft Office Groove Audit Service - ok
07:42:39.0441 6280 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
07:42:39.0444 6280 MMCSS - ok
07:42:39.0462 6280 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
07:42:39.0464 6280 Modem - ok
07:42:39.0497 6280 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
07:42:39.0499 6280 monitor - ok
07:42:39.0555 6280 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
07:42:39.0558 6280 mouclass - ok
07:42:39.0690 6280 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
07:42:39.0692 6280 mouhid - ok
07:42:39.0745 6280 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
07:42:39.0747 6280 mountmgr - ok
07:42:39.0827 6280 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
07:42:39.0828 6280 MozillaMaintenance - ok
07:42:39.0875 6280 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
07:42:39.0878 6280 mpio - ok
07:42:39.0895 6280 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
07:42:39.0897 6280 mpsdrv - ok
07:42:39.0942 6280 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
07:42:39.0961 6280 MpsSvc - ok
07:42:40.0014 6280 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
07:42:40.0017 6280 MRxDAV - ok
07:42:40.0064 6280 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
07:42:40.0067 6280 mrxsmb - ok
07:42:40.0122 6280 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:42:40.0128 6280 mrxsmb10 - ok
07:42:40.0172 6280 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:42:40.0174 6280 mrxsmb20 - ok
07:42:40.0218 6280 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
07:42:40.0219 6280 msahci - ok
07:42:40.0264 6280 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
07:42:40.0267 6280 msdsm - ok
07:42:40.0290 6280 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
07:42:40.0296 6280 MSDTC - ok
07:42:40.0346 6280 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
07:42:40.0347 6280 Msfs - ok
07:42:40.0358 6280 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
07:42:40.0359 6280 mshidkmdf - ok
07:42:40.0393 6280 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
07:42:40.0394 6280 msisadrv - ok
07:42:40.0435 6280 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
07:42:40.0438 6280 MSiSCSI - ok
07:42:40.0443 6280 msiserver - ok
07:42:40.0477 6280 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
07:42:40.0478 6280 MSKSSRV - ok
07:42:40.0509 6280 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
07:42:40.0510 6280 MSPCLOCK - ok
07:42:40.0528 6280 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
07:42:40.0529 6280 MSPQM - ok
07:42:40.0640 6280 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
07:42:40.0647 6280 MsRPC - ok
07:42:40.0688 6280 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
07:42:40.0690 6280 mssmbios - ok
07:42:40.0709 6280 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
07:42:40.0710 6280 MSTEE - ok
07:42:40.0789 6280 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
07:42:40.0790 6280 MTConfig - ok
07:42:40.0812 6280 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
07:42:40.0814 6280 Mup - ok
07:42:40.0858 6280 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
07:42:40.0875 6280 napagent - ok
07:42:40.0915 6280 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
07:42:40.0920 6280 NativeWifiP - ok
07:42:40.0983 6280 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
07:42:41.0017 6280 NDIS - ok
07:42:41.0033 6280 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
07:42:41.0035 6280 NdisCap - ok
07:42:41.0059 6280 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
07:42:41.0061 6280 NdisTapi - ok
07:42:41.0118 6280 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
07:42:41.0119 6280 Ndisuio - ok
07:42:41.0164 6280 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
07:42:41.0167 6280 NdisWan - ok
07:42:41.0210 6280 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
07:42:41.0212 6280 NDProxy - ok
07:42:41.0394 6280 [ C7F5C284B6F46FCAF6910EA4E644700B ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
07:42:41.0404 6280 Nero BackItUp Scheduler 4.0 - ok
07:42:41.0477 6280 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
07:42:41.0480 6280 Net Driver HPZ12 - ok
07:42:41.0548 6280 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
07:42:41.0548 6280 Netaapl - ok
07:42:41.0637 6280 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
07:42:41.0638 6280 NetBIOS - ok
07:42:41.0683 6280 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
07:42:41.0689 6280 NetBT - ok
07:42:41.0710 6280 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
07:42:41.0712 6280 Netlogon - ok
07:42:41.0756 6280 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
07:42:41.0775 6280 Netman - ok
07:42:41.0803 6280 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
07:42:41.0823 6280 netprofm - ok
07:42:41.0857 6280 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:42:41.0862 6280 NetTcpPortSharing - ok
07:42:42.0031 6280 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
07:42:42.0183 6280 netw5v64 - ok
07:42:42.0236 6280 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
07:42:42.0238 6280 nfrd960 - ok
07:42:42.0285 6280 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
07:42:42.0292 6280 NlaSvc - ok
07:42:42.0356 6280 [ C31FA031335EFF434B2D94278E74BCCE ] NPF C:\Windows\system32\drivers\npf.sys
07:42:42.0358 6280 NPF - ok
07:42:42.0396 6280 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
07:42:42.0397 6280 Npfs - ok
07:42:42.0428 6280 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
07:42:42.0432 6280 nsi - ok
07:42:42.0444 6280 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
07:42:42.0446 6280 nsiproxy - ok
07:42:42.0525 6280 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
07:42:42.0577 6280 Ntfs - ok
07:42:42.0631 6280 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
07:42:42.0632 6280 Null - ok
07:42:42.0678 6280 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
07:42:42.0681 6280 nvraid - ok
07:42:42.0717 6280 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
07:42:42.0721 6280 nvstor - ok
07:42:42.0753 6280 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
07:42:42.0755 6280 nv_agp - ok
07:42:42.0880 6280 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
07:42:42.0890 6280 odserv - ok
07:42:42.0930 6280 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
07:42:42.0932 6280 ohci1394 - ok
07:42:42.0976 6280 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:42:42.0978 6280 ose - ok
07:42:43.0014 6280 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
07:42:43.0020 6280 p2pimsvc - ok
07:42:43.0053 6280 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
07:42:43.0061 6280 p2psvc - ok
07:42:43.0095 6280 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
07:42:43.0096 6280 Parport - ok
07:42:43.0130 6280 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
07:42:43.0131 6280 partmgr - ok
07:42:43.0153 6280 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
07:42:43.0159 6280 PcaSvc - ok
07:42:43.0175 6280 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
07:42:43.0181 6280 pci - ok
07:42:43.0216 6280 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
07:42:43.0217 6280 pciide - ok
07:42:43.0256 6280 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
07:42:43.0259 6280 pcmcia - ok
07:42:43.0275 6280 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
07:42:43.0276 6280 pcw - ok
07:42:43.0321 6280 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
07:42:43.0338 6280 PEAUTH - ok
07:42:43.0372 6280 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
07:42:43.0373 6280 PerfHost - ok
07:42:43.0412 6280 pfc - ok
07:42:43.0480 6280 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
07:42:43.0525 6280 pla - ok
07:42:43.0641 6280 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
07:42:43.0662 6280 PlugPlay - ok
07:42:43.0751 6280 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
07:42:43.0755 6280 Pml Driver HPZ12 - ok
07:42:43.0768 6280 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
07:42:43.0771 6280 PNRPAutoReg - ok
07:42:43.0792 6280 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
07:42:43.0796 6280 PNRPsvc - ok
07:42:43.0847 6280 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
07:42:43.0857 6280 PolicyAgent - ok
07:42:43.0894 6280 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
07:42:43.0900 6280 Power - ok
07:42:43.0951 6280 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
07:42:43.0954 6280 PptpMiniport - ok
07:42:43.0992 6280 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
07:42:43.0993 6280 Processor - ok
07:42:44.0038 6280 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
07:42:44.0045 6280 ProfSvc - ok
07:42:44.0055 6280 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:42:44.0058 6280 ProtectedStorage - ok
07:42:44.0102 6280 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
07:42:44.0105 6280 Psched - ok
07:42:44.0142 6280 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
07:42:44.0143 6280 PxHlpa64 - ok
07:42:44.0235 6280 [ 56A6210ACA051227EAFEEFA628BB5A9B ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
07:42:44.0236 6280 QBCFMonitorService - ok
07:42:44.0323 6280 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
07:42:44.0325 6280 QBFCService - ok
07:42:44.0427 6280 [ D4FF4102640685C69BDC63F1674CE724 ] QBVSS C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
07:42:44.0450 6280 QBVSS - ok
07:42:44.0515 6280 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
07:42:44.0574 6280 ql2300 - ok
07:42:44.0649 6280 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
07:42:44.0652 6280 ql40xx - ok
07:42:44.0687 6280 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
07:42:44.0695 6280 QWAVE - ok
07:42:44.0735 6280 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
07:42:44.0737 6280 QWAVEdrv - ok
07:42:44.0806 6280 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
07:42:44.0810 6280 RapiMgr - ok
07:42:44.0833 6280 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
07:42:44.0834 6280 RasAcd - ok
07:42:44.0877 6280 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
07:42:44.0881 6280 RasAgileVpn - ok
07:42:44.0901 6280 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
07:42:44.0904 6280 RasAuto - ok
07:42:44.0938 6280 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
07:42:44.0941 6280 Rasl2tp - ok
07:42:44.0982 6280 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
07:42:44.0989 6280 RasMan - ok
07:42:45.0014 6280 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
07:42:45.0016 6280 RasPppoe - ok
07:42:45.0033 6280 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
07:42:45.0035 6280 RasSstp - ok
07:42:45.0085 6280 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
07:42:45.0091 6280 rdbss - ok
07:42:45.0119 6280 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
07:42:45.0120 6280 rdpbus - ok
07:42:45.0136 6280 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
07:42:45.0138 6280 RDPCDD - ok
07:42:45.0158 6280 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
07:42:45.0159 6280 RDPENCDD - ok
07:42:45.0178 6280 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
07:42:45.0179 6280 RDPREFMP - ok
07:42:45.0220 6280 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
07:42:45.0223 6280 RDPWD - ok
07:42:45.0273 6280 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
07:42:45.0276 6280 rdyboost - ok
07:42:45.0310 6280 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
07:42:45.0314 6280 RemoteAccess - ok
07:42:45.0338 6280 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
07:42:45.0342 6280 RemoteRegistry - ok
07:42:45.0365 6280 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
07:42:45.0368 6280 RFCOMM - ok
07:42:45.0403 6280 [ 258AADB43E3F3468B5CF8CB0F84872C2 ] rimsptsk C:\Windows\system32\DRIVERS\rimssn64.sys
07:42:45.0405 6280 rimsptsk - ok
07:42:45.0456 6280 [ 71E182A0DE1CECB3F912960716345405 ] risdptsk C:\Windows\system32\DRIVERS\risdsn64.sys
07:42:45.0457 6280 risdptsk - ok
07:42:45.0498 6280 [ D02E5A46F77C182CA1964080BCD586F7 ] Roxio UPnP Renderer 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
07:42:45.0501 6280 Roxio UPnP Renderer 10 - ok
07:42:45.0526 6280 [ E5809597278802D09273EE07B5FC56E1 ] Roxio Upnp Server 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
07:42:45.0531 6280 Roxio Upnp Server 10 - ok
07:42:45.0559 6280 [ A780D3EAA74582EA1DEB6BD9C7A3D9C9 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
07:42:45.0561 6280 rpcapd - ok
07:42:45.0640 6280 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
07:42:45.0644 6280 RpcEptMapper - ok
07:42:45.0671 6280 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
07:42:45.0674 6280 RpcLocator - ok
07:42:45.0727 6280 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
07:42:45.0735 6280 RpcSs - ok
07:42:45.0773 6280 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
07:42:45.0776 6280 rspndr - ok
07:42:45.0862 6280 rssasnt - ok
07:42:45.0906 6280 [ 34F05C417F038FFA3BEF69B798D7D7DD ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
07:42:45.0910 6280 RTHDMIAzAudService - ok
07:42:45.0984 6280 [ 01E6A1E53E39A0B1E2B6AE62BF52E8EC ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
07:42:45.0986 6280 RtkAudioService - ok
07:42:46.0084 6280 [ 9A5FB8DE6567BC86FCCDE2F0336857A3 ] SampleCollector C:\Program Files\Sony\VAIO Care\collsvc.exe
07:42:46.0087 6280 SampleCollector - ok
07:42:46.0101 6280 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
07:42:46.0103 6280 SamSs - ok
07:42:46.0181 6280 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
07:42:46.0182 6280 SASDIFSV - ok
07:42:46.0187 6280 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
07:42:46.0188 6280 SASKUTIL - ok
07:42:46.0243 6280 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
07:42:46.0245 6280 sbp2port - ok
07:42:46.0385 6280 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
07:42:46.0407 6280 SBSDWSCService - ok
07:42:46.0457 6280 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
07:42:46.0463 6280 SCardSvr - ok
07:42:46.0508 6280 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
07:42:46.0510 6280 scfilter - ok
07:42:46.0612 6280 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
07:42:46.0661 6280 Schedule - ok
07:42:46.0705 6280 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
07:42:46.0706 6280 SCPolicySvc - ok
07:42:46.0742 6280 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
07:42:46.0745 6280 sdbus - ok
07:42:46.0803 6280 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
07:42:46.0809 6280 SDRSVC - ok
07:42:46.0914 6280 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
07:42:46.0916 6280 SeaPort - ok
07:42:46.0952 6280 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
07:42:46.0953 6280 secdrv - ok
07:42:46.0989 6280 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
07:42:46.0993 6280 seclogon - ok
07:42:47.0012 6280 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
07:42:47.0017 6280 SENS - ok
07:42:47.0032 6280 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
07:42:47.0036 6280 SensrSvc - ok
07:42:47.0074 6280 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
07:42:47.0075 6280 Serenum - ok
07:42:47.0099 6280 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
07:42:47.0100 6280 Serial - ok
07:42:47.0134 6280 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
07:42:47.0135 6280 sermouse - ok
07:42:47.0222 6280 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
07:42:47.0227 6280 SessionEnv - ok
07:42:47.0270 6280 [ 70F9C476B62DE4F2823E918A6C181ADE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
07:42:47.0271 6280 SFEP - ok
07:42:47.0303 6280 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
07:42:47.0305 6280 sffdisk - ok
07:42:47.0318 6280 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
07:42:47.0319 6280 sffp_mmc - ok
07:42:47.0328 6280 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
07:42:47.0330 6280 sffp_sd - ok
07:42:47.0345 6280 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
07:42:47.0347 6280 sfloppy - ok
07:42:47.0408 6280 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
07:42:47.0414 6280 SharedAccess - ok
07:42:47.0468 6280 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:42:47.0477 6280 ShellHWDetection - ok
07:42:47.0511 6280 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:42:47.0513 6280 SiSRaid2 - ok
07:42:47.0547 6280 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
07:42:47.0549 6280 SiSRaid4 - ok
07:42:47.0685 6280 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
07:42:47.0687 6280 SkypeUpdate - ok
07:42:47.0722 6280 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
07:42:47.0725 6280 Smb - ok
07:42:47.0772 6280 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
07:42:47.0775 6280 SNMPTRAP - ok
07:42:47.0831 6280 [ 98886C88A1CB13D61672AE2C638B7E1C ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
07:42:47.0833 6280 SOHCImp - ok
07:42:47.0844 6280 [ 442A13F395546F4564C377296D43B564 ] SOHDBSvr C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
07:42:47.0845 6280 SOHDBSvr - ok
07:42:47.0868 6280 [ 556681BE668D71DC162391A45422B52C ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
07:42:47.0873 6280 SOHDms - ok
07:42:47.0882 6280 [ 72B46103E4111439109ACF5882627C24 ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
07:42:47.0883 6280 SOHDs - ok
07:42:47.0896 6280 [ 725B6E9CD1959271AC993DC035E1606D ] SOHPlMgr C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
07:42:47.0896 6280 SOHPlMgr - ok
07:42:47.0919 6280 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
07:42:47.0920 6280 spldr - ok
07:42:47.0969 6280 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
07:42:47.0992 6280 Spooler - ok
07:42:48.0125 6280 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
07:42:48.0236 6280 sppsvc - ok
07:42:48.0261 6280 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
07:42:48.0265 6280 sppuinotify - ok
07:42:48.0318 6280 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
07:42:48.0326 6280 srv - ok
07:42:48.0377 6280 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
07:42:48.0385 6280 srv2 - ok
07:42:48.0414 6280 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
07:42:48.0420 6280 SrvHsfHDA - ok
07:42:48.0505 6280 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
07:42:48.0561 6280 SrvHsfV92 - ok
07:42:48.0646 6280 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
07:42:48.0667 6280 SrvHsfWinac - ok
07:42:48.0742 6280 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
07:42:48.0746 6280 srvnet - ok
07:42:48.0794 6280 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
07:42:48.0802 6280 SSDPSRV - ok
07:42:48.0822 6280 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
07:42:48.0826 6280 SstpSvc - ok
07:42:48.0856 6280 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
07:42:48.0856 6280 stexstor - ok
07:42:48.0894 6280 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
07:42:48.0895 6280 StillCam - ok
07:42:48.0959 6280 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
07:42:48.0982 6280 stisvc - ok
07:42:49.0022 6280 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
07:42:49.0023 6280 swenum - ok
07:42:49.0046 6280 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
07:42:49.0066 6280 swprv - ok
07:42:49.0147 6280 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
07:42:49.0208 6280 SysMain - ok
07:42:49.0251 6280 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:42:49.0255 6280 TabletInputService - ok
07:42:49.0301 6280 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
07:42:49.0310 6280 TapiSrv - ok
07:42:49.0328 6280 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
07:42:49.0333 6280 TBS - ok
07:42:49.0426 6280 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
07:42:49.0498 6280 Tcpip - ok
07:42:49.0548 6280 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
07:42:49.0562 6280 TCPIP6 - ok
07:42:49.0664 6280 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
07:42:49.0666 6280 tcpipreg - ok
07:42:49.0700 6280 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
07:42:49.0702 6280 TDPIPE - ok
07:42:49.0743 6280 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
07:42:49.0744 6280 TDTCP - ok
07:42:49.0790 6280 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
07:42:49.0794 6280 tdx - ok
07:42:49.0924 6280 [ 5E53CF8AD0FD33B35000C113656AB37B ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
07:42:50.0005 6280 TeamViewer7 - ok
07:42:50.0055 6280 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
07:42:50.0057 6280 TermDD - ok
07:42:50.0101 6280 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
07:42:50.0107 6280 TermService - ok
07:42:50.0131 6280 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
07:42:50.0134 6280 Themes - ok
07:42:50.0159 6280 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
07:42:50.0160 6280 THREADORDER - ok
07:42:50.0175 6280 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
07:42:50.0179 6280 TrkWks - ok
07:42:50.0250 6280 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:42:50.0254 6280 TrustedInstaller - ok
07:42:50.0301 6280 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
07:42:50.0303 6280 tssecsrv - ok
07:42:50.0368 6280 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
07:42:50.0371 6280 TsUsbFlt - ok
07:42:50.0431 6280 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
07:42:50.0434 6280 tunnel - ok
07:42:50.0463 6280 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
07:42:50.0465 6280 uagp35 - ok
07:42:50.0518 6280 [ 63F6D08C54D5B3C1B12A6172032055C7 ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
07:42:50.0520 6280 uCamMonitor - ok
07:42:50.0603 6280 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
07:42:50.0610 6280 udfs - ok
07:42:50.0679 6280 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
07:42:50.0683 6280 UI0Detect - ok
07:42:50.0742 6280 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
07:42:50.0743 6280 uliagpkx - ok
07:42:50.0783 6280 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
07:42:50.0785 6280 umbus - ok
07:42:50.0815 6280 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
07:42:50.0815 6280 UmPass - ok
07:42:50.0836 6280 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
07:42:50.0844 6280 upnphost - ok
07:42:50.0887 6280 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
07:42:50.0888 6280 USBAAPL64 - ok
07:42:50.0910 6280 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
07:42:50.0912 6280 usbccgp - ok
07:42:50.0961 6280 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
07:42:50.0963 6280 usbcir - ok
07:42:50.0984 6280 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
07:42:50.0987 6280 usbehci - ok
07:42:51.0045 6280 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
07:42:51.0052 6280 usbhub - ok
07:42:51.0077 6280 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
07:42:51.0079 6280 usbohci - ok
07:42:51.0112 6280 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
07:42:51.0113 6280 usbprint - ok
07:42:51.0157 6280 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
07:42:51.0158 6280 usbscan - ok
07:42:51.0179 6280 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:42:51.0180 6280 USBSTOR - ok
07:42:51.0199 6280 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
07:42:51.0200 6280 usbuhci - ok
07:42:51.0265 6280 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
07:42:51.0270 6280 usbvideo - ok
07:42:51.0300 6280 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
07:42:51.0305 6280 UxSms - ok
07:42:51.0352 6280 [ 4E7135D6D0127067E4CFEE12259F895D ] VAIO Entertainment TV Device Arbitration Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
07:42:51.0353 6280 VAIO Entertainment TV Device Arbitration Service - ok
07:42:51.0406 6280 [ D4197CF0C8567046FD4AF28FF47AF528 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
07:42:51.0408 6280 VAIO Event Service - ok
07:42:51.0462 6280 [ 2D6605C1F0BBD0F71A4CB3A5B1E07240 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
07:42:51.0470 6280 VAIO Power Management - ok
07:42:51.0516 6280 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
07:42:51.0519 6280 VaultSvc - ok
07:42:51.0559 6280 [ 06FE5BEDDADB158D84E6DE33CBE19F3E ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
07:42:51.0566 6280 VCFw - ok
07:42:51.0678 6280 [ 34063C0B842E73662067F9B03947C55C ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
07:42:51.0685 6280 VcmIAlzMgr - ok
07:42:51.0715 6280 [ A8F5D1651A324ABC6C308891A1252EE3 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
07:42:51.0721 6280 VcmINSMgr - ok
07:42:51.0769 6280 [ DB544B487F360128DC1C383E0A6FCC2F ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
07:42:51.0771 6280 VcmXmlIfHelper - ok
07:42:51.0777 6280 Vcsw - ok
07:42:51.0849 6280 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
07:42:51.0850 6280 vdrvroot - ok
07:42:51.0907 6280 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
07:42:51.0928 6280 vds - ok
07:42:51.0963 6280 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
07:42:51.0964 6280 vga - ok
07:42:51.0986 6280 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
07:42:51.0988 6280 VgaSave - ok
07:42:52.0031 6280 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
07:42:52.0036 6280 vhdmp - ok
07:42:52.0073 6280 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
07:42:52.0074 6280 viaide - ok
07:42:52.0127 6280 [ 93F279A2C172562050700A18FA84BE2E ] vncmirror C:\Windows\system32\DRIVERS\vncmirror.sys
07:42:52.0128 6280 vncmirror - ok
07:42:52.0171 6280 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] Volfinchdr C:\Windows\system32\drivers\wimmount.sys
07:42:52.0173 6280 Volfinchdr - ok
07:42:52.0222 6280 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
07:42:52.0225 6280 volmgr - ok
07:42:52.0280 6280 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
07:42:52.0285 6280 volmgrx - ok
07:42:52.0303 6280 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
07:42:52.0305 6280 volsnap - ok
07:42:52.0351 6280 [ DDF7522FBEF8D50E015E743813595801 ] vrvd5 C:\Windows\system32\DRIVERS\vrvd5.sys
07:42:52.0352 6280 vrvd5 - ok
07:42:52.0396 6280 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
07:42:52.0399 6280 vsmraid - ok
07:42:52.0477 6280 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
07:42:52.0530 6280 VSS - ok
07:42:52.0543 6280 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
07:42:52.0545 6280 vwifibus - ok
07:42:52.0575 6280 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
07:42:52.0607 6280 vwififlt - ok
07:42:52.0664 6280 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
07:42:52.0666 6280 vwifimp - ok
07:42:52.0688 6280 [ D8BEF4AC1EAC809DBDBD441D6CFF6C4C ] VzCdbSvc C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
07:42:52.0691 6280 VzCdbSvc - ok
07:42:52.0740 6280 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
07:42:52.0759 6280 W32Time - ok
07:42:52.0787 6280 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
07:42:52.0788 6280 WacomPen - ok
07:42:52.0831 6280 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
07:42:52.0834 6280 WANARP - ok
07:42:52.0840 6280 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
07:42:52.0842 6280 Wanarpv6 - ok
07:42:52.0943 6280 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
07:42:52.0989 6280 WatAdminSvc - ok
07:42:53.0060 6280 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
07:42:53.0122 6280 wbengine - ok
07:42:53.0151 6280 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
07:42:53.0159 6280 WbioSrvc - ok
07:42:53.0236 6280 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
07:42:53.0254 6280 WcesComm - ok
07:42:53.0296 6280 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
07:42:53.0315 6280 wcncsvc - ok
07:42:53.0329 6280 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:42:53.0332 6280 WcsPlugInService - ok
07:42:53.0365 6280 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
07:42:53.0365 6280 Wd - ok
07:42:53.0412 6280 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
07:42:53.0412 6280 WDC_SAM - ok
07:42:53.0444 6280 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
07:42:53.0460 6280 Wdf01000 - ok
07:42:53.0488 6280 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
07:42:53.0492 6280 WdiServiceHost - ok
07:42:53.0496 6280 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
07:42:53.0499 6280 WdiSystemHost - ok
07:42:53.0549 6280 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
07:42:53.0557 6280 WebClient - ok
07:42:53.0661 6280 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
07:42:53.0669 6280 Wecsvc - ok
07:42:53.0686 6280 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
07:42:53.0691 6280 wercplsupport - ok
07:42:53.0716 6280 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
07:42:53.0719 6280 WerSvc - ok
07:42:53.0734 6280 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
07:42:53.0735 6280 WfpLwf - ok
07:42:53.0749 6280 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
07:42:53.0750 6280 WIMMount - ok
07:42:53.0785 6280 WinDefend - ok
07:42:53.0791 6280 WinHttpAutoProxySvc - ok
07:42:53.0851 6280 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
07:42:53.0856 6280 Winmgmt - ok
07:42:53.0949 6280 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
07:42:54.0010 6280 WinRM - ok
07:42:54.0064 6280 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
07:42:54.0065 6280 WinUsb - ok
07:42:54.0188 6280 [ CA1DC75686AB0D8A1E5E3850969BBAA3 ] WinVNC4 C:\Program Files\RealVNC\VNC4\WinVNC4.exe
07:42:54.0257 6280 WinVNC4 - ok
07:42:54.0306 6280 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
07:42:54.0337 6280 Wlansvc - ok
07:42:54.0499 6280 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
07:42:54.0571 6280 wlidsvc - ok
07:42:54.0653 6280 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
07:42:54.0655 6280 WmiAcpi - ok
07:42:54.0696 6280 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
07:42:54.0700 6280 wmiApSrv - ok
07:42:54.0713 6280 WMPNetworkSvc - ok
07:42:54.0741 6280 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
07:42:54.0743 6280 WPCSvc - ok
07:42:54.0778 6280 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
07:42:54.0782 6280 WPDBusEnum - ok
07:42:54.0804 6280 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
07:42:54.0805 6280 ws2ifsl - ok
07:42:54.0837 6280 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
07:42:54.0841 6280 wscsvc - ok
07:42:54.0873 6280 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
07:42:54.0873 6280 WSDPrintDevice - ok
07:42:54.0879 6280 WSearch - ok
07:42:54.0978 6280 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
07:42:55.0061 6280 wuauserv - ok
07:42:55.0086 6280 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
07:42:55.0088 6280 WudfPf - ok
07:42:55.0164 6280 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
07:42:55.0168 6280 WUDFRd - ok
07:42:55.0212 6280 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
07:42:55.0218 6280 wudfsvc - ok
07:42:55.0256 6280 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
07:42:55.0265 6280 WwanSvc - ok
07:42:55.0293 6280 [ E8F3FA126A06F8E7088F63757112A186 ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys
07:42:55.0294 6280 XAudio - ok
07:42:55.0483 6280 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
07:42:55.0490 6280 YahooAUService - ok
07:42:55.0520 6280 [ 6AFFD75C6807B3DD3AB018E27B88EF95 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
07:42:55.0527 6280 yukonw7 - ok
07:42:55.0571 6280 ================ Scan global ===============================
07:42:55.0613 6280 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
07:42:55.0651 6280 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
07:42:55.0674 6280 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
07:42:55.0722 6280 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
07:42:55.0757 6280 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
07:42:55.0763 6280 [Global] - ok
07:42:55.0763 6280 ================ Scan MBR ==================================
07:42:55.0774 6280 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:42:56.0129 6280 \Device\Harddisk0\DR0 - ok
07:42:56.0137 6280 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk3\DR3
07:42:56.0296 6280 \Device\Harddisk3\DR3 - ok
07:42:56.0313 6280 [ A4A15D6782E6FE1DCE41A606CB3AFFE3 ] \Device\Harddisk4\DR4
07:42:56.0673 6280 \Device\Harddisk4\DR4 - ok
07:42:56.0688 6280 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk5\DR5
07:42:56.0835 6280 \Device\Harddisk5\DR5 - ok
07:42:56.0841 6280 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk6\DR6
07:42:56.0974 6280 \Device\Harddisk6\DR6 - ok
07:42:56.0975 6280 ================ Scan VBR ==================================
07:42:56.0979 6280 [ 81D9E2C1C9224F67070B8540996BBD5F ] \Device\Harddisk0\DR0\Partition1
07:42:56.0982 6280 \Device\Harddisk0\DR0\Partition1 - ok
07:42:57.0027 6280 [ 42172032A0DC9166778AFC77F7FB58CF ] \Device\Harddisk0\DR0\Partition2
07:42:57.0029 6280 \Device\Harddisk0\DR0\Partition2 - ok
07:42:57.0035 6280 [ 67BC6A0DFBECD8944E4F2A371080BBB8 ] \Device\Harddisk3\DR3\Partition1
07:42:57.0037 6280 \Device\Harddisk3\DR3\Partition1 - ok
07:42:57.0045 6280 [ 2727C5861400F09DDEA8135A113A3B92 ] \Device\Harddisk4\DR4\Partition1
07:42:57.0048 6280 \Device\Harddisk4\DR4\Partition1 - ok
07:42:57.0053 6280 [ D34398660B8C25FE9F453C19B4DF1CEC ] \Device\Harddisk5\DR5\Partition1
07:42:57.0056 6280 \Device\Harddisk5\DR5\Partition1 - ok
07:42:57.0061 6280 [ 3BD00DF30D91C43D085C1F6484A0943C ] \Device\Harddisk6\DR6\Partition1
07:42:57.0063 6280 \Device\Harddisk6\DR6\Partition1 - ok
07:42:57.0063 6280 ============================================================
07:42:57.0063 6280 Scan finished
07:42:57.0063 6280 ============================================================
07:42:57.0079 6316 Detected object count: 0
07:42:57.0079 6316 Actual detected object count: 0

AswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-06 07:45:21
-----------------------------
07:45:21.338 OS Version: Windows x64 6.1.7601 Service Pack 1
07:45:21.339 Number of processors: 2 586 0x170A
07:45:21.340 ComputerName: MAIER1-VAIO UserName: Afe
07:45:30.110 Initialize success
07:47:16.764 AVAST engine defs: 12100600
07:47:33.630 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:47:33.632 Disk 0 Vendor: WDC_WD32 11.0 Size: 305245MB BusType: 3
07:47:33.634 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000082
07:47:33.637 Disk 1 Vendor: RICOH 01 Size: 305245MB BusType: 0
07:47:33.640 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000083
07:47:33.642 Disk 2 Vendor: RICOH 02 Size: 305245MB BusType: 0
07:47:33.646 Disk 3 \Device\Harddisk3\DR3 -> \Device\0000008f
07:47:33.649 Disk 3 Vendor: Size: 305245MB BusType: 0
07:47:33.653 Disk 4 \Device\Harddisk4\DR4 -> \Device\00000091
07:47:33.656 Disk 4 Vendor: Size: 305245MB BusType: 0
07:47:33.660 Disk 5 \Device\Harddisk5\DR5 -> \Device\00000095
07:47:33.665 Disk 5 Vendor: Size: 305245MB BusType: 0
07:47:33.669 Disk 6 \Device\Harddisk6\DR6 -> \Device\00000096
07:47:33.675 Disk 6 Vendor: Size: 305245MB BusType: 0
07:47:33.715 Disk 0 MBR read successfully
07:47:33.719 Disk 0 MBR scan
07:47:33.726 Disk 0 Windows 7 default MBR code
07:47:33.818 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 7530 MB offset 2048
07:47:33.924 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 15423488
07:47:33.966 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 297613 MB offset 15628288
07:47:34.073 Disk 0 scanning C:\Windows\system32\drivers
07:48:18.373 Service scanning
07:49:56.700 Service Volfinchdr C:\Windows\C:\Windows\system32\drivers\wimmount.sys **LOCKED** 123
07:50:09.595 Modules scanning
07:50:09.609 Disk 0 trace - called modules:
07:50:09.662 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
07:50:09.671 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c38060]
07:50:09.680 3 CLASSPNP.SYS[fffff8800140143f] -> nt!IofCallDriver -> [0xfffffa8003cee950]
07:50:09.689 5 ACPI.sys[fffff88000f3d7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004ac3050]
07:50:13.554 AVAST engine scan C:\Windows
07:50:24.306 AVAST engine scan C:\Windows\system32
07:55:53.861 AVAST engine scan C:\Windows\system32\drivers
07:56:23.902 AVAST engine scan C:\Users\Afe
08:06:07.435 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
08:06:07.446 The log file has been saved successfully to "C:\aswMBR.txt"

ESET Scanner:

C:\Users\Afe\AppData\Local\Google\Chrome\User Data\Default\Default\aadedcdbgggggeddgedfdjdddedcdegg\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Afe\AppData\Local\Google\Chrome\User Data\Default\Default\aadedcdbgggggeddgedfdjdddedcdegg\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Afe\AppData\Roaming\FileHunter\extensions-2.exe a variant of Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\Users\Afe\Documents\Burning\Ahead.Nero.v8.2.8.0.Incl.Keymaker-EMBRACE\Ahead.Nero.v8.2.8.0.Incl.Keymaker-EMBRACE\e-n82838\embrace\Nero-8.2.8.0_eng_trial.exe Win32/Toolbar.AskSBar application cleaned by deleting - quarantined
C:\Users\Afe\Documents\Red Kawa\Antivirus\NOD32-2.70.39.WinAll\NOD32view_2.10.1..exe probably a variant of Win32/RiskWare.HackAV.GJ application cleaned by deleting - quarantined
C:\Users\Afe\Downloads\gimp_31.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\Afe\Downloads\SoftonicDownloader_for_hjsplit.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined
C:\Users\Afe\Downloads\xvid-1.2.2.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined
I:\New Downloads Aug 3\sales jeffrey fox how to become a rainmaker business summaries (2000).exe a variant of Win32/Obfuscated.NEX trojan cleaned by deleting - quarantined
I:\New Downloads Aug 3\webex client software.exe a variant of Win32/TrojanDownloader.Whizelown.G trojan cleaned by deleting - quarantined
I:\New folder\abby finereader\abbyy lingvo 10 keygen.exe a variant of Win32/Agent.WRY trojan cleaned by deleting - quarantined
I:\Self Help\Taj Amir\audiobook - art and skill of conversation, the - audio book\Setup86_64.exe multiple threats cleaned by deleting - quarantined
I:\Software\Burning\Ahead.Nero.v8.2.8.0.Incl.Keymaker-EMBRACE\Ahead.Nero.v8.2.8.0.Incl.Keymaker-EMBRACE\e-n82838\embrace\Nero-8.2.8.0_eng_trial.exe Win32/Toolbar.AskSBar application cleaned by deleting - quarantined
I:\Software\Red Kawa\Antivirus\NOD32-2.70.39.WinAll\NOD32.FiX.v2.2.exe Win32/RiskWare.HackAV.G application cleaned by deleting - quarantined
I:\Software\Red Kawa\Antivirus\NOD32-2.70.39.WinAll\NOD32view_2.10.1..exe probably a variant of Win32/RiskWare.HackAV.GJ application cleaned by deleting - quarantined
I:\Software to Sort\cnet_Pod_to_PC_Setup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
I:\Software to Sort\cnet_spybotsd162_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
I:\Software to Sort\DownloadManager.exe a variant of Win32/Adware.iBryte.A application cleaned by deleting - quarantined
I:\Software to Sort\gimp_31.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
I:\Software to Sort\xvid-1.2.2.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined
I:\Software to Sort\YouTubeDownloaderSetup265.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined

===)

I guess it automatically quarantined these items then I reran it and it said zero infected with the items in quarantined.

Please advise what I should do next.

Thank you.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:40 PM

Posted 07 October 2012 - 09:21 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#5 afe16rugby

afe16rugby
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:40 PM

Posted 07 October 2012 - 10:21 PM

Malware:


Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Thank you for your help!

Database version: v2012.10.07.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Afe :: MAIER1-VAIO [administrator]

10/7/2012 9:15:42 PM
mbam-log-2012-10-07 (21-15-42).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 508116
Time elapsed: 1 hour(s), 14 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Minitool:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Afe (administrator) on 07-10-2012 at 23:18:24
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Maier1-VAIO
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hr.cox.net

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 06-26-5E-FE-A5-9F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : hr.cox.net
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 00-26-5E-FE-A5-9F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5590:ad4a:4d8b:a839%11(Preferred)
IPv4 Address. . . . . . . . . . . : 10.10.10.100(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, October 07, 2012 10:40:11 PM
Lease Expires . . . . . . . . . . : Monday, October 08, 2012 11:17:08 PM
Default Gateway . . . . . . . . . : 10.10.10.1
DHCP Server . . . . . . . . . . . : 10.10.10.1
DHCPv6 IAID . . . . . . . . . . . : 218111802
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-77-54-D9-00-24-BE-7C-C3-6B
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled
Connection-specific DNS Suffix Search List :
hr.cox.net

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller
Physical Address. . . . . . . . . : 00-24-BE-7C-C3-6B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {859ABC73-C8E9-4276-8411-9F76E4A25859}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:cdd:1d04:f5f5:f59b(Preferred)
Link-local IPv6 Address . . . . . : fe80::cdd:1d04:f5f5:f59b%22(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Reusable ISATAP Interface {786D4018-029E-4791-87D7-4A666C21D050}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hr.cox.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4002:c04::71
74.125.134.139
74.125.134.100
74.125.134.101
74.125.134.102
74.125.134.113
74.125.134.138


Pinging google.com [173.194.37.32] with 32 bytes of data:
Reply from 173.194.37.32: bytes=32 time=12ms TTL=51
Reply from 173.194.37.32: bytes=32 time=12ms TTL=51

Ping statistics for 173.194.37.32:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 12ms, Maximum = 12ms, Average = 12ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=149ms TTL=44
Reply from 98.138.253.109: bytes=32 time=181ms TTL=44

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 149ms, Maximum = 181ms, Average = 165ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
15...06 26 5e fe a5 9f ......Microsoft Virtual WiFi Miniport Adapter
11...00 26 5e fe a5 9f ......Atheros AR9285 Wireless Network Adapter
10...00 24 be 7c c3 6b ......Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
22...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.10.10.1 10.10.10.100 25
10.10.10.0 255.255.255.0 On-link 10.10.10.100 281
10.10.10.100 255.255.255.255 On-link 10.10.10.100 281
10.10.10.255 255.255.255.255 On-link 10.10.10.100 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.10.10.100 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.10.10.100 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
22 58 ::/0 On-link
1 306 ::1/128 On-link
22 58 2001::/32 On-link
22 306 2001:0:4137:9e76:cdd:1d04:f5f5:f59b/128
On-link
11 281 fe80::/64 On-link
22 306 fe80::/64 On-link
22 306 fe80::cdd:1d04:f5f5:f59b/128
On-link
11 281 fe80::5590:ad4a:4d8b:a839/128
On-link
1 306 ff00::/8 On-link
22 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================
Error: (01/15/2011 01:32:41 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 215324 seconds with 2700 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
"Nero SoundTrax Help (Version: 4.0.15.0)
µTorrent (Version: 3.1.3)
4500_G510gm_Help_Web (Version: 000.0.440.000)
4500_G510nz_Help (Version: 000.0.439.000)
4500G510gm_Software_Min (Version: 000.0.423.000)
4500G510gm_web (Version: 000.0.425.000)
4500G510nz (Version: 000.0.439.000)
4500G510nz_Software_Min (Version: 000.0.423.000)
4Videosoft PDF to ePub Maker
64 Bit HP CIO Components Installer (Version: 7.2.8)
6500_E709_BasicWeb (Version: 50.0.165.000)
6500_E709_Help_BasicWeb (Version: 1.00.0000)
7-Zip 9.15 (x64 edition) (Version: 9.15.00.0)
7-Zip 9.20
ABBYY FineReader 10 Corporate Edition (Version: 10.501.154.7211)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Digital Editions
Adobe Encore DVD 1.0 (Version: 1.0)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.265)
Adobe Photoshop CS (Version: CS)
Adobe Photoshop Lightroom 4 64-bit (Version: 4.0.1)
Adobe Premiere Pro Tryout (Version: 7.0)
Adobe Reader X (10.1.4) (Version: 10.1.4)
ADS Tech Master Installer V3.5 (Version: 3.5.0.12)
ADS Tech V3.5 DVD Xpress CapWiz (Version: 3.5.0.12)
Advanced Batch Converter (Version: 6.0)
Advertising Center (Version: 0.0.0.1)
Alps Pointing-device for VAIO
Any DVD Converter Professional 4.1.6
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Application Manager for VAIO
ArcSoft Magic-i Visual Effects 2 (Version: 2.0.1.85)
ArcSoft WebCam Companion 3 (Version: 3.0.21.390)
AT&T Labs' Natural Voices 1.4 - Desktop Runtime (Version: 1.4.0916)
Audacity 1.3.12 (Unicode)
Avery Wizard 4.0 (Version: 4.0.103)
AviSynth 2.5
AVS Audio Recorder version 3.9
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.3
Balabolka (Version: 1.36)
Bing Bar (Version: 7.0.609.0)
BitRope Recorder (Version: 1.1.0.0)
BlackWidow version 6.28 (Version: 6.28)
Bonjour (Version: 3.0.0.10)
BookDrive Capture 4 (Version: 4.2.5)
bpd_scan (Version: 3.00.0000)
BPDSoftware_Ini (Version: 1.00.0000)
BufferChm (Version: 130.0.331.000)
CCleaner (Version: 3.22)
Click to Disc (Version: 1.2.70.06160)
Click to Disc Editor (Version: 2.0.02)
CloneSpy 2.62
ConvertHelper 2.2
Copy (Version: 130.0.428.000)
CopyTrans Suite Remove Only (Version: 2.27)
CPUID CPU-Z 1.55
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 130.0.465.000)
DiskAid 5.3 (Version: 5.3)
DivX Setup (Version: 2.2.1.2)
DJ_AIO_03_F4200_Software_Min (Version: 130.0.365.000)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
DolbyFiles (Version: 2.0)
Drivers Install For Linksys Easylink Advisor (Version: 2.0.9)
DVD Decrypter (Remove Only)
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
DVD Shrink 3.2
DVDFab 8.2.0.0 (03/08/2012) Qt
DVDSmith Movie Backup 1.0.4
EASEUS Partition Master 6.5.2 Home Edition
eMule
ePUBee Drm Removal 1.0
ESET Online Scanner v3
F4200 (Version: 130.0.365.000)
Fax (Version: 130.0.418.000)
File Splitter and Joiner (FFSJ v3.3)
FileHunter
FlashFXP v4.0 (Version: 4.0.0.1483)
FrostWire 5.4.0 (Version: 5.4.0.0)
FUJIFILM MyFinePix Studio 2.0
Garmin ANT Agent (Version: 2.3.3)
Garmin BaseCamp (Version: 3.3.3)
Garmin City Navigator North America NT 2012.40 Update (Version: 15.40.0.0)
Garmin Communicator Plugin (Version: 2.9.3)
Garmin Training Center v5 (Version: 5.0.0.0)
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.4)
Garmin WebUpdater (Version: 2.5.5)
Gimp 2.6.2 Debug
Google Chrome (Version: 22.0.1229.79)
Google SketchUp 8 (Version: 3.0.4811)
Google Update Helper (Version: 1.3.21.123)
GPBaseService2 (Version: 130.0.371.000)
HandBrake 0.9.5 (Version: 0.9.5)
Hanso Recorder (Version: 1.5.0.0)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HiJackThis (Version: 1.0.0)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Deskjet F4200 All-In-One Driver Software 13.0 Rel. 3 (Version: 13.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Officejet 4500 G510g-m (Version: 13.0)
HP Officejet 4500 G510n-z (Version: 13.0)
HP Officejet 6500 E709 Series (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Product Detection (Version: 11.14.0001)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
iJoysoft DVD Ripper Platinum (Version: 6.0.7.0827)
ImagXpress (Version: 7.0.74.0)
iMesh (Version: 11.0.0.117532)
ImgBurn (Version: 2.5.2.0)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
IrfanView (remove only) (Version: 4.32)
iTunes (Version: 10.6.3.25)
IVONA (Version: 1.4.18)
IVONA ControlCenter (Version: 1.0.5)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 35 (Version: 6.0.350)
Junk Mail filter update (Version: 15.4.3502.0922)
LAME v3.98.2 for Audacity
LeapFrog Connect (Version: 3.2.19.13664)
LeapFrog Tag Plugin (Version: 3.2.19.13664)
Linksys EasyLink Advisor 1.6 (0032)
Magic Boss Key Version 4.10
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
ManyCam 3.0.91 (remove only) (Version: 3.0.91)
MarketResearch (Version: 130.0.374.000)
McAfee Security Scan Plus (Version: 2.0.181.2)
MediaMonkey 3.2 (Version: 3.2)
Menu Templates - Starter Kit (Version: 9.0.4.0)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Money Plus (Version: 17)
Microsoft Money Shared Libraries (Version: 17.0.0.724)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Project 2007 Service Pack 3 (SP3)
Microsoft Office Project MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Project Professional 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Primary Interoperability Assemblies 2005 (Version: 8.0.50727.42)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft UI Engine (Version: 4.0.0318.1)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual Studio 2005 Tools for Office Runtime
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
mIRC (Version: 6.31)
MobileMe Control Panel (Version: 3.1.6.0)
Mobipocket Reader 6.2 (Version: 6.2.608)
Movie Templates - Starter Kit (Version: 9.0.4.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Music Transfer (Version: 1.3.01.13160)
Nero 9
Nero BurningROM (Version: 9.0.0.0)
Nero BurnRights (Version: 2.99.6.100)
Nero ControlCenter (Version: 0.0.0.1)
Nero ControlCenter (Version: 9.0.0.1)
Nero CoverDesigner (Version: 4.0.5.100)
Nero CoverDesigner Help (Version: 4.0.0.0)
Nero Disc Copy Gadget (Version: 1.53.0.0)
Nero Disc Copy Gadget Help (Version: 2.0.0.0)
Nero DiscSpeed (Version: 4.99.5.105)
Nero DriveSpeed (Version: 3.99.5.105)
Nero Express (Version: 9.0.0.0)
Nero InfoTool (Version: 5.99.5.105)
Nero Installer (Version: 2.0.0.1)
Nero Live (Version: 1.0.164.0)
Nero Live Help (Version: 1.0.162.0)
Nero PhotoSnap (Version: 1.53.2.0)
Nero PhotoSnap Help (Version: 1.53.2.0)
Nero Recode (Version: 3.53.0.0)
Nero Recode Help (Version: 3.53.0.0)
Nero Rescue Agent (Version: 1.99.0.1)
Nero RescueAgent Help (Version: 1.99.0.1)
Nero ShowTime (Version: 4.99.0.0)
Nero StartSmart (Version: 9.0.9.100)
Nero StartSmart Help (Version: 9.0.0.0)
Nero Vision (Version: 0.0.0.1)
Nero Vision (Version: 6.0.6.100)
Nero WaveEditor (Version: 5.0.18.0)
Nero WaveEditor Help (Version: 5.0.15.0)
NeroBurningROM (Version: 9.0.9.100)
NeroExpress (Version: 9.0.9.100)
neroxml (Version: 1.0.0)
Network64 (Version: 130.0.579.000)
Network64 (Version: 140.0.221.000)
NewsLeecher v3.9 Final
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Par-N-Rar 1.24 (Version: 1.24)
PDF to ePub Converter 3.0.3
PDFCreator (Version: 1.0.2)
pdfforge Toolbar v5.1 (Version: 5.1)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
Picasa 3 (Version: 3.8)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Primo (Version: 1.00.0000)
QuickBooks (Version: 21.0.4003.904)
QuickBooks Pro 2011 (Version: 21.0.4003.904)
QuickPar 0.9 (Version: 0.9)
QuickTime (Version: 7.72.80.56)
RAF (Version: 1.00.0001)
Realtek High Definition Audio Driver (Version: 6.0.1.5886)
Roxio Central Audio (Version: 3.8.0)
Roxio Central Copy (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Central Data (Version: 3.8.0)
Roxio Central Tools (Version: 3.8.0)
Roxio Easy Media Creator 10 LJ (Version: 10.3)
Roxio Easy Media Creator Home (Version: 10.3.121)
Runtime (Version: 1.00.0000)
Safari (Version: 5.34.57.2)
Scan (Version: 140.0.80.000)
Scan Tailor
Scan to PDF (Version: 2.36)
SDFormatter
SES Driver (Version: 1.0.0)
Setting Utility Series (Version: 5.0.0.07300)
Shop for HP Supplies (Version: 13.0)
Skype Click to Call (Version: 5.11.9874)
Skype™ 5.10 (Version: 5.10.116)
SmartViewer3.0 (Version: 3.10.026)
SmartWebPrinting (Version: 140.0.186.000)
SmartWi Connection Utility (Version: 4.8.4.20090826.2116)
Snagit 10 (Version: 10.0.0)
snapter
SolutionCenter (Version: 130.0.373.000)
Songbird 1.9.3 (Build 1959)
Sony Home Network Library (Version: 2.0.0.07280)
Sony Picture Utility (Version: 4.2.12.16210)
Sony Sound Forge 8.0 (Version: 8.0.53)
SoundTrax (Version: 4.0.18.0)
Sp5 (Version: 5.1.4324.0)
Sp5Intl (Version: 5.1.4324.0)
Sp5TTInt (Version: 5.1.4324.0)
SpCommon (Version: 5.1.4324.0)
SpPhones (Version: 6.0.3122.0)
Spybot - Search & Destroy (Version: 1.6.2)
Status (Version: 130.0.469.000)
SUPERAntiSpyware (Version: 5.0.1144)
TeamViewer 7 (Version: 7.0.14563)
Text Speaker 3.1
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.422.000)
Ulead DVD MovieFactory 2 SE (Version: 2.10.2144.0100)
Ulead GIF Animator 5 TBYB
Ulead Straight-to-Disc SDK (Version: 1.0)
Ulead VideoStudio 7 SE DVD (Version: 7.0)
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Project 2007 Help (KB963668)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin) (Version: 3.2.19.13664)
VAIO Care (Version: 4.0.0.0811)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 3.5.0.06261)
VAIO Content Metadata Intelligent Network Service Manager (Version: 3.5.0.06260)
VAIO Content Metadata Manager Settings (Version: 3.5.0.06260)
VAIO Content Metadata XML Interface Library (Version: 3.5.0.06180)
VAIO Content Monitoring Settings (Version: 2.4.0.06120)
VAIO Control Center (Version: 4.0.0.06120)
VAIO Data Restore Tool (Version: 1.1.01.06290)
VAIO DVD Menu Data Basic (Version: 1.0.00.08130)
VAIO Entertainment Platform (Version: 3.5.0.07230)
VAIO Event Service (Version: 5.0.0.07010)
VAIO Help and Support (Version: 9.00.0729.ENUS)
VAIO Media plus (Version: 2.0.0.07280)
VAIO Media plus Opening Movie (Version: 2.0.0.07030)
VAIO Movie Story (Version: 1.5.00.06191)
VAIO Movie Story Template Data (Version: 1.5.00.06010)
VAIO OOBE and Startup Assistant (Version: 1.00.0811.ENUS)
VAIO Original Function Settings (Version: 2.0.0.07010)
VAIO Power Management (Version: 4.0.0.08240)
VAIO Presentation Support (Version: 2.0.0.05270)
VAIO Quick Web Access (Version: 1.1.2.4)
VAIO Survey (Version: 6.00.0722)
VAIO Update 4 (Version: 4.2.0.07300)
VAIO Wallpaper Contents (Version: 2.0.0.06010)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
VD64Inst (Version: 1.00.0000)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 2.0.1 (Version: 2.0.1)
VNC Enterprise Edition E4.6.1 (Version: E4.6.1)
VNC Mirror Driver 1.8.0 (Version: 1.8.0)
VNC Printer Driver 1.7.0 (Version: 1.7.0)
Webblog (Version: 1.1.0.2)
WebEx
WebReg (Version: 130.0.132.017)
Wii Video 9 6 (Version: 6)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
WinDirStat 1.1.2
Windows Driver Package - Dynastream Innovations (libusb0) LibUsbDevices (07/07/2009 1.12.2) (Version: 07/07/2009 1.12.2)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0) (Version: 11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (03/06/2009 1.0.0008.0) (Version: 03/06/2009 1.0.0008.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Center (Version: 6.1.6965.0)
WinMerge 2.12.4 (Version: 2.12.4)
WinPcap 4.1.1 (Version: 4.1.0.1753)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Xilisoft DVD Ripper Ultimate (Version: 5.0.46.1113)
Xvid 1.2.2 final uninstall (Version: 1.2)
Yahoo! Detect
Yahoo! Messenger
Yahoo! Software Update
Yeosoft Text to MP3 Speaker 3.5
YouTube Downloader App 3.00 (Version: 3.00)
Zultrax P2P

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 3935.02 MB
Available physical RAM: 2168.53 MB
Total Pagefile: 7868.23 MB
Available Pagefile: 5180.4 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.07 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:290.64 GB) (Free:6.54 GB) NTFS
2 Drive d: () (Removable) (Total:0.94 GB) (Free:0.58 GB) FAT
6 Drive h: (FreeAgent Drive) (Fixed) (Total:465.76 GB) (Free:1.03 GB) NTFS
7 Drive i: (Seagate Replica) (Fixed) (Total:1863.01 GB) (Free:7.23 GB) NTFS
8 Drive j: (OneTouch4) (Fixed) (Total:465.76 GB) (Free:2.17 GB) NTFS

========================= Users: ========================================

User accounts for \\MAIER1-VAIO

Administrator Afe ASPNET
Guest Mon

========================= Restore Points ==================================

04-10-2012 23:07:42 Scheduled Checkpoint
06-10-2012 11:44:09 Windows Update

**** End of log ****


FSS:

Farbar Service Scanner Version: 07-10-2012
Ran by Afe (administrator) on 07-10-2012 at 22:34:41
Running from "C:\Users\Afe\AppData\Local\Temp\nv0xdrom.tmp"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Adware cleaner:

# AdwCleaner v2.004 - Logfile created 10/07/2012 at 22:38:29
# Updated 06/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Afe - MAIER1-VAIO
# Boot Mode : Normal
# Running from : C:\Users\Afe\AppData\Local\Temp\2b7qi4fb.tmp\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\crawlersrch.xml
File Deleted : C:\Windows\SysWOW64\conduitEngine.tmp
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\ConduitEngine
Folder Deleted : C:\Program Files (x86)\uTorrentBar
Folder Deleted : C:\ProgramData\Anti-phishing Domain Advisor
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Afe\AppData\Local\APN
Folder Deleted : C:\Users\Afe\AppData\Local\Conduit
Folder Deleted : C:\Users\Afe\AppData\Local\OpenCandy
Folder Deleted : C:\Users\Afe\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Afe\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Afe\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\Users\Afe\AppData\LocalLow\pdfforge
Folder Deleted : C:\Users\Afe\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Afe\AppData\LocalLow\uTorrentBar
Folder Deleted : C:\Users\Afe\AppData\Roaming\Mozilla\Firefox\Profiles\wvzv8vax.default\ConduitCommon
Folder Deleted : C:\Users\Afe\AppData\Roaming\Mozilla\Firefox\Profiles\wvzv8vax.default\extensions\staged
Folder Deleted : C:\Users\Afe\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Mon\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Mon\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Mon\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\Users\Mon\AppData\LocalLow\pdfforge
Folder Deleted : C:\Users\Mon\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Mon\AppData\LocalLow\uTorrentBar

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\pdfforge
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentBar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKCU\Software\pdfforge
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DiscoveryHelper.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GIFAnimator.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\IMTrProgress.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\IMWeb.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery
Key Deleted : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery.1
Key Deleted : HKLM\SOFTWARE\Classes\imweb.imwebcontrol
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{252C2315-CCE0-4446-8DA7-C00292A690BA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424C-BB9F-74C6899B9F92}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A97B89CD-B65C-49DD-AF46-2B772C627456}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKLM\Software\pdfforge
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\Software\uTorrentBar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2656B92B-0207-4afb-BEBF-F5FD231ECD39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{34CB0620-E343-4772-BBA8-D3074BC47516}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{412CD209-DDA4-4275-8C79-55F1C93FBD47}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{59570C1F-B692-48c9-91B4-7809E6945287}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{63A0F7FA-2C95-4d7e-AF25-EFCC303D20A1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6559E502-6EE1-46b8-A83C-F3A45BDA23EE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A2858A72-758F-4486-B6A1-7F1DCC0924FA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C63CA8A4-AB4E-49e5-A6C0-33FC86D80205}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C6A7847E-8931-4a9a-B4EF-72A91E3CCF4D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DD0F1D24-E250-4e93-966C-65615720AEFB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EC1277BB-1C71-4c0d-BA6D-BFEA16E773A6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5E8CD073-21DF-4117-9BBD-D03C45D36CAE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F69D255-634C-46C9-9B8B-4BB56D2D23D5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C077EE0E-34D2-4E7F-A1A8-88B1895E9283}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8038519-7BFA-4721-B8FC-A29DBE7DB483}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Anti-phishing Domain Advisor
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Conduit Engine
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5E8CD073-21DF-4117-9BBD-D03C45D36CAE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Anti-phishing Domain Advisor]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Users\Afe\AppData\Roaming\Mozilla\Firefox\Profiles\wvzv8vax.default\prefs.js

C:\Users\Afe\AppData\Roaming\Mozilla\Firefox\Profiles\wvzv8vax.default\user.js ... Deleted !

Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Deleted : user_pref("browser.search.order.1", "Crawler Search");
Deleted : user_pref("extensions.asktb.InstallDir", "C:\\Program Files (x86)\\Ask.com\\");
Deleted : user_pref("extensions.asktb.abar-war-timeout", "4000");
Deleted : user_pref("extensions.asktb.cbid", "5I");
Deleted : user_pref("extensions.asktb.config-updated", false);
Deleted : user_pref("extensions.asktb.crumb", "2011.07.20+23.40.18-toolbar011iad-US-QXRsYW50YSxHQSxVbml0ZWQgU3[...]
Deleted : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}[...]
Deleted : user_pref("extensions.asktb.dtid", "YYYYYYYYUS");
Deleted : user_pref("extensions.asktb.dyn-weather-do-locid-lookup-weatherWidget", false);
Deleted : user_pref("extensions.asktb.dyn-weather-locid-weatherWidget", "USGA0028");
Deleted : user_pref("extensions.asktb.dyn-weather-tempunit-weatherWidget", "F");
Deleted : user_pref("extensions.asktb.first-launch-url", "hxxps://pflm.infusionsoft.com/link/4568dc20/d418e0")[...]
Deleted : user_pref("extensions.asktb.fresh-install", false);
Deleted : user_pref("extensions.asktb.guid", "5a1bab32-9733-452b-97b9-d7369a4699b8");
Deleted : user_pref("extensions.asktb.hxxp-header-whitelist-hosts", "[\"static-dev.en.dev.ask.com\", \"ask.com[...]
Deleted : user_pref("extensions.asktb.if", "first");
Deleted : user_pref("extensions.asktb.l", "dis");
Deleted : user_pref("extensions.asktb.last-config-req", "1311232108363");
Deleted : user_pref("extensions.asktb.locale", "en_US");
Deleted : user_pref("extensions.asktb.location", "Atlanta,GA,United States");
Deleted : user_pref("extensions.asktb.new-tab-enabled", true);
Deleted : user_pref("extensions.asktb.o", "102868");
Deleted : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Deleted : user_pref("extensions.asktb.qsrc", "2871");
Deleted : user_pref("extensions.asktb.r", "2");
Deleted : user_pref("extensions.asktb.sa", "NO");
Deleted : user_pref("extensions.asktb.search-suggestions-enabled", true);
Deleted : user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", false);
Deleted : user_pref("extensions.asktb.socialmini-first", true);
Deleted : user_pref("extensions.asktb.socialmini-interval", "1200000");
Deleted : user_pref("extensions.asktb.socialmini-max-items", "30");
Deleted : user_pref("extensions.asktb.socialmini-native-on", true);
Deleted : user_pref("extensions.asktb.socialmini-speed", "5000");
Deleted : user_pref("extensions.asktb.socialmini-transition-first-open", false);
Deleted : user_pref("extensions.asktb.themeid", "");
Deleted : user_pref("extensions.asktb.to", "");
Deleted : user_pref("extensions.asktb.version", "5.12.2.16749");

Profile name : default
File : C:\Users\Mon\AppData\Roaming\Mozilla\Firefox\Profiles\cszi54ih.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Afe\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [17096 octets] - [01/10/2012 07:48:02]
AdwCleaner[R2].txt - [17086 octets] - [07/10/2012 22:36:08]
AdwCleaner[S1].txt - [15971 octets] - [07/10/2012 22:38:29]

########## EOF - C:\AdwCleaner[S1].txt - [16032 octets] ##########

JRT:


Junkware Removal Tool (JRT) by Thisisu
Version: 1.3.1 (10.07.2012)
OS: Windows 7 Home Premium x64
Ran by Afe on Sun 10/07/2012 at 22:55:03.59
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_classes_root\clsid\{3c471948-f874-49f5-b338-4f214a2ee0b1}



*** Files: 0 Detections



*** Folders:

Successfully deleted: [FOLDER] "C:\Program Files (x86)\imesh applications"



*** FireFox detected and repaired

Successfully deleted: [EXTENSION VALUE] HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions\\smartwebprinting@hp.com
Successfully deleted: [EXTENSION VALUE] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\smartwebprinting@hp.com
Trojan:Win32/Tracur.AV Detected!
Successfully deleted: tymyiinfqm@tymyiinfqm.org.xpi


*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Sun 10/07/2012 at 22:55:23.91
End of Report

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:40 PM

Posted 08 October 2012 - 01:45 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#7 afe16rugby

afe16rugby
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:40 PM

Posted 08 October 2012 - 08:58 AM

Here are the posts. Thanks Again!!! :P


Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/08/2012 09:52:06 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Users\Afe\AppData\Local\Temp\w8n9id1s.tmp\JRT.exe (PID: 1304) [UP-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 10/08/2012 09:52:42 AM
Execution time: 0 hours(s), 0 minute(s), and 36 seconds(s)

AutoRuns:

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Apoint" "Alps Pointing-device Driver" "Alps Electric Co., Ltd." "c:\program files\apoint\apoint.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IAAnotif" "Event Monitor User Notification Tool" "Intel Corporation" "c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "RtHDVCpl" "HD Audio Control Panel" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravcpl64.exe"
+ "Skytel" "Realtek Voice Manager" "Realtek Semiconductor Corp." "c:\program files\realtek\audio\hda\skytel.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "AppleSyncNotifier" "AppleSyncNotifier" "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applesyncnotifier.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "Bonus.SSR.FR10" "ABBYY ScreenshotReader" "ABBYY." "c:\program files (x86)\abbyy finereader 10\bonus.screenshotreader.exe"
+ "DivX Download Manager" "DivX Download Manager Service" "DivX, LLC" "c:\program files (x86)\divx\divx plus web player\ddmservice.exe"
+ "DivXUpdate" "DivX Update" "" "c:\program files (x86)\divx\divx update\divxupdate.exe"
+ "GrooveMonitor" "GrooveMonitor Utility" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\groovemonitor.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "hpqSRMon" "HpqSRmon" "Hewlett-Packard" "c:\program files (x86)\hp\digital imaging\bin\hpqsrmon.exe"
+ "Intuit SyncManager" "IntuitSyncManager" "Intuit Inc. All rights reserved." "c:\program files (x86)\common files\intuit\sync\intuitsyncmanager.exe"
+ "ISBMgr.exe" "" "Sony Corporation" "c:\program files (x86)\sony\isb utility\isbmgr.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "Monitor" "Monitor Application" "LeapFrog Enterprises, Inc." "c:\program files (x86)\leapfrog\leapfrog connect\monitor.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "SmartWiHelper" "SmartWi Helper" "Sony Electronics Corporation" "c:\program files (x86)\sony\smartwi connection utility\smartwihelper.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Adobe Gamma Loader.lnk" "Adobe Gamma Loader" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\calibration\adobe gamma loader.exe"
+ "HP Digital Imaging Monitor.lnk" "HP Digital Imaging Monitor" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe"
+ "McAfee Security Scan Plus.lnk" "McAfee Security Scanner Scheduler" "McAfee, Inc." "c:\program files (x86)\mcafee security scan\2.0.181\ssscheduler.exe"
+ "QuickBooks Update Agent.lnk" "QuickBooks Automatic Update" "Intuit Inc." "c:\program files (x86)\common files\intuit\quickbooks\qbupdate\qbupdate.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ANT Agent" "Garmin ANT Agent Application" "GARMIN Corp." "c:\program files (x86)\garmin\ant agent\ant agent.exe"
+ "EasyLinkAdvisor" "Linksys EasyLink Advisor" "Linksys, a Division of Cisco Systems, Inc." "c:\program files (x86)\linksys easylink advisor\linksysagent.exe"
+ "IVONA ControlCenter" "" "IVO Software Sp. z o.o." "c:\program files (x86)\ivona\ivona controlcenter\ivona controlcenter.exe"
+ "ManyCam" "ManyCam Virtual Webcam" "ManyCam LLC" "c:\program files (x86)\manycam\bin\manycam.exe"
+ "sbitunesagent" "" "" "c:\program files (x86)\songbird\songbirditunesagent.exe"
+ "SpybotSD TeaTimer" "System settings protector" "Safer-Networking Ltd." "c:\program files (x86)\spybot - search & destroy\teatimer.exe"
+ "SUPERAntiSpyware" "SUPERAntiSpyware Application" "SUPERAntiSpyware.com" "c:\program files\superantispyware\superantispyware.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "Balabolka" "Balabolka Shell Extension" "Ilya Morozov" "c:\program files (x86)\balabolka\bfileext.dll"
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files (x86)\magiciso\misosh64.dll"
+ "RXDCExtSvr" "Roxio Disc Copier Shell Extension (AMD64)" "Sonic Solutions" "c:\program files\roxio\virtual drive 10\dc_shellext64.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
+ "SnagItMainShellExt" "Snagit Shell Extension DLL" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\dllx64\snagitshellext64.dll"
+ "WinMerge" "WinMerge Shell Integration library" "http://winmerge.org" "c:\program files (x86)\winmerge\shellextensionx64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
+ "Cover Designer" "Cover Designer" "Nero AG" "c:\program files (x86)\nero\nero 9\nero coverdesigner\coveredextension.dll"
+ "FFSJ" "" "" "c:\windows\syswow64\ffsj\ffsjshl.dll"
+ "SnagItMainShellExt" "Snagit Shell Extension DLL" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagitshellext.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files (x86)\magiciso\misosh64.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
+ "SnagItMainShellExt" "Snagit Shell Extension DLL" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\dllx64\snagitshellext64.dll"
+ "WinMerge" "WinMerge Shell Integration library" "http://winmerge.org" "c:\program files (x86)\winmerge\shellextensionx64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
+ "SnagItMainShellExt" "Snagit Shell Extension DLL" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagitshellext.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
+ "WinMerge" "WinMerge Shell Integration library" "http://winmerge.org" "c:\program files (x86)\winmerge\shellextensionx64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "NeroDigitalColumnHandler Class" "Nero Digital Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\smc\nerodigitalext.dll"
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files (x86)\magiciso\misosh64.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "RXDCExtSvr" "Roxio Disc Copier Shell Extension (AMD64)" "Sonic Solutions" "c:\program files\roxio\virtual drive 10\dc_shellext64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "SnagIt Toolbar Loader" "Snagit Browser Helper Object for Internet Explorer" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\dllx64\snagitbho64.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Bing Bar Helper" "Bing Client Extensions" "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bingext.dll"
+ "DivX HiQ" "DivX Web Player version 2.1.0.900" "DivX, LLC" "c:\program files (x86)\divx\divx plus web player\npdivx32.dll"
+ "DivX Plus Web Player HTML5 <video>" "DivX Web Player version 2.1.0.900" "DivX, LLC" "c:\program files (x86)\divx\divx plus web player\npdivx32.dll"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "HP Print Enhancer" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll"
+ "HP Smart BHO Class" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\ssv.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "SnagIt Toolbar Loader" "Snagit Browser Helper Object for Internet Explorer" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagitbho.dll"
+ "Spybot-S&D IE Protection" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
+ "Webblog" "Webblog Link Library" "" "c:\program files (x86)\wbtooltb\wbtooldx.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Snagit" "Snagit Add-in for Internet Explorer" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\dllx64\snagitieaddin64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Bing" "Bing Client Extensions" "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bingext.dll"
+ "Snagit" "Snagit Add-in for Internet Explorer" "TechSmith Corporation" "c:\program files (x86)\techsmith\snagit 10\snagitieaddin.dll"
+ "Webblog" "Webblog Link Library" "" "c:\program files (x86)\wbtooltb\wbtooldx.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Show or hide HP Smart Web Printing" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Spybot - Search & Destroy Configuration" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.4 r402" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Orb Startup" "" "" "File not found: C:\Program Files (x86)\Winamp Remote\bin\orbtray.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\SONY\Java Update" "" "" "File not found: C:\Program Files\Java\jre6\bin\jusched.exe"
+ "\SONY\VAIO Mini Program" "MiniProgram" "" "c:\program files\sony\first experience\miniprogram.exe"
+ "\SONY\VAIO Registration" "OOBEFcdRegistration" "Sony Electronics, Inc." "c:\program files\sony\first experience\oobefcdregistration.exe"
+ "\SONY\VAIO Survey" " " "" "c:\program files (x86)\sony\vaio survey\vaio sat survey.exe"
+ "\SONY\VAIO Update\VAIO Update" "VAIO Update" "Sony Corporation" "c:\program files\sony\vaio update 4\vaioupdt.exe"
+ "\VAIO Care" "VAIO Care" "Sony Electronics, Inc." "c:\program files\sony\vaio care\vcsystray.exe"
+ "\{05BAA9D8-BE03-4463-BD9B-0F868D82471D}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "!SASCORE" "SUPERAntiSpyware Core Service" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sascore64.exe"
+ "ABBYY.Licensing.FineReader.Corporate.10.0" "This service is required for the operation of the ABBYY FineReader 10 Corporate Edition licensing mechanism." "ABBYY" "c:\program files (x86)\common files\abbyy\finereader\10.00\licensing\ce\networklicenseserver.exe"
+ "ACDaemon" "ArcSoft Connect Service" "ArcSoft Inc." "c:\program files (x86)\common files\arcsoft\connection service\bin\acservice.exe"
+ "Adobe LM Service" "Adobe LM Service" "" "c:\program files (x86)\common files\adobe systems shared\service\adobelmsvc.exe"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bbsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "gusvc" "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "hpqcxs08" "HP CUE Context Manager Objects" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc" "This service detects and monitors CUE devices on the system." "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll"
+ "HPSLPSVC" "Discovers and monitors the state and the configuration of the HP devices attached to your network. If the service is stopped, and your network devices change IP addresses, they might become unavailable" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll"
+ "HsfXAudioService" "User-mode gate for HSF Modem" "Conexant Systems, Inc." "c:\windows\syswow64\xaudio64.dll"
+ "IAANTMON" "RAID Monitor" "Intel Corporation" "c:\program files (x86)\intel\intel matrix storage manager\iaantmon.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LeapFrog Connect Device Service" "Manages LeapFrog Connect devices." "LeapFrog Enterprises, Inc." "c:\program files (x86)\leapfrog\leapfrog connect\commandservice.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "McComponentHostService" "McAfee Security Scan Component Host Service" "McAfee, Inc." "c:\program files (x86)\mcafee security scan\2.0.181\mcchsvc.exe"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveauditservice.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "Nero BackItUp Scheduler 4.0" "Nero BackItUp Scheduler 4.0 is responsible to control all jobs created using Nero BackItUp. These jobs can create backups of selected files/folders/partitions or complete hard disk to hard disk, network drive, disc or FTP." "Nero AG" "c:\program files (x86)\common files\nero\nero backitup 4\nbservice.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "QBCFMonitorService" "QuickBooks Company File Monitoring Service" "Intuit" "c:\program files (x86)\common files\intuit\quickbooks\qbcfmonitorservice.exe"
+ "QBFCService" "QuickBooks FCS module" "Intuit Inc." "c:\program files (x86)\common files\intuit\quickbooks\fcs\intuit.quickbooks.fcs.exe"
+ "QBVSS" "Enables standard users to access Intuit Data Protect service." "" "c:\program files (x86)\common files\intuit\dataprotect\qbidpservice.exe"
+ "Roxio UPnP Renderer 10" "Roxio UPnP PRenderer Service" "Sonic Solutions" "c:\program files (x86)\roxio\digital home 10\roxioupnprenderer10.exe"
+ "Roxio Upnp Server 10" "RoxioUpnpService10 Module" "Sonic Solutions" "c:\program files (x86)\roxio\digital home 10\roxioupnpservice10.exe"
+ "rpcapd" "Allows to capture traffic on this machine from a remote machine." "CACE Technologies, Inc." "c:\program files (x86)\winpcap\rpcapd.exe"
+ "RtkAudioService" "To check external HDMI device availability, HDMI device audio capability and update HDMI device capability into audio control panel" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\rtkaudioservice64.exe"
+ "SampleCollector" "Collects samples that are used to measure system performance, to monitor running processes, and to detect DLL changes." "Intel Corporation" "c:\program files\sony\vaio care\collsvc.exe"
+ "SBSDWSCService" "Spybot-S&D Security Center integration" "Safer Networking Ltd." "c:\program files (x86)\spybot - search & destroy\sdwinsec.exe"
+ "SeaPort" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation" "c:\program files (x86)\microsoft\bingbar\seaport.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "SOHCImp" "VAIO Media plus Content Importer" "Sony Corporation" "c:\program files (x86)\common files\sony shared\sohlib\sohcimp.exe"
+ "SOHDBSvr" "VAIO Media plus Database Manager" "Sony Corporation" "c:\program files (x86)\common files\sony shared\sohlib\sohdbsvr.exe"
+ "SOHDms" "VAIO Media plus Digital Media Server" "Sony Corporation" "c:\program files (x86)\common files\sony shared\sohlib\sohdms.exe"
+ "SOHDs" "VAIO Media plus Device Searcher" "Sony Corporation" "c:\program files (x86)\common files\sony shared\sohlib\sohds.exe"
+ "SOHPlMgr" "VAIO Media plus Playlist Manager" "Sony Corporation" "c:\program files (x86)\common files\sony shared\sohlib\sohplmgr.exe"
+ "TeamViewer7" "TeamViewer Remote Software" "TeamViewer GmbH" "c:\program files (x86)\teamviewer\version7\teamviewer_service.exe"
+ "uCamMonitor" "Monitor the status of the webcam on PC startup." "ArcSoft, Inc." "c:\program files (x86)\arcsoft\magic-i visual effects 2\ucammonitor.exe"
+ "VAIO Entertainment TV Device Arbitration Service" "Hardware Resource Manager" "Sony Corporation" "c:\program files (x86)\common files\sony shared\vaio entertainment platform\vzhardwareresourcemanager\vzhardwareresourcemanager\vzhardwareresourcemanager.exe"
+ "VAIO Event Service" "Provides the hardware event managing service for VAIO. During termination of this service, some fuctions such as Special button ,Hotkey ,and VAIO original powermanagement are limited." "Sony Corporation" "c:\program files (x86)\sony\vaio event service\vesmgr.exe"
+ "VAIO Power Management" "Provides power management service for VAIO. If this service is stopped or disabled, power management functions for VAIO will not be available." "Sony Corporation" "c:\program files\sony\vaio power management\spmservice.exe"
+ "VCFw" "VAIO Content Folder Watcher" "Sony Corporation" "c:\program files (x86)\common files\sony shared\vaio content folder watcher\vcfw.exe"
+ "VcmIAlzMgr" "Provides the content analysis function used with VAIO original software." "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmialzmgr.exe"
+ "VcmINSMgr" "Provides the information retrieval service function used with VAIO original software." "Sony Corporation" "c:\program files\sony\vcm intelligent network service manager\vcminsmgr.exe"
+ "VcmXmlIfHelper" "VcmXml Helper Interface" "Sony Corporation" "c:\program files\common files\sony shared\vcmxml\vcmxmlifhelper64.exe"
+ "Vcsw" "VAIO Entertainment UPnP Client Adapter" "Sony Corporation" "c:\program files (x86)\common files\sony shared\vaio entertainment platform\vcsw\vcsw.exe"
+ "VzCdbSvc" "VAIO Entertainment Database Service" "Sony Corporation" "c:\program files (x86)\common files\sony shared\vaio entertainment platform\vzcdb\vzcdbsvc.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WinVNC4" "VNC® Server Enterprise Edition" "RealVNC Ltd" "c:\program files\realvnc\vnc4\winvnc4.exe"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
+ "YahooAUService" "Keeps your favorite Yahoo! software up-to-date with the latest features, tools, and enhancements." "Yahoo! Inc." "c:\program files (x86)\yahoo!\softwareupdate\yahooauservice.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "ApfiltrService" "Alps Touch Pad Driver" "Alps Electric Co., Ltd." "c:\windows\system32\drivers\apfiltr.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "ArcSoftKsUFilter" "For X64" "ArcSoft, Inc." "c:\windows\system32\drivers\arcsoftksufilter.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "BVRPMPR5a64" "BVRP NDIS 5.0 MPR Protocol Driver" "Avanquest Software" "c:\windows\system32\drivers\bvrpmpr5a64.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "cpuz134" "CPUID Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\cpuz134_x64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elagopro" "GoProto Protocol Driver for LELA" "Gteko Ltd." "c:\windows\system32\drivers\elagop64.sys"
+ "elaunidr" "GUniDriver" "Gteko Ltd." "c:\windows\system32\drivers\elauni64.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "epmntdrv" "" "" "c:\windows\system32\epmntdrv.sys"
+ "EuGdiDrv" "" "" "c:\windows\system32\eugdidrv.sys"
+ "FlyUsb" "FLY Fusion USB Driver" "LeapFrog" "c:\windows\system32\drivers\flyusb.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "grmnusb" "grmnusb.sys" "GARMIN Corp." "c:\windows\system32\drivers\grmnusb.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "IntcHdmiAddService" "Intel® High Definition Audio HDMI" "Intel® Corporation" "c:\windows\system32\drivers\intchdmi.sys"
+ "libusb0" "LibUSB-Win32 - Kernel Driver" "http://libusb-win32.sourceforge.net" "c:\windows\system32\drivers\libusb0.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "ManyCam" "ManyCam Virtual Webcam" "ManyCam LLC" "c:\windows\system32\drivers\mcvidrv_x64.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "mcaudrv_simple" "ManyCam Virtual Microphone" "ManyCam LLC" "c:\windows\system32\drivers\mcaudrv_x64.sys"
+ "mdmxsdk" "Diagnostic Interface x64 Driver" "Conexant" "c:\windows\system32\drivers\mdmxsdk.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "Netaapl" "Apple Mobile Device Ethernet" "Apple Inc." "c:\windows\system32\drivers\netaapl64.sys"
+ "netw5v64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5v64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NPF" "npf.sys (NT5/6 AMD64) Kernel Driver" "CACE Technologies, Inc." "c:\windows\system32\drivers\npf.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "pfc" "" "" "File not found: system32\drivers\pfc.sys"
+ "PxHlpa64" "Px Engine Device Driver for 64-bit Windows" "Sonic Solutions" "c:\windows\system32\drivers\pxhlpa64.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "rimsptsk" "RICOH MS Driver" "REDC" "c:\windows\system32\drivers\rimssn64.sys"
+ "risdptsk" "RICOH SD/MMC Driver" "REDC" "c:\windows\system32\drivers\risdsn64.sys"
+ "rssasnt" "" "" "File not found: C:\Users\Public\Documents\RSupport\rcc50\rssas64.sys"
+ "RTHDMIAzAudService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rthdmivx.sys"
+ "SASDIFSV" "SASDIFSV64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv64.sys"
+ "SASKUTIL" "SASKUTIL64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "Serial" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\serial.sys"
+ "SFEP" "Sony Firmware Extension Parser driver" "Sony Corporation" "c:\windows\system32\drivers\sfep.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl6.sys"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv6.sys"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt6.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vncmirror" "VNC Mirror Miniport" "RealVNC Ltd." "c:\windows\system32\drivers\vncmirror.sys"
+ "vrvd5" "Rsupport VRVD5" "Rsupport Corporation" "c:\windows\system32\drivers\vrvd5.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "WDC_SAM" "Manages WD external storage products." "Western Digital Technologies" "c:\windows\system32\drivers\wdcsam64.sys"
+ "XAudio" "Modem Audio Device Driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\xaudio64.sys"
+ "yukonw7" "Miniport Driver for Marvell Yukon Ethernet Controller." "Marvell" "c:\windows\system32\drivers\yk62x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.dvacm" "Ulead DV Audio ACM Driver" "Ulead Systems, Inc." "c:\program files (x86)\common files\ulead systems\vio\dvacm.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
+ "vidc.iv50" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\syswow64\ir50_32.dll"
+ "vidc.XVID" "" "" "c:\windows\syswow64\xvidvfw.dll"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Sony Acoustic Mirror" "Sony Acoustic Mirror" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfmirror.dll"
+ "Sony Amplitude Modulation" "Sony XFX 3 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Chorus" "Sony XFX 1 Plug-In Pack " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Distortion" "Sony XFX 3 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony ExpressFX Amplitude Modulation" "Sony ExpressFX 2 " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Audio Restoration" "Sony ExpressFX Audio Restoration" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\xpvinyl.dll"
+ "Sony ExpressFX Chorus" "Sony ExpressFX 2 " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Delay" "Sony ExpressFX 2 " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Distortion" "Sony ExpressFX 1" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Dynamics" "Sony ExpressFX 3 " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Equalization" "Sony ExpressFX 2 " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Flange/Wah-Wah" "Sony ExpressFX 1" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Graphic EQ" "Sony ExpressFX 3 " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Noise Gate" "Sony ExpressFX 3 " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Reverb" "Sony ExpressFX 1" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Stutter" "Sony ExpressFX 1" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Time Stretch" "Sony ExpressFX 3 " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony Flange/Wah-wah" "Sony XFX 3 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Gapper/Snipper" "Sony XFX 3 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Graphic Dynamics" "Sony XFX 2 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Graphic EQ" "Sony XFX 2 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Multi-Band Dynamics" "Sony XFX 2 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Multi-Tap Delay" "Sony XFX 1 Plug-In Pack " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Noise Gate" "Sony XFX 2 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Paragraphic EQ" "Sony XFX 2 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Parametric EQ" "Sony XFX 2 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Pitch Shift" "Sony XFX 1 Plug-In Pack " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Reverb" "Sony XFX 1 Plug-In Pack " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Simple Delay" "Sony XFX 1 Plug-In Pack " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Smooth/Enhance" "Sony XFX 3 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Time Stretch" "Sony XFX 1 Plug-In Pack " "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Vibrato" "Sony XFX 3 Plug-In Pack" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Wave Hammer" "Sony Wave Hammer" "Sony Pictures Digital Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfhammer.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files\divx\divx codec\divxdec.ax"
+ "MS PR Source Filter" "PlayReady DirectShow Source Filter DLL" "Microsoft Corporation" "c:\program files\playready\prsource.dll"
+ "PlayReady DMO Wrapper" "PlayReady DirectShow DMO Wrapper Filter DLL" "Microsoft Corporation" "c:\program files\playready\prdmowrapper.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "aac_parser" "" "" "File not found: C:\Program Files (x86)\iMesh Applications\iMesh\aac_parser.ax"
+ "AC3Filter" "" "" "File not found: C:\Program Files (x86)\iMesh Applications\iMesh\ac3filter.ax"
+ "AsyncEx" "VisioForge AsyncEx Filter" "VisioForge" "c:\users\afe\appdata\roaming\windsolutions\copytransmanager\copytransmanager.ax"
+ "Audio Decoder" "AudioDecoder Module" "Samsung Techwin Co., Ltd." "c:\windows\syswow64\h264gaudiodecoder.ax"
+ "Audio Decoder ADPCM" "AudioDecoderADPCM Module" "Samsung Techwin Co., Ltd." "c:\windows\syswow64\h264gaudiodecoderadpcm.ax"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Cirrus Logic USB-DVR2 Source" "USB-DVR2 Source (ADS)" "Cirrus Logic, Inc." "c:\program files (x86)\adstech dvd xpress\usbdvr2src.ax"
+ "DeskShare MP3 Encoder" "Date and time overlay filter" "DeskShare" "c:\program files (x86)\common files\deskshare shared\ax\dsmp3encoderex.ax"
+ "Dib Output" "" "Ulead Systems, Inc." "c:\program files (x86)\common files\ulead systems\filters\diboutput.ax"
+ "Dib Receive" "" "Ulead Systems, Inc." "c:\program files (x86)\common files\ulead systems\filters\dibreceive.ax"
+ "DivX AAC Decoder" "AAC Audio Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx codec\divxdec.ax"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\divxdech264.ax"
+ "DivX MKV Demux" "DivX MKV Splitter" "" "c:\program files (x86)\divx\divx plus directshow filters\dmfsource.ax"
+ "DivX MKV Demux (unrestricted)" "DivX MKV Splitter" "" "c:\program files (x86)\divx\divx plus directshow filters\dmfsource.ax"
+ "DsDumpFilter" "DsDumpFilter" "DeskShare" "c:\program files (x86)\common files\deskshare shared\ax\dsdumpfilter.ax"
+ "Dump" "" "" "c:\program files (x86)\adobe\premiere pro tryout\plug-ins\dvfilewriter.prm"
+ "DV ACM V/A Source Filter" "" "Ulead Systems, Inc." "c:\program files (x86)\common files\ulead systems\filters\dvsf.ax"
+ "DV V/A Source Filter" "" "Ulead Systems, Inc." "c:\program files (x86)\common files\ulead systems\filters\dvsf.ax"
+ "DV Video Source Filter" "" "Ulead Systems, Inc." "c:\program files (x86)\common files\ulead systems\filters\dvsf.ax"
+ "DvPlayTee" "" "" "c:\program files (x86)\adobe\premiere pro tryout\plug-ins\dxdvsupport.prm"
+ "FinePix Color Filter" "FinePix Color Filter" "FUJI PHOTO FILM CO.,LTD." "c:\program files (x86)\fujifilm\myfinepix studio\plugins\fbuploader\mvfilters\fxcolorft.ax"
+ "FinePix Rotate Filter" "FinePix Rotate Filter" "FUJI PHOTO FILM CO.,LTD." "c:\program files (x86)\fujifilm\myfinepix studio\plugins\fbuploader\mvfilters\fxrotateft.ax"
+ "Fujifilm Setup Filter" "FujifilmSetupFilter" "FUJI PHOTO FILM CO., LTD. " "c:\program files (x86)\fujifilm\myfinepix studio\plugins\fbuploader\mvfilters\fujifilmsetupfilter.ax"
+ "Generic Render" "" "" "c:\program files (x86)\adobe\premiere pro tryout\plug-ins\dxgenericrender.prm"
+ "Generic Source" "" "" "c:\program files (x86)\adobe\premiere pro tryout\plug-ins\dxgenericsource.prm"
+ "Indeo® video 5.10 Compression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\syswow64\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\syswow64\ir50_32.dll"
+ "MainConcept MPEG Audio Decoder" "MPEG Video and Audio Decoder" "MainConcept AG" "c:\program files (x86)\sony\shared plug-ins\file formats\mcmpeg\mcdsmpeg.ax"
+ "MainConcept MPEG Audio Encoder" "MPEG Audio Encoder" "MainConcept AG" "c:\program files (x86)\adobe\premiere pro tryout\mceampeg.ax"
+ "MainConcept MPEG Encoder" "MPEG Encoder and Muxer" "MainConcept AG" "c:\program files (x86)\sony\shared plug-ins\file formats\mcmpeg\mcesmpeg.ax"
+ "MainConcept MPEG Splitter" "Mpeg I/II Splitter" "MainConcept AG" "c:\program files (x86)\sony\shared plug-ins\file formats\mcmpeg\mcspmpeg.ax"
+ "MainConcept MPEG Video Decoder" "MPEG Video and Audio Decoder" "MainConcept AG" "c:\program files (x86)\sony\shared plug-ins\file formats\mcmpeg\mcdsmpeg.ax"
+ "MainConcept MPEG Video Encoder" "MPEG Video Encoder" "MainConcept AG" "c:\program files (x86)\adobe\premiere pro tryout\mcevmpeg.ax"
+ "Media Source" "GMediaSource Module" "Samsung Techwin Co., Ltd." "c:\windows\syswow64\h264gmediasource.ax"
+ "MP4 Source" "" "" "File not found: C:\Program Files (x86)\iMesh Applications\iMesh\MP4Splitter.ax"
+ "MP4 Splitter" "" "" "File not found: C:\Program Files (x86)\iMesh Applications\iMesh\MP4Splitter.ax"
+ "MPA Decoder Filter" "" "" "File not found: C:\Program Files (x86)\iMesh Applications\iMesh\MpaDecFilter.ax"
+ "MPEG4 Video Source" "" "" "File not found: C:\Program Files (x86)\iMesh Applications\iMesh\MP4Splitter.ax"
+ "MPEG4 Video Splitter" "" "" "File not found: C:\Program Files (x86)\iMesh Applications\iMesh\MP4Splitter.ax"
+ "Program Stream Desplit" "USB-DVR2 Splitter (ADS)" "Cirrus Logic, Inc." "c:\program files (x86)\adstech dvd xpress\usbdvr2splt.ax"
+ "Program Stream Desplit" "USB-DVR2 Splitter (ADS)" "Cirrus Logic, Inc." "c:\program files (x86)\adstech dvd xpress\usbdvr2spltmpg1.ax"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\windows\syswow64\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\windows\syswow64\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\windows\syswow64\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\windows\syswow64\realmediasplitter.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Roxio Audio Source Filter" "Roxio Audio Source Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiosource.ax"
+ "Roxio Audio Stream Reader Filter" "Roxio Audio Stream Reader Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamreader.ax"
+ "Roxio Audio Stream Writer Filter" "Roxio Audio Stream Writer Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamwriter.ax"
+ "ROXIO LPCMSyncFilter" "LPCMSync Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\lpcmsyncfilter.dll"
+ "Roxio MPEG Analyzer Filter" "MPEG File Analyzer Dynamic Link Library" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxiompegprop.dll"
+ "Roxio MPEG Stream Analyzer" "Roxio MPEG Stream Splitter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpegstreamanalyzer.dll"
+ "Roxio MPEG1 Audio Encoder" "ROXIO MPEG Audio Encoder" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxioaudioenc.dll"
+ "Roxio MPEG1 Encoder" "ROXIO MPEG1 Codec" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg1vidcodec.dll"
+ "Roxio MPEG1 Muxer" "ROXIO MPEG MUXER" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg1muxer.dll"
+ "Roxio MPEG2 Demuxer" "ROXIO MPEG Demuxer" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxiompegdemuxer.dll"
+ "ROXIO Raw Writer" "ROXIO Raw Writer" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mgirawwriter.dll"
+ "Roxio Repack Filter" "Repack Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\repackfilter.dll"
+ "Roxio Transport Stream Source" "ListFrameSource" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\tsmpegsource.dll"
+ "SubPicture Encoder" "ROXIO SubPicture Encoder" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\subpictenc.dll"
+ "TimeSkew" "" "" "c:\program files (x86)\adobe\encore dvd 1.0\timeskew2.dll"
+ "ULead File Source (Async.)" "Ulead Async Filter" "Ulead Systems" "c:\program files (x86)\common files\ulead systems\mpeg\ulasync.ax"
+ "ULead Infinite Pin Tee" "Ulead Infinite Tee Filter" "Ulead Systems, Inc." "c:\program files (x86)\common files\ulead systems\mpeg\uinftee.ax"
+ "Ulead MPEG Audio Decoder" "MPEG Video and Audio Decoder" "ULead Systems" "c:\program files (x86)\common files\ulead systems\mpeg\uldsmpeg.ax"
+ "Ulead MPEG Encoder" "MPEG Encoder and Muxer" "ULead Systems" "c:\program files (x86)\common files\ulead systems\mpeg\ulesmpeg.ax"
+ "Ulead MPEG Muxer" "MPEG Muxer" "ULead Systems" "c:\program files (x86)\common files\ulead systems\mpeg\ulmxmpeg.ax"
+ "ULead MPEG Splitter" "ULead Mpeg I/II Splitter" "ULead Systems" "c:\program files (x86)\common files\ulead systems\mpeg\ulspmpeg.ax"
+ "Ulead MPEG Video Decoder" "MPEG Video and Audio Decoder" "ULead Systems" "c:\program files (x86)\common files\ulead systems\mpeg\uldsmpeg.ax"
+ "ULead OEM MPEG Audio Decoder" "MPEG Video and Audio Decoder" "ULead Systems" "c:\program files (x86)\adstech dvd xpress\ulodsmpeg.ax"
+ "ULead OEM MPEG Audio Encoder" "DS MPEG Audio Encoder" "ULead Systems" "c:\program files (x86)\adstech dvd xpress\uloeampeg.ax"
+ "ULead OEM MPEG Encoder" "MPEG Encoder and Muxer" "ULead Systems" "c:\program files (x86)\adstech dvd xpress\uloesmpeg.ax"
+ "ULead OEM MPEG Splitter" "ULead Mpeg I/II Splitter" "ULead Systems" "c:\program files (x86)\adstech dvd xpress\ulospmpeg.ax"
+ "ULead OEM MPEG Video Decoder" "MPEG Video and Audio Decoder" "ULead Systems" "c:\program files (x86)\adstech dvd xpress\ulodsmpeg.ax"
+ "ULead OEM MPEG Video Encoder" "DS MPEG Video Encoder" "ULead Systems" "c:\program files (x86)\adstech dvd xpress\uloevmpeg.ax"
+ "VAIO Content Metadata Univ Filter" "DirectShow Filter for VCM Intelligent Analyzing Manager" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmsmplcapflt.ax"
+ "VcmIAlzGPDFilter" "VCM Intelligent Analyzing Manager GPD Library" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmialzgpdfilter.ax"
+ "VcmIAlzGPDFilter2" "VCM Intelligent Analyzing Manager GPD Library" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmialzgpdfilter2.ax"
+ "Video Decoder" "GVideoDecoder Module" "Samsung Techwin Co., Ltd." "c:\windows\syswow64\h264gvideodecoder.ax"
+ "Video Renderer" "GVideoRenderer Module" "Samsung Techwin Co., Ltd." "c:\windows\syswow64\h264gvideorenderer.ax"
+ "WebM Muxer Filter" "WebM Multiplexer Filter" "Google" "c:\program files (x86)\manycam\bin\webmmux.dll"
+ "WebM Source Filter" "WebM Source Filter" "Google" "c:\program files (x86)\manycam\bin\webmsource.dll"
+ "WebM Splitter Filter" "Webm Splitter Filter" "Google" "c:\program files (x86)\manycam\bin\webmsplit.dll"
+ "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\program files (x86)\manycam\bin\vp8decoder.dll"
+ "WebM VP8 Encoder Filter" "WebM VP8 Encoder Filter" "Google" "c:\program files (x86)\manycam\bin\vp8encoder.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Xiph.Org Vorbis Decoder" "" "" "c:\program files (x86)\manycam\bin\dsfvorbisdecoder.dll"
+ "Xiph.Org Vorbis Encoder" "" "" "c:\program files (x86)\manycam\bin\dsfvorbisencoder.dll"
+ "Xvid MPEG-4 Video Decoder" "" "" "c:\windows\syswow64\xvid.ax"
+ "YUV Transform" "YUV-RGB Converter" "GDCL (http://www.gdcl.co.uk)" "c:\program files (x86)\manycam\bin\yuvxfm.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "hpf3l092.dll" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l092.dll"
+ "MONVNC" "Port Monitor DLL" "" "c:\windows\system32\vncpm.dll"
+ "PCL hpf3l082" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l082.dll"
+ "PCL hpz3lw71" "LanguageMonitor" "Hewlett-Packard Corporation" "c:\windows\system32\hpz3lw71.dll"
+ "PDFCreator" "" "" "c:\windows\system32\pdfcmnnt.dll"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:40 PM

Posted 08 October 2012 - 09:00 AM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users