Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected pc


  • Please log in to reply
7 replies to this topic

#1 LTW909

LTW909

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:29 AM

Posted 09 November 2012 - 05:50 AM

Hi Guys,

I do believe I have gone and got myself caught by one of the brainless morons.

This problem initiated in watching a you tube video causing the AVG program to have a melt down. Whilst AVG managed to record various details I fear it has not prevented the input of unwanted data.

The resulting problem is none of the pcs in the house can connect to the Internet without the router being reset on every occasion. The following error message was recorded

XML Parsing Error: unexpected parser state
Location: jar:file:///C:/Program%20Files/Mozilla%20Firefox/omni.ja!/chrome/toolkit/content/global/netError.xhtml
Line Number 315, Column 58: <div id="ed_netInterrupt">&netInterrupt.longDesc;</div>

This file is contained within the Mozilla Root folder which I have tried to uninstall to no avail. The error code displayed at the end of the uni stall process is Error 21.

Any suggestions would be warmly received.


In grateful anticipation

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:29 AM

Posted 09 November 2012 - 05:53 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 LTW909

LTW909
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:29 AM

Posted 09 November 2012 - 09:37 AM

Thanks for the quick response
Further to your instructions please find the following as stated

It is comforting to know that for every jerk who tries to ruin your day there is someone who is willing to make it. NarenXP Thank you very much.

TDSSKiller

11:12:48.0674 3688 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
11:12:48.0861 3688 ============================================================
11:12:48.0861 3688 Current date / time: 2012/11/09 11:12:48.0861
11:12:48.0861 3688 SystemInfo:
11:12:48.0861 3688
11:12:48.0861 3688 OS Version: 6.0.6002 ServicePack: 2.0
11:12:48.0861 3688 Product type: Workstation
11:12:48.0861 3688 ComputerName: WORKCOMPUTER-PC
11:12:48.0861 3688 UserName: Work Computer
11:12:48.0861 3688 Windows directory: C:\Windows
11:12:48.0861 3688 System windows directory: C:\Windows
11:12:48.0861 3688 Processor architecture: Intel x86
11:12:48.0861 3688 Number of processors: 2
11:12:48.0861 3688 Page size: 0x1000
11:12:48.0861 3688 Boot type: Normal boot
11:12:48.0861 3688 ============================================================
11:12:49.0547 3688 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:12:49.0610 3688 ============================================================
11:12:49.0610 3688 \Device\Harddisk0\DR0:
11:12:49.0610 3688 MBR partitions:
11:12:49.0610 3688 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1003000, BlocksNum 0x2442B000
11:12:49.0610 3688 ============================================================
11:12:49.0656 3688 C: <-> \Device\Harddisk0\DR0\Partition1
11:12:49.0656 3688 ============================================================
11:12:49.0656 3688 Initialize success
11:12:49.0656 3688 ============================================================
11:13:45.0456 4116 ============================================================
11:13:45.0456 4116 Scan started
11:13:45.0456 4116 Mode: Manual; TDLFS;
11:13:45.0456 4116 ============================================================
11:13:45.0597 4116 ================ Scan system memory ========================
11:13:45.0597 4116 System memory - ok
11:13:45.0597 4116 ================ Scan services =============================
11:13:45.0893 4116 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:13:45.0893 4116 ACPI - ok
11:13:45.0956 4116 [ 18214C7B97AE093A6631A2FBA4129F68 ] ADIHdAudAddService C:\Windows\system32\drivers\ADIHdAud.sys
11:13:45.0956 4116 ADIHdAudAddService - ok
11:13:46.0034 4116 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:13:46.0034 4116 AdobeFlashPlayerUpdateSvc - ok
11:13:46.0096 4116 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:13:46.0112 4116 adp94xx - ok
11:13:46.0143 4116 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:13:46.0143 4116 adpahci - ok
11:13:46.0174 4116 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:13:46.0174 4116 adpu160m - ok
11:13:46.0205 4116 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:13:46.0221 4116 adpu320 - ok
11:13:46.0268 4116 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:13:46.0268 4116 AeLookupSvc - ok
11:13:46.0330 4116 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
11:13:46.0330 4116 AFD - ok
11:13:46.0377 4116 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:13:46.0377 4116 agp440 - ok
11:13:46.0424 4116 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:13:46.0424 4116 aic78xx - ok
11:13:46.0455 4116 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
11:13:46.0455 4116 ALG - ok
11:13:46.0470 4116 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
11:13:46.0486 4116 aliide - ok
11:13:46.0517 4116 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:13:46.0517 4116 amdagp - ok
11:13:46.0548 4116 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
11:13:46.0548 4116 amdide - ok
11:13:46.0564 4116 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:13:46.0564 4116 AmdK7 - ok
11:13:46.0595 4116 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:13:46.0595 4116 AmdK8 - ok
11:13:46.0720 4116 [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
11:13:46.0736 4116 AOL ACS - ok
11:13:46.0782 4116 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
11:13:46.0782 4116 Appinfo - ok
11:13:46.0814 4116 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
11:13:46.0814 4116 arc - ok
11:13:46.0876 4116 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:13:46.0876 4116 arcsas - ok
11:13:46.0985 4116 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:13:46.0985 4116 aspnet_state - ok
11:13:47.0048 4116 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:13:47.0048 4116 AsyncMac - ok
11:13:47.0094 4116 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
11:13:47.0094 4116 atapi - ok
11:13:47.0141 4116 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:13:47.0141 4116 AudioEndpointBuilder - ok
11:13:47.0157 4116 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:13:47.0157 4116 Audiosrv - ok
11:13:47.0438 4116 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
11:13:47.0578 4116 AVGIDSAgent - ok
11:13:47.0625 4116 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
11:13:47.0656 4116 AVGIDSDriver - ok
11:13:47.0718 4116 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
11:13:47.0718 4116 AVGIDSHX - ok
11:13:47.0734 4116 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
11:13:47.0750 4116 AVGIDSShim - ok
11:13:47.0781 4116 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
11:13:47.0796 4116 Avgldx86 - ok
11:13:47.0828 4116 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
11:13:47.0828 4116 Avglogx - ok
11:13:47.0859 4116 [ 6C7C00B8DD22B4343B47FED148387057 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
11:13:47.0874 4116 Avgmfx86 - ok
11:13:47.0890 4116 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
11:13:47.0906 4116 Avgrkx86 - ok
11:13:47.0921 4116 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
11:13:47.0921 4116 Avgtdix - ok
11:13:47.0984 4116 [ 6F76908F065C3C151C4BFCA7DFD86979 ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
11:13:47.0999 4116 avgtp - ok
11:13:48.0046 4116 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
11:13:48.0046 4116 avgwd - ok
11:13:48.0108 4116 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:13:48.0108 4116 Beep - ok
11:13:48.0171 4116 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
11:13:48.0171 4116 BFE - ok
11:13:48.0249 4116 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
11:13:48.0264 4116 BITS - ok
11:13:48.0264 4116 blbdrive - ok
11:13:48.0311 4116 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:13:48.0311 4116 bowser - ok
11:13:48.0358 4116 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:13:48.0358 4116 BrFiltLo - ok
11:13:48.0374 4116 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:13:48.0374 4116 BrFiltUp - ok
11:13:48.0405 4116 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
11:13:48.0405 4116 Browser - ok
11:13:48.0420 4116 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:13:48.0436 4116 Brserid - ok
11:13:48.0452 4116 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:13:48.0452 4116 BrSerWdm - ok
11:13:48.0467 4116 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:13:48.0467 4116 BrUsbMdm - ok
11:13:48.0483 4116 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:13:48.0483 4116 BrUsbSer - ok
11:13:48.0498 4116 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:13:48.0498 4116 BTHMODEM - ok
11:13:48.0561 4116 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:13:48.0561 4116 cdfs - ok
11:13:48.0608 4116 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:13:48.0608 4116 cdrom - ok
11:13:48.0654 4116 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:13:48.0670 4116 CertPropSvc - ok
11:13:48.0686 4116 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
11:13:48.0701 4116 circlass - ok
11:13:48.0732 4116 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
11:13:48.0748 4116 CLFS - ok
11:13:48.0779 4116 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:13:48.0779 4116 clr_optimization_v2.0.50727_32 - ok
11:13:48.0842 4116 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:13:48.0842 4116 clr_optimization_v4.0.30319_32 - ok
11:13:48.0873 4116 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:13:48.0873 4116 cmdide - ok
11:13:48.0873 4116 [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:13:48.0873 4116 Compbatt - ok
11:13:48.0888 4116 COMSysApp - ok
11:13:48.0904 4116 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:13:48.0904 4116 crcdisk - ok
11:13:48.0920 4116 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:13:48.0920 4116 Crusoe - ok
11:13:48.0951 4116 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:13:48.0951 4116 CryptSvc - ok
11:13:49.0029 4116 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:13:49.0029 4116 DcomLaunch - ok
11:13:49.0060 4116 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:13:49.0060 4116 DfsC - ok
11:13:49.0185 4116 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
11:13:49.0247 4116 DFSR - ok
11:13:49.0310 4116 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:13:49.0310 4116 Dhcp - ok
11:13:49.0356 4116 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
11:13:49.0372 4116 disk - ok
11:13:49.0403 4116 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:13:49.0403 4116 Dnscache - ok
11:13:49.0450 4116 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:13:49.0466 4116 dot3svc - ok
11:13:49.0512 4116 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
11:13:49.0512 4116 DPS - ok
11:13:49.0559 4116 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:13:49.0559 4116 drmkaud - ok
11:13:49.0622 4116 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:13:49.0637 4116 DXGKrnl - ok
11:13:49.0653 4116 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:13:49.0668 4116 E1G60 - ok
11:13:49.0700 4116 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
11:13:49.0715 4116 EapHost - ok
11:13:49.0762 4116 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:13:49.0762 4116 Ecache - ok
11:13:49.0809 4116 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:13:49.0809 4116 ehRecvr - ok
11:13:49.0840 4116 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
11:13:49.0840 4116 ehSched - ok
11:13:49.0856 4116 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
11:13:49.0856 4116 ehstart - ok
11:13:49.0902 4116 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:13:49.0902 4116 elxstor - ok
11:13:49.0965 4116 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:13:49.0965 4116 EMDMgmt - ok
11:13:50.0027 4116 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
11:13:50.0027 4116 EventSystem - ok
11:13:50.0074 4116 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
11:13:50.0090 4116 exfat - ok
11:13:50.0105 4116 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:13:50.0105 4116 fastfat - ok
11:13:50.0136 4116 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:13:50.0136 4116 fdc - ok
11:13:50.0168 4116 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:13:50.0168 4116 fdPHost - ok
11:13:50.0199 4116 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:13:50.0199 4116 FDResPub - ok
11:13:50.0261 4116 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:13:50.0261 4116 FileInfo - ok
11:13:50.0292 4116 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:13:50.0292 4116 Filetrace - ok
11:13:50.0324 4116 [ 7B854C3D489F38B5A031A5330D356AC3 ] FLMCKUSB C:\Windows\system32\drivers\flmckusb.sys
11:13:50.0324 4116 FLMCKUSB - ok
11:13:50.0339 4116 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:13:50.0355 4116 flpydisk - ok
11:13:50.0386 4116 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:13:50.0402 4116 FltMgr - ok
11:13:50.0480 4116 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
11:13:50.0495 4116 FontCache - ok
11:13:50.0542 4116 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:13:50.0542 4116 FontCache3.0.0.0 - ok
11:13:50.0589 4116 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:13:50.0589 4116 Fs_Rec - ok
11:13:50.0620 4116 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:13:50.0620 4116 gagp30kx - ok
11:13:50.0714 4116 [ 3379F1F4ED24CC0C694C1C9F94B58EB1 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe
11:13:50.0745 4116 GoogleDesktopManager - ok
11:13:50.0792 4116 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:13:50.0792 4116 gpsvc - ok
11:13:50.0838 4116 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
11:13:50.0838 4116 gupdate - ok
11:13:50.0870 4116 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
11:13:50.0870 4116 gupdatem - ok
11:13:50.0901 4116 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:13:50.0901 4116 gusvc - ok
11:13:50.0948 4116 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:13:50.0963 4116 HdAudAddService - ok
11:13:51.0010 4116 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:13:51.0182 4116 HDAudBus - ok
11:13:51.0213 4116 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:13:51.0228 4116 HidBth - ok
11:13:51.0306 4116 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
11:13:51.0338 4116 HidIr - ok
11:13:51.0369 4116 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
11:13:51.0384 4116 hidserv - ok
11:13:51.0400 4116 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:13:51.0400 4116 HidUsb - ok
11:13:51.0431 4116 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:13:51.0431 4116 hkmsvc - ok
11:13:51.0447 4116 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:13:51.0447 4116 HpCISSs - ok
11:13:51.0478 4116 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:13:51.0494 4116 HTTP - ok
11:13:51.0540 4116 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:13:51.0540 4116 i2omp - ok
11:13:51.0618 4116 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:13:51.0618 4116 i8042prt - ok
11:13:51.0650 4116 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:13:51.0650 4116 iaStorV - ok
11:13:51.0728 4116 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:13:51.0743 4116 IDriverT - ok
11:13:51.0837 4116 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:13:51.0868 4116 idsvc - ok
11:13:51.0899 4116 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:13:51.0899 4116 iirsp - ok
11:13:51.0930 4116 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:13:51.0930 4116 IKEEXT - ok
11:13:51.0962 4116 [ 97469037714070E45194ED318D636401 ] intelide C:\Windows\system32\drivers\intelide.sys
11:13:51.0962 4116 intelide - ok
11:13:52.0008 4116 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:13:52.0008 4116 intelppm - ok
11:13:52.0055 4116 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:13:52.0055 4116 IPBusEnum - ok
11:13:52.0086 4116 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:13:52.0086 4116 IpFilterDriver - ok
11:13:52.0102 4116 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:13:52.0118 4116 iphlpsvc - ok
11:13:52.0118 4116 IpInIp - ok
11:13:52.0149 4116 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:13:52.0149 4116 IPMIDRV - ok
11:13:52.0180 4116 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:13:52.0180 4116 IPNAT - ok
11:13:52.0211 4116 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:13:52.0211 4116 IRENUM - ok
11:13:52.0227 4116 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:13:52.0227 4116 isapnp - ok
11:13:52.0289 4116 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:13:52.0289 4116 iScsiPrt - ok
11:13:52.0305 4116 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:13:52.0320 4116 iteatapi - ok
11:13:52.0336 4116 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:13:52.0336 4116 iteraid - ok
11:13:52.0367 4116 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:13:52.0383 4116 kbdclass - ok
11:13:52.0398 4116 [ D2600CB17B7408B4A83F231DC9A11AC3 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:13:52.0398 4116 kbdhid - ok
11:13:52.0414 4116 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
11:13:52.0414 4116 KeyIso - ok
11:13:52.0461 4116 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:13:52.0476 4116 KSecDD - ok
11:13:52.0523 4116 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:13:52.0539 4116 KtmRm - ok
11:13:52.0570 4116 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
11:13:52.0570 4116 LanmanServer - ok
11:13:52.0632 4116 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:13:52.0632 4116 LanmanWorkstation - ok
11:13:52.0664 4116 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:13:52.0664 4116 lltdio - ok
11:13:52.0695 4116 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:13:52.0710 4116 lltdsvc - ok
11:13:52.0742 4116 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:13:52.0742 4116 lmhosts - ok
11:13:52.0773 4116 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:13:52.0773 4116 LSI_FC - ok
11:13:52.0788 4116 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:13:52.0788 4116 LSI_SAS - ok
11:13:52.0820 4116 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:13:52.0820 4116 LSI_SCSI - ok
11:13:52.0851 4116 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
11:13:52.0851 4116 luafv - ok
11:13:52.0929 4116 [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
11:13:52.0944 4116 McComponentHostService - ok
11:13:52.0960 4116 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:13:52.0960 4116 Mcx2Svc - ok
11:13:53.0007 4116 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
11:13:53.0007 4116 megasas - ok
11:13:53.0038 4116 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:13:53.0038 4116 MMCSS - ok
11:13:53.0085 4116 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
11:13:53.0085 4116 Modem - ok
11:13:53.0116 4116 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:13:53.0132 4116 monitor - ok
11:13:53.0147 4116 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:13:53.0147 4116 mouclass - ok
11:13:53.0178 4116 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:13:53.0178 4116 mouhid - ok
11:13:53.0194 4116 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:13:53.0194 4116 MountMgr - ok
11:13:53.0241 4116 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:13:53.0241 4116 MozillaMaintenance - ok
11:13:53.0303 4116 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
11:13:53.0303 4116 mpio - ok
11:13:53.0334 4116 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:13:53.0334 4116 mpsdrv - ok
11:13:53.0381 4116 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
11:13:53.0381 4116 MpsSvc - ok
11:13:53.0397 4116 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:13:53.0397 4116 Mraid35x - ok
11:13:53.0428 4116 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:13:53.0428 4116 MRxDAV - ok
11:13:53.0475 4116 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:13:53.0475 4116 mrxsmb - ok
11:13:53.0490 4116 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:13:53.0490 4116 mrxsmb10 - ok
11:13:53.0506 4116 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:13:53.0506 4116 mrxsmb20 - ok
11:13:53.0537 4116 [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci C:\Windows\system32\drivers\msahci.sys
11:13:53.0537 4116 msahci - ok
11:13:53.0553 4116 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:13:53.0553 4116 msdsm - ok
11:13:53.0584 4116 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
11:13:53.0600 4116 MSDTC - ok
11:13:53.0615 4116 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:13:53.0631 4116 Msfs - ok
11:13:53.0662 4116 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:13:53.0662 4116 msisadrv - ok
11:13:53.0693 4116 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:13:53.0709 4116 MSiSCSI - ok
11:13:53.0709 4116 msiserver - ok
11:13:53.0740 4116 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:13:53.0740 4116 MSKSSRV - ok
11:13:53.0787 4116 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:13:53.0787 4116 MSPCLOCK - ok
11:13:53.0802 4116 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:13:53.0818 4116 MSPQM - ok
11:13:53.0849 4116 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:13:53.0865 4116 MsRPC - ok
11:13:53.0896 4116 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:13:53.0896 4116 mssmbios - ok
11:13:53.0927 4116 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:13:53.0927 4116 MSTEE - ok
11:13:53.0974 4116 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
11:13:53.0974 4116 Mup - ok
11:13:54.0021 4116 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
11:13:54.0021 4116 napagent - ok
11:13:54.0083 4116 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:13:54.0099 4116 NativeWifiP - ok
11:13:54.0146 4116 NAVENG - ok
11:13:54.0146 4116 NAVEX15 - ok
11:13:54.0286 4116 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:13:54.0302 4116 NDIS - ok
11:13:54.0333 4116 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:13:54.0333 4116 NdisTapi - ok
11:13:54.0364 4116 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:13:54.0364 4116 Ndisuio - ok
11:13:54.0395 4116 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:13:54.0411 4116 NdisWan - ok
11:13:54.0426 4116 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:13:54.0426 4116 NDProxy - ok
11:13:54.0442 4116 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:13:54.0442 4116 NetBIOS - ok
11:13:54.0473 4116 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:13:54.0489 4116 netbt - ok
11:13:54.0504 4116 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
11:13:54.0504 4116 Netlogon - ok
11:13:54.0536 4116 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
11:13:54.0536 4116 Netman - ok
11:13:54.0582 4116 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:13:54.0598 4116 NetMsmqActivator - ok
11:13:54.0598 4116 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:13:54.0598 4116 NetPipeActivator - ok
11:13:54.0645 4116 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
11:13:54.0645 4116 netprofm - ok
11:13:54.0660 4116 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:13:54.0660 4116 NetTcpActivator - ok
11:13:54.0676 4116 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:13:54.0676 4116 NetTcpPortSharing - ok
11:13:54.0707 4116 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:13:54.0707 4116 nfrd960 - ok
11:13:54.0738 4116 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:13:54.0738 4116 NlaSvc - ok
11:13:54.0785 4116 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\Windows\system32\drivers\npf.sys
11:13:54.0785 4116 NPF - ok
11:13:54.0816 4116 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:13:54.0816 4116 Npfs - ok
11:13:54.0848 4116 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
11:13:54.0848 4116 nsi - ok
11:13:54.0863 4116 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:13:54.0879 4116 nsiproxy - ok
11:13:54.0941 4116 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:13:55.0004 4116 Ntfs - ok
11:13:55.0035 4116 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:13:55.0035 4116 ntrigdigi - ok
11:13:55.0066 4116 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
11:13:55.0066 4116 Null - ok
11:13:55.0253 4116 [ F3F2B0FD5FCDA396F2F317A90A195E06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:13:55.0425 4116 nvlddmkm - ok
11:13:55.0456 4116 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:13:55.0456 4116 nvraid - ok
11:13:55.0487 4116 [ 4A5FCAB82D9BF6AF8A023A66802FE9E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:13:55.0487 4116 nvstor - ok
11:13:55.0518 4116 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:13:55.0534 4116 nv_agp - ok
11:13:55.0534 4116 NwlnkFlt - ok
11:13:55.0550 4116 NwlnkFwd - ok
11:13:55.0612 4116 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:13:55.0628 4116 odserv - ok
11:13:55.0690 4116 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:13:55.0690 4116 ohci1394 - ok
11:13:55.0706 4116 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:13:55.0706 4116 ose - ok
11:13:55.0768 4116 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:13:55.0784 4116 p2pimsvc - ok
11:13:55.0815 4116 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:13:55.0815 4116 p2psvc - ok
11:13:55.0862 4116 [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:13:55.0862 4116 Parport - ok
11:13:55.0908 4116 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:13:55.0908 4116 partmgr - ok
11:13:55.0940 4116 [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
11:13:55.0940 4116 Parvdm - ok
11:13:55.0971 4116 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
11:13:55.0971 4116 PcaSvc - ok
11:13:56.0018 4116 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
11:13:56.0018 4116 pci - ok
11:13:56.0018 4116 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
11:13:56.0033 4116 pciide - ok
11:13:56.0064 4116 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:13:56.0064 4116 pcmcia - ok
11:13:56.0127 4116 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:13:56.0174 4116 PEAUTH - ok
11:13:56.0252 4116 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
11:13:56.0314 4116 pla - ok
11:13:56.0376 4116 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:13:56.0376 4116 PlugPlay - ok
11:13:56.0486 4116 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:13:56.0501 4116 PNRPAutoReg - ok
11:13:56.0548 4116 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:13:56.0548 4116 PNRPsvc - ok
11:13:56.0595 4116 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:13:56.0595 4116 PolicyAgent - ok
11:13:56.0610 4116 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:13:56.0626 4116 PptpMiniport - ok
11:13:56.0626 4116 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
11:13:56.0642 4116 Processor - ok
11:13:56.0657 4116 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:13:56.0657 4116 ProfSvc - ok
11:13:56.0673 4116 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
11:13:56.0673 4116 ProtectedStorage - ok
11:13:56.0704 4116 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:13:56.0704 4116 PSched - ok
11:13:56.0751 4116 [ F7BB4E7A7C02AB4A2672937E124E306E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
11:13:56.0751 4116 PxHelp20 - ok
11:13:56.0813 4116 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:13:56.0860 4116 ql2300 - ok
11:13:56.0891 4116 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:13:56.0907 4116 ql40xx - ok
11:13:56.0938 4116 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
11:13:56.0938 4116 QWAVE - ok
11:13:56.0969 4116 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:13:56.0969 4116 QWAVEdrv - ok
11:13:57.0000 4116 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:13:57.0000 4116 RasAcd - ok
11:13:57.0016 4116 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
11:13:57.0016 4116 RasAuto - ok
11:13:57.0047 4116 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:13:57.0047 4116 Rasl2tp - ok
11:13:57.0094 4116 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
11:13:57.0094 4116 RasMan - ok
11:13:57.0141 4116 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:13:57.0141 4116 RasPppoe - ok
11:13:57.0188 4116 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:13:57.0188 4116 RasSstp - ok
11:13:57.0234 4116 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:13:57.0234 4116 rdbss - ok
11:13:57.0266 4116 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:13:57.0266 4116 RDPCDD - ok
11:13:57.0312 4116 [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:13:57.0312 4116 rdpdr - ok
11:13:57.0359 4116 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:13:57.0359 4116 RDPENCDD - ok
11:13:57.0390 4116 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:13:57.0406 4116 RDPWD - ok
11:13:57.0453 4116 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:13:57.0453 4116 RemoteAccess - ok
11:13:57.0500 4116 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:13:57.0500 4116 RemoteRegistry - ok
11:13:57.0578 4116 [ 9638E5820858593A12005C753B03CEAE ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
11:13:57.0609 4116 RoxMediaDB9 - ok
11:13:57.0640 4116 [ 910FBA95EE4F56449AA81315884C8EFD ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
11:13:57.0640 4116 RoxWatch9 - ok
11:13:57.0687 4116 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files\WinPcap\rpcapd.exe
11:13:57.0687 4116 rpcapd - ok
11:13:57.0718 4116 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
11:13:57.0718 4116 RpcLocator - ok
11:13:57.0765 4116 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
11:13:57.0765 4116 RpcSs - ok
11:13:57.0796 4116 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:13:57.0796 4116 rspndr - ok
11:13:57.0827 4116 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
11:13:57.0827 4116 SamSs - ok
11:13:57.0858 4116 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:13:57.0858 4116 sbp2port - ok
11:13:57.0905 4116 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:13:57.0921 4116 SCardSvr - ok
11:13:57.0983 4116 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
11:13:57.0983 4116 Schedule - ok
11:13:58.0014 4116 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:13:58.0014 4116 SCPolicySvc - ok
11:13:58.0046 4116 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:13:58.0046 4116 SDRSVC - ok
11:13:58.0061 4116 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:13:58.0061 4116 secdrv - ok
11:13:58.0092 4116 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
11:13:58.0092 4116 seclogon - ok
11:13:58.0124 4116 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
11:13:58.0124 4116 SENS - ok
11:13:58.0139 4116 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:13:58.0139 4116 Serenum - ok
11:13:58.0155 4116 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:13:58.0155 4116 Serial - ok
11:13:58.0170 4116 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:13:58.0170 4116 sermouse - ok
11:13:58.0217 4116 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:13:58.0217 4116 SessionEnv - ok
11:13:58.0233 4116 [ 103B79418DA647736EE95645F305F68A ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:13:58.0233 4116 sffdisk - ok
11:13:58.0248 4116 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:13:58.0248 4116 sffp_mmc - ok
11:13:58.0264 4116 [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:13:58.0264 4116 sffp_sd - ok
11:13:58.0280 4116 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:13:58.0295 4116 sfloppy - ok
11:13:58.0326 4116 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:13:58.0326 4116 SharedAccess - ok
11:13:58.0373 4116 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:13:58.0389 4116 ShellHWDetection - ok
11:13:58.0404 4116 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:13:58.0404 4116 sisagp - ok
11:13:58.0420 4116 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:13:58.0420 4116 SiSRaid2 - ok
11:13:58.0436 4116 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:13:58.0436 4116 SiSRaid4 - ok
11:13:58.0560 4116 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
11:13:58.0654 4116 slsvc - ok
11:13:58.0701 4116 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:13:58.0701 4116 SLUINotify - ok
11:13:58.0748 4116 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:13:58.0748 4116 Smb - ok
11:13:58.0779 4116 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:13:58.0794 4116 SNMPTRAP - ok
11:13:58.0810 4116 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
11:13:58.0826 4116 spldr - ok
11:13:58.0857 4116 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
11:13:58.0857 4116 Spooler - ok
11:13:58.0904 4116 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:13:58.0904 4116 srv - ok
11:13:58.0919 4116 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:13:58.0935 4116 srv2 - ok
11:13:58.0966 4116 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:13:58.0966 4116 srvnet - ok
11:13:58.0997 4116 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:13:58.0997 4116 SSDPSRV - ok
11:13:59.0060 4116 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:13:59.0060 4116 SstpSvc - ok
11:13:59.0106 4116 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
11:13:59.0122 4116 stisvc - ok
11:13:59.0153 4116 [ 51778FD315C9882F1CBD932743E62A72 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
11:13:59.0184 4116 stllssvr - ok
11:13:59.0200 4116 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:13:59.0200 4116 swenum - ok
11:13:59.0247 4116 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
11:13:59.0247 4116 swprv - ok
11:13:59.0278 4116 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:13:59.0278 4116 Symc8xx - ok
11:13:59.0294 4116 SYMTDI - ok
11:13:59.0325 4116 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:13:59.0325 4116 Sym_hi - ok
11:13:59.0340 4116 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:13:59.0340 4116 Sym_u3 - ok
11:13:59.0387 4116 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
11:13:59.0387 4116 SysMain - ok
11:13:59.0418 4116 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:13:59.0418 4116 TabletInputService - ok
11:13:59.0465 4116 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:13:59.0465 4116 TapiSrv - ok
11:13:59.0496 4116 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
11:13:59.0496 4116 TBS - ok
11:13:59.0559 4116 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:13:59.0590 4116 Tcpip - ok
11:13:59.0621 4116 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:13:59.0621 4116 Tcpip6 - ok
11:13:59.0652 4116 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:13:59.0652 4116 tcpipreg - ok
11:13:59.0668 4116 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:13:59.0684 4116 TDPIPE - ok
11:13:59.0715 4116 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:13:59.0715 4116 TDTCP - ok
11:13:59.0746 4116 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:13:59.0762 4116 tdx - ok
11:13:59.0871 4116 [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] TeamViewer7 C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
11:13:59.0886 4116 TeamViewer7 - ok
11:13:59.0902 4116 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:13:59.0918 4116 TermDD - ok
11:13:59.0964 4116 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
11:13:59.0964 4116 TermService - ok
11:13:59.0996 4116 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
11:13:59.0996 4116 Themes - ok
11:14:00.0011 4116 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:14:00.0011 4116 THREADORDER - ok
11:14:00.0042 4116 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
11:14:00.0042 4116 TrkWks - ok
11:14:00.0089 4116 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:14:00.0089 4116 TrustedInstaller - ok
11:14:00.0120 4116 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:14:00.0120 4116 tssecsrv - ok
11:14:00.0167 4116 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:14:00.0167 4116 tunmp - ok
11:14:00.0183 4116 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:14:00.0183 4116 tunnel - ok
11:14:00.0214 4116 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:14:00.0214 4116 uagp35 - ok
11:14:00.0245 4116 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:14:00.0261 4116 udfs - ok
11:14:00.0276 4116 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:14:00.0292 4116 UI0Detect - ok
11:14:00.0308 4116 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:14:00.0308 4116 uliagpkx - ok
11:14:00.0339 4116 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:14:00.0339 4116 uliahci - ok
11:14:00.0354 4116 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:14:00.0370 4116 UlSata - ok
11:14:00.0386 4116 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:14:00.0386 4116 ulsata2 - ok
11:14:00.0417 4116 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:14:00.0417 4116 umbus - ok
11:14:00.0448 4116 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
11:14:00.0448 4116 upnphost - ok
11:14:00.0479 4116 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:14:00.0495 4116 usbccgp - ok
11:14:00.0510 4116 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:14:00.0526 4116 usbcir - ok
11:14:00.0557 4116 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:14:00.0557 4116 usbehci - ok
11:14:00.0604 4116 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:14:00.0604 4116 usbhub - ok
11:14:00.0620 4116 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:14:00.0620 4116 usbohci - ok
11:14:00.0651 4116 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:14:00.0666 4116 usbprint - ok
11:14:00.0713 4116 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:14:00.0713 4116 usbscan - ok
11:14:00.0729 4116 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:14:00.0744 4116 USBSTOR - ok
11:14:00.0760 4116 [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:14:00.0760 4116 usbuhci - ok
11:14:00.0807 4116 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
11:14:00.0807 4116 UxSms - ok
11:14:00.0838 4116 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
11:14:00.0854 4116 vds - ok
11:14:00.0869 4116 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:14:00.0869 4116 vga - ok
11:14:00.0900 4116 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
11:14:00.0900 4116 VgaSave - ok
11:14:00.0916 4116 [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:14:00.0932 4116 viaagp - ok
11:14:00.0947 4116 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:14:00.0947 4116 ViaC7 - ok
11:14:00.0963 4116 [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide C:\Windows\system32\drivers\viaide.sys
11:14:00.0963 4116 viaide - ok
11:14:00.0994 4116 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:14:00.0994 4116 volmgr - ok
11:14:01.0041 4116 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:14:01.0041 4116 volmgrx - ok
11:14:01.0088 4116 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:14:01.0088 4116 volsnap - ok
11:14:01.0103 4116 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:14:01.0103 4116 vsmraid - ok
11:14:01.0166 4116 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
11:14:01.0197 4116 VSS - ok
11:14:01.0275 4116 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
11:14:01.0290 4116 vToolbarUpdater12.2.6 - ok
11:14:01.0322 4116 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
11:14:01.0322 4116 W32Time - ok
11:14:01.0353 4116 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:14:01.0353 4116 WacomPen - ok
11:14:01.0384 4116 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:14:01.0384 4116 Wanarp - ok
11:14:01.0400 4116 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:14:01.0400 4116 Wanarpv6 - ok
11:14:01.0431 4116 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\Windows\system32\DRIVERS\wanatw4.sys
11:14:01.0431 4116 wanatw - ok
11:14:01.0446 4116 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:14:01.0462 4116 wcncsvc - ok
11:14:01.0493 4116 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:14:01.0493 4116 WcsPlugInService - ok
11:14:01.0509 4116 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
11:14:01.0509 4116 Wd - ok
11:14:01.0571 4116 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:14:01.0587 4116 Wdf01000 - ok
11:14:01.0602 4116 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:14:01.0602 4116 WdiServiceHost - ok
11:14:01.0618 4116 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:14:01.0618 4116 WdiSystemHost - ok
11:14:01.0665 4116 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
11:14:01.0665 4116 WebClient - ok
11:14:01.0727 4116 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:14:01.0727 4116 Wecsvc - ok
11:14:01.0758 4116 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:14:01.0758 4116 wercplsupport - ok
11:14:01.0790 4116 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:14:01.0790 4116 WerSvc - ok
11:14:01.0836 4116 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:14:01.0836 4116 WinDefend - ok
11:14:01.0852 4116 WinHttpAutoProxySvc - ok
11:14:01.0914 4116 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:14:01.0914 4116 Winmgmt - ok
11:14:01.0992 4116 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:14:02.0024 4116 WinRM - ok
11:14:02.0070 4116 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:14:02.0086 4116 Wlansvc - ok
11:14:02.0117 4116 [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:14:02.0117 4116 WmiAcpi - ok
11:14:02.0164 4116 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:14:02.0164 4116 wmiApSrv - ok
11:14:02.0226 4116 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:14:02.0226 4116 WMPNetworkSvc - ok
11:14:02.0273 4116 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:14:02.0273 4116 WPCSvc - ok
11:14:02.0320 4116 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:14:02.0320 4116 WPDBusEnum - ok
11:14:02.0382 4116 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:14:02.0414 4116 WPFFontCache_v0400 - ok
11:14:02.0445 4116 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:14:02.0445 4116 ws2ifsl - ok
11:14:02.0476 4116 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
11:14:02.0476 4116 wscsvc - ok
11:14:02.0492 4116 WSearch - ok
11:14:02.0570 4116 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:14:02.0632 4116 wuauserv - ok
11:14:02.0694 4116 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:14:02.0694 4116 WUDFRd - ok
11:14:02.0710 4116 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:14:02.0726 4116 wudfsvc - ok
11:14:02.0772 4116 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
11:14:02.0772 4116 yukonwlh - ok
11:14:02.0788 4116 ================ Scan global ===============================
11:14:02.0819 4116 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:14:02.0866 4116 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:14:02.0882 4116 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:14:02.0944 4116 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
11:14:02.0944 4116 [Global] - ok
11:14:02.0944 4116 ================ Scan MBR ==================================
11:14:02.0960 4116 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
11:14:03.0240 4116 \Device\Harddisk0\DR0 - ok
11:14:03.0240 4116 ================ Scan VBR ==================================
11:14:03.0256 4116 [ 979A3B0701BE4E6DC07F13CCF2971B84 ] \Device\Harddisk0\DR0\Partition1
11:14:03.0256 4116 \Device\Harddisk0\DR0\Partition1 - ok
11:14:03.0256 4116 ============================================================
11:14:03.0256 4116 Scan finished
11:14:03.0256 4116 ============================================================
11:14:03.0272 5848 Detected object count: 0
11:14:03.0272 5848 Actual detected object count: 0
11:16:15.0591 0912 Deinitialize success

aswMBR

The application froze on all attempts to run at the same location, both in normal and safe mode with networking

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-09 11:18:30
-----------------------------
11:18:30.835 OS Version: Windows 6.0.6002 Service Pack 2
11:18:30.835 Number of processors: 2 586 0xF06
11:18:30.835 ComputerName: WORKCOMPUTER-PC UserName: Work Computer
11:18:56.915 Initialize success
11:21:08.616 AVAST engine defs: 12110801
11:21:27.991 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000054
11:21:27.991 Disk 0 Vendor: ST332082 3.AA Size: 305245MB BusType: 8
11:21:28.006 Disk 0 MBR read successfully
11:21:28.022 Disk 0 MBR scan
11:21:28.022 Disk 0 Windows VISTA default MBR code
11:21:28.038 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 8197 MB offset 63
11:21:28.053 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 297046 MB offset 16789504
11:21:28.069 Disk 0 scanning sectors +625139712
11:21:28.131 Disk 0 scanning C:\Windows\system32\drivers
11:21:37.759 Service scanning
11:22:02.767 Modules scanning
11:22:07.207 Disk 0 trace - called modules:
11:22:07.217 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor.sys tcpip.sys NETIO.SYS
11:22:07.227 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86150600]
11:22:07.237 3 CLASSPNP.SYS[87fa78b3] -> nt!IofCallDriver -> [0x84e36e00]
11:22:07.237 5 acpi.sys[822936bc] -> nt!IofCallDriver -> \Device\00000054[0x85285a30]
11:22:08.077 AVAST engine scan C:\Windows
11:22:10.547 AVAST engine scan C:\Windows\system32
11:26:02.822 AVAST engine scan C:\Windows\system32\drivers
11:26:13.833 AVAST engine scan C:\Users\Work Computer
11:32:25.807 Disk 0 MBR has been saved successfully to "C:\Users\Work Computer\Desktop\MBR.dat"
11:32:25.807 The log file has been saved successfully to "C:\Users\Work Computer\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-09 11:39:07
-----------------------------
11:39:07.205 OS Version: Windows 6.0.6002 Service Pack 2
11:39:07.205 Number of processors: 2 586 0xF06
11:39:07.205 ComputerName: WORKCOMPUTER-PC UserName: Work Computer
11:40:06.579 Initialize success
11:40:28.669 AVAST engine defs: 12110801
11:40:40.213 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000054
11:40:40.213 Disk 0 Vendor: ST332082 3.AA Size: 305245MB BusType: 8
11:40:40.228 Disk 0 MBR read successfully
11:40:40.228 Disk 0 MBR scan
11:40:40.259 Disk 0 Windows VISTA default MBR code
11:40:40.259 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 8197 MB offset 63
11:40:40.275 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 297046 MB offset 16789504
11:40:40.291 Disk 0 scanning sectors +625139712
11:40:40.353 Disk 0 scanning C:\Windows\system32\drivers
11:40:49.183 Service scanning
11:41:09.338 Modules scanning
11:41:12.130 Disk 0 trace - called modules:
11:41:12.162 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor.sys
11:41:12.162 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x857baac8]
11:41:12.162 3 CLASSPNP.SYS[87fa18b3] -> nt!IofCallDriver -> [0x84e0b590]
11:41:12.177 5 acpi.sys[822976bc] -> nt!IofCallDriver -> \Device\00000054[0x84e0b030]
11:41:12.832 AVAST engine scan C:\Windows
11:41:15.048 AVAST engine scan C:\Windows\system32
11:43:49.785 AVAST engine scan C:\Windows\system32\drivers
11:44:01.126 AVAST engine scan C:\Users\Work Computer
11:48:11.290 Disk 0 MBR has been saved successfully to "C:\Users\Work Computer\Desktop\MBR.dat"
11:48:11.305 The log file has been saved successfully to "C:\Users\Work Computer\Desktop\aswMBR.txt"

ESET Result

C:\Documents and Settings\Work Computer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IHKERRMS\DlkoBs[1] a variant of Win32/Kryptik.AOKE trojan cleaned by deleting - quarantined
C:\Documents and Settings\Work Computer\AppData\Local\Temp\BI_RunOnce.exe a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Documents and Settings\Work Computer\AppData\Local\Temp\ICReinstall\cnet2_FormsToGo_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Documents and Settings\Work Computer\AppData\Local\Temp\ICReinstall\cnet2_icinst_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Documents and Settings\Work Computer\AppData\Local\Temp\is1598539481\MyBabylonTB.exe Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\Documents and Settings\Work Computer\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\68ad7ade-16bf8783 Java/Exploit.CVE-2012-1723.CI trojan deleted - quarantined
C:\Documents and Settings\Work Computer\Downloads\cnet2_FormsToGo_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Documents and Settings\Work Computer\Downloads\cnet2_icinst_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:29 AM

Posted 09 November 2012 - 10:17 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#5 LTW909

LTW909
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:29 AM

Posted 09 November 2012 - 11:35 AM

Goodness gracious me I thought we had finished.

Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.09.06

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Work Computer :: WORKCOMPUTER-PC [administrator]

Protection: Enabled

09/11/2012 15:34:30
mbam-log-2012-11-09 (15-34-30).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 235475
Time elapsed: 14 minute(s), 44 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Program Files\TSRemote.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.

(end)
2.
MiniToolBox by Farbar Version: 10-11-2012 01
Ran by Work Computer (administrator) on 09-11-2012 at 16:03:39
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Marvell Yukon 88E8001/8003/8010 PCI Gigabit Ethernet Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.1 metric=1
add address name="Local Area Connection" address=192.168.1.150


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : WorkComputer-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8001/8003/8010 PCI Gigabit Ethernet Controller
Physical Address. . . . . . . . . : 00-1A-92-44-2F-F7
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::51a7:b9e6:5bac:cbe3%8(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.150(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 201333394
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-4D-DE-10-00-1A-92-44-2F-F7
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:289c:1af3:3f57:fe69(Preferred)
Link-local IPv6 Address . . . . . : fe80::289c:1af3:3f57:fe69%10(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{13F3DC56-9A3F-41FF-BBE4-8E64C45941B5}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2a00:1450:400b:c02::66
74.125.24.101
74.125.24.138
74.125.24.113
74.125.24.100
74.125.24.102
74.125.24.139



Pinging google.com [74.125.24.139] with 32 bytes of data:

Reply from 74.125.24.139: bytes=32 time=44ms TTL=51

Reply from 74.125.24.139: bytes=32 time=41ms TTL=51



Ping statistics for 74.125.24.139:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 41ms, Maximum = 44ms, Average = 42ms

Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=393ms TTL=49

Reply from 72.30.38.140: bytes=32 time=340ms TTL=49



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 340ms, Maximum = 393ms, Average = 366ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=7ms TTL=128

Reply from 127.0.0.1: bytes=32 time=2ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 2ms, Maximum = 7ms, Average = 4ms

===========================================================================
Interface List
8 ...00 1a 92 44 2f f7 ...... Marvell Yukon 88E8001/8003/8010 PCI Gigabit Ethernet Controller
1 ........................... Software Loopback Interface 1
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
13 ...00 00 00 00 00 00 00 e0 isatap.{13F3DC56-9A3F-41FF-BBE4-8E64C45941B5}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.150 21
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.150 276
192.168.1.150 255.255.255.255 On-link 192.168.1.150 276
192.168.1.255 255.255.255.255 On-link 192.168.1.150 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.150 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.150 276
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.1 1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
10 18 ::/0 On-link
1 306 ::1/128 On-link
10 18 2001::/32 On-link
10 266 2001:0:5ef5:79fb:289c:1af3:3f57:fe69/128
On-link
8 276 fe80::/64 On-link
10 266 fe80::/64 On-link
10 266 fe80::289c:1af3:3f57:fe69/128
On-link
8 276 fe80::51a7:b9e6:5bac:cbe3/128
On-link
1 306 ff00::/8 On-link
10 266 ff00::/8 On-link
8 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/09/2012 11:38:40 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (11/08/2012 11:32:21 AM) (Source: Application Error) (User: )
Description: Faulting application AcroRd32.exe, version 8.0.0.456, time stamp 0x453c8fee, faulting module Multimedia.api, version 8.0.0.456, time stamp 0x453c874b, exception code 0xc0000005, fault offset 0x0008727b,
process id 0x1e10, application start time 0xAcroRd32.exe0.

Error: (11/06/2012 11:28:00 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {8b086914-8c46-4f7f-9fd9-19e9ab4e0a81}

Error: (11/06/2012 00:32:35 AM) (Source: Application Error) (User: )
Description: Faulting application AcroRd32.exe, version 8.0.0.456, time stamp 0x453c8fee, faulting module Multimedia.api, version 8.0.0.456, time stamp 0x453c874b, exception code 0xc0000005, fault offset 0x0008727b,
process id 0x1178, application start time 0xAcroRd32.exe0.

Error: (11/06/2012 00:11:29 AM) (Source: Application Error) (User: )
Description: Faulting application ModelConverterX.exe, version 1.4.0.0, time stamp 0x4fdc25ee, faulting module nvoglv32.dll, version 7.15.11.5818, time stamp 0x461ed3ef, exception code 0xc0000005, fault offset 0x00059694,
process id 0x8d4, application start time 0xModelConverterX.exe0.

Error: (11/04/2012 11:09:35 PM) (Source: Application Hang) (User: )
Description: The program fsx.exe version 10.0.61472.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 620
Start Time: 01cdbab9ce9a4fe0
Termination Time: 364

Error: (11/03/2012 11:07:36 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (10/30/2012 09:38:45 PM) (Source: Application Hang) (User: )
Description: The program fsx.exe version 10.0.61472.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1484
Start Time: 01cdb6c26ab414e1
Termination Time: 402

Error: (10/29/2012 07:49:18 PM) (Source: Application Error) (User: )
Description: Faulting application fsx.exe, version 10.0.61472.0, time stamp 0x475e17d3, faulting module ts3overlay_hook_win32.dll, version 3.7.8.0, time stamp 0x50162e31, exception code 0xc0000005, fault offset 0x000c601f,
process id 0xe10, application start time 0xfsx.exe0.

Error: (10/25/2012 11:45:28 AM) (Source: Application Error) (User: )
Description: Faulting application ModelConverterX.exe, version 1.4.0.0, time stamp 0x4fdc25ee, faulting module nvoglv32.dll, version 7.15.11.5818, time stamp 0x461ed3ef, exception code 0xc0000005, fault offset 0x00059694,
process id 0xf44, application start time 0xModelConverterX.exe0.


System errors:
=============
Error: (11/09/2012 04:00:56 PM) (Source: Service Control Manager) (User: )
Description: SYMTDI

Error: (11/09/2012 04:00:56 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (11/09/2012 04:00:56 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (11/09/2012 11:51:03 AM) (Source: Service Control Manager) (User: )
Description: SYMTDI

Error: (11/09/2012 11:51:03 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (11/09/2012 11:51:03 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (11/09/2012 11:39:42 AM) (Source: Service Control Manager) (User: )
Description: AVGIDSDriver
AVGIDSShim
Avgldx86
spldr
SYMTDI
Wanarpv6

Error: (11/09/2012 11:39:42 AM) (Source: Service Control Manager) (User: )
Description: AVGIDSAgentAVGIDSDriver%%31

Error: (11/09/2012 11:39:42 AM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (11/09/2012 11:39:16 AM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2012-11-09 15:37:54
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:54
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:53
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:53
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:53
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:53
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:53
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:53
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:53
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-09 15:37:53
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Adacalc v2.53 (Version: 2.53)
ADI HD Audio V6.10.01.6140
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Reader 8
Adobe Reader 8 (Version: 8.0.0)
Adobe Shockwave Player (Version: 10.1.4.020)
Airport Design Editor 9x Version 1.50.18.197 (Version: 1.50.18.197)
AOL 9.5
AOL Uninstaller (Choose which Products to Remove)
Apple Software Update (Version: 2.1.3.127)
ATNavigation (Version: 7.6.1.18)
AuthenTec Windows Fingerprint Software (Version: 7.6.1.18)
AVG 2013 (Version: 13.0.2624)
AVG 2013 (Version: 13.0.2793)
AVG 2013 (Version: 2013.0.2793)
AVS Image Converter 2.2.2.218
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.4
Bing Maps 3D (Version: 4.0.903.16005)
Browser Address Error Redirector
Creator 9
EPSON Scan
EPSON SX430 Series Printer Uninstall
ESET Online Scanner v3
EuroScope 3.1d (Version: 3.1.4)
ExeShield 4.8.3
FileZilla Client 3.5.3 (Version: 3.5.3)
Firefox
Flash Player 9 Internet Explorer
FlightSim Commander (Version: 8.6)
Free RAR Extract Frog (Version: 4.70)
French Chateau
Gatwick Controller Pack V2.03
GIMP 2.8.0 (Version: 2.8.0)
gmax (Version: 4.4.0.125)
Google BAE
Google Desktop (Version: -)
Google Earth
Google Earth (Version: 4.0.2737)
Google Earth Plug-in (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer (Version: 4.0.0.002)
Google Update Helper (Version: 1.3.21.123)
GoogleDesktop
GoogleToolbar
HDReg (Version: 2.0.0)
Infocentre Rev. 2.0
Install Creator
Install Creator Pro
install db 1
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
Keyboard Hotkey V1.04
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
McAfee Security Scan Plus (Version: 3.0.207.4)
Metaboli
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Flight Simulator X (Version: 10.0.61355.0)
Microsoft Flight Simulator X SDK SP1A (Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 1 (Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 2 (Version: 10.0.61472.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 08.05.0818)
Microsoft Works 8.5
Mozilla Firefox 16.0.2 (x86 en-US) (Version: 16.0.2)
Mozilla Maintenance Service (Version: 16.0.2)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MySQL Connector Net 6.5.4 (Version: 6.5.4)
NIS2007
NVIDIA Drivers
Packard Bell ImageWriter
Packard Bell LCD Test
Packard Bell Piano Keyboard
Packard Bell Updator
Picasa2 (Version: 2.0)
Pilot Companion (Version: 1.0.0.31)
Plan-G v3 (Version: 3.0.0)
Portforward Static IP Address 1.0.47 (Version: 1.0.47)
QualityWings Ultimate 146 Collection FSX
QuickTime (Version: 7.72.80.56)
Roxio Creator 9 LE (Version: 9.0.180)
RTC Client API v1.2 (Version: 1.2.0000)
Serif CraftArtist (Version: 1.0.5.043)
Serif DrawPlus X5 (Version: 12.0.1.021)
Serif Photo Projects (Version: 1.0.2.024)
Serif PhotoPlus X5 (Version: 15.0.1.011)
Serif WebPlus X5 (Version: 13.0.3.029)
SetUp My PC
Shockwave player 10
SimSRD Version 2.0 (Version: 2.0)
SketchUp 8 (Version: 3.0.15158)
SoundMAX (Version: 6.10.1.6140)
TeamSpeak 3 Client (Version: 3.0.9.2)
TeamViewer 7 (Version: 7.0.13989)
UK2000 Bristol Xtreme FSX DEMO VERSION (Version: 3.00)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VAT-Spy
Video NVIDIA v158.18
Viewpoint Media Player
WinPcap 4.1.2 (Version: 4.1.0.2001)

========================= Memory info: ===================================

Percentage of memory in use: 51%
Total physical RAM: 2045.82 MB
Available physical RAM: 993.38 MB
Total Pagefile: 4336.68 MB
Available Pagefile: 3019.62 MB
Total Virtual: 2047.88 MB
Available Virtual: 1945.93 MB

========================= Partitions: =====================================

1 Drive c: (HDD) (Fixed) (Total:290.08 GB) (Free:184.23 GB) NTFS

========================= Users: ========================================

User accounts for \\WORKCOMPUTER-PC

Administrator ASPNET Guest
Work Computer

========================= Restore Points ==================================

20-10-2012 09:02:02 Scheduled Checkpoint
21-10-2012 15:39:15 Scheduled Checkpoint
22-10-2012 15:20:47 Scheduled Checkpoint
23-10-2012 11:56:51 Scheduled Checkpoint
24-10-2012 11:27:01 Scheduled Checkpoint
25-10-2012 17:08:36 Scheduled Checkpoint
26-10-2012 20:18:05 Scheduled Checkpoint
27-10-2012 09:55:24 Scheduled Checkpoint
28-10-2012 00:14:20 Scheduled Checkpoint
28-10-2012 19:44:43 Scheduled Checkpoint
29-10-2012 12:11:43 Scheduled Checkpoint
30-10-2012 13:37:06 Scheduled Checkpoint
31-10-2012 09:43:15 Scheduled Checkpoint
01-11-2012 12:11:03 Scheduled Checkpoint
02-11-2012 10:02:49 Scheduled Checkpoint
02-11-2012 22:02:52 Scheduled Checkpoint
03-11-2012 10:38:31 Scheduled Checkpoint
04-11-2012 10:47:59 Scheduled Checkpoint
05-11-2012 10:28:32 Scheduled Checkpoint
06-11-2012 10:30:15 Scheduled Checkpoint
06-11-2012 11:28:00 Removed Packard Bell Piano Keyboard
07-11-2012 10:25:21 Scheduled Checkpoint
08-11-2012 16:18:04 Restore Operation

**** End of log ****
3.
Farbar Service Scanner Version: 09-11-2012
Ran by Work Computer (administrator) on 09-11-2012 at 16:08:18
Running from "C:\Users\Work Computer\Desktop\Anti Virus Programs"
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll
[2012-10-10 08:46] - [2012-06-02 00:02] - 0133120 ____A (Microsoft Corporation) F1E8C34892336D33EDDCDFE44E474F64

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2012-05-25 09:20] - [2008-01-19 07:34] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****
4.
# AdwCleaner v2.007 - Logfile created 11/09/2012 at 16:10:04
# Updated 06/11/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Work Computer - WORKCOMPUTER-PC
# Boot Mode : Normal
# Running from : C:\Users\Work Computer\Desktop\Anti Virus Programs\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\Program Files\AVG Secure Search
Folder Found : C:\Program Files\Common Files\AVG Secure Search
Folder Found : C:\Program Files\Viewpoint
Folder Found : C:\ProgramData\AVG Secure Search
Folder Found : C:\ProgramData\Viewpoint
Folder Found : C:\Users\Work Computer\AppData\Local\AVG Secure Search
Folder Found : C:\Users\Work Computer\AppData\LocalLow\AVG Secure Search
Folder Found : C:\Users\WORKCO~1\AppData\Local\Temp\avg@toolbar

***** [Registry] *****

Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\IGearSettings
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Softonic
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\S
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\MetaStream
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Found : HKLM\Software\Viewpoint
Key Found : HKU\S-1-5-21-3039439912-3711440131-3271629098-1002\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v16.0.2 (en-US)

Profile name : default
File : C:\Users\Work Computer\AppData\Roaming\Mozilla\Firefox\Profiles\bxrb7h3d.default\prefs.js

Found : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\12.2.5.34");
Found : user_pref("avg.install.userSPSettings", "AVG Secure Search");
Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Found : user_pref("keyword.URL", "hxxps://isearch.avg.com/search?cid=%7B4c07ca9b-e586-487c-98dc-d98a555c01f3[...]

*************************

AdwCleaner[R1].txt - [6298 octets] - [09/11/2012 16:10:04]

########## EOF - C:\AdwCleaner[R1].txt - [6358 octets] ##########
5.
# AdwCleaner v2.007 - Logfile created 11/09/2012 at 16:11:25
# Updated 06/11/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Work Computer - WORKCOMPUTER-PC
# Boot Mode : Normal
# Running from : C:\Users\Work Computer\Desktop\Anti Virus Programs\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files\AVG Secure Search
Folder Deleted : C:\Program Files\Viewpoint
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\Viewpoint
Folder Deleted : C:\Users\Work Computer\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Work Computer\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\WORKCO~1\AppData\Local\Temp\avg@toolbar

***** [Registry] *****

Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\Software\Viewpoint
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v16.0.2 (en-US)

Profile name : default
File : C:\Users\Work Computer\AppData\Roaming\Mozilla\Firefox\Profiles\bxrb7h3d.default\prefs.js

Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\12.2.5.34");
Deleted : user_pref("avg.install.userSPSettings", "AVG Secure Search");
Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Deleted : user_pref("keyword.URL", "hxxps://isearch.avg.com/search?cid=%7B4c07ca9b-e586-487c-98dc-d98a555c01f3[...]

*************************

AdwCleaner[R1].txt - [6427 octets] - [09/11/2012 16:10:04]
AdwCleaner[S1].txt - [6348 octets] - [09/11/2012 16:11:25]

########## EOF - C:\AdwCleaner[S1].txt - [6408 octets] ##########
6.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 2.9.0 (11.09.2012)
OS: Windows Vista ™ Home Premium x86
Ran by Work Computer on 09/11/2012 at 16:23:51.21
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09/11/2012 at 16:27:29.94
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Thank you once again

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:29 AM

Posted 09 November 2012 - 12:50 PM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#7 LTW909

LTW909
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:29 AM

Posted 10 November 2012 - 04:43 AM

I am at a loss for words, thank you for taking the time and effort to help a complete stranger. It refreshes ones faith in humanity. Extraordinary. I truly am at your service.

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/10/2012 09:26:07 AM in x86 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Automatic

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost
::1 localhost

Program finished at: 11/10/2012 09:26:21 AM
Execution time: 0 hours(s), 0 minute(s), and 14 seconds(s)
2.
"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ATSwpNav" "" "" "File not found: C:\Program Files\Fingerprint Sensor\ATSwpNav"
+ "AVG_UI" "AVG User Interface" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgui.exe"
+ "Google Desktop Search" "Google Desktop" "Google" "c:\program files\google\google desktop search\googledesktop.exe"
+ "HF_G_Jul" "" "" "File not found: C:\Program Files\AVG Secure Search\HF_G_Jul.exe"
+ "LchMHotkey" "" "" "c:\windows\lchmhkey.exe"
+ "NvCplDaemon" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
+ "NvMediaCenter" "NVIDIA Media Center Library" "NVIDIA Corporation" "c:\windows\system32\nvmctray.dll"
+ "NvSvc" "NVIDIA Driver Helper Service, Version 158.18" "NVIDIA Corporation" "c:\windows\system32\nvsvc.dll"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe"
+ "ROC_ROC_JULY_P1" "" "" "File not found: C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe"
+ "ROC_ROC_NT" "" "" "File not found: C:\Program Files\AVG Secure Search\ROC_ROC_NT.exe"
+ "RoxWatchTray" "RoxMMTrayApp Module" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\sharedcom\roxwatchtray9.exe"
+ "SoundMAXPnP" "SMax4PNP" "Analog Devices, Inc." "c:\program files\analog devices\core\smax4pnp.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
+ "toolbar_eula_launcher" " " " " "c:\program files\packard bell\google_eula\eulalauncher.exe"
+ "vProt" "" "" "File not found: C:\Program Files\AVG Secure Search\vprot.exe"
+ "Windows Defender" "Windows Defender User Interface" "Microsoft Corporation" "c:\program files\windows defender\msascui.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "McAfee Security Scan Plus.lnk" "McAfee Security Scanner Scheduler" "McAfee, Inc." "c:\program files\mcafee security scan\3.0.207\ssscheduler.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "EPSON SX430 Series" "EPSON Status Monitor 3" "SEIKO EPSON CORPORATION" "c:\windows\system32\spool\drivers\w32x86\3\e_fatihae.exe"
+ "Sidebar" "Windows Sidebar" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "SmpcSys" "SmpSys.exe" "Packard Bell BV" "c:\program files\packard bell\setupmypc\smpsys.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "linkscanner" "" "" "File not found: C:\Program Files\AVG\AVG2012\avgpp.dll"
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "ms-itss" "Microsoft® InfoTech Storage System Library" "Microsoft Corporation" "c:\program files\common files\microsoft shared\information retrieval\msitss.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgse.dll"
+ "ShellConverter" "AVSShellConverter ActiveX DLL" "Online Media Technologies Ltd." "c:\program files\common files\avsmedia\activex\avsshellconverter.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "FileZilla3CopyHook" "fzshellext Dynamic Link Library" "" "c:\program files\filezilla ftp client\fzshellext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "NvCplDesktopContext" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgse.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Reader Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelper.dll"
+ "AVG Safe Search" "" "" "File not found: C:\Program Files\AVG\AVG2012\avgssie.dll"
+ "CBrowserHelperObject Object" "BAE.dll" "Packard Bell" "c:\program files\google\google_bae\bae.dll"
+ "Google Toolbar Helper" "Google IE Client Toolbar" "Google Inc." "c:\program files\google\googletoolbar1.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "&Google" "Google IE Client Toolbar" "Google Inc." "c:\program files\google\googletoolbar1.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office12\onbttnie.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.4 r402" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "\mhotkey" "" "" "File not found: C:\Windows\mHotkey.exe"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs"
+ "\Recovery DVD Creator" "Master CD/DVD Checker" "Packard Bell BV" "c:\program files\packard bell\setupmypc\mcdcheck.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AOL ACS" "Connectivity engine for America Online" "AOL LLC" "c:\program files\common files\aol\acs\aolacsd.exe"
+ "AVGIDSAgent" "Provides Identity Protection Against Cyber Crime." "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgidsagent.exe"
+ "avgwd" "AVG Watchdog Service" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgwdsvc.exe"
+ "GoogleDesktopManager" "Google Desktop" "Google" "c:\program files\google\google desktop search\googledesktopmanager.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gusvc" "gusvc" "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "McComponentHostService" "McAfee Security Scan Component Host Service" "McAfee, Inc." "c:\program files\mcafee security scan\3.0.207\mcchsvc.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "RoxMediaDB9" "Roxio RoxMediaDB9 Service" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\sharedcom\roxmediadb9.exe"
+ "RoxWatch9" "RoxSniffer9 Module" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\sharedcom\roxwatch9.exe"
+ "rpcapd" "Allows to capture traffic on this machine from a remote machine." "CACE Technologies, Inc." "c:\program files\winpcap\rpcapd.exe"
+ "stllssvr" "SureThing Labelflash Disc Printer Service Module" "MicroVision Development, Inc." "c:\program files\common files\surething shared\stllssvr.exe"
+ "TeamViewer7" "TeamViewer Remote Software" "TeamViewer GmbH" "c:\program files\teamviewer\version7\teamviewer_service.exe"
+ "vToolbarUpdater12.2.6" "ToolbarU Application" "" "c:\program files\common files\avg secure search\vtoolbarupdater\12.2.6\toolbarupdater.exe"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "ADIHdAudAddService" "High Definition Audio Function Driver" "Analog Devices, Inc." "c:\windows\system32\drivers\adihdaud.sys"
+ "AVGIDSDriver" "AVG Technologies IDS Application Activity Monitor Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsdriverx.sys"
+ "AVGIDSHX" "AVG Technologies IDS Application Activity Monitor Helper Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidshx.sys"
+ "AVGIDSShim" "AVG Technologies IDS Application Activity Monitor Shim Loader Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsshimx.sys"
+ "Avgldx86" "AVG AVI Loader Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgldx86.sys"
+ "Avglogx" "AVG Logging Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avglogx.sys"
+ "Avgmfx86" "AVG Resident Shield Minifilter Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgmfx86.sys"
+ "Avgrkx86" "AVG Anti-Rootkit Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgrkx86.sys"
+ "Avgtdix" "AVG Network connection watcher" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgtdix.sys"
+ "avgtp" "" "AVG Technologies" "c:\windows\system32\drivers\avgtpx86.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "NAVENG" "" "" "File not found: C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20061106.064\NAVENG.SYS"
+ "NAVEX15" "" "" "File not found: C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20061106.064\NAVEX15.SYS"
+ "NPF" "npf.sys (NT5/6 x86) Kernel Driver" "CACE Technologies, Inc." "c:\windows\system32\drivers\npf.sys"
+ "nvlddmkm" "NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 158.18 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys"
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SYMTDI" "" "" "File not found: C:\Windows\System32\Drivers\SYMTDI.SYS"
+ "wanatw" "Wan Miniport (ATW)" "America Online, Inc." "c:\windows\system32\drivers\wanatw4.sys"
+ "yukonwlh" "NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller" "Marvell" "c:\windows\system32\drivers\yk60x86.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Sonic MP4 Demultiplexer" "Sonic MP4 Demultiplexer" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc01\sonicmp4demux.ax"
+ "Sonic MP4 Demultiplexer" "Sonic MP4 Demultiplexer" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc01\sonicmp4demux.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Media Analyser" "analyse Filter (Sample)" "Sonic Solutions" "c:\program files\roxio\videocore 9\mediaanalyser.ax"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Roxio Audio Decoder (DVD)" "ROXIO Audio Decoder" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\roxiodvdaudio.dll"
+ "ROXIO AudioGrabber 3.0" "VideoWave Frame Grabber" "Sonic Solutions" "c:\program files\roxio\videocore 9\thumbnailgraber.ax"
+ "ROXIO ColorSpace Converter 3.0" "ROXIO Color Space Converter" "Sonic Solutions" "c:\program files\roxio\videocore 9\colorspconv.dll"
+ "ROXIO Image/Colour Source 3.0" "Colour Frame Source" "Sonic Solutions" "c:\program files\roxio\videocore 9\imagesource.ax"
+ "ROXIO LPCMSyncFilter" "LPCMSync Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\lpcmsyncfilter.dll"
+ "Roxio MPEG Analyzer Filter" "MPEG File Analyzer Dynamic Link Library" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\roxiompegprop.dll"
+ "Roxio MPEG Stream Analyzer" "Roxio MPEG Stream Splitter" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\mpegstreamanalyzer.dll"
+ "Roxio MPEG1 Audio Encoder" "ROXIO MPEG Audio Encoder" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\roxioaudioenc.dll"
+ "Roxio MPEG1 Encoder" "ROXIO MPEG1 Codec" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\mpeg1vidcodec.dll"
+ "Roxio MPEG1 Muxer" "ROXIO MPEG MUXER" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\mpeg1muxer.dll"
+ "Roxio MPEG2 Demuxer" "ROXIO MPEG Demuxer" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\roxiompegdemuxer.dll"
+ "ROXIO Pin Tee" "" "" "c:\program files\roxio\videocore 9\roxioinftee.ax"
+ "ROXIO QuickGrabber 3.0" "VideoWave Frame Grabber" "Sonic Solutions" "c:\program files\roxio\videocore 9\thumbnailgraber.ax"
+ "ROXIO Raw Writer" "ROXIO Raw Writer" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\mgirawwriter.dll"
+ "Roxio Repack Filter" "Repack Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\repackfilter.dll"
+ "ROXIO Scene Detector 3.0" "Video Filter" "Sonic Solutions" "c:\program files\roxio\videocore 9\scenedetector.ax"
+ "ROXIO SceneRecorder 1.0" "DVR support filter" "Sonic Solutions" "c:\program files\roxio\videocore 9\scenerecorderfilt.ax"
+ "ROXIO SpyPos 3.0" "Null-In-Place (Sample)" "Sonic Solutions" "c:\program files\roxio\videocore 9\mginullip.ax"
+ "ROXIO ThumbnailGrabber 3.0" "VideoWave Frame Grabber" "Sonic Solutions" "c:\program files\roxio\videocore 9\thumbnailgraber.ax"
+ "Roxio Transport Stream Source" "ListFrameSource" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\tsmpegsource.dll"
+ "ROXIO VCFDVSceneDetect 1.0" "DVR support filter" "Sonic Solutions" "c:\program files\roxio\videocore 9\dvscenedetectfilt.ax"
+ "Sewer" "MVWcDSutil" "Sonic Solutions" "c:\program files\roxio\videocore 9\mvwcdsutil.dll"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Sonic MP4 Demultiplexer" "Sonic MP4 Demultiplexer" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc01\sonicmp4demux.ax"
+ "Sonic MPEG-4 Video Decoder" "Sonic Mpeg-4 Video Decoder" "Sonic Solutions Inc." "c:\program files\common files\sonic shared\sonicmc01\sonicm4vd.ax"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "SubPicture Encoder" "ROXIO SubPicture Encoder" "Sonic Solutions" "c:\program files\common files\roxio shared\9.0\mpeg\subpictenc.dll"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "{1AD512C6-24AF-4395-82B4-2D3CF21F44A2}" "Roxio MP3 Encoder Dynamic Link Library" "Roxio" "c:\program files\common files\roxio shared\sharedcom\rxdsaudiostreamwriter.ax"
+ "{472C92F0-5438-423D-9B30-FD2932EA44EE}" "Roxio Audio Source Filter" "Microsoft Corporation" "c:\program files\common files\roxio shared\sharedcom\rxdsaudiosource.ax"
+ "{58FF69ED-8388-483B-B9AC-3EB04BBEB913}" "Roxio Audio Stream Reader Filter" "Microsoft Corporation" "c:\program files\common files\roxio shared\sharedcom\rxdsaudiostreamreader.ax"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" ""
+ "C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL" "Google Desktop" "Google" "c:\program files\google\google desktop search\googledesktopnetwork3.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "EPSON SX430 Series 32MonitorBE" "EPSON Bi-directional Monitor x86" "SEIKO EPSON CORPORATION" "c:\windows\system32\e_flbhae.dll"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:29 AM

Posted 10 November 2012 - 08:00 AM

Current issues?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users