Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Vista - Services/dependencies failing to start


  • Please log in to reply
15 replies to this topic

#1 Mr Bishop

Mr Bishop

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 06 November 2012 - 05:55 AM

Hi folks,

I think I'm infected or have a serious problem with my Vista OS.

I was logged on recently when I noticed my Avast was no longer running. Trying to enable the protection again failed (no message).
I tried manually starting the Avast service and it failed with the error 'Error 1075: The dependency service does not exist or has been marked for deletion'
I also noticed that I had no internet access and a whole bunch of other services failed to start (including Windows Firewall).
The next thing I tried was a system restore (as an update was done recently I used the one before that).
This got me back the internet but no firewall or avast.
I ran CCleaner (I know now that I should probably not have and asked for help first but I'm new to this kind of thing).
I tried Malwarebytes but it kept finding an object and then immediately crashed.
After reading many posts/topics I didn't find any common posts that would indicate that I could find a common solution and fix it myself.
Many posts recommended taking a few logs so I tried to run DDS and GMER. All crashed while running.
I then tried the Microsoft rootkit indentifier. This also gave a lot of problems. Blank screens, crashes but eventually told me that CMD.exe was causing a problem before crashing one more time.

Lastly I went into safe mode and was able to run DDS, GMER and Malwarebytes. For GMER I had to unclick devices for it to run (didn't like the shadow protect driver it seems).

I have all those logs but I need to know what to do next. Should I just post the logs in the malware forum? Is there something else I can run to find out what's up?

Help appreciated.
cb.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 06 November 2012 - 07:40 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Mr Bishop

Mr Bishop
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 08 November 2012 - 02:44 PM

Thanks a million:

Ran those in order. I did have to go to safe mode when trying to standalone avast.
First Log:
20:06:42.0462 5864 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:06:42.0779 5864 ============================================================
20:06:42.0779 5864 Current date / time: 2012/11/07 20:06:42.0779
20:06:42.0779 5864 SystemInfo:
20:06:42.0779 5864
20:06:42.0779 5864 OS Version: 6.0.6002 ServicePack: 2.0
20:06:42.0779 5864 Product type: Workstation
20:06:42.0780 5864 ComputerName: FRONTROOM
20:06:42.0780 5864 UserName: home
20:06:42.0780 5864 Windows directory: C:\Windows
20:06:42.0780 5864 System windows directory: C:\Windows
20:06:42.0780 5864 Processor architecture: Intel x86
20:06:42.0780 5864 Number of processors: 2
20:06:42.0780 5864 Page size: 0x1000
20:06:42.0780 5864 Boot type: Normal boot
20:06:42.0780 5864 ============================================================
20:06:43.0233 5864 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:06:43.0252 5864 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:06:43.0340 5864 ============================================================
20:06:43.0340 5864 \Device\Harddisk0\DR0:
20:06:43.0340 5864 MBR partitions:
20:06:43.0340 5864 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1F800, BlocksNum 0x1E00000
20:06:43.0340 5864 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E1F800, BlocksNum 0x38566000
20:06:43.0340 5864 \Device\Harddisk1\DR1:
20:06:43.0345 5864 MBR partitions:
20:06:43.0345 5864 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
20:06:43.0345 5864 ============================================================
20:06:43.0428 5864 C: <-> \Device\Harddisk0\DR0\Partition2
20:06:43.0523 5864 D: <-> \Device\Harddisk1\DR1\Partition1
20:06:43.0562 5864 E: <-> \Device\Harddisk0\DR0\Partition1
20:06:43.0562 5864 ============================================================
20:06:43.0562 5864 Initialize success
20:06:43.0562 5864 ============================================================
20:07:00.0501 3092 ============================================================
20:07:00.0501 3092 Scan started
20:07:00.0501 3092 Mode: Manual; TDLFS;
20:07:00.0501 3092 ============================================================
20:07:00.0798 3092 ================ Scan system memory ========================
20:07:00.0798 3092 System memory - ok
20:07:00.0798 3092 ================ Scan services =============================
20:07:00.0897 3092 [ 17067069B9A7865028C1F2E6971D0CCC ] aawservice C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
20:07:00.0911 3092 aawservice - ok
20:07:01.0120 3092 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
20:07:01.0124 3092 ACPI - ok
20:07:01.0229 3092 [ 73685E15EF8B0BD9C30F1AF413F13D49 ] adfs C:\Windows\system32\drivers\adfs.sys
20:07:01.0231 3092 adfs - ok
20:07:01.0333 3092 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:07:01.0334 3092 AdobeARMservice - ok
20:07:01.0421 3092 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:07:01.0425 3092 AdobeFlashPlayerUpdateSvc - ok
20:07:01.0494 3092 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:07:01.0499 3092 adp94xx - ok
20:07:01.0565 3092 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:07:01.0569 3092 adpahci - ok
20:07:01.0585 3092 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
20:07:01.0587 3092 adpu160m - ok
20:07:01.0609 3092 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:07:01.0612 3092 adpu320 - ok
20:07:01.0661 3092 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:07:01.0662 3092 AeLookupSvc - ok
20:07:01.0746 3092 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
20:07:01.0750 3092 AFD - ok
20:07:01.0799 3092 [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:07:01.0800 3092 agp440 - ok
20:07:01.0854 3092 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
20:07:01.0855 3092 aic78xx - ok
20:07:01.0886 3092 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
20:07:01.0888 3092 ALG - ok
20:07:01.0902 3092 [ DC67A153FDB8105B25D05334B5E1D8E2 ] aliide C:\Windows\system32\drivers\aliide.sys
20:07:01.0903 3092 aliide - ok
20:07:01.0922 3092 [ 848F27E5B27C1C253F6CEFDC1A5D8F21 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:07:01.0923 3092 amdagp - ok
20:07:01.0939 3092 [ 835C4C3355088298A5EBD818FA31430F ] amdide C:\Windows\system32\drivers\amdide.sys
20:07:01.0940 3092 amdide - ok
20:07:01.0987 3092 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
20:07:01.0988 3092 AmdK7 - ok
20:07:02.0001 3092 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:07:02.0002 3092 AmdK8 - ok
20:07:02.0052 3092 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
20:07:02.0053 3092 Appinfo - ok
20:07:02.0115 3092 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:07:02.0117 3092 Apple Mobile Device - ok
20:07:02.0158 3092 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
20:07:02.0160 3092 arc - ok
20:07:02.0185 3092 archlp - ok
20:07:02.0213 3092 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:07:02.0215 3092 arcsas - ok
20:07:02.0311 3092 [ 40C145F12FF461A0220303BDA134F598 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
20:07:02.0328 3092 aspnet_state - ok
20:07:02.0386 3092 [ 054DF24C92B55427E0757CFFF160E4F2 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:07:02.0387 3092 aswFsBlk - ok
20:07:02.0438 3092 [ 352D5A48EBAB35A7693B048679304831 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
20:07:02.0439 3092 aswRdr - ok
20:07:02.0516 3092 [ 8D34D2B24297E27D93E847319ABFDEC4 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:07:02.0523 3092 aswSnx - ok
20:07:02.0564 3092 [ 010012597333DA1F46C3243F33F8409E ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:07:02.0569 3092 aswSP - ok
20:07:02.0581 3092 [ F9F84364416658E9786235904D448D37 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:07:02.0582 3092 aswTdi - ok
20:07:02.0625 3092 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:07:02.0626 3092 AsyncMac - ok
20:07:02.0641 3092 [ 61CA2C1E145809813C28752298CF9843 ] atapi C:\Windows\system32\drivers\atapi.sys
20:07:02.0642 3092 atapi - ok
20:07:02.0707 3092 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:07:02.0712 3092 AudioEndpointBuilder - ok
20:07:02.0724 3092 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:07:02.0725 3092 Audiosrv - ok
20:07:02.0782 3092 [ 996E6D052438E8D8DFD501F31560B2E0 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
20:07:02.0784 3092 avast! Antivirus - ok
20:07:02.0853 3092 [ 746F59822A5187510471FC46889B8CC9 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
20:07:02.0859 3092 BCM43XX - ok
20:07:02.0943 3092 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
20:07:02.0943 3092 Beep - ok
20:07:03.0017 3092 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
20:07:03.0022 3092 BFE - ok
20:07:03.0106 3092 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
20:07:03.0130 3092 BITS - ok
20:07:03.0133 3092 blbdrive - ok
20:07:03.0190 3092 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:07:03.0195 3092 Bonjour Service - ok
20:07:03.0221 3092 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:07:03.0222 3092 bowser - ok
20:07:03.0264 3092 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
20:07:03.0265 3092 BrFiltLo - ok
20:07:03.0277 3092 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
20:07:03.0278 3092 BrFiltUp - ok
20:07:03.0303 3092 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
20:07:03.0305 3092 Browser - ok
20:07:03.0347 3092 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
20:07:03.0349 3092 Brserid - ok
20:07:03.0364 3092 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
20:07:03.0365 3092 BrSerWdm - ok
20:07:03.0387 3092 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
20:07:03.0387 3092 BrUsbMdm - ok
20:07:03.0402 3092 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
20:07:03.0403 3092 BrUsbSer - ok
20:07:03.0556 3092 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
20:07:03.0557 3092 BthEnum - ok
20:07:03.0655 3092 [ 9A966A8E86D1771911AE34A20D11BFF3 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:07:03.0656 3092 BTHMODEM - ok
20:07:03.0722 3092 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:07:03.0724 3092 BthPan - ok
20:07:03.0793 3092 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
20:07:03.0800 3092 BTHPORT - ok
20:07:03.0882 3092 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
20:07:03.0883 3092 BthServ - ok
20:07:03.0964 3092 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
20:07:03.0965 3092 BTHUSB - ok
20:07:04.0062 3092 [ FC23E3A7AE18B02DCC1A34CBEF3F80AF ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
20:07:04.0063 3092 btwaudio - ok
20:07:04.0109 3092 [ 5E14C92763E51130BFB9A670AFD7EDDF ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
20:07:04.0111 3092 btwavdt - ok
20:07:04.0138 3092 [ AC3FD5A3BBFA114098F75B80C4C1F3E7 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
20:07:04.0139 3092 btwrchid - ok
20:07:04.0195 3092 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:07:04.0197 3092 cdfs - ok
20:07:04.0265 3092 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:07:04.0267 3092 cdrom - ok
20:07:04.0340 3092 Cerberus FTP Server - ok
20:07:04.0408 3092 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
20:07:04.0409 3092 CertPropSvc - ok
20:07:04.0434 3092 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:07:04.0435 3092 circlass - ok
20:07:04.0476 3092 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
20:07:04.0479 3092 CLFS - ok
20:07:04.0506 3092 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:07:04.0528 3092 clr_optimization_v2.0.50727_32 - ok
20:07:04.0651 3092 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:07:04.0653 3092 clr_optimization_v4.0.30319_32 - ok
20:07:04.0678 3092 [ E79CBB2195E965F6E3256E2C1B23FD1C ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:07:04.0679 3092 cmdide - ok
20:07:04.0686 3092 [ 722936AFB75A7F509662B69B5632F48A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
20:07:04.0687 3092 Compbatt - ok
20:07:04.0690 3092 COMSysApp - ok
20:07:04.0698 3092 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:07:04.0699 3092 crcdisk - ok
20:07:04.0776 3092 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
20:07:04.0777 3092 Creative ALchemy AL6 Licensing Service - ok
20:07:04.0804 3092 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
20:07:04.0805 3092 Creative Audio Engine Licensing Service - ok
20:07:04.0818 3092 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
20:07:04.0819 3092 Crusoe - ok
20:07:04.0884 3092 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:07:04.0887 3092 CryptSvc - ok
20:07:04.0948 3092 [ 51A4C2C6D3AC2C275A1B93C34D4E87C6 ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
20:07:04.0950 3092 CT20XUT - ok
20:07:04.0976 3092 CT20XUT.DLL - ok
20:07:04.0981 3092 [ 51A4C2C6D3AC2C275A1B93C34D4E87C6 ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
20:07:04.0982 3092 CT20XUT.SYS - ok
20:07:05.0022 3092 [ 7EC5C5F0B0C14EC186074FD095F0F370 ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
20:07:05.0029 3092 ctac32k - ok
20:07:05.0060 3092 [ 8DC02DE5321499E6C1FE87E43D86A73B ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
20:07:05.0068 3092 ctaud2k - ok
20:07:05.0123 3092 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
20:07:05.0127 3092 CTAudSvcService - ok
20:07:05.0170 3092 [ D4C74F7228A2162171DEE3087CC22FBF ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
20:07:05.0194 3092 CTEXFIFX - ok
20:07:05.0220 3092 CTEXFIFX.DLL - ok
20:07:05.0263 3092 [ D4C74F7228A2162171DEE3087CC22FBF ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
20:07:05.0269 3092 CTEXFIFX.SYS - ok
20:07:05.0292 3092 [ 1D5BF4F26B27C5EBA08F4D0FE96BFF12 ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
20:07:05.0294 3092 CTHWIUT - ok
20:07:05.0297 3092 CTHWIUT.DLL - ok
20:07:05.0300 3092 [ 1D5BF4F26B27C5EBA08F4D0FE96BFF12 ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
20:07:05.0301 3092 CTHWIUT.SYS - ok
20:07:05.0319 3092 [ 920B45BC9191F4E880EA2B75524D96AB ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
20:07:05.0320 3092 ctprxy2k - ok
20:07:05.0342 3092 [ EAC70EF0B40DF7B8178BF5E80B5F4277 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
20:07:05.0345 3092 ctsfm2k - ok
20:07:05.0438 3092 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:07:05.0454 3092 DcomLaunch - ok
20:07:05.0491 3092 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:07:05.0493 3092 DfsC - ok
20:07:05.0590 3092 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
20:07:05.0648 3092 DFSR - ok
20:07:05.0741 3092 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
20:07:05.0745 3092 Dhcp - ok
20:07:05.0802 3092 [ 74C79938AA7B65B17D8E7722BD602095 ] DigiartyVirtualCDBus C:\Windows\system32\drivers\DigiartyVirtualCDBus.sys
20:07:05.0805 3092 DigiartyVirtualCDBus - ok
20:07:05.0888 3092 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
20:07:05.0889 3092 disk - ok
20:07:05.0944 3092 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:07:05.0947 3092 Dnscache - ok
20:07:06.0002 3092 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:07:06.0005 3092 dot3svc - ok
20:07:06.0047 3092 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
20:07:06.0050 3092 DPS - ok
20:07:06.0131 3092 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:07:06.0131 3092 drmkaud - ok
20:07:06.0201 3092 [ 5C7E2097B91D689DED7A6FF90F0F3A25 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:07:06.0215 3092 DXGKrnl - ok
20:07:06.0279 3092 [ 04944F4FC4F0477185F5D26AE0DDB90E ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
20:07:06.0283 3092 e1express - ok
20:07:06.0345 3092 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
20:07:06.0347 3092 E1G60 - ok
20:07:06.0396 3092 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
20:07:06.0398 3092 EapHost - ok
20:07:06.0467 3092 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
20:07:06.0470 3092 Ecache - ok
20:07:06.0530 3092 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:07:06.0535 3092 ehRecvr - ok
20:07:06.0561 3092 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
20:07:06.0563 3092 ehSched - ok
20:07:06.0569 3092 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
20:07:06.0570 3092 ehstart - ok
20:07:06.0599 3092 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:07:06.0604 3092 elxstor - ok
20:07:06.0648 3092 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
20:07:06.0657 3092 EMDMgmt - ok
20:07:06.0711 3092 [ 8B41F776BEAFDA612CDF8FFA997B201E ] emupia C:\Windows\system32\drivers\emupia2k.sys
20:07:06.0713 3092 emupia - ok
20:07:06.0803 3092 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
20:07:06.0808 3092 EventSystem - ok
20:07:06.0890 3092 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
20:07:06.0893 3092 exfat - ok
20:07:06.0959 3092 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:07:06.0961 3092 fastfat - ok
20:07:07.0011 3092 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:07:07.0012 3092 fdc - ok
20:07:07.0022 3092 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
20:07:07.0024 3092 fdPHost - ok
20:07:07.0047 3092 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
20:07:07.0049 3092 FDResPub - ok
20:07:07.0104 3092 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:07:07.0105 3092 FileInfo - ok
20:07:07.0126 3092 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:07:07.0127 3092 Filetrace - ok
20:07:07.0192 3092 FingerPrint - ok
20:07:07.0282 3092 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:07:07.0305 3092 FLEXnet Licensing Service - ok
20:07:07.0336 3092 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:07:07.0337 3092 flpydisk - ok
20:07:07.0367 3092 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:07:07.0370 3092 FltMgr - ok
20:07:07.0467 3092 [ D49705F25390265CAD9B620F55EA968C ] FontCache C:\Windows\system32\FntCache.dll
20:07:07.0489 3092 FontCache - ok
20:07:07.0559 3092 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:07:07.0560 3092 FontCache3.0.0.0 - ok
20:07:07.0623 3092 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:07:07.0624 3092 Fs_Rec - ok
20:07:07.0645 3092 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:07:07.0647 3092 gagp30kx - ok
20:07:07.0718 3092 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
20:07:07.0719 3092 GEARAspiWDM - ok
20:07:07.0844 3092 [ 1C23CA2BEB4FA0A92B87164C35212B11 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
20:07:07.0877 3092 GoogleDesktopManager - ok
20:07:07.0951 3092 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
20:07:07.0975 3092 gpsvc - ok
20:07:08.0057 3092 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:07:08.0059 3092 gupdate - ok
20:07:08.0063 3092 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:07:08.0063 3092 gupdatem - ok
20:07:08.0121 3092 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
20:07:08.0124 3092 gusvc - ok
20:07:08.0144 3092 ha20x22k - ok
20:07:08.0197 3092 [ EDA33B1D4721470BB924F082CF66D06A ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
20:07:08.0222 3092 ha20x2k - ok
20:07:08.0347 3092 [ AC33BE07397814A442DC305223DE3524 ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
20:07:08.0381 3092 HCW85BDA - ok
20:07:08.0478 3092 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:07:08.0482 3092 HdAudAddService - ok
20:07:08.0513 3092 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:07:08.0515 3092 HDAudBus - ok
20:07:08.0552 3092 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:07:08.0553 3092 HidBth - ok
20:07:08.0620 3092 [ D8DF3722D5E961BAA1292AA2F12827E2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:07:08.0621 3092 HidIr - ok
20:07:08.0679 3092 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
20:07:08.0681 3092 hidserv - ok
20:07:08.0741 3092 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:07:08.0742 3092 HidUsb - ok
20:07:08.0765 3092 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:07:08.0768 3092 hkmsvc - ok
20:07:08.0789 3092 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
20:07:08.0791 3092 HpCISSs - ok
20:07:08.0944 3092 [ 83B29F537A5A45E1E614982440676FDE ] HR C:\Users\home\AppData\Local\Temp\HR.exe
20:07:08.0950 3092 HR - ok
20:07:08.0997 3092 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:07:09.0003 3092 HTTP - ok
20:07:09.0052 3092 [ 1C3069EB0F375B71B07609EF63F6CE33 ] HUHROHK C:\Users\home\AppData\Local\Temp\HUHROHK.exe
20:07:09.0060 3092 HUHROHK - ok
20:07:09.0083 3092 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
20:07:09.0084 3092 i2omp - ok
20:07:09.0137 3092 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:07:09.0138 3092 i8042prt - ok
20:07:09.0172 3092 [ 72B53E9C8924949DEC8F3799BCBA2251 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
20:07:09.0178 3092 IAANTMON - ok
20:07:09.0202 3092 [ E5A0034847537EAEE3C00349D5C34C5F ] iaStor C:\Windows\system32\drivers\iastor.sys
20:07:09.0203 3092 iaStor - ok
20:07:09.0229 3092 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
20:07:09.0232 3092 iaStorV - ok
20:07:09.0320 3092 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:07:09.0322 3092 IDriverT - ok
20:07:09.0416 3092 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:07:09.0441 3092 idsvc - ok
20:07:09.0485 3092 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:07:09.0486 3092 iirsp - ok
20:07:09.0527 3092 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
20:07:09.0534 3092 IKEEXT - ok
20:07:09.0551 3092 [ 0084046C084D68E494F8CF36BCF08186 ] intelide C:\Windows\system32\drivers\intelide.sys
20:07:09.0552 3092 intelide - ok
20:07:09.0578 3092 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:07:09.0580 3092 intelppm - ok
20:07:09.0634 3092 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:07:09.0637 3092 IPBusEnum - ok
20:07:09.0663 3092 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:07:09.0664 3092 IpFilterDriver - ok
20:07:09.0727 3092 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:07:09.0731 3092 iphlpsvc - ok
20:07:09.0734 3092 IpInIp - ok
20:07:09.0754 3092 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
20:07:09.0756 3092 IPMIDRV - ok
20:07:09.0787 3092 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
20:07:09.0789 3092 IPNAT - ok
20:07:09.0854 3092 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:07:09.0868 3092 iPod Service - ok
20:07:09.0895 3092 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:07:09.0896 3092 IRENUM - ok
20:07:09.0914 3092 [ 2F8ECE2699E7E2070545E9B0960A8ED2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:07:09.0915 3092 isapnp - ok
20:07:09.0978 3092 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:07:09.0981 3092 iScsiPrt - ok
20:07:10.0001 3092 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
20:07:10.0002 3092 iteatapi - ok
20:07:10.0059 3092 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
20:07:10.0060 3092 iteraid - ok
20:07:10.0070 3092 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:07:10.0071 3092 kbdclass - ok
20:07:10.0136 3092 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:07:10.0137 3092 kbdhid - ok
20:07:10.0147 3092 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
20:07:10.0150 3092 KeyIso - ok
20:07:10.0222 3092 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:07:10.0229 3092 KSecDD - ok
20:07:10.0282 3092 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
20:07:10.0289 3092 KtmRm - ok
20:07:10.0331 3092 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
20:07:10.0336 3092 LanmanServer - ok
20:07:10.0421 3092 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:07:10.0427 3092 LanmanWorkstation - ok
20:07:10.0589 3092 [ 79EE557CD4BC3436FD4F41312BA8134B ] LazerUsb C:\Windows\system32\DRIVERS\LazerUsb.sys
20:07:10.0694 3092 LazerUsb - ok
20:07:10.0956 3092 [ 4CCC8AABE7880C56BA10043B8FBCA3EB ] LeapFrog Connect Device Service C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
20:07:11.0128 3092 LeapFrog Connect Device Service - ok
20:07:11.0226 3092 [ 5CFFDA921FE0C9E9EBDE3150D3C81594 ] Leapfrog-USBLAN C:\Windows\system32\DRIVERS\btblan.sys
20:07:11.0227 3092 Leapfrog-USBLAN - ok
20:07:11.0284 3092 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:07:11.0285 3092 lltdio - ok
20:07:11.0314 3092 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:07:11.0319 3092 lltdsvc - ok
20:07:11.0340 3092 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:07:11.0343 3092 lmhosts - ok
20:07:11.0372 3092 [ AB33792A87285344F43B5CE23421BAB0 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
20:07:11.0373 3092 LMouFilt - ok
20:07:11.0393 3092 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:07:11.0395 3092 LSI_FC - ok
20:07:11.0408 3092 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:07:11.0410 3092 LSI_SAS - ok
20:07:11.0425 3092 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:07:11.0426 3092 LSI_SCSI - ok
20:07:11.0449 3092 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
20:07:11.0451 3092 luafv - ok
20:07:11.0547 3092 [ E1158B0CB852DB0573922C92E6E564DE ] lvpopflt C:\Windows\system32\DRIVERS\lvpopflt.sys
20:07:11.0579 3092 lvpopflt - ok
20:07:11.0612 3092 [ C57C48FB9AE3EFB9848AF594E3123A63 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2Mon.sys
20:07:11.0613 3092 LVPr2Mon - ok
20:07:11.0661 3092 [ 5C7B88695CE461D8BDA4FE0C0E57E71D ] LVPrcSrv C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
20:07:11.0663 3092 LVPrcSrv - ok
20:07:11.0751 3092 [ 87ECCE893D8AEC5A9337B917742D339C ] LVRS C:\Windows\system32\DRIVERS\lvrs.sys
20:07:11.0756 3092 LVRS - ok
20:07:11.0804 3092 [ BE5E104BE263921D6842C555DB6A5C23 ] LVUSBSta C:\Windows\system32\drivers\LVUSBSta.sys
20:07:11.0805 3092 LVUSBSta - ok
20:07:11.0989 3092 [ A240E42A7402E927A71B6E8AA4629B13 ] LVUVC C:\Windows\system32\DRIVERS\lvuvc.sys
20:07:12.0104 3092 LVUVC - ok
20:07:12.0190 3092 [ A3E700D78EEC390F1208098CDCA5C6B6 ] MarvinBus C:\Windows\system32\DRIVERS\MarvinBus.sys
20:07:12.0193 3092 MarvinBus - ok
20:07:12.0246 3092 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:07:12.0249 3092 Mcx2Svc - ok
20:07:12.0291 3092 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
20:07:12.0293 3092 megasas - ok
20:07:12.0313 3092 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
20:07:12.0316 3092 MMCSS - ok
20:07:12.0340 3092 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
20:07:12.0341 3092 Modem - ok
20:07:12.0368 3092 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:07:12.0369 3092 monitor - ok
20:07:12.0378 3092 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:07:12.0379 3092 mouclass - ok
20:07:12.0400 3092 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:07:12.0401 3092 mouhid - ok
20:07:12.0425 3092 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
20:07:12.0427 3092 MountMgr - ok
20:07:12.0524 3092 [ 96AA8BA23142CC8E2B30F3CAE0C80254 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:07:12.0527 3092 MozillaMaintenance - ok
20:07:12.0544 3092 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
20:07:12.0546 3092 mpio - ok
20:07:12.0576 3092 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:07:12.0577 3092 mpsdrv - ok
20:07:12.0652 3092 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
20:07:12.0660 3092 MpsSvc - ok
20:07:12.0681 3092 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
20:07:12.0683 3092 Mraid35x - ok
20:07:12.0717 3092 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:07:12.0719 3092 MRxDAV - ok
20:07:12.0775 3092 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:07:12.0777 3092 mrxsmb - ok
20:07:12.0847 3092 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:07:12.0851 3092 mrxsmb10 - ok
20:07:12.0855 3092 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:07:12.0857 3092 mrxsmb20 - ok
20:07:12.0867 3092 [ D420BC42A637AC3CC4F411220549C0DC ] msahci C:\Windows\system32\drivers\msahci.sys
20:07:12.0869 3092 msahci - ok
20:07:12.0889 3092 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:07:12.0891 3092 msdsm - ok
20:07:12.0919 3092 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
20:07:12.0922 3092 MSDTC - ok
20:07:12.0949 3092 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:07:12.0951 3092 Msfs - ok
20:07:12.0995 3092 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:07:12.0996 3092 msisadrv - ok
20:07:13.0029 3092 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:07:13.0033 3092 MSiSCSI - ok
20:07:13.0035 3092 msiserver - ok
20:07:13.0087 3092 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:07:13.0088 3092 MSKSSRV - ok
20:07:13.0136 3092 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:07:13.0137 3092 MSPCLOCK - ok
20:07:13.0163 3092 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:07:13.0164 3092 MSPQM - ok
20:07:13.0197 3092 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:07:13.0200 3092 MsRPC - ok
20:07:13.0211 3092 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:07:13.0212 3092 mssmbios - ok
20:07:13.0279 3092 MSSQL$MYMOVIES - ok
20:07:13.0298 3092 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
20:07:13.0299 3092 MSSQLServerADHelper - ok
20:07:13.0317 3092 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:07:13.0318 3092 MSTEE - ok
20:07:13.0343 3092 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
20:07:13.0344 3092 Mup - ok
20:07:13.0383 3092 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
20:07:13.0390 3092 napagent - ok
20:07:13.0465 3092 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:07:13.0467 3092 NativeWifiP - ok
20:07:13.0528 3092 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:07:13.0536 3092 NDIS - ok
20:07:13.0555 3092 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:07:13.0556 3092 NdisTapi - ok
20:07:13.0575 3092 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:07:13.0576 3092 Ndisuio - ok
20:07:13.0646 3092 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:07:13.0648 3092 NdisWan - ok
20:07:13.0667 3092 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:07:13.0669 3092 NDProxy - ok
20:07:13.0693 3092 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:07:13.0694 3092 NetBIOS - ok
20:07:13.0770 3092 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
20:07:13.0773 3092 netbt - ok
20:07:13.0776 3092 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
20:07:13.0778 3092 Netlogon - ok
20:07:13.0809 3092 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
20:07:13.0815 3092 Netman - ok
20:07:13.0844 3092 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
20:07:13.0850 3092 netprofm - ok
20:07:13.0880 3092 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:07:13.0882 3092 NetTcpPortSharing - ok
20:07:13.0913 3092 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:07:13.0914 3092 nfrd960 - ok
20:07:13.0942 3092 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:07:13.0947 3092 NlaSvc - ok
20:07:14.0015 3092 [ 357DDB51E03CAE598C096D95497373D0 ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
20:07:14.0016 3092 nmwcd - ok
20:07:14.0026 3092 [ 7CD443F9D36C80E152FADB274089577A ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
20:07:14.0027 3092 nmwcdc - ok
20:07:14.0096 3092 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:07:14.0098 3092 Npfs - ok
20:07:14.0122 3092 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
20:07:14.0125 3092 nsi - ok
20:07:14.0150 3092 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:07:14.0151 3092 nsiproxy - ok
20:07:14.0200 3092 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:07:14.0225 3092 Ntfs - ok
20:07:14.0260 3092 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
20:07:14.0261 3092 ntrigdigi - ok
20:07:14.0271 3092 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
20:07:14.0272 3092 Null - ok
20:07:14.0527 3092 [ D9099ED7CF688B131C5B0FCDAE1A48FA ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:07:14.0701 3092 nvlddmkm - ok
20:07:14.0721 3092 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:07:14.0723 3092 nvraid - ok
20:07:14.0746 3092 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:07:14.0747 3092 nvstor - ok
20:07:14.0815 3092 [ ABC3DBF9C508F48109782499C3D9DAB5 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:07:14.0820 3092 nvsvc - ok
20:07:14.0838 3092 [ 055081FD5076401C1EE1BCAB08D81911 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:07:14.0840 3092 nv_agp - ok
20:07:14.0843 3092 NwlnkFlt - ok
20:07:14.0846 3092 NwlnkFwd - ok
20:07:14.0943 3092 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:07:14.0950 3092 odserv - ok
20:07:15.0021 3092 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:07:15.0023 3092 ohci1394 - ok
20:07:15.0059 3092 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:07:15.0062 3092 ose - ok
20:07:15.0094 3092 [ EA7563DE822696F1B9BE9E589D33FA96 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
20:07:15.0096 3092 ossrv - ok
20:07:15.0117 3092 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
20:07:15.0133 3092 p2pimsvc - ok
20:07:15.0142 3092 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
20:07:15.0148 3092 p2psvc - ok
20:07:15.0152 3092 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
20:07:15.0154 3092 Parport - ok
20:07:15.0222 3092 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:07:15.0223 3092 partmgr - ok
20:07:15.0237 3092 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
20:07:15.0238 3092 Parvdm - ok
20:07:15.0260 3092 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
20:07:15.0263 3092 PcaSvc - ok
20:07:15.0345 3092 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfd.sys
20:07:15.0346 3092 pccsmcfd - ok
20:07:15.0411 3092 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
20:07:15.0414 3092 pci - ok
20:07:15.0430 3092 [ EB03C52C1CC6FFC31757E0A69FFFD5B6 ] pciide C:\Windows\system32\drivers\pciide.sys
20:07:15.0431 3092 pciide - ok
20:07:15.0447 3092 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:07:15.0450 3092 pcmcia - ok
20:07:15.0483 3092 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
20:07:15.0484 3092 pcouffin - ok
20:07:15.0542 3092 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:07:15.0557 3092 PEAUTH - ok
20:07:15.0613 3092 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
20:07:15.0646 3092 pla - ok
20:07:15.0723 3092 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:07:15.0730 3092 PlugPlay - ok
20:07:15.0739 3092 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
20:07:15.0744 3092 PNRPAutoReg - ok
20:07:15.0753 3092 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
20:07:15.0760 3092 PNRPsvc - ok
20:07:15.0810 3092 [ 858D5D8DBE432B358CA2F9D534169CA1 ] Point32 C:\Windows\system32\DRIVERS\point32k.sys
20:07:15.0812 3092 Point32 - ok
20:07:15.0848 3092 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:07:15.0855 3092 PolicyAgent - ok
20:07:15.0881 3092 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:07:15.0882 3092 PptpMiniport - ok
20:07:15.0902 3092 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
20:07:15.0903 3092 Processor - ok
20:07:15.0935 3092 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
20:07:15.0940 3092 ProfSvc - ok
20:07:15.0946 3092 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
20:07:15.0949 3092 ProtectedStorage - ok
20:07:16.0040 3092 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
20:07:16.0041 3092 PSched - ok
20:07:16.0063 3092 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
20:07:16.0064 3092 PxHelp20 - ok
20:07:16.0126 3092 [ 827FEB75499EFEE85B426749FB08A3B0 ] Pxrmcet C:\Windows\system32\DRIVERS\Pxrmcet.sys
20:07:16.0128 3092 Pxrmcet - ok
20:07:16.0179 3092 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:07:16.0204 3092 ql2300 - ok
20:07:16.0256 3092 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:07:16.0258 3092 ql40xx - ok
20:07:16.0287 3092 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
20:07:16.0294 3092 QWAVE - ok
20:07:16.0319 3092 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:07:16.0321 3092 QWAVEdrv - ok
20:07:16.0425 3092 [ E642B131FB74CAF4BB8A014F31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
20:07:16.0466 3092 R300 - ok
20:07:16.0593 3092 [ 70DBDAB246C18B78E2200D6401D038BE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
20:07:16.0596 3092 RapiMgr - ok
20:07:16.0627 3092 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:07:16.0628 3092 RasAcd - ok
20:07:16.0658 3092 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
20:07:16.0662 3092 RasAuto - ok
20:07:16.0670 3092 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:07:16.0672 3092 Rasl2tp - ok
20:07:16.0702 3092 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
20:07:16.0709 3092 RasMan - ok
20:07:16.0742 3092 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:07:16.0744 3092 RasPppoe - ok
20:07:16.0786 3092 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:07:16.0788 3092 RasSstp - ok
20:07:16.0822 3092 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:07:16.0826 3092 rdbss - ok
20:07:16.0858 3092 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:07:16.0859 3092 RDPCDD - ok
20:07:16.0889 3092 [ 0245418224CFA77BF4B41C2FE0622258 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
20:07:16.0893 3092 rdpdr - ok
20:07:16.0897 3092 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:07:16.0897 3092 RDPENCDD - ok
20:07:16.0969 3092 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:07:16.0972 3092 RDPWD - ok
20:07:17.0025 3092 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:07:17.0029 3092 RemoteAccess - ok
20:07:17.0101 3092 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:07:17.0106 3092 RemoteRegistry - ok
20:07:17.0173 3092 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:07:17.0176 3092 RFCOMM - ok
20:07:17.0243 3092 [ EB9717ACDB9B70CCF61684EBCF9DA6A3 ] RoxLiveShare10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
20:07:17.0249 3092 RoxLiveShare10 - ok
20:07:17.0290 3092 [ 64A8759E9B7E5467F60CB729B1EC352E ] RoxMediaDB10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
20:07:17.0315 3092 RoxMediaDB10 - ok
20:07:17.0356 3092 [ 2884DDA6ED8E8FD88568D924A79A9B30 ] RoxWatch10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
20:07:17.0359 3092 RoxWatch10 - ok
20:07:17.0390 3092 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
20:07:17.0392 3092 RpcLocator - ok
20:07:17.0469 3092 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
20:07:17.0475 3092 RpcSs - ok
20:07:17.0498 3092 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:07:17.0499 3092 rspndr - ok
20:07:17.0645 3092 [ 36188D91F1483B10907E0102E873B405 ] RZHLGX C:\Users\home\AppData\Local\Temp\RZHLGX.exe
20:07:17.0651 3092 RZHLGX - ok
20:07:17.0677 3092 [ 3252D5571633E0B244541615D6252358 ] SaiH0BAC C:\Windows\system32\DRIVERS\SaiH0BAC.sys
20:07:17.0680 3092 SaiH0BAC - ok
20:07:17.0708 3092 [ 9F6531B2CB0E4E9EF644616F5C38630B ] SaiMini C:\Windows\system32\DRIVERS\SaiMini.sys
20:07:17.0709 3092 SaiMini - ok
20:07:17.0717 3092 [ 368713C87ADA877D26E4D025F3CF882E ] SaiNtBus C:\Windows\system32\drivers\SaiBus.sys
20:07:17.0718 3092 SaiNtBus - ok
20:07:17.0721 3092 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
20:07:17.0723 3092 SamSs - ok
20:07:17.0778 3092 [ 46D3BA91FBA4E1F47EA7635F3412FCA2 ] sbmount C:\Windows\system32\drivers\sbmount.sys
20:07:17.0780 3092 sbmount - ok
20:07:17.0837 3092 [ 37CA203F8CCF732CD272A27E55B268C4 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
20:07:17.0839 3092 sbp2port - ok
20:07:17.0908 3092 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:07:17.0913 3092 SCardSvr - ok
20:07:17.0984 3092 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
20:07:18.0000 3092 Schedule - ok
20:07:18.0066 3092 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:07:18.0066 3092 SCPolicySvc - ok
20:07:18.0197 3092 [ 958E956E119EB7B9ABA142AFED1B5FF4 ] ScsiAccess C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
20:07:18.0200 3092 ScsiAccess - ok
20:07:18.0231 3092 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:07:18.0236 3092 SDRSVC - ok
20:07:18.0260 3092 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:07:18.0262 3092 secdrv - ok
20:07:18.0291 3092 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
20:07:18.0295 3092 seclogon - ok
20:07:18.0306 3092 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
20:07:18.0310 3092 SENS - ok
20:07:18.0324 3092 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
20:07:18.0326 3092 Serenum - ok
20:07:18.0337 3092 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
20:07:18.0339 3092 Serial - ok
20:07:18.0407 3092 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:07:18.0408 3092 sermouse - ok
20:07:18.0529 3092 [ 8988D1F32F56B3CD3F0F6C39F8A91A98 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
20:07:18.0543 3092 ServiceLayer - ok
20:07:18.0598 3092 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
20:07:18.0602 3092 SessionEnv - ok
20:07:18.0613 3092 [ 51CF56AA8BCC241F134B420B8F850406 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:07:18.0614 3092 sffdisk - ok
20:07:18.0627 3092 [ 96DED8B20C734AC41641CE275250E55D ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:07:18.0629 3092 sffp_mmc - ok
20:07:18.0642 3092 [ 8B08CAB1267B2C377883FC9E56981F90 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:07:18.0643 3092 sffp_sd - ok
20:07:18.0656 3092 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:07:18.0657 3092 sfloppy - ok
20:07:18.0771 3092 [ B1C3052EA1BA48799CFCEC81A34CB69A ] ShadowProtectSvc C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe
20:07:18.0822 3092 ShadowProtectSvc - ok
20:07:18.0838 3092 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:07:18.0844 3092 SharedAccess - ok
20:07:18.0909 3092 [ C818C44C201898399BF999BB6B35D4E3 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:07:18.0916 3092 ShellHWDetection - ok
20:07:18.0941 3092 [ 08072B2FB92477FC813271A84B3A8698 ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:07:18.0943 3092 sisagp - ok
20:07:18.0961 3092 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
20:07:18.0963 3092 SiSRaid2 - ok
20:07:18.0984 3092 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:07:18.0986 3092 SiSRaid4 - ok
20:07:19.0171 3092 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
20:07:19.0229 3092 Skype C2C Service - ok
20:07:19.0338 3092 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
20:07:19.0341 3092 SkypeUpdate - ok
20:07:19.0433 3092 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
20:07:19.0507 3092 slsvc - ok
20:07:19.0560 3092 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
20:07:19.0564 3092 SLUINotify - ok
20:07:19.0637 3092 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:07:19.0639 3092 Smb - ok
20:07:19.0664 3092 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:07:19.0667 3092 SNMPTRAP - ok
20:07:19.0691 3092 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
20:07:19.0692 3092 spldr - ok
20:07:19.0768 3092 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
20:07:19.0773 3092 Spooler - ok
20:07:19.0800 3092 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
20:07:19.0804 3092 SQLBrowser - ok
20:07:19.0828 3092 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
20:07:19.0830 3092 SQLWriter - ok
20:07:19.0856 3092 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:07:19.0861 3092 srv - ok
20:07:19.0887 3092 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:07:19.0890 3092 srv2 - ok
20:07:19.0921 3092 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:07:19.0923 3092 srvnet - ok
20:07:19.0944 3092 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:07:19.0949 3092 SSDPSRV - ok
20:07:19.0978 3092 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:07:19.0983 3092 SstpSvc - ok
20:07:20.0019 3092 [ 34FA69840A8584EC42FB992112DB3DE1 ] stcvsm C:\Windows\system32\drivers\stcvsm.sys
20:07:20.0022 3092 stcvsm - ok
20:07:20.0135 3092 [ 8BDDCE5A798B1150CDC5AB61D480B267 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:07:20.0139 3092 Stereo Service - ok
20:07:20.0214 3092 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
20:07:20.0231 3092 stisvc - ok
20:07:20.0275 3092 [ 7489520E98A119B5A9A00857F4F87D16 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
20:07:20.0277 3092 stllssvr - ok
20:07:20.0346 3092 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:07:20.0347 3092 swenum - ok
20:07:20.0385 3092 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
20:07:20.0392 3092 swprv - ok
20:07:20.0423 3092 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
20:07:20.0424 3092 Symc8xx - ok
20:07:20.0440 3092 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
20:07:20.0441 3092 Sym_hi - ok
20:07:20.0457 3092 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
20:07:20.0458 3092 Sym_u3 - ok
20:07:20.0495 3092 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
20:07:20.0512 3092 SysMain - ok
20:07:20.0584 3092 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:07:20.0588 3092 TabletInputService - ok
20:07:20.0666 3092 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:07:20.0673 3092 TapiSrv - ok
20:07:20.0701 3092 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
20:07:20.0705 3092 TBS - ok
20:07:20.0789 3092 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:07:20.0812 3092 Tcpip - ok
20:07:20.0908 3092 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
20:07:20.0912 3092 Tcpip6 - ok
20:07:20.0977 3092 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:07:20.0978 3092 tcpipreg - ok
20:07:20.0997 3092 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:07:20.0998 3092 TDPIPE - ok
20:07:21.0022 3092 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:07:21.0023 3092 TDTCP - ok
20:07:21.0086 3092 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:07:21.0087 3092 tdx - ok
20:07:21.0155 3092 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:07:21.0157 3092 TermDD - ok
20:07:21.0230 3092 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
20:07:21.0247 3092 TermService - ok
20:07:21.0266 3092 [ C818C44C201898399BF999BB6B35D4E3 ] Themes C:\Windows\system32\shsvcs.dll
20:07:21.0270 3092 Themes - ok
20:07:21.0299 3092 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
20:07:21.0302 3092 THREADORDER - ok
20:07:21.0323 3092 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
20:07:21.0327 3092 TrkWks - ok
20:07:21.0422 3092 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:07:21.0424 3092 TrustedInstaller - ok
20:07:21.0430 3092 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:07:21.0432 3092 tssecsrv - ok
20:07:21.0455 3092 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
20:07:21.0456 3092 tunmp - ok
20:07:21.0522 3092 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:07:21.0523 3092 tunnel - ok
20:07:21.0546 3092 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:07:21.0547 3092 uagp35 - ok
20:07:21.0618 3092 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:07:21.0622 3092 udfs - ok
20:07:21.0642 3092 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:07:21.0647 3092 UI0Detect - ok
20:07:21.0668 3092 [ 6D72EF05921ABDF59FC45C7EBFE7E8DD ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:07:21.0669 3092 uliagpkx - ok
20:07:21.0694 3092 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
20:07:21.0698 3092 uliahci - ok
20:07:21.0716 3092 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
20:07:21.0718 3092 UlSata - ok
20:07:21.0743 3092 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
20:07:21.0745 3092 ulsata2 - ok
20:07:21.0892 3092 [ BEE8C1F7838A1D69D5E5A36A3EFBD722 ] UltiDev Cassini Web Server for ASP.NET 2.0 C:\Program Files\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe
20:07:21.0893 3092 UltiDev Cassini Web Server for ASP.NET 2.0 - ok
20:07:21.0917 3092 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:07:21.0919 3092 umbus - ok
20:07:21.0941 3092 [ 88BD96A1BAEED33EE8BDF9499C07A841 ] UMPass C:\Windows\system32\DRIVERS\umpass.sys
20:07:21.0942 3092 UMPass - ok
20:07:21.0974 3092 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
20:07:21.0981 3092 upnphost - ok
20:07:22.0063 3092 [ 15629E4D65F97AB5432D6D9597CF6A33 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
20:07:22.0064 3092 upperdev - ok
20:07:22.0129 3092 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
20:07:22.0130 3092 USBAAPL - ok
20:07:22.0213 3092 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:07:22.0215 3092 usbaudio - ok
20:07:22.0297 3092 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:07:22.0299 3092 usbccgp - ok
20:07:22.0325 3092 [ 47B9770EA21436DE4AD5AEA7926E0900 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
20:07:22.0327 3092 usbcir - ok
20:07:22.0395 3092 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:07:22.0397 3092 usbehci - ok
20:07:22.0465 3092 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:07:22.0468 3092 usbhub - ok
20:07:22.0484 3092 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:07:22.0485 3092 usbohci - ok
20:07:22.0510 3092 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:07:22.0511 3092 usbprint - ok
20:07:22.0523 3092 [ D575246188F63DE0ACCF6EAC5FB59E6A ] usbser C:\Windows\system32\drivers\usbser.sys
20:07:22.0525 3092 usbser - ok
20:07:22.0594 3092 [ 5C17E6A11AA8BE53F79FD364BA19F0CE ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
20:07:22.0595 3092 UsbserFilt - ok
20:07:22.0599 3092 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:07:22.0601 3092 USBSTOR - ok
20:07:22.0615 3092 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:07:22.0617 3092 usbuhci - ok
20:07:22.0687 3092 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
20:07:22.0691 3092 UxSms - ok
20:07:22.0732 3092 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
20:07:22.0748 3092 vds - ok
20:07:22.0768 3092 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:07:22.0770 3092 vga - ok
20:07:22.0795 3092 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
20:07:22.0796 3092 VgaSave - ok
20:07:22.0818 3092 [ D5929A28BDFF4367A12CAF06AF901971 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:07:22.0819 3092 viaagp - ok
20:07:22.0841 3092 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
20:07:22.0842 3092 ViaC7 - ok
20:07:22.0855 3092 [ F3B4762EB85A2AFF4999401F14C3262B ] viaide C:\Windows\system32\drivers\viaide.sys
20:07:22.0856 3092 viaide - ok
20:07:22.0869 3092 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:07:22.0871 3092 volmgr - ok
20:07:22.0905 3092 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:07:22.0910 3092 volmgrx - ok
20:07:22.0979 3092 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:07:22.0983 3092 volsnap - ok
20:07:23.0023 3092 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:07:23.0025 3092 vsmraid - ok
20:07:23.0064 3092 [ 6C380FF9DECDBADDA47BE1D232E07F71 ] VSNAPVSS C:\Windows\system32\vsnapvss.exe
20:07:23.0069 3092 VSNAPVSS - ok
20:07:23.0121 3092 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
20:07:23.0146 3092 VSS - ok
20:07:23.0194 3092 [ 13ACFED0E6ADCA97440169DFD127EBCF ] VX3000 C:\Windows\system32\DRIVERS\VX3000.sys
20:07:23.0236 3092 VX3000 - ok
20:07:23.0320 3092 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
20:07:23.0327 3092 W32Time - ok
20:07:23.0340 3092 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:07:23.0341 3092 WacomPen - ok
20:07:23.0360 3092 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
20:07:23.0362 3092 Wanarp - ok
20:07:23.0366 3092 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:07:23.0367 3092 Wanarpv6 - ok
20:07:23.0447 3092 [ 779F9C90D3FE9C70B6FFD8EF035F3E83 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
20:07:23.0452 3092 WcesComm - ok
20:07:23.0490 3092 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:07:23.0505 3092 wcncsvc - ok
20:07:23.0523 3092 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:07:23.0528 3092 WcsPlugInService - ok
20:07:23.0540 3092 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
20:07:23.0542 3092 Wd - ok
20:07:23.0631 3092 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
20:07:23.0632 3092 WDC_SAM - ok
20:07:23.0662 3092 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:07:23.0677 3092 Wdf01000 - ok
20:07:23.0699 3092 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:07:23.0704 3092 WdiServiceHost - ok
20:07:23.0706 3092 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:07:23.0710 3092 WdiSystemHost - ok
20:07:23.0743 3092 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
20:07:23.0750 3092 WebClient - ok
20:07:23.0880 3092 [ 9A1DC00AEF8C4E547CA3053AC8F91720 ] WebGuideTranscode C:\Program Files\WebGuide\WebGuide4\bin\WebGuideTranscodeService.exe
20:07:23.0881 3092 WebGuideTranscode - ok
20:07:23.0971 3092 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:07:23.0978 3092 Wecsvc - ok
20:07:24.0001 3092 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:07:24.0006 3092 wercplsupport - ok
20:07:24.0094 3092 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
20:07:24.0100 3092 WerSvc - ok
20:07:24.0175 3092 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:07:24.0179 3092 WinDefend - ok
20:07:24.0182 3092 WinHttpAutoProxySvc - ok
20:07:24.0304 3092 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:07:24.0307 3092 Winmgmt - ok
20:07:24.0379 3092 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
20:07:24.0405 3092 WinRM - ok
20:07:24.0470 3092 [ 676F4B665BDD8053EAA53AC1695B8074 ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.SYS
20:07:24.0483 3092 WinUsb - ok
20:07:24.0556 3092 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:07:24.0581 3092 Wlansvc - ok
20:07:24.0584 3092 wltrysvc - ok
20:07:24.0618 3092 [ 17EAC0D023A65FA9B02114CC2BAACAD5 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:07:24.0620 3092 WmiAcpi - ok
20:07:24.0710 3092 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:07:24.0712 3092 wmiApSrv - ok
20:07:24.0750 3092 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:07:24.0774 3092 WMPNetworkSvc - ok
20:07:24.0850 3092 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:07:24.0856 3092 WPCSvc - ok
20:07:24.0952 3092 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:07:24.0957 3092 WPDBusEnum - ok
20:07:25.0051 3092 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
20:07:25.0052 3092 WpdUsb - ok
20:07:25.0343 3092 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:07:25.0366 3092 WPFFontCache_v0400 - ok
20:07:25.0399 3092 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:07:25.0400 3092 ws2ifsl - ok
20:07:25.0470 3092 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
20:07:25.0475 3092 wscsvc - ok
20:07:25.0479 3092 WSearch - ok
20:07:25.0583 3092 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
20:07:25.0625 3092 wuauserv - ok
20:07:25.0657 3092 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:07:25.0659 3092 WUDFRd - ok
20:07:25.0685 3092 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:07:25.0690 3092 wudfsvc - ok
20:07:25.0696 3092 ================ Scan global ===============================
20:07:25.0704 3092 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
20:07:25.0769 3092 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
20:07:25.0790 3092 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
20:07:25.0868 3092 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
20:07:25.0876 3092 [Global] - ok
20:07:25.0876 3092 ================ Scan MBR ==================================
20:07:25.0908 3092 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:07:26.0187 3092 \Device\Harddisk0\DR0 - ok
20:07:26.0189 3092 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
20:07:26.0404 3092 \Device\Harddisk1\DR1 - ok
20:07:26.0404 3092 ================ Scan VBR ==================================
20:07:26.0414 3092 [ E4903483AB74EA85437FB37C8D16E165 ] \Device\Harddisk0\DR0\Partition1
20:07:26.0416 3092 \Device\Harddisk0\DR0\Partition1 - ok
20:07:26.0417 3092 [ A221CA822829B5A582CBB78243B6FF11 ] \Device\Harddisk0\DR0\Partition2
20:07:26.0419 3092 \Device\Harddisk0\DR0\Partition2 - ok
20:07:26.0420 3092 [ 8175B0F941DDA5BDBF98AB65CA17979C ] \Device\Harddisk1\DR1\Partition1
20:07:26.0421 3092 \Device\Harddisk1\DR1\Partition1 - ok
20:07:26.0421 3092 ============================================================
20:07:26.0421 3092 Scan finished
20:07:26.0421 3092 ============================================================
20:07:26.0426 4488 Detected object count: 0
20:07:26.0426 4488 Actual detected object count: 0
20:14:55.0216 2212 Deinitialize success

#4 Mr Bishop

Mr Bishop
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 08 November 2012 - 02:46 PM

The first time Avast Ran I don't think it ran correctly so I ran step three and then ran Avast again.
Avast log:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-11-07 21:51:52
-----------------------------
21:51:52.199 OS Version: Windows 6.0.6002 Service Pack 2
21:51:52.199 Number of processors: 2 586 0x1706
21:51:52.199 ComputerName: FRONTROOM UserName: home
21:53:25.409 Initialize success
21:53:28.950 AVAST engine defs: 12102601
21:54:00.431 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:54:00.431 Disk 0 Vendor: WDC_WD50 12.0 Size: 476940MB BusType: 3
21:54:00.431 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
21:54:00.431 Disk 1 Vendor: SAMSUNG_ 1AQ1 Size: 1907729MB BusType: 3
21:54:00.462 Disk 0 MBR read successfully
21:54:00.462 Disk 0 MBR scan
21:54:00.993 Disk 0 Windows VISTA default MBR code
21:54:01.008 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 62 MB offset 63
21:54:01.367 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15360 MB offset 129024
21:54:01.632 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 461516 MB offset 31586304
21:54:01.648 Disk 0 scanning sectors +976771072
21:54:01.866 Disk 0 scanning C:\Windows\system32\drivers
21:54:24.736 Service scanning
21:54:52.083 Modules scanning
21:54:56.576 Disk 0 trace - called modules:
21:54:56.607 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
21:54:56.607 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x873e5030]
21:54:56.622 3 CLASSPNP.SYS[8bbb98b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x86eb5028]
21:54:57.558 AVAST engine scan C:\
22:14:49.476 File: C:\Program Files\DVDFab 52\DVDFab.exe **INFECTED** Win32:Trojan-gen
22:34:01.068 Disk 0 MBR has been saved successfully to "C:\Users\home\Desktop\MBR.dat"
22:34:01.068 The log file has been saved successfully to "C:\Users\home\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-11-08 07:46:01
-----------------------------
07:46:01.397 OS Version: Windows 6.0.6002 Service Pack 2
07:46:01.397 Number of processors: 2 586 0x1706
07:46:01.397 ComputerName: FRONTROOM UserName: home
07:46:04.018 Initialize success
07:46:07.466 AVAST engine defs: 12102601
07:46:12.692 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:46:12.692 Disk 0 Vendor: WDC_WD50 12.0 Size: 476940MB BusType: 3
07:46:12.692 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
07:46:12.692 Disk 1 Vendor: SAMSUNG_ 1AQ1 Size: 1907729MB BusType: 3
07:46:12.738 Disk 0 MBR read successfully
07:46:12.738 Disk 0 MBR scan
07:46:13.253 Disk 0 Windows VISTA default MBR code
07:46:13.284 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 62 MB offset 63
07:46:13.643 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15360 MB offset 129024
07:46:13.908 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 461516 MB offset 31586304
07:46:13.986 Disk 0 scanning sectors +976771072
07:46:14.252 Disk 0 scanning C:\Windows\system32\drivers
07:47:01.707 Service scanning
07:47:27.166 Modules scanning
07:47:49.599 Disk 0 trace - called modules:
07:47:49.646 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
07:47:49.646 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x873e5030]
07:47:49.661 3 CLASSPNP.SYS[8bbb98b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x86eb5028]
07:47:50.550 AVAST engine scan C:\Windows
07:48:39.878 AVAST engine scan C:\Windows\system32
07:58:49.463 AVAST engine scan C:\Windows\system32\drivers
08:00:22.689 AVAST engine scan C:\Users\home
12:58:34.594 AVAST engine scan C:\ProgramData
13:15:27.455 Scan finished successfully
18:43:27.651 Disk 0 MBR has been saved successfully to "C:\Users\home\Desktop\MBR.dat"
18:43:27.698 The log file has been saved successfully to "C:\Users\home\Desktop\aswMBR.txt"

Log from step 3
C:\Program Files\DVDFab 52\DVDFab.exe probably a variant of Win32/Agent.EPYGGXQ trojan cleaned by deleting - quarantined
C:\Users\home\Downloads\bhsounds_rar.exe a variant of Win32/MediaGet application cleaned by deleting - quarantined
C:\Users\home\Downloads\Magic_dvd_ripper_6.1.exe Win32/Adware.1ClickDownload.G application cleaned by deleting - quarantined
C:\Users\home\Downloads\PDFCreatorSetup.exe a variant of Win32/InstallCore.AX application cleaned by deleting - quarantined

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 08 November 2012 - 02:50 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#6 Mr Bishop

Mr Bishop
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 11 November 2012 - 11:51 AM

I couldn't get malwarebytes to run properly without crashing. same in safe mode. So I ran the others:

Minotoolbox log:
_________________________
MiniToolBox by Farbar Version: 08-11-2012
Ran by home (administrator) on 11-11-2012 at 13:43:14
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


::1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com

========================= IP Configuration: ================================

Intel® 82566DC-2 Gigabit Network Connection = Local Area Connection (Connected)
Dell Wireless 1505 Draft 802.11n WLAN Mini-Card = Wireless Network Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Local Area Connection 2" address=169.254.87.1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : frontroom
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 00-1E-4C-E6-37-58
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Dell Wireless 1505 Draft 802.11n WLAN Mini-Card
Physical Address. . . . . . . . . : 00-1F-3A-7D-4A-CE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® 82566DC-2 Gigabit Network Connection
Physical Address. . . . . . . . . : 00-1D-09-2F-51-C7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d90f:148f:47db:5d3d%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.108(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 09 November 2012 17:10:00
Lease Expires . . . . . . . . . . : 16 November 2012 17:09:51
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 201334025
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0F-8F-97-EB-00-1D-09-2F-51-C7
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{0DD6DE78-B1E9-4F5B-BD33-C131846E8B3F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{296573A9-0638-42EA-A530-9E2E460EAA90}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{53FE7DEE-3A32-4FC5-B51C-C09E0241D0EE}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.0.1

Name: google.com
Addresses: 2a00:1450:400b:c02::66
74.125.24.113
74.125.24.102
74.125.24.100
74.125.24.138
74.125.24.101
74.125.24.139

Pinging google.com [74.125.138.138] with 32 bytes of data:Reply from 74.125.138.138: bytes=32 time=36ms TTL=53Reply from 74.125.138.138: bytes=32 time=29ms TTL=53Ping statistics for 74.125.138.138: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 29ms, Maximum = 36ms, Average = 32msServer: UnKnown
Address: 192.168.0.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
98.138.253.109

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:Reply from 98.139.183.24: bytes=32 time=248ms TTL=53Reply from 98.139.183.24: bytes=32 time=204ms TTL=53Ping statistics for 98.139.183.24: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 204ms, Maximum = 248ms, Average = 226msServer: UnKnown
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:Reply from 208.43.87.2: Destination host unreachable.Reply from 208.43.87.2: Destination host unreachable.Ping statistics for 208.43.87.2: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Pinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
12 ...00 1e 4c e6 37 58 ...... Bluetooth Device (Personal Area Network)
10 ...00 1f 3a 7d 4a ce ...... Dell Wireless 1505 Draft 802.11n WLAN Mini-Card
9 ...00 1d 09 2f 51 c7 ...... Intel® 82566DC-2 Gigabit Network Connection
1 ........................... Software Loopback Interface 1
8 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
16 ...00 00 00 00 00 00 00 e0 isatap.{0DD6DE78-B1E9-4F5B-BD33-C131846E8B3F}
18 ...00 00 00 00 00 00 00 e0 isatap.{296573A9-0638-42EA-A530-9E2E460EAA90}
15 ...00 00 00 00 00 00 00 e0 isatap.{53FE7DEE-3A32-4FC5-B51C-C09E0241D0EE}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.108 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.108 276
192.168.0.108 255.255.255.255 On-link 192.168.0.108 276
192.168.0.255 255.255.255.255 On-link 192.168.0.108 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.108 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.108 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
9 276 fe80::/64 On-link
9 276 fe80::d90f:148f:47db:5d3d/128
On-link
1 306 ff00::/8 On-link
9 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/11/2012 09:56:16 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 09:56:16 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 09:55:55 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 00:44:40 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 00:44:40 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 00:44:39 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 00:44:39 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 00:44:39 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 00:44:38 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (11/11/2012 00:44:37 AM) (Source: ESENT) (User: )
Description: Catalog Database (1548) Catalog Database: The database page read from the file "C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" at offset 14954496 (0x0000000000e43000) (database page 3650 (0xE42)) for 4096 (0x00001000) bytes failed verification because it contains no page data. The read operation will fail with error -1019 (0xfffffc05). If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (04/12/2012 11:53:10 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 654 seconds with 600 seconds of active time. This session ended with a crash.

Error: (04/08/2009 09:21:21 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 93 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/02/2009 10:30:32 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/19/2008 11:23:40 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6300.5000, Microsoft Office Version: 12.0.4518.1014. This session lasted 96 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/19/2008 10:52:58 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 65 seconds with 60 seconds of active time. This session ended with a crash.

Error: (04/19/2008 10:51:44 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 392 seconds with 240 seconds of active time. This session ended with a crash.


CodeIntegrity Errors and Warnings:
=========================
Date: 2012-11-10T19:01:24.793
Type: Warning
Description: Code Integrity was unable to load the \SystemRoot\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\LVPrcMon.cat catalog.

Date: 2012-11-09T17:10:13.185
Type: Warning
Description: Code Integrity determined an unsigned kernel module \Device\HarddiskVolume3\Windows\System32\drivers\adfs.sys is loaded into the system. Check with the publisher to see if a signed version of the kernel module is available.

Date: 2012-11-09T12:19:55.570
Type: Error
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09T12:19:55.430
Type: Warning
Description: Code Integrity was unable to load the \SystemRoot\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\LVPrcMon.cat catalog.

Date: 2012-11-09T12:19:55.430
Type: Error
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09T12:19:55.290
Type: Warning
Description: Code Integrity was unable to load the \SystemRoot\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\LVPrcMon.cat catalog.

Date: 2012-11-09T12:19:55.258
Type: Error
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09T12:19:55.118
Type: Warning
Description: Code Integrity was unable to load the \SystemRoot\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\LVPrcMon.cat catalog.

Date: 2012-11-09T12:19:55.118
Type: Error
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09T12:19:54.978
Type: Warning
Description: Code Integrity was unable to load the \SystemRoot\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\LVPrcMon.cat catalog.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Ad-Aware (Version: 7.1.0.7)
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Recommended Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Extra Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe CSI CS4 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe Drive CS4 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Fonts All (Version: 2.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Photoshop Lightroom 3.6 (Version: 3.6.1)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
avast! Free Antivirus (Version: 6.0.1367.0)
Bonjour (Version: 3.0.0.10)
Browser Address Error Redirector (Version: 1.00.0000)
Bullzip PDF Printer 7.1.0.1218 (Version: 7.1.0.1218)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (Version: 1.7.2.11)
Canon Internet Library for ZoomBrowser EX (Version: 1.6.3.9)
Canon iP4500 series
Canon MOV Decoder (Version: 1.5.0.7)
Canon MOV Encoder (Version: 1.3.1.3)
Canon MovieEdit Task for ZoomBrowser EX (Version: 3.4.1.9)
Canon Utilities Digital Photo Professional 3.8 (Version: 3.8.0.0)
Canon Utilities Easy-PhotoPrint EX
Canon Utilities EOS Utility (Version: 2.8.0.2)
Canon Utilities Original Data Security Tools (Version: 1.8.0.1)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities Picture Style Editor (Version: 1.7.0.0)
Canon Utilities WFT Utility (Version: 3.5.1.1)
Canon Utilities ZoomBrowser EX (Version: 6.5.0.14)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.3.0.4)
CCleaner (Version: 3.24)
CD-LabelPrint
Cerberus FTP Server (Version: 4.0.15)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Connect (Version: 1.0.0.1)
Creative ALchemy (Version: 1.25)
Creative Audio Control Panel (Version: 3.00)
Creative Console Launcher
Creative MediaSource 5 (Version: 5.00)
Creative Software AutoUpdate (Version: 1.40)
Creative Sound Blaster Properties (Version: 1.02)
Creative WaveStudio 7
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 2.1.08044)
Dell Wireless WLAN Card (Version: 4.102.15.61)
Dell Xcelerator™ for Portable Devices (Version: 1.2.5)
DirectXInstallService (Version: 9.0.2)
Dropbox (Version: 1.4.7)
DVD Shrink 3.2
DVDFab (Platinum/Gold/HD Decrypter) (Non-CSS Version) 5.2.3.2
DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.2.3.2
DVDFab 6.0.2.2 (June 26, 2009)
DVDFab 8.0.8.5 (19/03/2011)
DVDFab 8.1.3.8 (09/12/2011) Qt
DVDFab Platinum
ERUNT 1.1j
ESET Online Scanner v3
EstLite+
Express Burn
Facebook Plug-In
FileZilla Client 3.5.3 (Version: 3.5.3)
FingerPrint 2.1.0.484 (Version: 2.1.0.484)
Free M4a to MP3 Converter 7.1
Free Video to iPhone Converter version 2.1
Google Chrome (Version: 23.0.1271.64)
Google Desktop (Version: -)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.123)
Google Updater (Version: 2.4.2432.1652)
GPL Ghostscript Lite 8.70
HandBrake 0.9.6 (Version: 0.9.6)
Hauppauge MCE XP/Vista Software Encoder (2.0.25296) (Version: 2.0.25296)
Hauppauge TV Tuner Driver (Version: 2.0.25312)
iCamSource (Version: 1.3.6)
iCloud (Version: 2.0.2.187)
Imagenomic Portraiture 2.1 Plug-in (build 2105)
Indie Looks Pack
Intel® Matrix Storage Manager
Intel® PRO Network Connections 12.1.12.4 (Version: )
Intelliremote 2.6.2.684 (Version: 2.6.2.684)
iPhone Configuration Utility (Version: 2.1.0.163)
iPodifier (Version: 1.5.0.3)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.7.2)
Java™ 6 Update 37 (Version: 6.0.370)
Java™ 6 Update 4 (Version: 1.6.0.40)
Java™ 6 Update 6 (Version: 1.6.0.60)
Java™ 6 Update 7 (Version: 1.6.0.70)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
Knoll Light Factory EZ Studio 15
kuler (Version: 2.0)
LeapFrog Connect (Version: 4.0.33.15045)
LeapFrog LeapPad Explorer Plugin (Version: 4.1.7.15314)
Logitech Harmony Remote Software 7 (Version: 7.4.0.5)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Logitech QuickCam Driver Package
Logitech Webcam Software (Version: 12.00.1280)
Magic Bullet Looks Studio 15
Magic Bullet PhotoLooks for Lightroom (Version: 1.5)
Magic Bullet PhotoLooks for Photoshop 32 bit (Version: 1.5)
Magic DVD Ripper V6.1.0
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MCE Configuration Reset (Version: 1.3.5)
MCE Tunes Pro (Version: 2.6)
MCEBrowser (Version: 2.2)
mceWeather 3.2 (Version: 3.2)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Expression Media 2 SP2 (Version: 2.0.2096.0)
Microsoft Flight Simulator X (Version: 10.0.60905)
Microsoft IntelliPoint 7.0 (Version: 7.0.260.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Outlook 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MYMOVIES) (Version: 9.4.5000.00)
Microsoft SQL Server 2005 Tools Express Edition (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Sync Framework 2.0 Core Components (x86) ENU (Version: 2.0.1578.0)
Microsoft Sync Framework 2.0 Provider Services (x86) ENU (Version: 2.0.1578.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (Version: 9.0.21022.218)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 12.0 (x86 en-GB) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
Mozilla Thunderbird (2.0.0.14) (Version: 2.0.0.14 (en-GB))
MSVC80_x86 (Version: 1.0.1.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
myphotobook 3.67 (Version: 3.67)
Nokia Connectivity Cable Driver (Version: 7.1.22.0)
Nokia Software Updater (Version: 01.07.003.39060)
NVIDIA Drivers (Version: 1.4)
NVIDIA PhysX (Version: 9.09.0814)
NVIDIA Stereoscopic 3D Driver (Version: 7.16.11.9062)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OLfolders 2.8 PE
Oloneo PhotoEngine (Version: 1.0.400.306)
OpenAL
OpenOffice.org 2.4 (Version: 2.4.9310)
Orb Runtime libraries (Version: 1.0.0)
PC Connectivity Solution (Version: 9.44.0.3)
PDF Settings CS4 (Version: 9.0)
PerformanceTest v6.1 (Version: 6.1)
Photodex Presenter
Photoshop Camera Raw (Version: 5.0)
Photosynth 2.0.1403.5 (Version: 2.0.0)
Pinnacle Studio 15 (Version: 15.0.0.7593)
Pinnacle Studio 15 Ultimate Collection Plugins (Version: 15.0.0.7593)
Pinnacle Studio Bonus Content (Version: 15.0.0.51)
Pinnacle Video Driver (Version: 12.1.0.030)
PJ Remix Beta (Version: 1.22)
ProSelect
ProShow Plugin for Lightroom
ProShow Producer
Queensberry Workspace Uploader (Version: 1.3.0)
QuickTime (Version: 7.72.80.56)
RealPlayer
Red Giant ToonIt Studio 15
Remote Control USB Driver (Version: 2.3.2.317)
Restorer2000 Pro 3.3 (Version: 3.3)
Roxio Activation Module (Version: 1.0)
Roxio CinePlayer Decoder Pack (Version: 4.3.0)
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator Premier (Version: 10.1)
Roxio Creator Premier (Version: 3.7.0)
Roxio Creator Premier 10 (Version: 1.1.010)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler (Version: 3.2)
Roxio Update Manager (Version: 6.0.0)
Safari (Version: 5.34.57.2)
Saitek SD6 Programming Software 6.0.7.0 (Version: 6.0.7.0)
SereneScreen Marine Aquarium 3 (Version: 3.0)
SES Driver (Version: 1.0.0)
ShadowProtect Desktop (Version: 3.5.3570)
Skype Click to Call (Version: 6.3.11079)
Skype™ 5.10 (Version: 5.10.116)
Sound Blaster X-Fi (Version: 1.0)
SoundFont Bank Manager
Spybot - Search & Destroy (Version: 1.6.2)
Suite Shared Configuration CS4 (Version: 1.0)
Switch Sound File Converter
SyncBack
SyncToy 2.1 (x86) (Version: 2.1.0)
System Requirements Lab
Trapcode 3DStroke Studio 15
Trapcode Particular Studio
Trapcode Shine Studio 15
UltiDev Cassini Web Server Explorer (Version: 1.0.4)
UltiDev Cassini Web Server for ASP.NET 2.0 (Version: 1.0.6)
UltraVNC v1.0.2 (Version: 1.1.0.2)
Uninstall 1.0.0.1
Unity Web Player (Version: 2.5.1f5_24931)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Script Editor Help (KB963671)
Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin)
User's Guides
Vertus Fluid Mask 3 3.0.10 (Version: 3.0.10)
Video Server E (Version: 1.0.6.2)
Volume Panel
WavePad Sound Editor
WebGuide4 (Version: 4.1.09)
WIDCOMM Bluetooth Software 6.0.1.4300 (Version: 6.0.1.4300)
WinDirStat 1.1.2
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Driver Package - Nokia Modem (05/22/2008 3.8) (Version: 05/22/2008 3.8)
Windows Driver Package - Nokia Modem (05/22/2008 7.00.0.1) (Version: 05/22/2008 7.00.0.1)
Windows Driver Package - Nokia Modem (08/03/2007 6.84.0.2) (Version: 08/03/2007 6.84.0.2)
Windows Driver Package - Nokia Modem (10/12/2007 3.6) (Version: 10/12/2007 3.6)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver
WinX DVD Copy Pro 3.4.1
WinZip (Version: 9.0 SR-1 (6224))
XPS MiniView Gadget (Version: 1.00.0000)
Yougle Vista (Version: 0.2.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 57%
Total physical RAM: 3069.03 MB
Available physical RAM: 1308.28 MB
Total Pagefile: 18682.05 MB
Available Pagefile: 16452.2 MB
Total Virtual: 2047.88 MB
Available Virtual: 1962.98 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:450.7 GB) (Free:121.2 GB) NTFS
2 Drive d: (DATAPART1) (Fixed) (Total:1863.01 GB) (Free:286.93 GB) NTFS
3 Drive e: (RECOVERY) (Fixed) (Total:15 GB) (Free:10.35 GB) NTFS
4 Drive f: (MUPPETS_FROM_SPACE_16X9_PAL) (CDROM) (Total:4.24 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\FRONTROOM

Administrator ASPNET Guest
home Mcx1

========================= Restore Points ==================================

24-10-2012 23:00:04 Scheduled Checkpoint
25-10-2012 23:16:36 Scheduled Checkpoint
26-10-2012 20:43:19 Windows Update
27-10-2012 08:12:56 Restore Operation
27-10-2012 08:33:15 Restore Operation
27-10-2012 23:00:07 Scheduled Checkpoint
28-10-2012 19:04:24 Scheduled Checkpoint
30-10-2012 00:00:05 Scheduled Checkpoint
30-10-2012 12:56:38 Windows Update
31-10-2012 23:25:36 pre cc
02-11-2012 10:18:26 Scheduled Checkpoint
02-11-2012 18:40:58 Windows Update
04-11-2012 00:00:10 Scheduled Checkpoint
05-11-2012 00:00:02 Scheduled Checkpoint
05-11-2012 22:54:18 Scheduled Checkpoint
06-11-2012 06:47:02 Windows Update
07-11-2012 00:00:01 Scheduled Checkpoint
08-11-2012 23:35:21 Scheduled Checkpoint
09-11-2012 17:20:59 Windows Update
11-11-2012 00:44:17 Scheduled Checkpoint

**** End of log ****
___________________

FSS log
_____________________
Farbar Service Scanner Version: 07-11-2012
Ran by home (administrator) on 11-11-2012 at 13:44:38
Running from "C:\Users\home\Desktop\logs\step2"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.

bfe Service is not running. Checking service configuration:
The start type of bfe service is OK.
The ImagePath of bfe service is OK.
The ServiceDll of bfe service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll
[2012-10-10 19:49] - [2012-06-02 00:02] - 0133120 ____A (Microsoft Corporation) F1E8C34892336D33EDDCDFE44E474F64

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-07-08 02:31] - [2008-01-19 07:34] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****
_______________________________

Adware cleaner log
_________________________# AdwCleaner v2.007 - Logfile created 11/11/2012 at 13:59:48
# Updated 06/11/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : home - FRONTROOM
# Boot Mode : Normal
# Running from : C:\Users\home\Desktop\logs\step3\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files\WebGuide
Folder Deleted : C:\Users\home\AppData\Roaming\WebGuide
Folder Deleted : C:\Users\Mcx1\AppData\Roaming\WebGuide

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\Software\TENCENT
Key Deleted : HKLM\Software\WebGuide

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.19328

[OK] Registry is clean.

-\\ Mozilla Firefox v12.0 (en-GB)

Profile name : default
File : C:\Users\home\AppData\Roaming\Mozilla\Firefox\Profiles\cpqwcs3h.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v23.0.1271.64

File : C:\Users\home\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1172 octets] - [11/11/2012 13:59:48]

########## EOF - C:\AdwCleaner[S1].txt - [1232 octets] ##########

______________________________________

JRT Log
_______________________________
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 2.9.8 (11.11.2012)
OS: Windows Vista ™ Home Premium x86
Ran by home on 11/11/2012 at 16:44:34.87
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files\Common Files\dvdvideosoft"
Successfully deleted: [Folder] "C:\Program Files\dvdvideosoft"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\home\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11/11/2012 at 16:46:01.16
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

_____________________________

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 11 November 2012 - 11:58 AM

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#8 Mr Bishop

Mr Bishop
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 11 November 2012 - 05:51 PM

New FSS Log after the services repair tool was run:
____________________________
Farbar Service Scanner Version: 07-11-2012
Ran by home (administrator) on 11-11-2012 at 22:44:07
Running from "C:\Users\home\Desktop\logs\step2"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll
[2012-10-10 19:49] - [2012-06-02 00:02] - 0133120 ____A (Microsoft Corporation) F1E8C34892336D33EDDCDFE44E474F64

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-07-08 02:31] - [2008-01-19 07:34] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****_
__________________________

RKLL log:
_________________________________
Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/11/2012 10:46:57 PM in x86 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\System32\WLTRYSVC.EXE (PID: 1724) [WD-HEUR]
* C:\Windows\System32\bcmwltry.exe (PID: 1736) [WD-HEUR]
* C:\Windows\System32\WLTRAY.EXE (PID: 2604) [WD-HEUR]
* C:\Users\home\Desktop\logs\step2\FSS.exe (PID: 728) [UP-HEUR]

4 proccesses terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

::1 localhost
127.0.0.1 activate.adobe.com

Program finished at: 11/11/2012 10:47:19 PM
Execution time: 0 hours(s), 0 minute(s), and 21 seconds(s)

________________________________________________

#9 Mr Bishop

Mr Bishop
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 11 November 2012 - 05:52 PM

Autoruns.txt

______________________
"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "AppleSyncNotifier" "AppleSyncNotifier" "Apple Inc." "c:\program files\common files\apple\mobile device support\applesyncnotifier.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe"
+ "avast5" "avast! Antivirus" "AVAST Software" "c:\program files\alwil software\avast5\avastui.exe"
+ "Bluetooth HCI Monitor" "Bluetooth HCI Monitoring application" "Logitech Inc." "c:\windows\system32\hcimntr.dll"
+ "Broadcom Wireless Manager UI" "Dell Wireless WLAN Card Wireless Network Tray Applet" "Dell Inc." "c:\windows\system32\wltray.exe"
+ "CTxfiHlp" "CTXfiHlp MFC Application" "Creative Technology Ltd" "c:\windows\system32\ctxfihlp.exe"
+ "IAAnotif" "Event Monitor User Notification Tool" "Intel Corporation" "c:\program files\intel\intel matrix storage manager\iaanotif.exe"
+ "IntelliPoint" "IPoint.exe" "Microsoft Corporation" "c:\program files\microsoft intellipoint\ipoint.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe"
+ "LogitechQuickCamRibbon" "Camera Software" "Logitech Inc." "c:\program files\logitech\logitech webcam software\lws.exe"
+ "Monitor" "Monitor Application" "LeapFrog Enterprises, Inc." "c:\program files\leapfrog\leapfrog connect\monitor.exe"
+ "NvCplDaemon" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
+ "ProfilerU" "Saitek SST Profile Launcher" "Saitek" "c:\program files\saitek\sd6\software\profileru.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe"
+ "RoxWatchTray" "RoxMMTrayApp Module" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\roxwatchtray10.exe"
+ "SaiMfd" "Saitek MFD File System Driver" "Saitek" "c:\program files\saitek\sd6\software\saimfd.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
+ "UpdReg" "Creative UpdReg" "Creative Technology Ltd." "c:\windows\updreg.exe"
+ "USBToolTip" "Pinnacle USB Tip - for Multi Media eXtensions" "Pinnacle Systems GmbH" "c:\program files\pinnacle\shared files\programs\usbtip\usbtip.exe"
+ "VolPanel" "VolPanlu.exe" "Creative Technology Ltd" "c:\program files\creative\sound blaster x-fi\volume panel\volpanlu.exe"
+ "Windows Defender" "Windows Defender User Interface" "Microsoft Corporation" "c:\program files\windows defender\msascui.exe"
"C:\Users\home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Dropbox.lnk" "Dropbox" "Dropbox, Inc." "c:\users\home\appdata\roaming\dropbox\bin\dropbox.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ApplePhotoStreams" "ApplePhotoStreams.exe" "Apple Inc." "c:\program files\common files\apple\internet services\applephotostreams.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\home\appdata\local\google\update\googleupdate.exe"
+ "iCloudServices" "iCloud" "Apple Inc." "c:\program files\common files\apple\internet services\icloudservices.exe"
"HKLM\SOFTWARE\Microsoft\Windows CE Services\AutoStartOnConnect" "" "" ""
+ "BTW Setup Wizard" "BtWizard Module" "Broadcom Corporation." "c:\windows\system32\btwizard.dll"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "ms-itss" "Microsoft® InfoTech Storage System Library" "Microsoft Corporation" "c:\program files\common files\microsoft shared\information retrieval\msitss.dll"
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\home\appdata\roaming\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\alwil software\avast5\ashshell.dll"
+ "DVDFAB32" "DVDFab Shell Extension - x86" "Fengtao Software Inc." "c:\program files\dvdfab 8\dvdfabshellex.dll"
+ "ISOWINDOWMENU" "TODO: <File description>" "TODO: <Company name>" "c:\program files\digiarty\winx_dvd_copy_pro\isowindowmenu.dll"
+ "PhotoStreamsExt" "ShellStreams.dll" "Apple Inc." "c:\program files\common files\apple\internet services\shellstreams.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, Inc." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\alwil software\avast5\ashshell.dll"
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files\common files\adobe\adobe drive cs4\adfsmenu.dll"
+ "ShellExt" "StorageCraft ShadowProtect Backup Image Dismount Shell Extension DLL" "StorageCraft Technology Corporation" "c:\program files\storagecraft\shadowprotect\sbimgmnt.dll"
+ "SimpleShlExt" "Microsoft Expression Media" "Microsoft Corporation" "c:\program files\microsoft expression\media 2\mediashx.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\home\appdata\roaming\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, Inc." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, Inc." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "FileZilla3CopyHook" "fzshellext Dynamic Link Library" "" "c:\program files\filezilla ftp client\fzshellext.dll"
+ "Monitor" "BTNCopy Module" "Broadcom Corporation." "c:\windows\system32\btncopy.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\home\appdata\roaming\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files\common files\adobe\adobe drive cs4\adfsmenu.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "Sun Microsystems, Inc." "c:\program files\openoffice.org 2.4\program\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\alwil software\avast5\ashshell.dll"
+ "ShellExt" "StorageCraft ShadowProtect Backup Image Dismount Shell Extension DLL" "StorageCraft Technology Corporation" "c:\program files\storagecraft\shadowprotect\sbimgmnt.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, Inc." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, Inc." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\alwil software\avast5\ashshell.dll"
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\home\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\home\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\home\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\home\appdata\roaming\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "CBrowserHelperObject Object" "BAE.dll" "Dell Inc." "c:\program files\dell\bae\bae.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\ssv.dll"
+ "RealPlayer Download and Record Plugin for Internet Explorer" "RealPlayer Download and Record Plugin for Internet Explorer" "RealPlayer" "c:\program files\real\realplayer\rpbrowserrecordplugin.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Send to &Bluetooth Device..." "" "" "c:\program files\widcomm\bluetooth software\btsendto_ie.htm"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.4 r402" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\Google Software Updater" "gusvc" "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-2874742574-11122067-2342062427-1000Core" "Google Installer" "Google Inc." "c:\users\home\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-2874742574-11122067-2342062427-1000UA" "Google Installer" "Google Inc." "c:\users\home\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Windows Defender Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs"
+ "\Microsoft_Hardware_Launch_IPoint_exe" "IPoint.exe" "Microsoft Corporation" "c:\program files\microsoft intellipoint\ipoint.exe"
+ "\{BD676ABA-CFAF-4B1C-AFC1-98CE2EFE0571}" "Skype " "Skype Technologies S.A." "c:\program files\skype\phone\skype.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "aawservice" "Protects your computer from spyware" "Lavasoft" "c:\program files\lavasoft\ad-aware\aawservice.exe"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "avast! Antivirus" "Manages and implements avast! antivirus services for this computer. This includes the resident protection, the virus chest and the scheduler." "AVAST Software" "c:\program files\alwil software\avast5\avastsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "Cerberus FTP Server" "Cerberus FTP Server application" "Cerberus, LLC" "c:\program files\cerberus llc\cerberus ftp server\cerberusgui.exe"
+ "Creative ALchemy AL6 Licensing Service" "Provides licensing services for Creative ALchemy." "Creative Labs" "c:\program files\common files\creative labs shared\service\al6licensing.exe"
+ "Creative Audio Engine Licensing Service" "Provides licensing services for Creative Audio Engine." "Creative Labs" "c:\program files\common files\creative labs shared\service\ctaelicensing.exe"
+ "CTAudSvcService" "Creative Audio Service" "Creative Technology Ltd" "c:\program files\creative\shared files\ctaudsvc.exe"
+ "FingerPrint" "Enables printer sharing with mobile devices without any unnecessary manual setup or administration." "Collobos Software" "c:\program files\fingerprint\fingerprintservice.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "GoogleDesktopManager" "Google Desktop" "Google" "c:\program files\google\google desktop search\googledesktop.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "HR" "Rootkit detection utility" "Sysinternals - www.sysinternals.com" "c:\users\home\appdata\local\temp\hr.exe"
+ "HUHROHK" "Rootkit detection utility" "Sysinternals - www.sysinternals.com" "c:\users\home\appdata\local\temp\huhrohk.exe"
+ "IAANTMON" "RAID Monitor" "Intel Corporation" "c:\program files\intel\intel matrix storage manager\iaantmon.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LeapFrog Connect Device Service" "Manages LeapFrog Connect devices." "LeapFrog Enterprises, Inc." "c:\program files\leapfrog\leapfrog connect\commandservice.exe"
+ "LVPrcSrv" "Injector service" "Logitech Inc." "c:\program files\common files\logishrd\lvmvfm\lvprcsrv.exe"
+ "MozillaMaintenance" "" "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "MSSQL$MYMOVIES" "Provides storage, processing and controlled access of data and rapid transaction processing." "Microsoft Corporation" "c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "RoxLiveShare10" "Allows remote users to view through WEB browsers your authorized multimedia content managed by Roxio Media Manager9." "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\roxliveshare10.exe"
+ "RoxMediaDB10" "Roxio RoxMediaDB10 Service" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\roxmediadb10.exe"
+ "RoxWatch10" "RoxSniffer10 Module" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\roxwatch10.exe"
+ "RZHLGX" "Rootkit detection utility" "Sysinternals - www.sysinternals.com" "c:\users\home\appdata\local\temp\rzhlgx.exe"
+ "ScsiAccess" "" "" "c:\program files\photodex\proshowproducer\scsiaccess.exe"
+ "ServiceLayer" "ServiceLayer Module" "Nokia" "c:\program files\pc connectivity solution\servicelayer.exe"
+ "ShadowProtectSvc" "ShadowProtect Service schedules backup tasks remotely. For more details visit www.storagecraft.com" "StorageCraft Technology Corporation" "c:\program files\storagecraft\shadowprotect\shadowprotectsvc.exe"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe"
+ "SQLBrowser" "Provides SQL Server connection information to client computers." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlbrowser.exe"
+ "SQLWriter" "Provides the interface to backup/restore Microsoft SQL server through the Windows VSS infrastructure." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlwriter.exe"
+ "stllssvr" "SureThing Labelflash Disc Printer Service Module" "MicroVision Development, Inc." "c:\program files\common files\surething shared\stllssvr.exe"
+ "UltiDev Cassini Web Server for ASP.NET 2.0" "UltiDev Cassini Web Server for ASP.NET 2.0" "UltiDev LLC" "c:\program files\ultidev\cassini web server for asp.net 2.0\ultidevcassinwebserver2a.exe"
+ "VSNAPVSS" "StorageCraft Volume Snapshot VSS Provider" "StorageCraft Technology Corporation" "c:\windows\system32\vsnapvss.exe"
+ "WebGuideTranscode" "WebGuideTranscoding/Streaming Service" "" "File not found: C:\Program Files\WebGuide\WebGuide4\bin\WebGuideTranscodeService.exe"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wltrysvc" "Provides automatic configuration for the 802.11 adapter using the Broadcom supplicant." "" "c:\windows\system32\wltrysvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adfs" "Adobe Drive File System Driver" "Adobe Systems, Inc." "c:\windows\system32\drivers\adfs.sys"
+ "archlp" "" "" "File not found: system32\drivers\archlp.sys"
+ "aswFsBlk" "avast! mini-filter driver (aswFsBlk)" "AVAST Software" "c:\windows\system32\drivers\aswfsblk.sys"
+ "aswRdr" "avast! TDI Redirect driver" "AVAST Software" "c:\windows\system32\drivers\aswrdr.sys"
+ "aswSnx" "avast! virtualization driver (aswSnx)" "AVAST Software" "c:\windows\system32\drivers\aswsnx.sys"
+ "aswTdi" "avast! Network Shield TDI driver" "AVAST Software" "c:\windows\system32\drivers\aswtdi.sys"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmwl6.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "btwaudio" "Bluetooth Audio Device" "Broadcom Corporation." "c:\windows\system32\drivers\btwaudio.sys"
+ "btwavdt" "Broadcom Bluetooth AVDT Service" "Broadcom Corporation." "c:\windows\system32\drivers\btwavdt.sys"
+ "btwrchid" "Bluetooth Remote Control HID Minidriver" "Broadcom Corporation." "c:\windows\system32\drivers\btwrchid.sys"
+ "CT20XUT" "Creative 20X Utility Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\ct20xut.sys"
+ "CT20XUT.DLL" "" "" "File not found: system32\CT20XUT.DLL"
+ "CT20XUT.SYS" "Creative 20X Utility Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\ct20xut.sys"
+ "ctac32k" "Creative AC3 SW Decoder Device Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctac32k.sys"
+ "ctaud2k" "Creative WDM Audio Device Driver" "Creative Technology Ltd" "c:\windows\system32\drivers\ctaud2k.sys"
+ "CTEXFIFX" "Creative XFi Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\ctexfifx.sys"
+ "CTEXFIFX.DLL" "" "" "File not found: system32\CTEXFIFX.DLL"
+ "CTEXFIFX.SYS" "Creative XFi Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\ctexfifx.sys"
+ "CTHWIUT" "Creative Utility Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\cthwiut.sys"
+ "CTHWIUT.DLL" "" "" "File not found: system32\CTHWIUT.DLL"
+ "CTHWIUT.SYS" "Creative Utility Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\cthwiut.sys"
+ "ctprxy2k" "Creative Proxy Device Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctprxy2k.sys"
+ "ctsfm2k" "SoundFont® Manager (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctsfm2k.sys"
+ "DigiartyVirtualCDBus" "Digiarty Virtual CD driver" "Digiarty Software, Inc." "c:\windows\system32\drivers\digiartyvirtualcdbus.sys"
+ "e1express" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1e6032.sys"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys"
+ "emupia" "E-mu Plug-in Architecture Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\emupia2k.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "ha20x22k" "" "" "File not found: system32\drivers\ha20x22k.sys"
+ "ha20x2k" "Creative 20X HAL (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ha20x2k.sys"
+ "HCW85BDA" "CX23885 BDA driver" "Hauppauge Computer Works" "c:\windows\system32\drivers\hcw85bda.sys"
+ "iaStor" "Intel Matrix Storage Manager driver - ia32" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys"
+ "LazerUsb" "Lumanate Lazer USB Driver (32-bit)" "Lumanate Inc." "c:\windows\system32\drivers\lazerusb.sys"
+ "Leapfrog-USBLAN" "Windows USBLAN Host Driver" "Belcarra Technologies" "c:\windows\system32\drivers\btblan.sys"
+ "LMouFilt" "Logitech Mouse Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lmoufilt.sys"
+ "lvpopflt" "Logitech AudioProcessing Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvpopflt.sys"
+ "LVPr2Mon" "Logitech ProcMon Driver" "Logitech Inc." "c:\windows\system32\drivers\lvpr2mon.sys"
+ "LVRS" "Logitech Kernel Audio Improvement Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvrs.sys"
+ "LVUSBSta" "USB Statistic Driver" "Logitech Inc." "c:\windows\system32\drivers\lvusbsta.sys"
+ "LVUVC" "Logitech USB Video Class Driver" "Logitech Inc." "c:\windows\system32\drivers\lvuvc.sys"
+ "MarvinBus" "Pinnacle Marvin Discrete Bus Enumerator" "Pinnacle Systems GmbH" "c:\windows\system32\drivers\marvinbus.sys"
+ "nmwcd" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmb.sys"
+ "nmwcdc" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbo.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 186.27 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys"
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys"
+ "ossrv" "Creative OS Services Driver (WDM)" "Creative Technology Ltd." "c:\windows\system32\drivers\ctoss2k.sys"
+ "pccsmcfd" "PCCS Mode Change Filter Driver" "Nokia" "c:\windows\system32\drivers\pccsmcfd.sys"
+ "pcouffin" "low level access layer for CD/DVD/BD devices" "VSO Software" "c:\windows\system32\drivers\pcouffin.sys"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys"
+ "Pxrmcet" "MCETunes mini-filter driver" "Proxure, Inc." "c:\windows\system32\drivers\pxrmcet.sys"
+ "R300" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "SaiH0BAC" "Saitek Hid Driver" "Saitek" "c:\windows\system32\drivers\saih0bac.sys"
+ "SaiMini" "Saitek Magic Mini Driver" "Saitek" "c:\windows\system32\drivers\saimini.sys"
+ "SaiNtBus" "Saitek Magic Bus" "Saitek" "c:\windows\system32\drivers\saibus.sys"
+ "sbmount" "ShadowProtect Image Mount Driver" "StorageCraft Technology Corporation" "c:\windows\system32\drivers\sbmount.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "stcvsm" "StorageCraft Volume Snapshot Driver" "StorageCraft Technology Corporation" "c:\windows\system32\drivers\stcvsm.sys"
+ "upperdev" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerflt.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
+ "UsbserFilt" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltj.sys"
+ "WDC_SAM" "Manages WD external storage products." "Western Digital Technologies" "c:\windows\system32\drivers\wdcsam.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "vidc.i420" "Video Codec" "Logitech Inc." "c:\windows\system32\lvcodec2.dll"
+ "vidc.mjpg" "" "" "File not found: pvmjpg30.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "MainConcept MP4 Multiplexer" "MainConcept MP4 Multiplexer" "MainConcept AG." "c:\program files\dell\xcelerator\ax\mcmp4mux.ax"
+ "MainConcept MP4 Multiplexer" "MainConcept MP4 Multiplexer" "MainConcept AG." "c:\program files\dell\xcelerator\ax\mcmp4mux.ax"
+ "Sonic AMR Decoder" "AMR Decoder" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7amrd.ax"
+ "Sonic AMR Decoder" "AMR Decoder" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7amrd.ax"
+ "Sonic MP4 Demultiplexer" "MPEG-4 Demultiplexer Direct Show Filter" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7mp4demux.ax"
+ "Sonic MP4 Demultiplexer" "MPEG-4 Demultiplexer Direct Show Filter" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7mp4demux.ax"
+ "Sonic MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7mpgdmx.ax"
+ "Sonic MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7mpgdmx.ax"
+ "{AA611381-793F-440F-9698-DB0DF70887C9}" "AVC/H.264 Video Encoder DirectShow Filter" "Sonic Solutions Inc." "c:\program files\roxio\video convert 10\filters\sonic7h264ve.ax"
+ "{AA611381-793F-440F-9698-DB0DF70887C9}" "AVC/H.264 Video Encoder DirectShow Filter" "Sonic Solutions Inc." "c:\program files\roxio\video convert 10\filters\sonic7h264ve.ax"
"HKCU\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Pinnacle Systems MovieBox Deluxe Renderer" "PCLEMarvinAVRenderer - for MarvinBox USB" "Pinnacle Systems GmbH" "c:\program files\pinnacle\shared files\filter\marvinavrenderer.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "AMR Writer" "Roxio AMR Writer Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsamrwriter.dll"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files\google\google earth\client\wavdest.ax"
+ "Audio Grabber" "" "" "c:\program files\photodex\proshowproducer\audiograbber.ax"
+ "AudSkip Filter" "Creative Audio Sample Skip Filter" "Creative Technology Ltd." "c:\program files\creative\sound blaster x-fi\smart recorder\audskip.ax"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "BPM Metadata" "Creative BPM Metadata Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\metabpm.ax"
+ "BPM Metadata" "Creative BPM Metadata Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\metabpmu.ax"
+ "Canon DES Resizer SaveMode" "CanonDESResizer" "Canon Inc." "c:\program files\canon\mdl30\canondesresizer.ax"
+ "Canon H.264 Decode Filter" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder150\canonh264filter.ax"
+ "Canon H.264 Encoder 1.3.1" "Canon H264 Encoder Filter" "CANON INC." "c:\program files\canon\canon mov encoder\canonh264encoder.ax"
+ "Canon Image Rotation Filter" "Canon Image Rotation Filter " "Canon Inc." "c:\program files\canon\mdp\canonrotatefilter.dll"
+ "Canon MDP Motion-JPEG Decoder" "Canon MDP Motion-JPEG Decoder Filter" "Canon Inc." "c:\program files\canon\mdp\canonmdpmjpegdecoder.ax"
+ "Canon Motion-JPEG Decoder" "Canon Motion-JPEG Decoder Filter" "Canon Inc." "c:\program files\canon\mdl30\canonmjpegdecoder.ax"
+ "Canon Motion-JPEG Encoder" "Motion-JPEG Encoder Filter" "Canon Inc." "c:\program files\canon\mdl30\canonmjpegencoder.ax"
+ "Canon Mov File Parser Filter" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder150\canonh264filter.ax"
+ "Canon Mov File Parser Filter2" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder150\canonh264filter.ax"
+ "Canon Resizer" "CanonResizer" "Canon Inc." "c:\program files\canon\mdl30\canonresizer.ax"
+ "Canon Text Source Filter" "Canon Text Source Filter" "Canon Inc." "c:\program files\canon\mdl30\canontextsourcefilter.ax"
+ "Canon WAV Dest" "CanonWavDest" "Canon Inc." "c:\program files\canon\mdl30\canonwavdest.ax"
+ "Canon-Actual-Data-Length-Setter" "CanonActualDataLengthSetter" "Canon Inc." "c:\program files\canon\mdl30\canonactualdatalengthsetter.ax"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Creative AC3 Source Filter" "Creative AC3 Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\ac3srcu.ax"
+ "Creative AC3 Source Filter" "Creative AC3 Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\ac3src.ax"
+ "Creative Audio Gain Filter" "Audio Gain Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\audgain.ax"
+ "Creative CDDA Source Filter" "CDDA Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\cdda.ax"
+ "Creative File Reader Filter" "Creative File Reader Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\filreadu.ax"
+ "Creative Flac Source Filter" "Creative FLAC Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\flacsrcu.ax"
+ "Creative Internet Source Filter" "Creative Internet Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\inetsrcu.ax"
+ "Creative LiveRecording Filter" "Live Recording Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\liverec.ax"
+ "Creative LiveRecording Filter_SxS" "Live Recording Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\liverecu.ax"
+ "Creative MLP Source Filter" "Creative MLP Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\mlpsrc.ax"
+ "Creative MLP Source Filter" "Creative MLP Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\mlpsrcu.ax"
+ "Creative NVF Filter" "Creative Nomad Voice File Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\nvfsrc.ax"
+ "Creative NVF Filter" "Creative Nomad Voice File Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\nvfsrcu.ax"
+ "Creative Ogg Source Filter" "Creative Ogg Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\oggsrcu.ax"
+ "Creative PCM Raw Writer" "Creative Raw Writer" "Creative Technology Ltd" "c:\program files\creative\shared files\rawwritu.ax"
+ "Creative PCM Raw Writer" "Creative Raw Writer" "Creative Technology Ltd" "c:\program files\creative\shared files\rawwrit.ax"
+ "Creative Recording Wav_Asio Filter" "Audio Recording Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\audiorec.ax"
+ "Creative Wave Writer" "Wave Writer" "Creative Technology Ltd" "c:\program files\creative\shared files\wavwrite.ax"
+ "Creative WMA Source Filter" "Creative WMA Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\wmasrc.ax"
+ "Creative WMA Writer" "WMA Writer" "Creative Technology Ltd" "c:\program files\creative\shared files\wmawrite.ax"
+ "CT CMSS3 filter" "Sample" "Creative Technology Ltd" "c:\program files\creative\shared files\cmss3.ax"
+ "CT HPVirtualizer filter" "Creative Headphone Virtualizer Filter" "Creative Technology, Ltd." "c:\program files\creative\shared files\virtual.ax"
+ "CT Karaoke filter" "Creative Karaoke Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\karaoke.ax"
+ "CT PDP filter" "Creative Crystalizer Filter" "Creative Technology, Ltd." "c:\program files\creative\shared files\pdp.ax"
+ "CT SmartVolumeManagement filter" "Creative Compressor Plugin" "Creative Technology Ltd." "c:\program files\creative\shared files\dscompr.ax"
+ "CT Time-Scaling filter" "Sample" "Creative Technology Ltd." "c:\program files\creative\shared files\timescal.ax"
+ "CT Upsampler filter" "Sample" "Creative Technology Ltd" "c:\program files\creative\shared files\upsample.ax"
+ "DivX MKV Demux" "DivX MKV Splitter" "" "c:\program files\pinnacle\studio 15\import\programs\divx.divx9\divx_source_dmf_ds.ax"
+ "DivX MKV Demux (unrestricted)" "DivX MKV Splitter" "" "c:\program files\pinnacle\studio 15\import\programs\divx.divx9\divx_source_dmf_ds.ax"
+ "DivX Video Decoder 0004" "DivX® Decoder Filter" "DivX, Inc." "c:\program files\pinnacle\shared files\filter\divxdec.ax"
+ "FLV Source" "FLV Splitter" "Gabest" "c:\windows\system32\flvsplitter.ax"
+ "FLV Splitter" "FLV Splitter" "Gabest" "c:\windows\system32\flvsplitter.ax"
+ "FLV Video Decoder" "FLV Splitter" "Gabest" "c:\windows\system32\flvsplitter.ax"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files\pinnacle\studio 15\import\programs\matroskasplitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files\pinnacle\studio 15\import\programs\matroskasplitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files\pinnacle\studio 15\import\programs\matroskasplitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files\pinnacle\studio 15\import\programs\matroskasplitter.ax"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files\pinnacle\studio 15\import\programs\matroskasplitter.ax"
+ "Lumanate ASF" "Lumanate ASF" "Lumanate, Inc." "c:\program files\lumanate\lazerusb\lumaasf.ax"
+ "Lumanate X Filter" "LumanateX" "Lumanate, Inc." "c:\program files\lumanate\lazerusb\lumanatex.ax"
+ "LVMWriter" "LVMWriter" "Sonic Solutions" "c:\program files\roxio\videocore 10\lvmwriter.ax"
+ "M4PSource Source Filter" "" "Proxure, Inc." "c:\program files\proxure\mce tunes pro\m4psource.ax"
+ "MainConcept (MCE) MPEG Encoder" "MPEG Encoder and Muxer" "MainConcept AG" "c:\windows\system32\hauppauge\softmce\mceesmpeg.ax"
+ "MainConcept (Sonic) DV Video Decoder" "DirectShow DV Video Encoder and Decoder" "MainConcept AG (Sonic)" "c:\program files\roxio\videocore 10\sonicmcdsdv.ax"
+ "MainConcept (Sonic) DV Video Encoder" "DirectShow DV Video Encoder and Decoder" "MainConcept AG (Sonic)" "c:\program files\roxio\videocore 10\sonicmcdsdv.ax"
+ "MainConcept AAC Encoder" "MainConcept AAC Encoder" "MainConcept AG" "c:\program files\dell\xcelerator\ax\mcaacenc.ax"
+ "MainConcept MP4 Multiplexer" "MainConcept MP4 Multiplexer" "MainConcept AG." "c:\program files\dell\xcelerator\ax\mcmp4mux.ax"
+ "Media Analyser" "analyse Filter (Sample)" "Sonic Solutions" "c:\program files\roxio\videocore 10\mediaanalyser.ax"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Noise Reduction" "Creative Noise Reduction Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\noisredu.ax"
+ "PCM to EXT" "Creative Pcm2Ext" "Creative Technology Ltd." "c:\program files\creative\sound blaster x-fi\wavestudio 7\pcm2ext.ax"
+ "Peak Follower Filter" "Creative Pass Peak Filter" "Creative Technology Ltd." "c:\program files\creative\sound blaster x-fi\smart recorder\passpeak.ax"
+ "Photodex NULL renderer" "" "" "c:\program files\photodex\proshowproducer\nullfilter.ax"
+ "PICVideo M-JPEG 3 Compressor" "PICVideo M-JPEG 3 codec" "Pegasus Imaging Corporation" "c:\program files\common files\pegasus imaging\pvmjpg30.dll"
+ "PICVideo M-JPEG 3 Decompressor" "PICVideo M-JPEG 3 codec" "Pegasus Imaging Corporation" "c:\program files\common files\pegasus imaging\pvmjpg30.dll"
+ "Pinnacle MCE Multiplexer" "Pinnacle MPEG Codec - DirectX Filter" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempegbox.ax"
+ "Pinnacle MP3 Encoder" "Pinnacle MP3 compressor" "Pinnacle Systems" "c:\program files\pinnacle\studio 15\programs\pclemp3encoder.ax"
+ "Pinnacle MPEG 2 Decoder" "Pinnacle MPEG Codec - DirectX Filter" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempegbox.ax"
+ "Pinnacle MPEG 2 Encoder" "Pinnacle MPEG Codec - DirectX Filter" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempegbox.ax"
+ "Pinnacle MPEG 2 Splicer" "Pinnacle MPEG Codec - DirectX Filter" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempegbox.ax"
+ "Pinnacle MPEG 2/AVC Multiplexer" "Pinnacle MPEG Codec - DirectX Filter" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempegbox.ax"
+ "Pinnacle MPEG Adjust" "Pinnacle MPEG Codec - DirectX Filter" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempegbox.ax"
+ "Pinnacle MPEG Demuxer" "MPEG Demuxer Filter - Program stream demuxer" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempgdemux.ax"
+ "Pinnacle MPEG Layer-1/2 Audio Decoder" "Pinnacle MPEG Codec - DirectX Filter" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempegbox.ax"
+ "Pinnacle MPEG Layer-2 Audio Encoder" "Pinnacle MPEG Codec - DirectX Filter" "Avid Development GmbH" "c:\program files\pinnacle\shared files\filter\pclempegbox.ax"
+ "Pinnacle(dicas) AMR Audio Decoder" "dsamrauddec" "dicas digital image coding GmbH" "c:\program files\pinnacle\shared files\filter\pcleamrauddec.ax"
+ "Pinnacle(dicas) AMR Audio Encoder" "dsamraudenc" "dicas digital image coding GmbH" "c:\program files\pinnacle\studio 15\programs\pcleamraudenc.ax"
+ "Pinnacle(dicas) H263 Video Encoder" "dsh263videnc" "dicas digital image coding GmbH" "c:\program files\pinnacle\studio 15\programs\pcleh263videnc.ax"
+ "Pinnacle(dicas) MPEG-4 Audio Decoder" "dsmpeg4auddec" "dicas digital image coding GmbH" "c:\program files\pinnacle\shared files\filter\pclempeg4auddec.ax"
+ "Pinnacle(dicas) MPEG-4 File Reader" "dsmp4filereader" "dicas digital image coding GmbH" "c:\program files\pinnacle\shared files\filter\pclemp4filereader.ax"
+ "Pinnacle(dicas) MPEG-4 Video Decoder" "dsmpeg4viddec" "dicas digital image coding GmbH" "c:\program files\pinnacle\shared files\filter\pclempeg4viddec.ax"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "PSI Parser" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "psWav Dest" "Canon Utilities Support Library" "Canon Inc." "c:\program files\canon\zoombrowser ex mcu\pswavdes.ax"
+ "RealMediaRenderer2" "Real Media Renderer 2" "Pinnacle Systems, Inc." "c:\program files\pinnacle\shared files\realvideo\pclermrenderer2.ax"
+ "RealPlayer Audio Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Transcode Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Video Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ROXIO AC3 (5.1) Encoder" "AC3Encoder Filter" "Sonic Solutions, Inc." "c:\program files\common files\sonic shared\plugincodecs\roxioac3enc.dll"
+ "Roxio AMR Splitter" "Roxio AMR Splitter Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsamrsplitter.ax"
+ "ROXIO Audio Source 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxaudio.ax"
+ "Roxio Audio Source Filter" "Roxio Audio Source Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsaudiosource.ax"
+ "Roxio Audio Stream Reader Filter" "Roxio Audio Stream Reader Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamreader.ax"
+ "Roxio Audio Stream Writer Filter" "Roxio Audio Stream Writer Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamwriter.ax"
+ "ROXIO Audio VCFChunker 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxaudio.ax"
+ "ROXIO Audio VCFLooper 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxaudio.ax"
+ "ROXIO AudioConvert 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxaudio.ax"
+ "ROXIO AudioGrabber 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO ColorSpace Converter 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO CPU Regulator" "CPURegulator.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\cpuregulator.ax"
+ "ROXIO CrossGraphEx Renderer 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO CrossGraphEx Source 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "roxio DCFilters Audio Sync Filter 2 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters Dragons Lair 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters DVD Muxer 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters DVDStream Reader 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters DVDStream Splitter 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters Mpeg I/II Decoder 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters Smart Resizer 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters Subpicture Mixer 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "ROXIO Deinterlace 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO DV Scene Detector Tee 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO DVDCrossGraphEx Renderer 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO DVDCrossGraphEx Source 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Field Combiner 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Field Splitter 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Image/Colour Source 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO ListImage Source 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO LPCMSyncFilter" "LPCMSync Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\lpcmsyncfilter.dll"
+ "Roxio LVM File Source (Async.)" "LVMAsync" "Sonic Solutions" "c:\program files\roxio\videocore 10\lvmasync.ax"
+ "Roxio Mp3 Encoder (SC)" "Roxio Audio Codec DLL" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsmp3encoder.ax"
+ "Roxio MPEG Analyzer Filter" "MPEG File Analyzer Dynamic Link Library" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\roxiompegprop.dll"
+ "Roxio MPEG Stream Analyzer" "Roxio MPEG Stream Splitter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpegstreamanalyzer.dll"
+ "Roxio MPEG1 Audio Encoder" "ROXIO MPEG Audio Encoder" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\roxioaudioenc.dll"
+ "Roxio MPEG1 Encoder" "ROXIO MPEG1 Codec" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg1vidcodec.dll"
+ "Roxio MPEG1 Muxer" "ROXIO MPEG MUXER" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg1muxer.dll"
+ "Roxio MPEG2 Demuxer" "ROXIO MPEG Demuxer" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\roxiompegdemuxer.dll"
+ "Roxio MPEG2 Encoder" "ROXIO MPEG2 Codec" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg2vidcodec.dll"
+ "Roxio MPEG2 Muxer" "ROXIO MPEG MUXER" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg2muxer.dll"
+ "Roxio MPEG2 Video Decoder" "ROXIO MPEG2 Codec" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg2vidcodec.dll"
+ "ROXIO Pan Zoom 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Pin Tee" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "Roxio Plasma CrossGraph Renderer" "MGICGFilter.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\plasmacgfilter.ax"
+ "Roxio Plasma CrossGraph Source" "MGICGFilter.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\plasmacgfilter.ax"
+ "ROXIO QT Source" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO QuickGrabber 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Raw Writer" "ROXIO Raw Writer" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mgirawwriter.dll"
+ "Roxio Repack Filter" "Repack Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\repackfilter.dll"
+ "ROXIO Scene Detector 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO SceneRecorder 1.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "Roxio Smart Decoder" "ROXIO MPEG2 Codec" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg2vidcodec.dll"
+ "Roxio Smart Encoder" "ROXIO MPEG2 Codec" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg2vidcodec.dll"
+ "ROXIO SpyPos 3.0" "Null-In-Place (Sample)" "Sonic Solutions" "c:\program files\roxio\videocore 10\mginullip.ax"
+ "ROXIO ThumbnailGrabber 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "Roxio Transport Stream Source" "ListFrameSource" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\tsmpegsource.dll"
+ "ROXIO VCFAlphaSplitter 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VCFAudioMixer 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxaudio.ax"
+ "ROXIO VCFDvrSupport 3.0" "DVR support filter" "Sonic Solutions" "c:\program files\roxio\videocore 10\dvrsupportfilt.ax"
+ "ROXIO VCFDVSceneDetect 1.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VCFLatency 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxaudio.ax"
+ "ROXIO VCFpeakmeter 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxaudio.ax"
+ "ROXIO VCFStationLogo 1.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VCFVideoCutList 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VCFWaveform 1.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxaudio.ax"
+ "ROXIO Video Effect 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Video Resampler 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Video VCFLooper 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VideoCombine 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "Roxio VOB Formatter" "VOBFormatter" "Sonic Solutions" "c:\program files\roxio\videocore 10\vobformatter.ax"
+ "Roxio Vob Loader" "VOBLoader" "Sonic Solutions" "c:\program files\roxio\videocore 10\vobloader.ax"
+ "Sewer" "MVWcDSutil" "Sonic Solutions" "c:\program files\roxio\videocore 10\mvwcdsutil.dll"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Sonic AAC Decoder" "AAC audio decoder filter" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7daac.ax"
+ "Sonic AMR Decoder" "AMR Decoder" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7amrd.ax"
+ "Sonic AVC/H.264 Video Decoder" "AVC/H.264 Video Decoder" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7avcvd.ax"
+ "Sonic Cinemaster® Audio Decoder 4.3" "SonicHDAudio" "Sonic Solutions" "c:\program files\common files\sonic shared\cinemasteraudio.dll"
+ "Sonic Cinemaster® VideoDecoder 4.3" "CinemasterVideo" "Sonic Solutions" "c:\program files\common files\sonic shared\cinemastervideo.dll"
+ "Sonic HD Demuxer" "Sonic HD Demuxer" "" "c:\program files\roxio\sonichddemuxer.dll"
+ "Sonic HD Nav" "SonicHDNav" "" "c:\program files\common files\sonic shared\sonichdnav.dll"
+ "Sonic MP4 Demultiplexer" "MPEG-4 Demultiplexer Direct Show Filter" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7mp4demux.ax"
+ "Sonic MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7mpgdmx.ax"
+ "Sonic MPEG-2 Video Decoder" "MPEG-2 Video Decoder" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7m2vd.ax"
+ "Sonic MPEG-4 Video Decoder" "MPEG-4 Video Decoder Direct Show Filter" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7m4vd.ax"
+ "Sonic Stream Parser" "MPEG-1/2 Demultiplexer" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc02\sonic7mpgdmx.ax"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Stream Control Filter" "Creative Stream Control Filter" "Creative Technology Ltd." "c:\program files\creative\sound blaster x-fi\smart recorder\streamcon.ax"
+ "SubPicture Encoder" "ROXIO SubPicture Encoder" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\subpictenc.dll"
+ "SVM Metadata" "Creative SVM Metadata Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\metasvm.ax"
+ "SVM Metadata" "Creative SVM Metadata Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\metasvmu.ax"
+ "VCG Null Renderer 3.0" "VideoCompositing Module" "Sonic Solutions" "c:\program files\roxio\videocore 10\videocompositing.ax"
+ "VCG Video Mixer 3.0" "VideoCompositing Module" "Sonic Solutions" "c:\program files\roxio\videocore 10\videocompositing.ax"
+ "VCGImageSource" "VideoCompositing Module" "Sonic Solutions" "c:\program files\roxio\videocore 10\videocompositing.ax"
+ "Video Grabber" "" "" "c:\program files\photodex\proshowproducer\grabfilt.ax"
+ "Video Grabber" "" "" "c:\program files\photodex\proshowproducer\videograbber.ax"
+ "VMR9 Wrapper 3.0" "VideoCompositing Module" "Sonic Solutions" "c:\program files\roxio\videocore 10\videocompositing.ax"
+ "VW Input Selector" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "VW Video Transition" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "VW Video Transition" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files\roxio\videocore 10\roxvideo.ax"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "{AA611381-793F-440F-9698-DB0DF70887C9}" "AVC/H.264 Video Encoder DirectShow Filter" "Sonic Solutions Inc." "c:\program files\roxio\video convert 10\filters\sonic7h264ve.ax"
"HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute" "" "" ""
+ "lsdelete" "" "" "c:\windows\system32\lsdelete.exe"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" ""
+ "C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL" "Google Desktop" "Google" "c:\program files\google\google desktop search\googledesktopnetwork3.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Bullzip PDF Print Monitor" "Bullzip PDF Writer" "Bullzip" "c:\windows\system32\bzpdf.dll"
+ "Canon BJ Language Monitor iP4500 series" "IJ Language Monitor" "CANON INC." "c:\windows\system32\cnmlm92.dll"
+ "PCL hpz3llhn" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3llhn.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "AdobeDriveCS4_NP" "Adobe Drive CS4 Network" "Adobe Systems Incorporated" "c:\program files\common files\adobe\adobe drive cs4\adobedrivecs4_np.dll"
+ "BCMLogon" "Dell Wireless WLAN Card Logon Provider" "Dell Inc." "c:\windows\system32\bcmlogon.dll"
"C:\Users\home\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Avast! antivirus monitor" "Avast! antivirus sidebar gadget." "AVAST Software" "C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget\Gadget.xml"
____________________________

thanks for you help so far!

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 11 November 2012 - 06:03 PM

Current issues?

#11 Mr Bishop

Mr Bishop
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 11 November 2012 - 06:10 PM

as far as I can tell it's just avast that wont start. I try to start the avast service and it gives error 1075. failed to start the dependency service does not exist or has been marked for deletion.

should I try to reinstall avast?

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 11 November 2012 - 06:18 PM

Yes and let me know if that helped.

#13 Mr Bishop

Mr Bishop
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 11 November 2012 - 07:09 PM

Hiya, uninstall/reinstall of avast went ok. now running!
can't see anything else wrong but will have a good look around.
do you know what I was infected with (if at all) and what is the best way/software to protect me in the future?
thanks so much for your help!

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 11 November 2012 - 08:12 PM

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#15 Mr Bishop

Mr Bishop
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:36 PM

Posted 12 November 2012 - 03:07 AM

Thanks again. You are very kind.
kindest regards
c




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users