Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

How can I get rid of Doubleclick for good?


  • Please log in to reply
11 replies to this topic

#1 rimmer80

rimmer80

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Plymouth Devon UK.
  • Local time:04:39 AM

Posted 08 November 2012 - 07:13 PM

I am useing Win7 on a laptop and am having problems with ad-emea.doubleclick.net While useing Ebay, every time I try to use the 'back' button all I get is along list of doubleclick instead of the targets that I want to go back to. I have in the past got rid of it by deleting cookies etc but it still comes back after a little while.

Read somewhere on one of the forums that you can alter the 'host' setting (I think) in the registry to 'fool' the cookie or something like that. Did not really understand what was meant and obviously a bit cautious when it comes to reg changes.

Strangely enough I never get this doubleclick pest when useing Ebay on my PC running XP.

Any help of advice would be much appreciated.

Edited by bloopie, 08 November 2012 - 07:25 PM.
Mod Edit: Moved from Windows 7 to AII. ~ bloopie


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:39 PM

Posted 08 November 2012 - 07:21 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 rimmer80

rimmer80
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Plymouth Devon UK.
  • Local time:04:39 AM

Posted 11 November 2012 - 05:04 AM

Here is the TDSkiller Log you requested rather long so may have to split it onto serveral replies.

10:08:48.0575 4672 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:08:49.0698 4672 ============================================================
10:08:49.0698 4672 Current date / time: 2012/11/10 10:08:49.0698
10:08:49.0698 4672 SystemInfo:
10:08:49.0698 4672
10:08:49.0698 4672 OS Version: 6.1.7600 ServicePack: 0.0
10:08:49.0698 4672 Product type: Workstation
10:08:49.0698 4672 ComputerName: PAULSLAPTOP-PC
10:08:49.0698 4672 UserName: Pauls Laptop
10:08:49.0698 4672 Windows directory: C:\Windows
10:08:49.0698 4672 System windows directory: C:\Windows
10:08:49.0698 4672 Processor architecture: Intel x86
10:08:49.0698 4672 Number of processors: 2
10:08:49.0698 4672 Page size: 0x1000
10:08:49.0698 4672 Boot type: Normal boot
10:08:49.0698 4672 ============================================================
10:08:51.0898 4672 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:08:51.0914 4672 ============================================================
10:08:51.0914 4672 \Device\Harddisk0\DR0:
10:08:51.0914 4672 MBR partitions:
10:08:51.0914 4672 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
10:08:51.0914 4672 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x215FA800
10:08:51.0914 4672 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2162D000, BlocksNum 0x3C00000
10:08:51.0914 4672 ============================================================
10:08:51.0960 4672 C: <-> \Device\Harddisk0\DR0\Partition2
10:08:52.0023 4672 D: <-> \Device\Harddisk0\DR0\Partition3
10:08:52.0023 4672 ============================================================
10:08:52.0023 4672 Initialize success
10:08:52.0023 4672 ============================================================
10:09:52.0613 4492 ============================================================
10:09:52.0613 4492 Scan started
10:09:52.0613 4492 Mode: Manual; TDLFS;
10:09:52.0613 4492 ============================================================
10:09:53.0066 4492 ================ Scan system memory ========================
10:09:53.0066 4492 System memory - ok
10:09:53.0066 4492 ================ Scan services =============================
10:09:53.0191 4492 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
10:09:53.0191 4492 !SASCORE - ok
10:09:53.0503 4492 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
10:09:53.0503 4492 1394ohci - ok
10:09:53.0612 4492 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
10:09:53.0612 4492 ACDaemon - ok
10:09:53.0643 4492 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
10:09:53.0659 4492 ACPI - ok
10:09:53.0705 4492 [ 79D6B28027C398B728CE7CD0570248B0 ] acpials C:\Windows\system32\DRIVERS\acpials.sys
10:09:53.0705 4492 acpials - ok
10:09:53.0752 4492 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
10:09:53.0752 4492 AcpiPmi - ok
10:09:53.0815 4492 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:09:53.0815 4492 adp94xx - ok
10:09:53.0846 4492 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:09:53.0861 4492 adpahci - ok
10:09:53.0893 4492 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:09:53.0893 4492 adpu320 - ok
10:09:53.0939 4492 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:09:53.0939 4492 AeLookupSvc - ok
10:09:53.0971 4492 [ FE3EA6E9AFC1A78E6EDCA121E006AFB7 ] Afc C:\Windows\system32\drivers\Afc.sys
10:09:53.0971 4492 Afc - ok
10:09:54.0033 4492 [ 0DB7A48388D54D154EBEC120461A0FCD ] AFD C:\Windows\system32\drivers\afd.sys
10:09:54.0033 4492 AFD - ok
10:09:54.0064 4492 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
10:09:54.0080 4492 agp440 - ok
10:09:54.0111 4492 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
10:09:54.0111 4492 aic78xx - ok
10:09:54.0173 4492 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
10:09:54.0173 4492 ALG - ok
10:09:54.0205 4492 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
10:09:54.0205 4492 aliide - ok
10:09:54.0236 4492 [ E3836DCF317E75D31698B0584DEEC313 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:09:54.0236 4492 AMD External Events Utility - ok
10:09:54.0251 4492 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
10:09:54.0251 4492 amdagp - ok
10:09:54.0283 4492 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
10:09:54.0283 4492 amdide - ok
10:09:54.0329 4492 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:09:54.0329 4492 AmdK8 - ok
10:09:54.0345 4492 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:09:54.0345 4492 AmdPPM - ok
10:09:54.0423 4492 [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:09:54.0423 4492 amdsata - ok
10:09:54.0470 4492 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:09:54.0470 4492 amdsbs - ok
10:09:54.0501 4492 [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:09:54.0501 4492 amdxata - ok
10:09:54.0548 4492 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
10:09:54.0548 4492 AppID - ok
10:09:54.0579 4492 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:09:54.0579 4492 AppIDSvc - ok
10:09:54.0610 4492 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
10:09:54.0610 4492 Appinfo - ok
10:09:54.0641 4492 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
10:09:54.0641 4492 arc - ok
10:09:54.0673 4492 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:09:54.0688 4492 arcsas - ok
10:09:54.0719 4492 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:09:54.0719 4492 AsyncMac - ok
10:09:54.0735 4492 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
10:09:54.0735 4492 atapi - ok
10:09:54.0922 4492 [ C17C77E84B11B5E01F32DD6B98930F36 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:09:55.0063 4492 atikmdag - ok
10:09:55.0125 4492 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:09:55.0125 4492 AudioEndpointBuilder - ok
10:09:55.0156 4492 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
10:09:55.0172 4492 Audiosrv - ok
10:09:55.0219 4492 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:09:55.0219 4492 AxInstSV - ok
10:09:55.0281 4492 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
10:09:55.0297 4492 b06bdrv - ok
10:09:55.0343 4492 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
10:09:55.0359 4492 b57nd60x - ok
10:09:55.0437 4492 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE
10:09:55.0437 4492 BBSvc - ok
10:09:55.0499 4492 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files\Microsoft\BingBar\SeaPort.EXE
10:09:55.0499 4492 BBUpdate - ok
10:09:55.0546 4492 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
10:09:55.0562 4492 BDESVC - ok
10:09:55.0593 4492 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
10:09:55.0593 4492 Beep - ok
10:09:55.0624 4492 [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE C:\Windows\System32\bfe.dll
10:09:55.0640 4492 BFE - ok
10:09:55.0702 4492 [ 53F476476F55A27F580661BDE09C4EC4 ] BITS C:\Windows\System32\qmgr.dll
10:09:55.0733 4492 BITS - ok
10:09:55.0780 4492 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:09:55.0780 4492 blbdrive - ok
10:09:55.0827 4492 [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:09:55.0827 4492 bowser - ok
10:09:55.0843 4492 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:09:55.0858 4492 BrFiltLo - ok
10:09:55.0858 4492 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:09:55.0858 4492 BrFiltUp - ok
10:09:55.0905 4492 [ A0E691DC6589D4D2CBE373171D1A49E5 ] Browser C:\Windows\System32\browser.dll
10:09:55.0905 4492 Browser - ok
10:09:55.0921 4492 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:09:55.0936 4492 Brserid - ok
10:09:55.0936 4492 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:09:55.0936 4492 BrSerWdm - ok
10:09:55.0967 4492 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:09:55.0967 4492 BrUsbMdm - ok
10:09:55.0967 4492 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:09:55.0983 4492 BrUsbSer - ok
10:09:56.0014 4492 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:09:56.0014 4492 BTHMODEM - ok
10:09:56.0061 4492 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
10:09:56.0061 4492 bthserv - ok
10:09:56.0092 4492 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:09:56.0092 4492 cdfs - ok
10:09:56.0123 4492 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:09:56.0123 4492 cdrom - ok
10:09:56.0170 4492 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
10:09:56.0170 4492 CertPropSvc - ok
10:09:56.0201 4492 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:09:56.0201 4492 circlass - ok
10:09:56.0233 4492 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
10:09:56.0233 4492 CLFS - ok
10:09:56.0311 4492 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:09:56.0311 4492 clr_optimization_v2.0.50727_32 - ok
10:09:56.0451 4492 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:09:56.0482 4492 clr_optimization_v4.0.30319_32 - ok
10:09:56.0498 4492 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:09:56.0513 4492 CmBatt - ok
10:09:56.0545 4492 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
10:09:56.0545 4492 cmdide - ok
10:09:56.0591 4492 [ DB5E008B3744DD60C8498CBBF2A1CFA6 ] CNG C:\Windows\system32\Drivers\cng.sys
10:09:56.0591 4492 CNG - ok
10:09:56.0623 4492 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:09:56.0623 4492 Compbatt - ok
10:09:56.0638 4492 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:09:56.0638 4492 CompositeBus - ok
10:09:56.0654 4492 COMSysApp - ok
10:09:56.0685 4492 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:09:56.0685 4492 crcdisk - ok
10:09:56.0732 4492 [ F2FDE6C8DBAAD44CC58D1E07E4AF4EED ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:09:56.0732 4492 CryptSvc - ok
10:09:56.0794 4492 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
10:09:56.0810 4492 DcomLaunch - ok
10:09:56.0857 4492 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
10:09:56.0872 4492 defragsvc - ok
10:09:56.0903 4492 [ 83D1ECEA8FAAE75604C0FA49AC7AD996 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:09:56.0903 4492 DfsC - ok
10:09:56.0935 4492 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
10:09:56.0935 4492 Dhcp - ok
10:09:56.0950 4492 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
10:09:56.0950 4492 discache - ok
10:09:56.0981 4492 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:09:56.0981 4492 Disk - ok
10:09:57.0028 4492 [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:09:57.0028 4492 Dnscache - ok
10:09:57.0059 4492 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
10:09:57.0075 4492 dot3svc - ok
10:09:57.0091 4492 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
10:09:57.0091 4492 DPS - ok
10:09:57.0122 4492 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:09:57.0122 4492 drmkaud - ok
10:09:57.0169 4492 [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:09:57.0184 4492 DXGKrnl - ok
10:09:57.0231 4492 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
10:09:57.0231 4492 EapHost - ok
10:09:57.0340 4492 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
10:09:57.0465 4492 ebdrv - ok
10:09:57.0496 4492 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] EFS C:\Windows\System32\lsass.exe
10:09:57.0496 4492 EFS - ok
10:09:57.0559 4492 [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:09:57.0652 4492 ehRecvr - ok
10:09:57.0683 4492 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
10:09:57.0730 4492 ehSched - ok
10:09:57.0793 4492 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:09:57.0808 4492 elxstor - ok
10:09:57.0839 4492 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
10:09:57.0839 4492 ErrDev - ok
10:09:57.0886 4492 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
10:09:57.0886 4492 EventSystem - ok
10:09:57.0917 4492 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
10:09:57.0917 4492 exfat - ok
10:09:57.0964 4492 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:09:57.0964 4492 fastfat - ok
10:09:58.0011 4492 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
10:09:58.0027 4492 Fax - ok
10:09:58.0042 4492 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:09:58.0042 4492 fdc - ok
10:09:58.0058 4492 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
10:09:58.0058 4492 fdPHost - ok
10:09:58.0073 4492 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
10:09:58.0073 4492 FDResPub - ok
10:09:58.0089 4492 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:09:58.0089 4492 FileInfo - ok
10:09:58.0105 4492 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:09:58.0120 4492 Filetrace - ok
10:09:58.0136 4492 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:09:58.0136 4492 flpydisk - ok
10:09:58.0167 4492 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:09:58.0167 4492 FltMgr - ok
10:09:58.0229 4492 [ 7FE4995528A7529A761875151EE3D512 ] FontCache C:\Windows\system32\FntCache.dll
10:09:58.0276 4492 FontCache - ok
10:09:58.0370 4492 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:09:58.0370 4492 FontCache3.0.0.0 - ok
10:09:58.0385 4492 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:09:58.0385 4492 FsDepends - ok
10:09:58.0432 4492 [ 500A9814FD9446A8126858A5A7F7D273 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:09:58.0432 4492 Fs_Rec - ok
10:09:58.0495 4492 [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:09:58.0495 4492 fvevol - ok
10:09:58.0526 4492 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:09:58.0541 4492 gagp30kx - ok
10:09:58.0604 4492 [ 5CC2B1D06AC1962AF5FBBCF88D781DD8 ] GoToAssist C:\Program Files\Citrix\GoToAssist\570\g2aservice.exe
10:09:58.0604 4492 GoToAssist - ok
10:09:58.0666 4492 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
10:09:58.0697 4492 gpsvc - ok
10:09:58.0713 4492 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:09:58.0713 4492 hcw85cir - ok
10:09:58.0760 4492 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:09:58.0760 4492 HdAudAddService - ok
10:09:58.0791 4492 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:09:58.0791 4492 HDAudBus - ok
10:09:58.0807 4492 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:09:58.0807 4492 HidBatt - ok
10:09:58.0838 4492 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:09:58.0838 4492 HidBth - ok
10:09:58.0853 4492 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:09:58.0853 4492 HidIr - ok
10:09:58.0885 4492 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
10:09:58.0885 4492 hidserv - ok
10:09:58.0916 4492 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:09:58.0931 4492 HidUsb - ok
10:09:58.0947 4492 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:09:58.0947 4492 hkmsvc - ok
10:09:58.0994 4492 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:09:58.0994 4492 HomeGroupListener - ok
10:09:59.0025 4492 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:09:59.0041 4492 HomeGroupProvider - ok
10:09:59.0087 4492 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
10:09:59.0087 4492 HpSAMD - ok
10:09:59.0134 4492 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:09:59.0150 4492 HTTP - ok
10:09:59.0197 4492 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:09:59.0197 4492 hwpolicy - ok
10:09:59.0243 4492 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:09:59.0243 4492 i8042prt - ok
10:09:59.0290 4492 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
10:09:59.0290 4492 IAANTMON - ok
10:09:59.0321 4492 [ D483687EACE0C065EE772481A96E05F5 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
10:09:59.0321 4492 iaStor - ok
10:09:59.0384 4492 [ 71F1A494FEDF4B33C02C4A6A28D6D9E9 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:09:59.0384 4492 iaStorV - ok
10:09:59.0462 4492 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:09:59.0493 4492 idsvc - ok
10:09:59.0524 4492 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:09:59.0524 4492 iirsp - ok
10:09:59.0602 4492 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
10:09:59.0618 4492 IKEEXT - ok
10:09:59.0743 4492 [ 3914EA9111DBEFFAF1C68200817768AD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
10:09:59.0758 4492 IntcAzAudAddService - ok
10:09:59.0789 4492 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
10:09:59.0789 4492 intelide - ok
10:09:59.0821 4492 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:09:59.0821 4492 intelppm - ok
10:09:59.0836 4492 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:09:59.0836 4492 IPBusEnum - ok
10:09:59.0852 4492 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:09:59.0852 4492 IpFilterDriver - ok
10:09:59.0883 4492 [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:09:59.0914 4492 iphlpsvc - ok
10:09:59.0961 4492 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
10:09:59.0961 4492 IPMIDRV - ok
10:09:59.0961 4492 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:09:59.0977 4492 IPNAT - ok
10:09:59.0992 4492 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:10:00.0008 4492 IRENUM - ok
10:10:00.0023 4492 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
10:10:00.0023 4492 isapnp - ok
10:10:00.0055 4492 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:10:00.0055 4492 iScsiPrt - ok
10:10:00.0070 4492 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:10:00.0086 4492 kbdclass - ok
10:10:00.0133 4492 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:10:00.0133 4492 kbdhid - ok
10:10:00.0148 4492 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] KeyIso C:\Windows\system32\lsass.exe
10:10:00.0148 4492 KeyIso - ok
10:10:00.0195 4492 [ 52FC17C8589F11747D01D3CF592673D0 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:10:00.0195 4492 KSecDD - ok
10:10:00.0226 4492 [ 3E5474B03568CFAB834DA3C38E8C9EFA ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:10:00.0226 4492 KSecPkg - ok
10:10:00.0273 4492 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
10:10:00.0289 4492 KtmRm - ok
10:10:00.0335 4492 [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer C:\Windows\system32\srvsvc.dll
10:10:00.0335 4492 LanmanServer - ok
10:10:00.0382 4492 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:10:00.0382 4492 LanmanWorkstation - ok
10:10:00.0507 4492 [ 0133518CC3624D173F997D21E9E9D2A2 ] LcSvrAdm C:\ElsaWin\bin\LcSvrAdm.exe
10:10:00.0585 4492 LcSvrAdm - ok
10:10:00.0679 4492 [ 904704FFB404B8A1D27023230A14EF12 ] LcSvrAuf C:\ElsaWin\bin\LcSvrAuf.exe
10:10:00.0835 4492 LcSvrAuf - ok
10:10:00.0944 4492 [ 78D2AF7EA8C7668AACC78082CFBA1894 ] LcSvrDba C:\ElsaWin\bin\LcSvrDba.exe
10:10:01.0053 4492 LcSvrDba - ok
10:10:01.0131 4492 [ 59DC1AC0CCE60325B35D724094043544 ] LcSvrHis C:\ElsaWin\bin\LcSvrHis.exe
10:10:01.0225 4492 LcSvrHis - ok
10:10:01.0240 4492 [ DA76D1C6BD8F439C827917102C4371CA ] LcSvrPAS C:\ElsaWin\bin\LcSvrPas.exe
10:10:01.0349 4492 LcSvrPAS - ok
10:10:01.0365 4492 [ 8E5BB98631D87975AC1FE0453F34B449 ] LcSvrSaz C:\ElsaWin\bin\LcSvrSaz.exe
10:10:01.0459 4492 LcSvrSaz - ok
10:10:01.0521 4492 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:10:01.0521 4492 lltdio - ok
10:10:01.0552 4492 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:10:01.0568 4492 lltdsvc - ok
10:10:01.0583 4492 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
10:10:01.0583 4492 lmhosts - ok
10:10:01.0630 4492 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:10:01.0630 4492 LSI_FC - ok
10:10:01.0661 4492 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:10:01.0661 4492 LSI_SAS - ok
10:10:01.0677 4492 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:10:01.0677 4492 LSI_SAS2 - ok
10:10:01.0693 4492 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:10:01.0708 4492 LSI_SCSI - ok
10:10:01.0724 4492 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
10:10:01.0724 4492 luafv - ok
10:10:01.0817 4492 [ F8B823414A22DBF3BEC10DCAA5F93CD8 ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
10:10:01.0817 4492 McciCMService - ok
10:10:01.0864 4492 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:10:01.0864 4492 Mcx2Svc - ok
10:10:01.0895 4492 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:10:01.0895 4492 megasas - ok
10:10:01.0911 4492 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:10:01.0911 4492 MegaSR - ok
10:10:01.0989 4492 [ 71C6748EE8DE938532057EF10B4B7E44 ] Micro Star SCM C:\Program Files\System Control Manager\MSIService.exe
10:10:02.0098 4492 Micro Star SCM - ok
10:10:02.0129 4492 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
10:10:02.0129 4492 MMCSS - ok
10:10:02.0145 4492 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
10:10:02.0161 4492 Modem - ok
10:10:02.0192 4492 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:10:02.0192 4492 monitor - ok
10:10:02.0223 4492 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:10:02.0223 4492 mouclass - ok
10:10:02.0254 4492 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:10:02.0254 4492 mouhid - ok
10:10:02.0270 4492 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:10:02.0270 4492 mountmgr - ok
10:10:02.0348 4492 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
10:10:02.0348 4492 MpFilter - ok
10:10:02.0363 4492 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
10:10:02.0363 4492 mpio - ok
10:10:02.0551 4492 [ A69630D039C38018689190234F866D77 ] MpKsl5a410499 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BD5A3588-1C7C-47DC-845C-F4102F971978}\MpKsl5a410499.sys
10:10:02.0551 4492 MpKsl5a410499 - ok
10:10:02.0566 4492 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:10:02.0566 4492 mpsdrv - ok
10:10:02.0613 4492 [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc C:\Windows\system32\mpssvc.dll
10:10:02.0629 4492 MpsSvc - ok
10:10:02.0675 4492 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
10:10:02.0722 4492 MREMP50 - ok
10:10:02.0738 4492 MREMPR5 - ok
10:10:02.0738 4492 MRENDIS5 - ok
10:10:02.0785 4492 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
10:10:02.0785 4492 MRESP50 - ok
10:10:02.0800 4492 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:10:02.0816 4492 MRxDAV - ok
10:10:02.0863 4492 [ CA7570E42522E24324A12161DB14EC02 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:10:02.0863 4492 mrxsmb - ok
10:10:02.0909 4492 [ F965C3AB2B2AE5C378F4562486E35051 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:10:02.0925 4492 mrxsmb10 - ok
10:10:02.0941 4492 [ 25C38264A3C72594DD21D355D70D7A5D ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:10:02.0941 4492 mrxsmb20 - ok
10:10:02.0972 4492 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
10:10:02.0972 4492 msahci - ok
10:10:02.0987 4492 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
10:10:03.0003 4492 msdsm - ok
10:10:03.0019 4492 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
10:10:03.0034 4492 MSDTC - ok
10:10:03.0065 4492 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:10:03.0065 4492 Msfs - ok
10:10:03.0097 4492 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:10:03.0097 4492 mshidkmdf - ok
10:10:03.0112 4492 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
10:10:03.0112 4492 msisadrv - ok
10:10:03.0159 4492 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:10:03.0159 4492 MSiSCSI - ok
10:10:03.0175 4492 msiserver - ok
10:10:03.0190 4492 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:10:03.0190 4492 MSKSSRV - ok
10:10:03.0268 4492 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
10:10:03.0268 4492 MsMpSvc - ok
10:10:03.0299 4492 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:10:03.0299 4492 MSPCLOCK - ok
10:10:03.0315 4492 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:10:03.0315 4492 MSPQM - ok
10:10:03.0346 4492 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:10:03.0346 4492 MsRPC - ok
10:10:03.0362 4492 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:10:03.0362 4492 mssmbios - ok
10:10:03.0377 4492 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:10:03.0377 4492 MSTEE - ok
10:10:03.0409 4492 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:10:03.0409 4492 MTConfig - ok
10:10:03.0424 4492 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
10:10:03.0424 4492 Mup - ok
10:10:03.0471 4492 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
10:10:03.0487 4492 napagent - ok
10:10:03.0549 4492 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:10:03.0549 4492 NativeWifiP - ok
10:10:03.0596 4492 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:10:03.0611 4492 NDIS - ok
10:10:03.0658 4492 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:10:03.0658 4492 NdisCap - ok
10:10:03.0674 4492 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:10:03.0689 4492 NdisTapi - ok
10:10:03.0705 4492 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:10:03.0705 4492 Ndisuio - ok
10:10:03.0721 4492 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:10:03.0721 4492 NdisWan - ok
10:10:03.0736 4492 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:10:03.0736 4492 NDProxy - ok
10:10:03.0752 4492 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:10:03.0752 4492 NetBIOS - ok
10:10:03.0767 4492 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:10:03.0767 4492 NetBT - ok
10:10:03.0799 4492 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] Netlogon C:\Windows\system32\lsass.exe
10:10:03.0799 4492 Netlogon - ok
10:10:03.0845 4492 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
10:10:03.0845 4492 Netman - ok
10:10:03.0877 4492 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
10:10:03.0892 4492 netprofm - ok
10:10:03.0923 4492 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:10:03.0923 4492 NetTcpPortSharing - ok
10:10:03.0955 4492 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:10:03.0955 4492 nfrd960 - ok
10:10:04.0048 4492 [ 2CD24A6AF497D0E9B9BF3DA924ED05E6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:10:04.0048 4492 NisDrv - ok
10:10:04.0095 4492 [ 3B846434055F80D9E89D0742F3ADAD34 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
10:10:04.0095 4492 NisSrv - ok
10:10:04.0142 4492 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
10:10:04.0157 4492 NlaSvc - ok
10:10:04.0173 4492 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:10:04.0173 4492 Npfs - ok
10:10:04.0204 4492 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
10:10:04.0220 4492 nsi - ok
10:10:04.0235 4492 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:10:04.0235 4492 nsiproxy - ok
10:10:04.0298 4492 [ 5126C5402C730C2A953275D8497A4715 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:10:04.0329 4492 Ntfs - ok
10:10:04.0360 4492 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
10:10:04.0360 4492 Null - ok
10:10:04.0407 4492 [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:10:04.0407 4492 nvraid - ok
10:10:04.0438 4492 [ 4520B63899E867F354EE012D34E11536 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:10:04.0438 4492 nvstor - ok
10:10:04.0454 4492 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
10:10:04.0469 4492 nv_agp - ok
10:10:04.0563 4492 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:10:04.0579 4492 odserv - ok
10:10:04.0579 4492 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
10:10:04.0594 4492 ohci1394 - ok
10:10:04.0641 4492 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:10:04.0657 4492 ose - ok
10:10:04.0703 4492 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:10:04.0703 4492 p2pimsvc - ok
10:10:04.0750 4492 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
10:10:04.0766 4492 p2psvc - ok
10:10:04.0797 4492 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:10:04.0813 4492 Parport - ok
10:10:04.0828 4492 [ 66D3415C159741ADE7038A277EFFF99F ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:10:04.0828 4492 partmgr - ok
10:10:04.0859 4492 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
10:10:04.0859 4492 Parvdm - ok
10:10:04.0875 4492 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:10:04.0875 4492 PcaSvc - ok
10:10:04.0891 4492 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
10:10:04.0891 4492 pci - ok
10:10:04.0922 4492 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
10:10:04.0922 4492 pciide - ok
10:10:04.0937 4492 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:10:04.0953 4492 pcmcia - ok
10:10:04.0969 4492 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
10:10:04.0969 4492 pcw - ok
10:10:05.0000 4492 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:10:05.0015 4492 PEAUTH - ok
10:10:05.0109 4492 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
10:10:05.0156 4492 pla - ok
10:10:05.0187 4492 PLFlash DeviceIoControl Service - ok
10:10:05.0249 4492 [ 71DEF5EC79774C798342D0EA16E41780 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:10:05.0265 4492 PlugPlay - ok
10:10:05.0281 4492 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:10:05.0281 4492 PNRPAutoReg - ok
10:10:05.0312 4492 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:10:05.0327 4492 PNRPsvc - ok
10:10:05.0359 4492 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:10:05.0359 4492 PolicyAgent - ok
10:10:05.0390 4492 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll
10:10:05.0405 4492 Power - ok
10:10:05.0437 4492 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:10:05.0452 4492 PptpMiniport - ok
10:10:05.0468 4492 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:10:05.0468 4492 Processor - ok
10:10:05.0515 4492 [ AEA3BDBDBA667AA6F678CB38907E4F5E ] ProfSvc C:\Windows\system32\profsvc.dll
10:10:05.0530 4492 ProfSvc - ok
10:10:05.0530 4492 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:10:05.0546 4492 ProtectedStorage - ok
10:10:05.0577 4492 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:10:05.0577 4492 Psched - ok
10:10:05.0624 4492 [ A6A7AD767BF5141665F5C675F671B3E1 ] PSI_SVC_2 c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
10:10:05.0733 4492 PSI_SVC_2 - ok
10:10:05.0873 4492 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:10:05.0920 4492 ql2300 - ok
10:10:05.0967 4492 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:10:05.0983 4492 ql40xx - ok
10:10:06.0014 4492 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
10:10:06.0029 4492 QWAVE - ok
10:10:06.0045 4492 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:10:06.0061 4492 QWAVEdrv - ok
10:10:06.0232 4492 [ 3AF684252780CF87DC2809F85B8F7591 ] RapportCerberus_43926 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\43926\RapportCerberus32_43926.sys
10:10:06.0232 4492 RapportCerberus_43926 - ok
10:10:06.0341 4492 [ 093B6A040BCF3FD4A0FFF397BAF28330 ] RapportEI C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
10:10:06.0341 4492 RapportEI - ok
10:10:06.0451 4492 [ DD3E4610DE9252A957C5BD19BDF47AC4 ] RapportIaso c:\programdata\trusteer\rapport\store\exts\rapportms\28896\rapportiaso.sys
10:10:06.0451 4492 RapportIaso - ok
10:10:06.0529 4492 [ 61B37C0B3FD7DA7414C20D917469BFFF ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
10:10:06.0575 4492 RapportMgmtService - ok
10:10:06.0622 4492 [ 3DE33A522BB73E161F20D444687E978B ] RapportPG C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
10:10:06.0622 4492 RapportPG - ok
10:10:06.0638 4492 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:10:06.0638 4492 RasAcd - ok
10:10:06.0700 4492 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:10:06.0700 4492 RasAgileVpn - ok
10:10:06.0731 4492 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
10:10:06.0731 4492 RasAuto - ok
10:10:06.0747 4492 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:10:06.0747 4492 Rasl2tp - ok
10:10:06.0794 4492 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
10:10:06.0809 4492 RasMan - ok
10:10:06.0825 4492 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:10:06.0825 4492 RasPppoe - ok
10:10:06.0841 4492 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:10:06.0841 4492 RasSstp - ok
10:10:06.0856 4492 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:10:06.0872 4492 rdbss - ok
10:10:06.0887 4492 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:10:06.0887 4492 rdpbus - ok
10:10:06.0903 4492 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:10:06.0903 4492 RDPCDD - ok
10:10:06.0934 4492 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:10:06.0934 4492 RDPENCDD - ok
10:10:06.0965 4492 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:10:06.0965 4492 RDPREFMP - ok
10:10:07.0012 4492 [ C5B8D47A4688DE9D335204EA757C2240 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:10:07.0012 4492 RDPWD - ok
10:10:07.0043 4492 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:10:07.0043 4492 rdyboost - ok
10:10:07.0059 4492 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
10:10:07.0075 4492 RemoteAccess - ok
10:10:07.0121 4492 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:10:07.0121 4492 RemoteRegistry - ok
10:10:07.0215 4492 [ 7CCAEBCAB6FC1ED0206C07E083E79207 ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
10:10:07.0231 4492 RichVideo - ok
10:10:07.0262 4492 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:10:07.0262 4492 RpcEptMapper - ok
10:10:07.0309 4492 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
10:10:07.0324 4492 RpcLocator - ok
10:10:07.0340 4492 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
10:10:07.0355 4492 RpcSs - ok
10:10:07.0402 4492 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:10:07.0402 4492 rspndr - ok
10:10:07.0449 4492 [ 96F8DD546677AA5102150ACC140377B3 ] RSUSBSTOR C:\Windows\System32\Drivers\RtsUStor.sys
10:10:07.0465 4492 RSUSBSTOR - ok
10:10:07.0511 4492 [ F1813D9E031B0E2E090AC6489FFD1007 ] RT-USB C:\Windows\system32\drivers\RT-USB.SYS
10:10:07.0574 4492 RT-USB - ok
10:10:07.0589 4492 [ 87407B31EA6FF0DC4765258164B98BEA ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIV.sys
10:10:07.0589 4492 RTHDMIAzAudService - ok
10:10:07.0621 4492 [ 9F55771752D6130E6E1EF28905965961 ] RTL2832UBDA C:\Windows\system32\drivers\RTL2832UBDA.sys
10:10:07.0636 4492 RTL2832UBDA - ok
10:10:07.0699 4492 [ 65C058CC2FC28A65929777636B8DF378 ] RTL2832UUSB C:\Windows\system32\Drivers\RTL2832UUSB.sys
10:10:07.0699 4492 RTL2832UUSB - ok
10:10:07.0730 4492 [ 636F046EFD77B22F7C95716895D172E2 ] RTL2832U_IRHID C:\Windows\system32\DRIVERS\RTL2832U_IRHID.sys
10:10:07.0745 4492 RTL2832U_IRHID - ok
10:10:07.0792 4492 [ 26A9D6227D12B9D9DA5A81BB9B55D810 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
10:10:07.0792 4492 RTL8167 - ok
10:10:07.0839 4492 [ CFADCC0ECB15DB44148ED777D35E8AC6 ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
10:10:07.0886 4492 rtl8192se - ok
10:10:07.0901 4492 RtsUIR - ok
10:10:07.0933 4492 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] SamSs C:\Windows\system32\lsass.exe
10:10:07.0933 4492 SamSs - ok
10:10:08.0011 4492 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
10:10:08.0011 4492 SASDIFSV - ok
10:10:08.0026 4492 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
10:10:08.0026 4492 SASKUTIL - ok
10:10:08.0073 4492 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
10:10:08.0073 4492 sbp2port - ok
10:10:08.0120 4492 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:10:08.0120 4492 SCardSvr - ok
10:10:08.0167 4492 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:10:08.0167 4492 scfilter - ok
10:10:08.0213 4492 [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule C:\Windows\system32\schedsvc.dll
10:10:08.0245 4492 Schedule - ok
10:10:08.0276 4492 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
10:10:08.0291 4492 SCPolicySvc - ok
10:10:08.0307 4492 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:10:08.0307 4492 SDRSVC - ok
10:10:08.0338 4492 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:10:08.0338 4492 secdrv - ok
10:10:08.0369 4492 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
10:10:08.0369 4492 seclogon - ok
10:10:08.0401 4492 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
10:10:08.0401 4492 SENS - ok
10:10:08.0416 4492 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:10:08.0432 4492 SensrSvc - ok
10:10:08.0447 4492 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:10:08.0447 4492 Serenum - ok
10:10:08.0479 4492 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:10:08.0479 4492 Serial - ok
10:10:08.0510 4492 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:10:08.0510 4492 sermouse - ok
10:10:08.0541 4492 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
10:10:08.0557 4492 SessionEnv - ok
10:10:08.0557 4492 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
10:10:08.0572 4492 sffdisk - ok
10:10:08.0588 4492 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
10:10:08.0588 4492 sffp_mmc - ok
10:10:08.0603 4492 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
10:10:08.0603 4492 sffp_sd - ok
10:10:08.0603 4492 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:10:08.0603 4492 sfloppy - ok
10:10:08.0650 4492 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:10:08.0650 4492 SharedAccess - ok
10:10:08.0697 4492 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:10:08.0713 4492 ShellHWDetection - ok
10:10:08.0713 4492 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
10:10:08.0728 4492 sisagp - ok
10:10:08.0759 4492 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:10:08.0759 4492 SiSRaid2 - ok
10:10:08.0775 4492 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:10:08.0775 4492 SiSRaid4 - ok
10:10:08.0791 4492 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:10:08.0806 4492 Smb - ok
10:10:08.0837 4492 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:10:08.0837 4492 SNMPTRAP - ok
10:10:08.0853 4492 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
10:10:08.0853 4492 spldr - ok
10:10:08.0915 4492 [ E17323B0AA9FB3FF9945731D736EDA2F ] Spooler C:\Windows\System32\spoolsv.exe
10:10:08.0931 4492 Spooler - ok
10:10:09.0040 4492 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
10:10:09.0134 4492 sppsvc - ok
10:10:09.0165 4492 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:10:09.0165 4492 sppuinotify - ok
10:10:09.0212 4492 [ C4A027B8C0BD3FC0699F41FA5E9E0C87 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:10:09.0212 4492 srv - ok
10:10:09.0243 4492 [ 414BB592CAD8A79649D01F9D94318FB3 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:10:09.0243 4492 srv2 - ok
10:10:09.0290 4492 [ FF207D67700AA18242AAF985D3E7D8F4 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:10:09.0290 4492 srvnet - ok
10:10:09.0305 4492 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:10:09.0321 4492 SSDPSRV - ok
10:10:09.0337 4492 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:10:09.0337 4492 SstpSvc - ok
10:10:09.0368 4492 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:10:09.0368 4492 stexstor - ok
10:10:09.0415 4492 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
10:10:09.0446 4492 StiSvc - ok
10:10:09.0461 4492 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:10:09.0461 4492 swenum - ok
10:10:09.0477 4492 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
10:10:09.0508 4492 swprv - ok
10:10:09.0539 4492 [ 292307A8E0DDCE66E8D5DFA2635F72A5 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:10:09.0539 4492 SynTP - ok
10:10:09.0571 4492 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
10:10:09.0617 4492 SysMain - ok
10:10:09.0633 4492 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:10:09.0633 4492 TabletInputService - ok
10:10:09.0664 4492 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
10:10:09.0680 4492 TapiSrv - ok
10:10:09.0695 4492 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
10:10:09.0711 4492 TBS - ok
10:10:09.0773 4492 [ 55E9965552741F3850CB22CBBA9671ED ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:10:09.0820 4492 Tcpip - ok
10:10:09.0867 4492 [ 55E9965552741F3850CB22CBBA9671ED ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:10:09.0883 4492 TCPIP6 - ok
10:10:09.0914 4492 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:10:09.0929 4492 tcpipreg - ok
10:10:09.0961 4492 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:10:09.0976 4492 TDPIPE - ok
10:10:10.0007 4492 [ 7156308896D34EA75A582F9A09E50C17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:10:10.0007 4492 TDTCP - ok
10:10:10.0023 4492 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:10:10.0023 4492 tdx - ok
10:10:10.0039 4492 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:10:10.0039 4492 TermDD - ok
10:10:10.0085 4492 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
10:10:10.0117 4492 TermService - ok
10:10:10.0163 4492 [ 7DF8712159FD1B4812D730519808F282 ] TfBulk C:\Windows\system32\DRIVERS\TfBulk.sys
10:10:10.0210 4492 TfBulk - ok
10:10:10.0226 4492 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
10:10:10.0226 4492 Themes - ok
10:10:10.0257 4492 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
10:10:10.0257 4492 THREADORDER - ok
10:10:10.0288 4492 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
10:10:10.0288 4492 TrkWks - ok
10:10:10.0351 4492 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:10:10.0351 4492 TrustedInstaller - ok
10:10:10.0366 4492 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:10:10.0382 4492 tssecsrv - ok
10:10:10.0429 4492 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:10:10.0429 4492 tunnel - ok
10:10:10.0444 4492 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:10:10.0444 4492 uagp35 - ok
10:10:10.0460 4492 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:10:10.0475 4492 udfs - ok
10:10:10.0522 4492 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:10:10.0522 4492 UI0Detect - ok
10:10:10.0553 4492 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
10:10:10.0553 4492 uliagpkx - ok
10:10:10.0585 4492 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:10:10.0585 4492 umbus - ok
10:10:10.0600 4492 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:10:10.0600 4492 UmPass - ok
10:10:10.0631 4492 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
10:10:10.0631 4492 upnphost - ok
10:10:10.0678 4492 [ C31AE588E403042632DC796CF09E30B0 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:10:10.0678 4492 usbccgp - ok
10:10:10.0694 4492 USBCCID - ok
10:10:10.0725 4492 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
10:10:10.0725 4492 usbcir - ok
10:10:10.0756 4492 [ E4C436D914768CE965D5E659BA7EEBD8 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:10:10.0756 4492 usbehci - ok
10:10:10.0787 4492 [ BDCD7156EC37448F08633FD899823620 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:10:10.0787 4492 usbhub - ok
10:10:10.0819 4492 [ EB2D819A639015253C871CDA09D91D58 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:10:10.0819 4492 usbohci - ok
10:10:10.0850 4492 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:10:10.0850 4492 usbprint - ok
10:10:10.0897 4492 [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:10:10.0897 4492 USBSTOR - ok
10:10:10.0928 4492 [ 22480BF4E5A09192E5E30BA4DDE79FA4 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
10:10:10.0943 4492 usbuhci - ok
10:10:10.0975 4492 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
10:10:10.0975 4492 UxSms - ok
10:10:10.0990 4492 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] VaultSvc C:\Windows\system32\lsass.exe
10:10:10.0990 4492 VaultSvc - ok
10:10:11.0006 4492 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
10:10:11.0006 4492 vdrvroot - ok
10:10:11.0037 4492 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
10:10:11.0068 4492 vds - ok
10:10:11.0084 4492 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:10:11.0084 4492 vga - ok
10:10:11.0115 4492 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
10:10:11.0115 4492 VgaSave - ok
10:10:11.0146 4492 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
10:10:11.0146 4492 vhdmp - ok
10:10:11.0177 4492 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
10:10:11.0177 4492 viaagp - ok
10:10:11.0193 4492 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
10:10:11.0193 4492 ViaC7 - ok
10:10:11.0224 4492 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
10:10:11.0224 4492 viaide - ok
10:10:11.0240 4492 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
10:10:11.0240 4492 volmgr - ok
10:10:11.0271 4492 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:10:11.0271 4492 volmgrx - ok
10:10:11.0287 4492 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
10:10:11.0302 4492 volsnap - ok
10:10:11.0333 4492 [ E92536E95FBD518F56B5CF932A987349 ] VSGate C:\ElsaWin\bin\VSgate.exe
10:10:11.0396 4492 VSGate - ok
10:10:11.0427 4492 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:10:11.0427 4492 vsmraid - ok
10:10:11.0489 4492 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
10:10:11.0536 4492 VSS - ok
10:10:11.0552 4492 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:10:11.0552 4492 vwifibus - ok
10:10:11.0583 4492 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:10:11.0583 4492 vwififlt - ok
10:10:11.0614 4492 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
10:10:11.0630 4492 W32Time - ok
10:10:11.0645 4492 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:10:11.0661 4492 WacomPen - ok
10:10:11.0692 4492 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:10:11.0692 4492 WANARP - ok
10:10:11.0692 4492 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:10:11.0692 4492 Wanarpv6 - ok
10:10:11.0801 4492 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:10:11.0864 4492 WatAdminSvc - ok
10:10:11.0926 4492 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
10:10:11.0973 4492 wbengine - ok
10:10:12.0004 4492 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:10:12.0004 4492 WbioSrvc - ok
10:10:12.0051 4492 [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:10:12.0051 4492 wcncsvc - ok
10:10:12.0082 4492 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:10:12.0082 4492 WcsPlugInService - ok
10:10:12.0113 4492 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:10:12.0113 4492 Wd - ok
10:10:12.0145 4492 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:10:12.0160 4492 Wdf01000 - ok
10:10:12.0176 4492 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:10:12.0191 4492 WdiServiceHost - ok
10:10:12.0191 4492 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:10:12.0207 4492 WdiSystemHost - ok
10:10:12.0238 4492 [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient C:\Windows\System32\webclnt.dll
10:10:12.0254 4492 WebClient - ok
10:10:12.0269 4492 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:10:12.0269 4492 Wecsvc - ok
10:10:12.0285 4492 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:10:12.0285 4492 wercplsupport - ok
10:10:12.0316 4492 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
10:10:12.0332 4492 WerSvc - ok
10:10:12.0363 4492 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:10:12.0363 4492 WfpLwf - ok
10:10:12.0379 4492 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:10:12.0379 4492 WIMMount - ok
10:10:12.0441 4492 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
10:10:12.0457 4492 WinDefend - ok
10:10:12.0472 4492 WinHttpAutoProxySvc - ok
10:10:12.0550 4492 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:10:12.0581 4492 Winmgmt - ok
10:10:12.0644 4492 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
10:10:12.0691 4492 WinRM - ok
10:10:12.0753 4492 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:10:12.0784 4492 Wlansvc - ok
10:10:12.0831 4492 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:10:12.0831 4492 WmiAcpi - ok
10:10:12.0847 4492 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:10:12.0909 4492 wmiApSrv - ok
10:10:12.0987 4492 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
10:10:13.0034 4492 WMPNetworkSvc - ok
10:10:13.0049 4492 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:10:13.0065 4492 WPCSvc - ok
10:10:13.0081 4492 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:10:13.0096 4492 WPDBusEnum - ok
10:10:13.0112 4492 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:10:13.0112 4492 ws2ifsl - ok
10:10:13.0159 4492 [ A661A76333057B383A06E65F0073222F ] wscsvc C:\Windows\System32\wscsvc.dll
10:10:13.0159 4492 wscsvc - ok
10:10:13.0174 4492 WSearch - ok
10:10:13.0268 4492 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
10:10:13.0315 4492 wuauserv - ok
10:10:13.0361 4492 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:10:13.0361 4492 WudfPf - ok
10:10:13.0377 4492 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:10:13.0377 4492 WUDFRd - ok
10:10:13.0408 4492 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:10:13.0424 4492 wudfsvc - ok
10:10:13.0439 4492 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
10:10:13.0455 4492 WwanSvc - ok
10:10:13.0471 4492 ================ Scan global ===============================
10:10:13.0502 4492 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
10:10:13.0549 4492 [ 43B34CADB516800794BDF486E493ED32 ] C:\Windows\system32\winsrv.dll
10:10:13.0580 4492 [ 43B34CADB516800794BDF486E493ED32 ] C:\Windows\system32\winsrv.dll
10:10:13.0611 4492 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
10:10:13.0627 4492 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
10:10:13.0642 4492 [Global] - ok
10:10:13.0642 4492 ================ Scan MBR ==================================
10:10:13.0658 4492 [ 4624822E540EC83CD0819525C65846BA ] \Device\Harddisk0\DR0
10:10:19.0102 4492 \Device\Harddisk0\DR0 - ok
10:10:19.0102 4492 ================ Scan VBR ==================================
10:10:19.0102 4492 [ 8765E862D86B035893AFB91E52A27F7F ] \Device\Harddisk0\DR0\Partition1
10:10:19.0102 4492 \Device\Harddisk0\DR0\Partition1 - ok
10:10:19.0149 4492 [ 05656AD99B67B33C779A173C7B527B51 ] \Device\Harddisk0\DR0\Partition2
10:10:19.0149 4492 \Device\Harddisk0\DR0\Partition2 - ok
10:10:19.0180 4492 [ EE84A6699CAEA9F1AF4AC4A55032934C ] \Device\Harddisk0\DR0\Partition3
10:10:19.0180 4492 \Device\Harddisk0\DR0\Partition3 - ok
10:10:19.0180 4492 ============================================================
10:10:19.0180 4492 Scan finished
10:10:19.0180 4492 ============================================================
10:10:19.0196 1904 Detected object count: 0
10:10:19.0196 1904 Actual detected object count: 0
10:11:07.0587 4620 Deinitialize success

#4 rimmer80

rimmer80
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Plymouth Devon UK.
  • Local time:04:39 AM

Posted 11 November 2012 - 05:09 AM

Here is the aswMBR log you requested.

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-10 10:14:56
-----------------------------
10:14:56.470 OS Version: Windows 6.1.7600
10:14:56.470 Number of processors: 2 586 0x170A
10:14:56.470 ComputerName: PAULSLAPTOP-PC UserName: Pauls Laptop
10:15:27.514 Initialize success
10:31:29.025 AVAST engine defs: 12110900
10:32:17.759 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
10:32:17.759 Disk 0 Vendor: WDC_WD32 11.0 Size: 305245MB BusType: 3
10:32:17.759 Disk 0 MBR read successfully
10:32:17.775 Disk 0 MBR scan
10:32:17.775 Disk 0 unknown MBR code
10:32:17.869 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
10:32:17.962 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 273397 MB offset 206848
10:32:18.071 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 30720 MB offset 560123904
10:32:18.149 Disk 0 Partition 4 00 12 Compaq diag NTFS 1026 MB offset 623038464
10:32:18.227 Disk 0 scanning sectors +625139712
10:32:18.368 Disk 0 scanning C:\Windows\system32\drivers
10:32:42.236 Service scanning
10:33:03.031 Service MpKsl996d843b c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0F065E72-DB73-464E-A5BF-503F65098463}\MpKsl996d843b.sys **LOCKED** 32
10:33:33.185 Modules scanning
10:33:43.435 Disk 0 trace - called modules:
10:33:43.450 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys halmacpi.dll
10:33:43.466 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x870e8a00]
10:33:43.482 3 CLASSPNP.SYS[8bce359e] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x866e3028]
10:33:45.385 AVAST engine scan C:\Windows
10:33:50.470 AVAST engine scan C:\Windows\system32
10:39:46.432 AVAST engine scan C:\Windows\system32\drivers
10:40:16.321 AVAST engine scan C:\Users\Pauls Laptop
10:49:49.732 AVAST engine scan C:\ProgramData
10:52:56.838 Scan finished successfully
10:55:07.255 Disk 0 MBR has been saved successfully to "C:\Users\Pauls Laptop\Documents\MBR.dat"
10:55:07.286 The log file has been saved successfully to "C:\Users\Pauls Laptop\Documents\aswMBRlog.txt"

#5 rimmer80

rimmer80
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Plymouth Devon UK.
  • Local time:04:39 AM

Posted 11 November 2012 - 05:10 AM

Did ESET online scan as request and the result was 'no infections found'

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:39 PM

Posted 11 November 2012 - 05:29 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#7 rimmer80

rimmer80
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Plymouth Devon UK.
  • Local time:04:39 AM

Posted 12 November 2012 - 06:35 AM

Are you sure that posting these logs here will not comprise personal data and make it easier for 'others' to attach my PC at a later date?

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:39 PM

Posted 12 November 2012 - 07:04 AM

Yes,no one can hack your PC with these log details.

#9 rimmer80

rimmer80
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Plymouth Devon UK.
  • Local time:04:39 AM

Posted 14 November 2012 - 07:25 AM

Here are the logs you requested,

MALWAREBYTES.....No oblects found.


MINI TOOLBOX

MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Pauls Laptop (administrator) on 14-11-2012 at 11:13:31
Windows 7 Home Premium (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : PaulsLaptop-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC
Physical Address. . . . . . . . . : 00-25-D3-1E-9F-D2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9846:daa9:4663:282a%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 14 November 2012 09:55:34
Lease Expires . . . . . . . . . . : 15 November 2012 11:07:29
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 301999571
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-D9-1F-BB-40-61-86-10-9B-90
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 40-61-86-10-9B-90
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:249a:2527:926a:7d7d(Preferred)
Link-local IPv6 Address . . . . . : fe80::249a:2527:926a:7d7d%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{2A54379D-79DA-4A3B-8A98-4EDEA39FD297}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: api.home
Address: 192.168.1.254

DNS request timed out.
timeout was 2 seconds.
Name: google.com
Address: 2a00:1450:4009:808::1008


Pinging google.com [173.194.41.129] with 32 bytes of data:
Reply from 173.194.41.129: bytes=32 time=41ms TTL=52
Reply from 173.194.41.129: bytes=32 time=41ms TTL=52

Ping statistics for 173.194.41.129:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 41ms, Maximum = 41ms, Average = 41ms
Server: api.home
Address: 192.168.1.254

DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=423ms TTL=45
Reply from 72.30.38.140: bytes=32 time=1304ms TTL=46

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 423ms, Maximum = 1304ms, Average = 863ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=13ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 13ms, Average = 8ms
===========================================================================
Interface List
12...00 25 d3 1e 9f d2 ......Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC
11...40 61 86 10 9b 90 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.65 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.65 281
192.168.1.65 255.255.255.255 On-link 192.168.1.65 281
192.168.1.255 255.255.255.255 On-link 192.168.1.65 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.65 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.65 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
15 58 ::/0 On-link
1 306 ::1/128 On-link
15 58 2001::/32 On-link
15 306 2001:0:5ef5:79fb:249a:2527:926a:7d7d/128
On-link
12 281 fe80::/64 On-link
15 306 fe80::/64 On-link
15 306 fe80::249a:2527:926a:7d7d/128
On-link
12 281 fe80::9846:daa9:4663:282a/128
On-link
1 306 ff00::/8 On-link
15 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/14/2012 09:56:00 AM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Socket connection to remote system failed.

Error: (11/14/2012 09:55:54 AM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Cannot read "Region" from registry.

Error: (11/13/2012 06:56:51 PM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Socket connection to remote system failed.

Error: (11/13/2012 06:56:45 PM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Cannot read "Region" from registry.

Error: (11/13/2012 10:50:03 AM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Socket connection to remote system failed.

Error: (11/13/2012 10:49:57 AM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Cannot read "Region" from registry.

Error: (11/13/2012 02:35:17 AM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Socket connection to remote system failed.

Error: (11/13/2012 02:35:14 AM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Cannot read "Region" from registry.

Error: (11/12/2012 08:40:31 PM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Socket connection to remote system failed.

Error: (11/12/2012 08:40:27 PM) (Source: VSGATE) (User: NT AUTHORITY)
Description: Cannot read "Region" from registry.


System errors:
=============
Error: (11/14/2012 11:07:21 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/14/2012 09:56:16 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (11/14/2012 09:55:43 AM) (Source: Service Control Manager) (User: )
Description: The PLFlash DeviceIoControl Service service failed to start due to the following error:
%%2

Error: (11/14/2012 09:55:21 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/14/2012 09:55:21 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (11/14/2012 00:25:33 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/13/2012 06:57:04 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (11/13/2012 06:56:37 PM) (Source: Service Control Manager) (User: )
Description: The PLFlash DeviceIoControl Service service failed to start due to the following error:
%%2

Error: (11/13/2012 06:56:11 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/13/2012 06:56:11 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2012-09-25 15:45:38.312
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 15:22:17.065
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 14:47:05.604
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 13:58:28.091
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 13:48:33.215
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 12:52:08.323
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 12:21:59.613
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 11:50:31.878
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 10:29:19.802
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-09-25 02:49:05.470
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 10 ActiveX (Version: 10.0.22.87)
Adobe Flash Player 10 Plugin (Version: 10.0.22.87)
Adobe Reader 9.1.3 (Version: 9.1.3)
Adobe Shockwave Player 11 (Version: 11)
Adobe SVG Viewer 3.0 (Version: 3.0)
Apple Software Update (Version: 2.1.1.116)
ArcSoft TotalMedia 3.5 (Version: 3.5.7.331)
ATI Catalyst Install Manager (Version: 3.0.732.0)
Bing Bar (Version: 7.0.850.0)
BT Broadband Desktop Help
BTHomeHub
Catalyst Control Center Core Implementation (Version: 2009.0710.1127.18698)
Catalyst Control Center Graphics Full Existing (Version: 2009.0710.1127.18698)
Catalyst Control Center Graphics Full New (Version: 2009.0710.1127.18698)
Catalyst Control Center Graphics Light (Version: 2009.0710.1127.18698)
Catalyst Control Center Graphics Previews Vista (Version: 2009.0710.1127.18698)
Catalyst Control Center InstallProxy (Version: 2009.0710.1127.18698)
Catalyst Control Center Localization All (Version: 2009.0710.1127.18698)
ccc-core-static (Version: 2009.0710.1127.18698)
ccc-utility (Version: 2009.0710.1127.18698)
CCC Help Chinese Standard (Version: 2009.0710.1126.18698)
CCC Help Chinese Traditional (Version: 2009.0710.1126.18698)
CCC Help Czech (Version: 2009.0710.1126.18698)
CCC Help English (Version: 2009.0710.1126.18698)
CCC Help French (Version: 2009.0710.1126.18698)
CCC Help German (Version: 2009.0710.1126.18698)
CCC Help Hungarian (Version: 2009.0710.1126.18698)
CCC Help Italian (Version: 2009.0710.1126.18698)
CCC Help Korean (Version: 2009.0710.1126.18698)
CCC Help Polish (Version: 2009.0710.1126.18698)
CCC Help Portuguese (Version: 2009.0710.1126.18698)
CCC Help Russian (Version: 2009.0710.1126.18698)
CCC Help Spanish (Version: 2009.0710.1126.18698)
CCC Help Turkish (Version: 2009.0710.1126.18698)
Choice Guard (Version: 1.2.87.0)
Cisco EAP-FAST Module (Version: 2.0.26)
Cisco LEAP Module (Version: 1.0.11)
Cisco PEAP Module (Version: 1.0.12)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Corel Painter Essentials 4
Corel Painter Essentials 4 (Version: 4.0)
CorelDRAW Essentials 4
CorelDRAW Essentials 4 - Content (Version: 4.0)
CorelDRAW Essentials 4 - Draw (Version: 4.0)
CorelDRAW Essentials 4 - Filters (Version: 4.0)
CorelDRAW Essentials 4 - ICA (Version: 4.0)
CorelDRAW Essentials 4 - IPM - No VBA (Version: 4.0)
CorelDRAW Essentials 4 - Lang BR (Version: 4.0)
CorelDRAW Essentials 4 - Lang DE (Version: 4.0)
CorelDRAW Essentials 4 - Lang EN (Version: 4.0)
CorelDRAW Essentials 4 - Lang ES (Version: 4.0)
CorelDRAW Essentials 4 - Lang FR (Version: 4.0)
CorelDRAW Essentials 4 - Lang IT (Version: 4.0)
CorelDRAW Essentials 4 - Lang NL (Version: 4.0)
CorelDRAW Essentials 4 - PHOTO-PAINT (Version: 4.0)
CorelDRAW Essentials 4 - Windows Shell Extension
CorelDRAW Essentials 4 - Windows Shell Extension (Version: 1.1)
CorelDRAW Essentials 4 (Version: 4.0)
CyberLink LabelPrint (Version: 2.5.1927)
CyberLink MediaShow (Version: 4.1.3121)
CyberLink PhotoNow (Version: 1.1.6622)
CyberLink Power2Go (Version: 6.1.3213)
CyberLink PowerDirector (Version: 7.0.3003)
CyberLink PowerDVD 9 (Version: 9.0.1719)
CyberLink PowerDVD Copy (Version: 1.0.6720)
CyberLink PowerProducer (Version: 5.0.1.1929)
CyberLink YouCam (Version: 3.0.1923)
ElsaWin
ESET Online Scanner v3
GoToAssist Corporate (Version: 9.0.0.570)
GoToAssist Corporate (Version: 9.0.570)
Intel® Matrix Storage Manager
Java™ 6 Update 16 (Version: 6.0.160)
Junk Mail filter update (Version: 14.0.8050.1202)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MCE Software Encoder 1.1 (Version: 1.1.0.1918)
Medion Home Cinema (Version: 6.0.0000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials Prerelease (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Works (Version: 9.7.0621)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
neroxml (Version: 1.0.0)
OpenOffice.org 3.3 (Version: 3.3.9567)
QuickTime (Version: 7.60.92.0)
Rapport (Version: 3.5.1201.94)
REALTEK DTV USB DEVICE (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5910)
Realtek USB 2.0 Card Reader (Version: 6.1.7100.30094)
REALTEK Wireless LAN Driver (Version: 1.00.0117)
RouterStats -Lite version 6.6a
SUPERAntiSpyware (Version: 5.0.1148)
Synaptics Pointing Device Driver (Version: 13.2.3.0)
System Control Manager (Version: 2.209.0828.M005.04.01)
Topfield Tools
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC 9.0 Runtime (Version: 1.0.0)
VCDS Release 10.6.5 (Version: 10.6.5)
VCDS Release 11.11.3 (Version: 11.11.3)
Windows Driver Package - Ross-Tech USB Driver Package (06/16/2010 2.06.02) (Version: 06/16/2010 2.06.02)
Windows Live Call (Version: 14.0.8050.1202)
Windows Live Communications Platform (Version: 14.0.8050.1202)
Windows Live Essentials (Version: 14.0.8050.1202)
Windows Live Mail (Version: 14.0.8050.1202)
Windows Live Messenger (Version: 14.0.8050.1202)
Windows Live Photo Gallery (Version: 14.0.8051.1204)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8050.1202)

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 3071.16 MB
Available physical RAM: 1924.86 MB
Total Pagefile: 6140.6 MB
Available Pagefile: 4907.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 1928.9 MB

========================= Partitions: =====================================

1 Drive c: (System) (Fixed) (Total:266.99 GB) (Free:217.67 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:30 GB) (Free:19.9 GB) NTFS

========================= Users: ========================================

User accounts for \\PAULSLAPTOP-PC

Administrator Guest Pauls Laptop

========================= Restore Points ==================================

02-10-2012 01:44:46 Windows Update
05-10-2012 02:21:46 Windows Update
08-10-2012 19:53:04 Windows Update
10-10-2012 22:27:37 Windows Update
14-10-2012 12:39:07 Removed Nero 8 Essentials. Available with Windows Installer version 1.2 and later.
14-10-2012 12:59:47 Windows Update
14-10-2012 20:50:13 Windows Update
18-10-2012 10:26:17 Windows Update
02-11-2012 23:32:22 Windows Update
06-11-2012 12:15:34 Windows Update
10-11-2012 10:11:26 Windows Update
13-11-2012 14:42:42 Windows Update

**** End of log ****



FARBAR SERVICE SCANNER.

Farbar Service Scanner Version: 09-11-2012
Ran by Pauls Laptop (administrator) on 14-11-2012 at 11:19:29
Running from "C:\Users\Pauls Laptop\Desktop"
Windows 7 Home Premium (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Attempt to access Google.com returned error: Google.com is offline
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Yahoo.com is offline


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-05-15 10:56] - [2012-03-30 10:29] - 1287024 ____A (Microsoft Corporation) 55E9965552741F3850CB22CBBA9671ED

C:\Windows\system32\dnsrslvr.dll
[2011-04-14 01:19] - [2011-03-03 05:29] - 0132608 ____A (Microsoft Corporation) B15BE77A2BACF9C3177D27518AFE26A9

C:\Windows\system32\mpssvc.dll
[2009-07-13 23:53] - [2009-07-14 01:15] - 0565760 ____A (Microsoft Corporation) 5CD996CECF45CBC3E8D109C86B82D69E

C:\Windows\system32\bfe.dll
[2009-07-13 23:54] - [2009-07-14 01:14] - 0493568 ____A (Microsoft Corporation) 85AC71C045CEB054ED48A7841AAE0C11

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll
[2009-07-13 23:23] - [2009-07-14 01:16] - 0125952 ____A (Microsoft Corporation) 5FD90ABDBFAEE85986802622CBB03446

C:\Windows\system32\vssvc.exe
[2009-07-13 23:24] - [2009-07-14 01:14] - 1025536 ____A (Microsoft Corporation) 7EA2BCD94D9CFAF4C556F5CC94532A6C

C:\Windows\system32\wscsvc.dll
[2011-02-11 00:12] - [2010-12-21 05:38] - 0073728 ____A (Microsoft Corporation) A661A76333057B383A06E65F0073222F

C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll
[2009-07-13 23:30] - [2009-07-14 01:16] - 0589312 ____A (Microsoft Corporation) 53F476476F55A27F580661BDE09C4EC4

C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll
[2012-10-10 21:27] - [2012-06-02 04:45] - 0139264 ____A (Microsoft Corporation) F2FDE6C8DBAAD44CC58D1E07E4AF4EED

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****




ADAWARE CLEANER.

# AdwCleaner v2.007 - Logfile created 11/14/2012 at 11:27:03
# Updated 06/11/2012 by Xplode
# Operating system : Windows 7 Home Premium (32 bits)
# User : Pauls Laptop - PAULSLAPTOP-PC
# Boot Mode : Normal
# Running from : C:\Users\Pauls Laptop\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\PAULSL~1\AppData\Local\Temp\Uninstall.exe

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [588 octets] - [14/11/2012 11:27:03]

########## EOF - C:\AdwCleaner[S1].txt - [647 octets] ##########




JUNKWARE REMOVL TOOL.

Junkware Removal Tool (JRT) by Thisisu
Version: 3.0.9 (11.13.2012)
OS: Windows 7 Home Premium x86
Ran by Pauls Laptop on 14/11/2012 at 11:42:39.82
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14/11/2012 at 11:46:25.70
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:39 PM

Posted 14 November 2012 - 08:33 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#11 rimmer80

rimmer80
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Plymouth Devon UK.
  • Local time:04:39 AM

Posted 15 November 2012 - 05:51 AM

Rkill Log as requested.


Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/15/2012 10:25:21 AM in x86 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\exefile\shell\open\command\\IsolatedCommand was changed. It was reset to "%1" %*!

* HKLM\Software\Classes\exefile\shell\runas\command\\IsolatedCommand was changed. It was reset to "%1" %*!


Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 11/15/2012 10:25:41 AM
Execution time: 0 hours(s), 0 minute(s), and 20 seconds(s)



Autorun Log.

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ArcSoft Connection Service" "ArcSoft Connect Daemon" "ArcSoft Inc." "c:\program files\common files\arcsoft\connection service\bin\acdaemon.exe"
+ "btbb_McciTrayApp" "mcci+McciTrayApp" "Alcatel-Lucent" "c:\program files\bt broadband desktop help\btbb\bthelpnotifier.exe"
+ "CLMLServer" "CyberLink MediaLibray Service" "CyberLink" "c:\program files\cyberlink\power2go\clmlsvc.exe"
+ "IAAnotif" "Event Monitor User Notification Tool" "Intel Corporation" "c:\program files\intel\intel matrix storage manager\iaanotif.exe"
+ "IR_SERVER" "" "" "File not found: C:\PROGRA~1\Realtek\REALTE~1\IR_SERVER.exe"
+ "MDS_Menu" "MUI StartMenu Application" "CyberLink Corp." "c:\program files\cyberlink\mediashow4\muitransfer\muistartmenu.exe"
+ "MGSysCtrl" "System Control Manager" "Micro-Star International Co., Ltd." "c:\program files\system control manager\mgsysctrl.exe"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
+ "NBKeyScan" "" "" "File not found: C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
+ "PDVD9LanguageShortcut" "PowerDVD Language Application" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\language\language.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe"
+ "RtHDVCpl" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\rthdvcpl.exe"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files\ati technologies\ati.ace\core-static\clistart.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "UCam_Menu" "MUI StartMenu Application" "CyberLink Corp." "c:\program files\cyberlink\youcam\muitransfer\muistartmenu.exe"
+ "UpdateLBPShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files\cyberlink\labelprint\muitransfer\muistartmenu.exe"
+ "UpdateP2GoShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files\cyberlink\power2go\muitransfer\muistartmenu.exe"
+ "UpdatePDRShortCut" "StartMen Application" "CyberLink Corp." "c:\program files\cyberlink\powerdirector\muitransfer\muistartmenu.exe"
+ "UpdatePPShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\muitransfer\muistartmenu.exe"
+ "YouCam Mirror Tray icon" "CyberLink YouCam Tray" "CyberLink Corp." "c:\program files\cyberlink\youcam\youcamtray.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "TMMonitor.lnk" "TMMonitor" "ArcSoft, Inc." "c:\program files\arcsoft\totalmedia 3.5\tmmonitor.exe"
"C:\Users\Pauls Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "OpenOffice.org 3.3.lnk" "" "" "c:\program files\openoffice.org 3\program\quickstart.exe"
+ "RT-Updater.lnk" "VCDS" "Ross-Tech, LLC" "c:\ross-tech\vcds\vcds.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" "" "" "File not found: C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe"
+ "msnmsgr" "Windows Live Messenger" "Microsoft Corporation" "c:\program files\windows live\messenger\msnmsgr.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "livecall" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.14.0.8050.1202.dll"
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "ms-itss" "Microsoft® InfoTech Storage System Library" "Microsoft Corporation" "c:\program files\common files\microsoft shared\information retrieval\msitss.dll"
+ "msnim" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.14.0.8050.1202.dll"
+ "vw-wi" "TODO: <File description>" "TODO: <Company name>" "c:\elsawin\bin\wiprot.dll"
+ "wlmailhtml" "Windows Live Mail" "Microsoft Corporation" "c:\program files\windows live\mail\mailcomm.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files\ati technologies\ati.ace\core-static\atiacmxx.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "NeroDigitalColumnHandler Class" "" "" "File not found: C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll"
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Bing Bar Helper" "Bing Client Extensions" "Microsoft Corporation." "c:\program files\microsoft\bingbar\bingext.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Windows Live Sign-in Helper" "WindowsLiveLogin.dll" "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Bing" "Bing Client Extensions" "Microsoft Corporation." "c:\program files\microsoft\bingbar\bingext.dll"
"HKCU\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "eBay.co.uk" "" "" "File not found: http://rover.ebay.com/rover/1/710-72741-17534-1/4"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files\windows live\writer\writerbrowserextension.dll"
+ "eBay.co.uk" "" "" "File not found: http://rover.ebay.com/rover/1/710-72741-17534-1/4"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office12\onbttnie.dll"
"Task Scheduler" "" "" ""
+ "\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Microsoft Antimalware\MpIdleTask" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\{D9C46D55-849A-4109-93EB-84E53F3DE8AA}" "" "" "c:\users\pauls"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "!SASCORE" "SUPERAntiSpyware Core Service" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sascore.exe"
+ "ACDaemon" "ArcSoft Connect Service" "ArcSoft Inc." "c:\program files\common files\arcsoft\connection service\bin\acservice.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files\microsoft\bingbar\bbsvc.exe"
+ "BBUpdate" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation" "c:\program files\microsoft\bingbar\seaport.exe"
+ "GoToAssist" "Citrix GoToAssist provides remote help to this PC." "Citrix Online, a division of Citrix Systems, Inc." "c:\program files\citrix\gotoassist\570\g2aservice.exe"
+ "IAANTMON" "RAID Monitor" "Intel Corporation" "c:\program files\intel\intel matrix storage manager\iaantmon.exe"
+ "LcSvrAdm" "System Service LcSvrAdm" "Volkswagen AG" "c:\elsawin\bin\lcsvradm.exe"
+ "LcSvrAuf" "System Service LcSvrAuf" "Volkswagen AG" "c:\elsawin\bin\lcsvrauf.exe"
+ "LcSvrDba" "LCSVRDBA - Data Layer" "Volkswagen AG" "c:\elsawin\bin\lcsvrdba.exe"
+ "LcSvrHis" "System Service LcSvrHis" "Volkswagen AG" "c:\elsawin\bin\lcsvrhis.exe"
+ "LcSvrPAS" "LCSVRPAS - Retail Version" "Volkswagen AG" "c:\elsawin\bin\lcsvrpas.exe"
+ "LcSvrSaz" "LCSVRSAZ - Data Layer" "Volkswagen AG" "c:\elsawin\bin\lcsvrsaz.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "McciCMService" "mcci+McciCMService" "Alcatel-Lucent" "c:\program files\common files\motive\mccicmservice.exe"
+ "Micro Star SCM" "MSI SCM Service " "Micro-Star International Co., Ltd." "c:\program files\system control manager\msiservice.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\nissrv.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "PLFlash DeviceIoControl Service" "" "" "File not found: C:\Windows\system32\IoctlSvc.exe"
+ "PSI_SVC_2" "This service provides Protexis licensing functionalty." "Protexis Inc." "c:\program files\common files\protexis\license service\psiservice_2.exe"
+ "RapportMgmtService" "Central Rapport Management and Monitoring Service" "Trusteer Ltd." "c:\program files\trusteer\rapport\bin\rapportmgmtservice.exe"
+ "RichVideo" "RichVideo Module" "" "c:\program files\cyberlink\shared files\richvideo.exe"
+ "VSGate" "VsGate - Gate" "Volkswagen AG" "c:\elsawin\bin\vsgate.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "Afc" "Arcsoft® ASPI Shell" "Arcsoft, Inc." "c:\windows\system32\drivers\afc.sys"
+ "aic78xx" "Adaptec Ultra SCSI miniport" "Adaptec, Inc." "c:\windows\system32\drivers\djsvs.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows family" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbdx.sys"
+ "b57nd60x" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60x.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbdx.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Matrix Storage Manager driver - ia32" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - ia32" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhda.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7 for x86" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MREMP50" "PCAUSA NDIS 5.0 MPR Protocol Driver" "Printing Communications Assoc., Inc. (PCAUSA)" "c:\program files\common files\motive\mremp50.sys"
+ "MREMPR5" "" "" "File not found: C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS"
+ "MRENDIS5" "" "" "File not found: C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS"
+ "MRESP50" "PCAUSA NDIS 5.0 SPR Protocol Driver" "Printing Communications Assoc., Inc. (PCAUSA)" "c:\program files\common files\motive\mresp50.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RapportCerberus_43926" "" "" "c:\programdata\trusteer\rapport\store\exts\rapportcerberus\43926\rapportcerberus32_43926.sys"
+ "RapportEI" "RapportEI" "Trusteer Ltd." "c:\program files\trusteer\rapport\bin\rapportei.sys"
+ "RapportIaso" "RapportIaso" "Trusteer Ltd." "c:\programdata\trusteer\rapport\store\exts\rapportms\28896\rapportiaso.sys"
+ "RapportPG" "RapportPG" "Trusteer Ltd." "c:\program files\trusteer\rapport\bin\rapportpg.sys"
+ "RSUSBSTOR" "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtsustor.sys"
+ "RT-USB" "RossTech USB Driver" "Ross-Tech LLC" "c:\windows\system32\drivers\rt-usb.sys"
+ "RTHDMIAzAudService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rthdmiv.sys"
+ "RTL2832U_IRHID" "Realtek Virtual Hid IR Device" "Realtek" "c:\windows\system32\drivers\rtl2832u_irhid.sys"
+ "RTL2832UBDA" "RTL2832UBDA Driver" "REALTEK SEMICONDUCTOR Corp." "c:\windows\system32\drivers\rtl2832ubda.sys"
+ "RTL2832UUSB" "RTL2832UUSB Driver" "REALTEK SEMICONDUCTOR Corp." "c:\windows\system32\drivers\rtl2832uusb.sys"
+ "RTL8167" "Realtek 8101E/8168/8169 NDIS 6.20 32-bit Driver " "Realtek " "c:\windows\system32\drivers\rt86win7.sys"
+ "rtl8192se" "Realtek RTL81892SE NDIS Driverr" "Realtek Semiconductor Corporation " "c:\windows\system32\drivers\rtl8192se.sys"
+ "RtsUIR" "" "" "File not found: system32\DRIVERS\Rts516xIR.sys"
+ "SASDIFSV" "SASDIFSV.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv.sys"
+ "SASKUTIL" "SASKUTIL.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "TfBulk" "USB interface module between user-mode and MS-USBD (x86)" "Topfield (visit www.topfield.co.kr)" "c:\windows\system32\drivers\tfbulk.sys"
+ "USBCCID" "" "" "File not found: system32\DRIVERS\RtsUCcid.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "CyberLink Audio Commercial Cut Analyzer" "CLAudCM" "Cyberlink Corp." "c:\program files\cyberlink\powerproducer\claudcm.ax"
+ "CyberLink Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\se_claud.ax"
+ "CyberLink Audio Decoder (PDVD9)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\audiofilter\claud.ax"
+ "CyberLink Audio Decoder(PDVD9 UPnP)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\upnp\claud.ax"
+ "CyberLink Audio Effect (PDVD9)" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files\cyberlink\powerdvd9\audiofilter\claudfx.ax"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio Spectrum Analyzer (PDVD9)" "CLAudSpa.ax" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\audiofilter\claudspa.ax"
+ "CyberLink Audio Spectrum Analyzer(PDVD9 UPnP)" "CLAudSpa.ax" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\upnp\claudspa.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gvb.ax"
+ "CyberLink Audio Wizard" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\audiofilter\claudwizard.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gaudiocd.ax"
+ "CyberLink AudioCD Filter (PDVD9)" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\audiofilter\claudiocd.ax"
+ "CyberLink Demultiplexer" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\cldemuxer.ax"
+ "CyberLink Demultiplexer(PDVD9 UPnP)" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\upnp\cldemuxer.ax"
+ "CyberLink Demux (PDVD9)" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\navfilter\cldemuxer.ax"
+ "CyberLink Digest Filter (PDVD9)" "DigestFilter Dynamic Link Library" "CyberLink" "c:\program files\cyberlink\powerdvd9\digestfilter.dll"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\se_cldumpdispatch.ax"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gdump.ax"
+ "CyberLink DV Buffer" "DV dump Filter" "CyberLink Corporation" "c:\program files\cyberlink\powerproducer\ppdvdump.ax"
+ "CyberLink DVD Navigator (PDC 1.0)" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd copy\clnavx.ax"
+ "CyberLink DVD Navigator (PDVD9)" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\navfilter\clnavx.ax"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gedtkrn.dll"
+ "CyberLink Editing Service 4.5 (Source)" "CES Kernel (LT15)" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\cledtkrn.dll"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2greader.ax"
+ "CyberLink Frame Parser" "CLFParser" "CyberLink" "c:\program files\cyberlink\powerproducer\clfparser.ax"
+ "CyberLink H.264/AVC Decoder" "CyberLink 264 Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\cl264dec.ax"
+ "CyberLink HD/BD Mixer (PDVD9)" "CLHBMixer" " " "c:\program files\cyberlink\powerdvd9\audiofilter\clhbmixer.ax"
+ "CyberLink Line21 Decoder (PDVD9)" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\videofilter\clline21.ax"
+ "CyberLink Line21 Decoder Filter (PDC 1.0)" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd copy\clline21.ax"
+ "CyberLink Load Image Filter" "CLImage (LT15)" "CyberLink" "c:\program files\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files\cyberlink\powerproducer\se_mpgmux.ax"
+ "CyberLink MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\upnp\clsplter.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files\cyberlink\mce software encoder\clvidencmce.ax"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink MPEG-4 Muxer" "CyberLink MPEG-4 Muxer" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\se_clm4muxer.ax"
+ "CyberLink MPEG-4 Muxer" "CyberLink MPEG-4 Muxer" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\clm4muxer.ax"
+ "CyberLink MPEG-4 Splitter" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\se_clm4splt.ax"
+ "CyberLink MPEG-4 Splitter" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\clm4splt.ax"
+ "CyberLink MPEG-4 Splitter (PDVD9)" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\navfilter\clm4splt.ax"
+ "CyberLink MPEGV Analyzer" "CLMPEGAnalysis" "CyberLink" "c:\program files\cyberlink\powerproducer\se_clmpegvanalyzer.ax"
+ "CyberLink MPEGV Analyzer" "CLMPEGAnalysis" "CyberLink" "c:\program files\cyberlink\powerproducer\clmpegvanalyzer.ax"
+ "CyberLink Mux Push Source" "Cyberlink push-mode file source" "Cyberlink" "c:\program files\cyberlink\powerproducer\se_clmuxpushsrc.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink Push-Mode CLStream(PDVD9)" "CLStream" "CyberLink" "c:\program files\cyberlink\powerdvd9\upnp\clstream(pushmode).ax"
+ "CyberLink SBE Filter" "CLSBE" "CyberLink" "c:\program files\cyberlink\powerproducer\clsbe.ax"
+ "CyberLink SBE Source Filter" "CLSBESrc" "CyberLink" "c:\program files\cyberlink\powerproducer\clsbesrc.ax"
+ "Cyberlink Scene Detect Filter" "CLScnDt" "CyberLink" "c:\program files\cyberlink\powerproducer\ppscndt.ax"
+ "CyberLink Stamp Effect" "" "CyberLink corporate" "c:\program files\cyberlink\powerproducer\ppstampeffect.ax"
+ "CyberLink Streamming Filter(PDVD9)" "Cyberlink Streaming Source Filter(Scramble)" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\upnp\clstream.ax"
+ "Cyberlink Sub-Picture Filter" "Cyberlink Sub-Picture Filter" "Cyberlink" "c:\program files\cyberlink\powerproducer\clsubpic.ax"
+ "Cyberlink SubTitle Importor (PDVD9)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\videofilter\clsubtitle.ax"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TimeStretch Filter (PDVD9)" "CLAuTS.ax" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\audiofilter\clauts.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\se_cltlmsplter.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gtlmsplter.ax"
+ "Cyberlink TS Information" "CLTSInfo" "Cyberlink" "c:\program files\cyberlink\powerproducer\pptsinfo.ax"
+ "CyberLink Tzan Filter" "Cyberlink Tzan Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\cltzan.ax"
+ "CyberLink Tzan Filter (PDVD9)" "Cyberlink Tzan Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\videofilter\cltzan.ax"
+ "CyberLink UltraSpeed/SVRT Demultiplexer" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\se_cledtdemuxer.ax"
+ "CyberLink UltraSpeed/SVRT Demultiplexer" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\cledtdemuxer.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files\cyberlink\power2go\p2gvideostabilizer.ax"
+ "CyberLink Video/SP Decoder (PDVD9)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\videofilter\clvsd.ax"
+ "CyberLink Video/SP Decoder(PDVD9 UPnP)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd9\upnp\clvsd.ax"
+ "DABP Splitter" "version MFC Application" "Realtek" "c:\windows\system32\superframesplitter.dll"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files\cyberlink\power2go\p2gresample.ax"
+ "PDC Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd copy\clvsd.ax"
+ "PowerProducer Double Tee" "Cyberlink Double Tee Filter" "CtberLink Corporation" "c:\program files\cyberlink\powerproducer\ppdoubletee.ax"
+ "PP Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\claud.ax"
+ "PP Audio Effect" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files\cyberlink\powerproducer\claudfx.ax"
+ "PP Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files\cyberlink\powerproducer\claudenc.ax"
+ "PP Audio Noise Reduction (CES)" "CLAuNR" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\claunrwrapper.ax"
+ "PP Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\ppaursmpl.ax"
+ "PP Byte Counter" "PP Byte Counter" "CyberLink Corporation" "c:\program files\cyberlink\powerproducer\ppbytecounter.ax"
+ "PP DDR" "PP DDR" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\pprender.ax"
+ "PP Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\cldumpdispatch.ax"
+ "PP Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\cldump.ax"
+ "PP DV Buffer" "CLDVBuffer Filter" "CyberLink" "c:\program files\cyberlink\powerproducer\ppdvbuffer.ax"
+ "PP DV Dump Filter" "DV dump Filter" "CyberLink Corporation" "c:\program files\cyberlink\powerproducer\ppdvdump.ax"
+ "PP DV TCR" "DVTCR" "CyberLink" "c:\program files\cyberlink\powerproducer\ppdvtcr.ax"
+ "PP File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\ppreader.ax"
+ "PP Gate Filter" "CLGate" "CyberLink" "c:\program files\cyberlink\powerproducer\ppgate.ax"
+ "PP IDM" "idmf" "Cyberlink" "c:\program files\cyberlink\powerproducer\ppidmf.ax"
+ "PP M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files\cyberlink\powerproducer\ppm2vwriter.ax"
+ "PP MPEG Muxer" "MpgMux" "CyberLink" "c:\program files\cyberlink\powerproducer\mpgmux.ax"
+ "PP MPEG Splitter" "PP MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\ppsplter.ax"
+ "PP MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files\cyberlink\powerproducer\clvidenc.ax"
+ "PP PCM Wrapper" "PP PCM Wrapper" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\pppcmenc.ax"
+ "PP Snapshot Filter" "CLSnapShot Filter" "CyberLink" "c:\program files\cyberlink\powerproducer\ppsnapshot.ax"
+ "PP SnapShotTIP Filter" "CLSShot" "CyberLink" "c:\program files\cyberlink\powerproducer\ppsshot.ax"
+ "PP TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\clauts.ax"
+ "PP TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\cltlmsplter.ax"
+ "PP TV Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\claudtv.ax"
+ "PP Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\ppgenericvsd.ax"
+ "PP Video Effect" "CLVidFx" "CyberLink" "c:\program files\cyberlink\powerproducer\ppvidfx.ax"
+ "PP Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files\cyberlink\powerproducer\ppresample.ax"
+ "PP Video Regulator" "Video Regulator" "Cyberlink" "c:\program files\cyberlink\powerproducer\clrgl.ax"
+ "PP WAV Dest" "CLWavDest" "CyberLink" "c:\program files\cyberlink\powerproducer\ppwavdest.ax"
+ "PP YUY2 Deinterlace" "DitlYuY2" "CyberLink" "c:\program files\cyberlink\powerproducer\ppditlyuy2.ax"
+ "PP YUY2 Sub-Sampling" "SubYUY2 Filter" "CyberLink Corp." "c:\program files\cyberlink\powerproducer\ppsubyuy2.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "RTKDABSourceFilter" "version MFC Application" "Realtek" "c:\windows\system32\rtkdabsource.dll"
+ "RTKFMSourceFilter" "version MFC Application" "Realtek" "c:\windows\system32\rtkfmsource.dll"
+ "Time Regulator" "TimeRegulator" "cyberlink" "c:\program files\cyberlink\powerproducer\avi_audtr.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "GoToAssist" "Citrix Online GoToAssist Corporate" "Citrix Online, a division of Citrix Systems, Inc." "c:\program files\citrix\gotoassist\570\g2awinlogon.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "BJ Language Monitor4" "Canon Inkjet Printer Driver" "CANON INC." "c:\windows\system32\cnblm4.dll"

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:39 PM

Posted 15 November 2012 - 10:07 AM

Current issues?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users