Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Browser redirect. How can I remove


  • Please log in to reply
15 replies to this topic

#1 needbrew

needbrew

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 01 December 2012 - 07:22 AM

HI All,

I am getting browser redirects all the time and have tried running a few products but none of them seem to be able to remove the problem. What can I do. I have tried the trial of Malwarebytes anti-malware and it did not do the trick, spybot search and destry did not do it either.

Any other ideas.

Thanks in advance

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:12 AM

Posted 01 December 2012 - 07:41 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 01 December 2012 - 08:39 AM

Here is the Logfile from the TDSSkiller.

06:57:44.0871 0728 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
06:57:45.0282 0728 ============================================================
06:57:45.0282 0728 Current date / time: 2012/12/01 06:57:45.0282
06:57:45.0282 0728 SystemInfo:
06:57:45.0282 0728
06:57:45.0282 0728 OS Version: 6.1.7600 ServicePack: 0.0
06:57:45.0282 0728 Product type: Workstation
06:57:45.0282 0728 ComputerName: DADDY-PC
06:57:45.0282 0728 UserName: daddy
06:57:45.0282 0728 Windows directory: C:\Windows
06:57:45.0282 0728 System windows directory: C:\Windows
06:57:45.0282 0728 Running under WOW64
06:57:45.0282 0728 Processor architecture: Intel x64
06:57:45.0282 0728 Number of processors: 8
06:57:45.0282 0728 Page size: 0x1000
06:57:45.0282 0728 Boot type: Normal boot
06:57:45.0282 0728 ============================================================
06:57:45.0995 0728 Drive \Device\Harddisk0\DR0 - Size: 0x15D51500000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C882, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:57:45.0998 0728 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
06:57:46.0018 0728 ============================================================
06:57:46.0018 0728 \Device\Harddisk0\DR0:
06:57:46.0019 0728 MBR partitions:
06:57:46.0019 0728 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
06:57:46.0019 0728 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xAEA57800
06:57:46.0019 0728 \Device\Harddisk1\DR1:
06:57:46.0019 0728 MBR partitions:
06:57:46.0019 0728 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
06:57:46.0019 0728 ============================================================
06:57:46.0053 0728 C: <-> \Device\Harddisk0\DR0\Partition2
06:57:46.0085 0728 E: <-> \Device\Harddisk1\DR1\Partition1
06:57:46.0085 0728 ============================================================
06:57:46.0085 0728 Initialize success
06:57:46.0085 0728 ============================================================
06:58:09.0768 7032 ============================================================
06:58:09.0768 7032 Scan started
06:58:09.0768 7032 Mode: Manual; TDLFS;
06:58:09.0768 7032 ============================================================
06:58:10.0027 7032 ================ Scan system memory ========================
06:58:10.0027 7032 System memory - ok
06:58:10.0027 7032 ================ Scan services =============================
06:58:10.0244 7032 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
06:58:10.0247 7032 1394ohci - ok
06:58:10.0278 7032 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
06:58:10.0282 7032 ACPI - ok
06:58:10.0290 7032 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
06:58:10.0291 7032 AcpiPmi - ok
06:58:10.0483 7032 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
06:58:10.0487 7032 AdobeFlashPlayerUpdateSvc - ok
06:58:10.0502 7032 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
06:58:10.0507 7032 adp94xx - ok
06:58:10.0521 7032 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
06:58:10.0536 7032 adpahci - ok
06:58:10.0540 7032 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
06:58:10.0542 7032 adpu320 - ok
06:58:10.0593 7032 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
06:58:10.0594 7032 AeLookupSvc - ok
06:58:10.0669 7032 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
06:58:10.0673 7032 AFD - ok
06:58:10.0687 7032 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
06:58:10.0689 7032 agp440 - ok
06:58:10.0719 7032 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
06:58:10.0720 7032 ALG - ok
06:58:10.0728 7032 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
06:58:10.0729 7032 aliide - ok
06:58:10.0768 7032 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
06:58:10.0780 7032 AMD External Events Utility - ok
06:58:10.0801 7032 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
06:58:10.0802 7032 amdide - ok
06:58:10.0818 7032 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
06:58:10.0825 7032 AmdK8 - ok
06:58:10.0992 7032 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
06:58:11.0113 7032 amdkmdag - ok
06:58:11.0134 7032 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
06:58:11.0138 7032 amdkmdap - ok
06:58:11.0154 7032 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
06:58:11.0155 7032 AmdPPM - ok
06:58:11.0196 7032 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
06:58:11.0197 7032 amdsata - ok
06:58:11.0214 7032 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
06:58:11.0216 7032 amdsbs - ok
06:58:11.0244 7032 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
06:58:11.0250 7032 amdxata - ok
06:58:11.0284 7032 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
06:58:11.0285 7032 AppID - ok
06:58:11.0320 7032 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
06:58:11.0321 7032 AppIDSvc - ok
06:58:11.0351 7032 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
06:58:11.0353 7032 Appinfo - ok
06:58:11.0382 7032 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
06:58:11.0385 7032 AppMgmt - ok
06:58:11.0404 7032 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
06:58:11.0406 7032 arc - ok
06:58:11.0413 7032 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
06:58:11.0414 7032 arcsas - ok
06:58:11.0524 7032 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
06:58:11.0538 7032 aspnet_state - ok
06:58:11.0559 7032 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
06:58:11.0560 7032 AsyncMac - ok
06:58:11.0579 7032 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
06:58:11.0580 7032 atapi - ok
06:58:11.0629 7032 [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
06:58:11.0636 7032 AtiHDAudioService - ok
06:58:11.0785 7032 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
06:58:11.0826 7032 atikmdag - ok
06:58:11.0863 7032 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
06:58:11.0870 7032 AudioEndpointBuilder - ok
06:58:11.0888 7032 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
06:58:11.0891 7032 AudioSrv - ok
06:58:11.0930 7032 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
06:58:11.0931 7032 AxInstSV - ok
06:58:11.0961 7032 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
06:58:11.0966 7032 b06bdrv - ok
06:58:11.0990 7032 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
06:58:11.0993 7032 b57nd60a - ok
06:58:12.0019 7032 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
06:58:12.0025 7032 BDESVC - ok
06:58:12.0037 7032 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
06:58:12.0037 7032 Beep - ok
06:58:12.0077 7032 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
06:58:12.0083 7032 BFE - ok
06:58:12.0106 7032 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\system32\qmgr.dll
06:58:12.0145 7032 BITS - ok
06:58:12.0154 7032 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
06:58:12.0155 7032 blbdrive - ok
06:58:12.0186 7032 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
06:58:12.0188 7032 bowser - ok
06:58:12.0202 7032 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
06:58:12.0203 7032 BrFiltLo - ok
06:58:12.0215 7032 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
06:58:12.0216 7032 BrFiltUp - ok
06:58:12.0245 7032 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
06:58:12.0247 7032 BridgeMP - ok
06:58:12.0278 7032 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
06:58:12.0288 7032 Browser - ok
06:58:12.0300 7032 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
06:58:12.0303 7032 Brserid - ok
06:58:12.0318 7032 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
06:58:12.0320 7032 BrSerWdm - ok
06:58:12.0333 7032 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
06:58:12.0334 7032 BrUsbMdm - ok
06:58:12.0339 7032 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
06:58:12.0340 7032 BrUsbSer - ok
06:58:12.0380 7032 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys
06:58:12.0381 7032 BTCFilterService - ok
06:58:12.0398 7032 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
06:58:12.0405 7032 BTHMODEM - ok
06:58:12.0438 7032 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
06:58:12.0439 7032 bthserv - ok
06:58:12.0454 7032 catchme - ok
06:58:12.0477 7032 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
06:58:12.0479 7032 cdfs - ok
06:58:12.0499 7032 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
06:58:12.0502 7032 cdrom - ok
06:58:12.0540 7032 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
06:58:12.0541 7032 CertPropSvc - ok
06:58:12.0553 7032 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
06:58:12.0554 7032 circlass - ok
06:58:12.0580 7032 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
06:58:12.0584 7032 CLFS - ok
06:58:12.0619 7032 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:58:12.0636 7032 clr_optimization_v2.0.50727_32 - ok
06:58:12.0677 7032 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
06:58:12.0679 7032 clr_optimization_v2.0.50727_64 - ok
06:58:12.0755 7032 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:58:12.0838 7032 clr_optimization_v4.0.30319_32 - ok
06:58:12.0849 7032 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
06:58:12.0851 7032 clr_optimization_v4.0.30319_64 - ok
06:58:12.0893 7032 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
06:58:12.0898 7032 CmBatt - ok
06:58:12.0909 7032 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
06:58:12.0910 7032 cmdide - ok
06:58:12.0942 7032 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
06:58:12.0950 7032 CNG - ok
06:58:12.0958 7032 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
06:58:12.0959 7032 Compbatt - ok
06:58:12.0981 7032 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
06:58:12.0982 7032 CompositeBus - ok
06:58:12.0988 7032 COMSysApp - ok
06:58:13.0000 7032 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
06:58:13.0001 7032 crcdisk - ok
06:58:13.0030 7032 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
06:58:13.0033 7032 CryptSvc - ok
06:58:13.0066 7032 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
06:58:13.0074 7032 CSC - ok
06:58:13.0097 7032 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
06:58:13.0110 7032 CscService - ok
06:58:13.0136 7032 [ 44BDDEB03C84A1C993C992FFB5700357 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA64.sys
06:58:13.0137 7032 CVirtA - ok
06:58:13.0238 7032 [ 66257CB4E4FB69887CDDC71663741435 ] CVPND C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
06:58:13.0260 7032 CVPND - ok
06:58:13.0287 7032 [ CC8E52DAA9826064BA464DBE531F2BB5 ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys
06:58:13.0290 7032 CVPNDRVA - ok
06:58:13.0323 7032 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
06:58:13.0328 7032 DcomLaunch - ok
06:58:13.0359 7032 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
06:58:13.0362 7032 defragsvc - ok
06:58:13.0401 7032 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
06:58:13.0403 7032 DfsC - ok
06:58:13.0434 7032 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
06:58:13.0437 7032 Dhcp - ok
06:58:13.0455 7032 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
06:58:13.0456 7032 discache - ok
06:58:13.0473 7032 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
06:58:13.0475 7032 Disk - ok
06:58:13.0512 7032 [ 05CB5910B3CA6019FC3CCA815EE06FFB ] DNE C:\Windows\system32\DRIVERS\dne64x.sys
06:58:13.0514 7032 DNE - ok
06:58:13.0548 7032 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
06:58:13.0550 7032 Dnscache - ok
06:58:13.0638 7032 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
06:58:13.0641 7032 dot3svc - ok
06:58:13.0669 7032 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
06:58:13.0671 7032 DPS - ok
06:58:13.0719 7032 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
06:58:13.0719 7032 drmkaud - ok
06:58:13.0780 7032 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
06:58:13.0791 7032 DXGKrnl - ok
06:58:13.0823 7032 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
06:58:13.0826 7032 EapHost - ok
06:58:13.0903 7032 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
06:58:13.0970 7032 ebdrv - ok
06:58:14.0007 7032 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
06:58:14.0008 7032 EFS - ok
06:58:14.0067 7032 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
06:58:14.0079 7032 ehRecvr - ok
06:58:14.0098 7032 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
06:58:14.0100 7032 ehSched - ok
06:58:14.0131 7032 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
06:58:14.0148 7032 elxstor - ok
06:58:14.0156 7032 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
06:58:14.0157 7032 ErrDev - ok
06:58:14.0260 7032 esgiguard - ok
06:58:14.0290 7032 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
06:58:14.0294 7032 EventSystem - ok
06:58:14.0314 7032 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
06:58:14.0318 7032 exfat - ok
06:58:14.0339 7032 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
06:58:14.0346 7032 fastfat - ok
06:58:14.0391 7032 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
06:58:14.0398 7032 Fax - ok
06:58:14.0411 7032 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
06:58:14.0412 7032 fdc - ok
06:58:14.0422 7032 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
06:58:14.0423 7032 fdPHost - ok
06:58:14.0428 7032 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
06:58:14.0429 7032 FDResPub - ok
06:58:14.0442 7032 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
06:58:14.0444 7032 FileInfo - ok
06:58:14.0456 7032 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
06:58:14.0457 7032 Filetrace - ok
06:58:14.0466 7032 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
06:58:14.0475 7032 flpydisk - ok
06:58:14.0492 7032 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
06:58:14.0495 7032 FltMgr - ok
06:58:14.0541 7032 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
06:58:14.0564 7032 FontCache - ok
06:58:14.0600 7032 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
06:58:14.0601 7032 FontCache3.0.0.0 - ok
06:58:14.0628 7032 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
06:58:14.0630 7032 FsDepends - ok
06:58:14.0647 7032 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
06:58:14.0648 7032 Fs_Rec - ok
06:58:14.0679 7032 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
06:58:14.0682 7032 fvevol - ok
06:58:14.0705 7032 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
06:58:14.0707 7032 gagp30kx - ok
06:58:14.0739 7032 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
06:58:14.0765 7032 gpsvc - ok
06:58:14.0868 7032 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:58:14.0870 7032 gupdate - ok
06:58:14.0887 7032 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:58:14.0888 7032 gupdatem - ok
06:58:14.0938 7032 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
06:58:14.0946 7032 gusvc - ok
06:58:14.0954 7032 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
06:58:14.0955 7032 hcw85cir - ok
06:58:14.0998 7032 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
06:58:15.0009 7032 HdAudAddService - ok
06:58:15.0029 7032 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
06:58:15.0031 7032 HDAudBus - ok
06:58:15.0040 7032 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
06:58:15.0041 7032 HidBatt - ok
06:58:15.0052 7032 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
06:58:15.0054 7032 HidBth - ok
06:58:15.0065 7032 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
06:58:15.0066 7032 HidIr - ok
06:58:15.0086 7032 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
06:58:15.0087 7032 hidserv - ok
06:58:15.0111 7032 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
06:58:15.0112 7032 HidUsb - ok
06:58:15.0134 7032 [ 44F92C1F913E582BEF9CAC66443C6230 ] hitmanpro36 C:\Windows\system32\drivers\hitmanpro36.sys
06:58:15.0136 7032 hitmanpro36 - ok
06:58:15.0164 7032 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
06:58:15.0166 7032 hkmsvc - ok
06:58:15.0187 7032 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
06:58:15.0190 7032 HomeGroupListener - ok
06:58:15.0212 7032 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
06:58:15.0215 7032 HomeGroupProvider - ok
06:58:15.0228 7032 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
06:58:15.0229 7032 HpSAMD - ok
06:58:15.0255 7032 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
06:58:15.0262 7032 HTTP - ok
06:58:15.0274 7032 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
06:58:15.0275 7032 hwpolicy - ok
06:58:15.0301 7032 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
06:58:15.0302 7032 i8042prt - ok
06:58:15.0389 7032 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
06:58:15.0414 7032 IAANTMON - ok
06:58:15.0448 7032 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
06:58:15.0450 7032 iaStor - ok
06:58:15.0469 7032 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
06:58:15.0473 7032 iaStorV - ok
06:58:15.0526 7032 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
06:58:15.0534 7032 idsvc - ok
06:58:15.0551 7032 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
06:58:15.0552 7032 iirsp - ok
06:58:15.0585 7032 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
06:58:15.0594 7032 IKEEXT - ok
06:58:15.0603 7032 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
06:58:15.0605 7032 intelide - ok
06:58:15.0618 7032 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
06:58:15.0619 7032 intelppm - ok
06:58:15.0713 7032 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
06:58:15.0714 7032 IntuitUpdateService - ok
06:58:15.0780 7032 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
06:58:15.0781 7032 IntuitUpdateServiceV4 - ok
06:58:15.0789 7032 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
06:58:15.0791 7032 IPBusEnum - ok
06:58:15.0805 7032 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:58:15.0807 7032 IpFilterDriver - ok
06:58:15.0829 7032 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
06:58:15.0835 7032 iphlpsvc - ok
06:58:15.0858 7032 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
06:58:15.0866 7032 IPMIDRV - ok
06:58:15.0880 7032 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
06:58:15.0881 7032 IPNAT - ok
06:58:15.0897 7032 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
06:58:15.0900 7032 IRENUM - ok
06:58:15.0918 7032 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
06:58:15.0919 7032 isapnp - ok
06:58:15.0937 7032 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
06:58:15.0954 7032 iScsiPrt - ok
06:58:15.0976 7032 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
06:58:15.0978 7032 kbdclass - ok
06:58:15.0997 7032 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
06:58:15.0998 7032 kbdhid - ok
06:58:16.0007 7032 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
06:58:16.0008 7032 KeyIso - ok
06:58:16.0038 7032 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
06:58:16.0039 7032 KSecDD - ok
06:58:16.0070 7032 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
06:58:16.0077 7032 KSecPkg - ok
06:58:16.0085 7032 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
06:58:16.0087 7032 ksthunk - ok
06:58:16.0105 7032 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
06:58:16.0109 7032 KtmRm - ok
06:58:16.0130 7032 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
06:58:16.0133 7032 LanmanServer - ok
06:58:16.0141 7032 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
06:58:16.0144 7032 LanmanWorkstation - ok
06:58:16.0162 7032 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
06:58:16.0164 7032 lltdio - ok
06:58:16.0179 7032 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
06:58:16.0183 7032 lltdsvc - ok
06:58:16.0211 7032 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
06:58:16.0212 7032 lmhosts - ok
06:58:16.0236 7032 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
06:58:16.0238 7032 LSI_FC - ok
06:58:16.0251 7032 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
06:58:16.0252 7032 LSI_SAS - ok
06:58:16.0264 7032 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
06:58:16.0266 7032 LSI_SAS2 - ok
06:58:16.0285 7032 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
06:58:16.0287 7032 LSI_SCSI - ok
06:58:16.0308 7032 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
06:58:16.0313 7032 luafv - ok
06:58:16.0352 7032 [ E5ECF40E5FD459141E5F6685FFD51804 ] Lycosa C:\Windows\system32\drivers\Lycosa.sys
06:58:16.0354 7032 Lycosa - ok
06:58:16.0438 7032 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
06:58:16.0439 7032 MBAMProtector - ok
06:58:16.0525 7032 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
06:58:16.0551 7032 MBAMScheduler - ok
06:58:16.0592 7032 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
06:58:16.0607 7032 MBAMService - ok
06:58:16.0622 7032 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
06:58:16.0624 7032 Mcx2Svc - ok
06:58:16.0651 7032 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
06:58:16.0652 7032 megasas - ok
06:58:16.0669 7032 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
06:58:16.0672 7032 MegaSR - ok
06:58:16.0774 7032 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
06:58:16.0776 7032 Microsoft Office Groove Audit Service - ok
06:58:16.0812 7032 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
06:58:16.0813 7032 MMCSS - ok
06:58:16.0822 7032 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
06:58:16.0832 7032 Modem - ok
06:58:16.0870 7032 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
06:58:16.0871 7032 monitor - ok
06:58:16.0912 7032 [ 43E754047C6DEE50666554D3C66D6279 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
06:58:16.0912 7032 motccgp - ok
06:58:16.0930 7032 [ 577399C75CF85AC68E7830EB150F45EF ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
06:58:16.0937 7032 motccgpfl - ok
06:58:16.0991 7032 [ AC9D6E3629E4388A9EA9B4172493AAEE ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
06:58:16.0993 7032 Motorola Device Manager - ok
06:58:17.0013 7032 [ 19BC2161C3FCCED802F1BCD9B78C3466 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys
06:58:17.0014 7032 MotoSwitchService - ok
06:58:17.0030 7032 [ C4F1495598C7E1FEF53BCFD84A5BD53E ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys
06:58:17.0031 7032 Motousbnet - ok
06:58:17.0071 7032 [ D075B1D964A314D240F5498773EE89DF ] motusbdevice C:\Windows\system32\DRIVERS\motusbdevice.sys
06:58:17.0072 7032 motusbdevice - ok
06:58:17.0097 7032 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
06:58:17.0098 7032 mouclass - ok
06:58:17.0122 7032 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
06:58:17.0129 7032 mouhid - ok
06:58:17.0140 7032 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
06:58:17.0141 7032 mountmgr - ok
06:58:17.0158 7032 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
06:58:17.0160 7032 mpio - ok
06:58:17.0187 7032 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
06:58:17.0189 7032 mpsdrv - ok
06:58:17.0215 7032 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
06:58:17.0233 7032 MpsSvc - ok
06:58:17.0250 7032 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
06:58:17.0252 7032 MRxDAV - ok
06:58:17.0279 7032 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
06:58:17.0282 7032 mrxsmb - ok
06:58:17.0314 7032 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
06:58:17.0318 7032 mrxsmb10 - ok
06:58:17.0354 7032 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
06:58:17.0365 7032 mrxsmb20 - ok
06:58:17.0376 7032 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
06:58:17.0377 7032 msahci - ok
06:58:17.0393 7032 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
06:58:17.0396 7032 msdsm - ok
06:58:17.0410 7032 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
06:58:17.0413 7032 MSDTC - ok
06:58:17.0424 7032 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
06:58:17.0425 7032 Msfs - ok
06:58:17.0441 7032 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
06:58:17.0442 7032 mshidkmdf - ok
06:58:17.0454 7032 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
06:58:17.0455 7032 msisadrv - ok
06:58:17.0515 7032 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
06:58:17.0518 7032 MSiSCSI - ok
06:58:17.0520 7032 msiserver - ok
06:58:17.0541 7032 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
06:58:17.0542 7032 MSKSSRV - ok
06:58:17.0556 7032 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
06:58:17.0558 7032 MSPCLOCK - ok
06:58:17.0576 7032 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
06:58:17.0577 7032 MSPQM - ok
06:58:17.0602 7032 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
06:58:17.0606 7032 MsRPC - ok
06:58:17.0619 7032 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
06:58:17.0621 7032 mssmbios - ok
06:58:17.0638 7032 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
06:58:17.0639 7032 MSTEE - ok
06:58:17.0646 7032 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
06:58:17.0647 7032 MTConfig - ok
06:58:17.0689 7032 [ 03B7145C889603537E9FFEABB1AD1089 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
06:58:17.0690 7032 MTsensor - ok
06:58:17.0707 7032 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
06:58:17.0708 7032 Mup - ok
06:58:17.0733 7032 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
06:58:17.0738 7032 napagent - ok
06:58:17.0783 7032 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
06:58:17.0796 7032 NativeWifiP - ok
06:58:17.0823 7032 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
06:58:17.0842 7032 NDIS - ok
06:58:17.0852 7032 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
06:58:17.0853 7032 NdisCap - ok
06:58:17.0874 7032 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
06:58:17.0875 7032 NdisTapi - ok
06:58:17.0892 7032 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
06:58:17.0894 7032 Ndisuio - ok
06:58:17.0910 7032 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
06:58:17.0912 7032 NdisWan - ok
06:58:17.0924 7032 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
06:58:17.0925 7032 NDProxy - ok
06:58:17.0937 7032 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
06:58:17.0946 7032 NetBIOS - ok
06:58:17.0963 7032 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
06:58:17.0965 7032 NetBT - ok
06:58:17.0973 7032 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
06:58:17.0973 7032 Netlogon - ok
06:58:17.0999 7032 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
06:58:18.0004 7032 Netman - ok
06:58:18.0038 7032 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:58:18.0040 7032 NetMsmqActivator - ok
06:58:18.0060 7032 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:58:18.0060 7032 NetPipeActivator - ok
06:58:18.0099 7032 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
06:58:18.0121 7032 netprofm - ok
06:58:18.0131 7032 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:58:18.0132 7032 NetTcpActivator - ok
06:58:18.0143 7032 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:58:18.0144 7032 NetTcpPortSharing - ok
06:58:18.0159 7032 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
06:58:18.0161 7032 nfrd960 - ok
06:58:18.0180 7032 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
06:58:18.0184 7032 NlaSvc - ok
06:58:18.0197 7032 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
06:58:18.0198 7032 Npfs - ok
06:58:18.0221 7032 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
06:58:18.0222 7032 nsi - ok
06:58:18.0233 7032 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
06:58:18.0233 7032 nsiproxy - ok
06:58:18.0280 7032 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
06:58:18.0308 7032 Ntfs - ok
06:58:18.0324 7032 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
06:58:18.0325 7032 Null - ok
06:58:18.0352 7032 [ 42AB9711A29D4CFC0C97ABC5514E853F ] nusbhost C:\Windows\system32\DRIVERS\nusbhst.sys
06:58:18.0353 7032 nusbhost - ok
06:58:18.0385 7032 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
06:58:18.0398 7032 nvraid - ok
06:58:18.0434 7032 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
06:58:18.0436 7032 nvstor - ok
06:58:18.0537 7032 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
06:58:18.0543 7032 nv_agp - ok
06:58:18.0624 7032 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
06:58:18.0657 7032 odserv - ok
06:58:18.0676 7032 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
06:58:18.0677 7032 ohci1394 - ok
06:58:18.0713 7032 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:58:18.0720 7032 ose - ok
06:58:18.0744 7032 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
06:58:18.0748 7032 p2pimsvc - ok
06:58:18.0763 7032 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
06:58:18.0768 7032 p2psvc - ok
06:58:18.0781 7032 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
06:58:18.0783 7032 Parport - ok
06:58:18.0812 7032 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
06:58:18.0814 7032 partmgr - ok
06:58:18.0827 7032 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
06:58:18.0829 7032 PcaSvc - ok
06:58:18.0844 7032 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
06:58:18.0846 7032 pci - ok
06:58:18.0854 7032 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
06:58:18.0855 7032 pciide - ok
06:58:18.0871 7032 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
06:58:18.0874 7032 pcmcia - ok
06:58:18.0889 7032 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
06:58:18.0890 7032 pcw - ok
06:58:18.0907 7032 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
06:58:18.0913 7032 PEAUTH - ok
06:58:18.0954 7032 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
06:58:18.0979 7032 PeerDistSvc - ok
06:58:19.0054 7032 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
06:58:19.0055 7032 PerfHost - ok
06:58:19.0091 7032 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
06:58:19.0105 7032 pla - ok
06:58:19.0183 7032 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
06:58:19.0197 7032 PlugPlay - ok
06:58:19.0210 7032 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
06:58:19.0212 7032 PNRPAutoReg - ok
06:58:19.0235 7032 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
06:58:19.0237 7032 PNRPsvc - ok
06:58:19.0264 7032 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
06:58:19.0269 7032 PolicyAgent - ok
06:58:19.0289 7032 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
06:58:19.0292 7032 Power - ok
06:58:19.0316 7032 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
06:58:19.0317 7032 PptpMiniport - ok
06:58:19.0330 7032 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
06:58:19.0332 7032 Processor - ok
06:58:19.0361 7032 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
06:58:19.0364 7032 ProfSvc - ok
06:58:19.0372 7032 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
06:58:19.0373 7032 ProtectedStorage - ok
06:58:19.0397 7032 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
06:58:19.0399 7032 Psched - ok
06:58:19.0460 7032 [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
06:58:19.0462 7032 PST Service - ok
06:58:19.0490 7032 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
06:58:19.0504 7032 ql2300 - ok
06:58:19.0525 7032 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
06:58:19.0526 7032 ql40xx - ok
06:58:19.0553 7032 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
06:58:19.0556 7032 QWAVE - ok
06:58:19.0570 7032 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
06:58:19.0571 7032 QWAVEdrv - ok
06:58:19.0584 7032 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
06:58:19.0585 7032 RasAcd - ok
06:58:19.0620 7032 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
06:58:19.0621 7032 RasAgileVpn - ok
06:58:19.0637 7032 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
06:58:19.0639 7032 RasAuto - ok
06:58:19.0650 7032 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
06:58:19.0652 7032 Rasl2tp - ok
06:58:19.0667 7032 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
06:58:19.0671 7032 RasMan - ok
06:58:19.0681 7032 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
06:58:19.0683 7032 RasPppoe - ok
06:58:19.0692 7032 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
06:58:19.0694 7032 RasSstp - ok
06:58:19.0704 7032 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
06:58:19.0707 7032 rdbss - ok
06:58:19.0714 7032 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
06:58:19.0714 7032 rdpbus - ok
06:58:19.0721 7032 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
06:58:19.0722 7032 RDPCDD - ok
06:58:19.0738 7032 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
06:58:19.0740 7032 RDPDR - ok
06:58:19.0771 7032 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
06:58:19.0771 7032 RDPENCDD - ok
06:58:19.0781 7032 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
06:58:19.0781 7032 RDPREFMP - ok
06:58:19.0815 7032 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
06:58:19.0818 7032 RDPWD - ok
06:58:19.0830 7032 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
06:58:19.0833 7032 rdyboost - ok
06:58:19.0842 7032 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
06:58:19.0845 7032 RemoteAccess - ok
06:58:19.0866 7032 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
06:58:19.0869 7032 RemoteRegistry - ok
06:58:19.0955 7032 [ A10B40CF9EB57D24E44717A2D38A00F4 ] RivaTuner64 C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys
06:58:19.0960 7032 RivaTuner64 - ok
06:58:19.0984 7032 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
06:58:19.0986 7032 RpcEptMapper - ok
06:58:19.0996 7032 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
06:58:19.0997 7032 RpcLocator - ok
06:58:20.0016 7032 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
06:58:20.0019 7032 RpcSs - ok
06:58:20.0037 7032 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
06:58:20.0038 7032 rspndr - ok
06:58:20.0082 7032 [ 24510C4A77ABA3B07AEFA840DB888637 ] RzSynapse C:\Windows\system32\DRIVERS\RzSynapse.sys
06:58:20.0084 7032 RzSynapse - ok
06:58:20.0104 7032 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
06:58:20.0104 7032 s3cap - ok
06:58:20.0113 7032 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
06:58:20.0114 7032 SamSs - ok
06:58:20.0123 7032 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
06:58:20.0125 7032 sbp2port - ok
06:58:20.0185 7032 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
06:58:20.0206 7032 SBSDWSCService - ok
06:58:20.0240 7032 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
06:58:20.0248 7032 SCardSvr - ok
06:58:20.0289 7032 [ B2F50286DC82B93C013E3FC57BA1A956 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
06:58:20.0291 7032 SCDEmu - ok
06:58:20.0298 7032 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
06:58:20.0300 7032 scfilter - ok
06:58:20.0337 7032 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
06:58:20.0352 7032 Schedule - ok
06:58:20.0370 7032 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
06:58:20.0371 7032 SCPolicySvc - ok
06:58:20.0392 7032 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
06:58:20.0395 7032 SDRSVC - ok
06:58:20.0405 7032 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
06:58:20.0406 7032 secdrv - ok
06:58:20.0418 7032 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
06:58:20.0420 7032 seclogon - ok
06:58:20.0431 7032 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
06:58:20.0433 7032 SENS - ok
06:58:20.0437 7032 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
06:58:20.0438 7032 SensrSvc - ok
06:58:20.0472 7032 [ 9B9B2F0A0432D938C726CCB25D66CB1B ] ser2at C:\Windows\system32\DRIVERS\ser2at64.sys
06:58:20.0473 7032 ser2at - ok
06:58:20.0483 7032 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
06:58:20.0484 7032 Serenum - ok
06:58:20.0501 7032 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
06:58:20.0503 7032 Serial - ok
06:58:20.0520 7032 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
06:58:20.0522 7032 sermouse - ok
06:58:20.0550 7032 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
06:58:20.0552 7032 SessionEnv - ok
06:58:20.0576 7032 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
06:58:20.0577 7032 sffdisk - ok
06:58:20.0609 7032 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
06:58:20.0610 7032 sffp_mmc - ok
06:58:20.0614 7032 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
06:58:20.0615 7032 sffp_sd - ok
06:58:20.0632 7032 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
06:58:20.0634 7032 sfloppy - ok
06:58:20.0672 7032 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
06:58:20.0676 7032 SharedAccess - ok
06:58:20.0711 7032 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
06:58:20.0727 7032 ShellHWDetection - ok
06:58:20.0741 7032 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
06:58:20.0742 7032 SiSRaid2 - ok
06:58:20.0757 7032 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
06:58:20.0759 7032 SiSRaid4 - ok
06:58:20.0819 7032 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
06:58:20.0822 7032 SkypeUpdate - ok
06:58:20.0843 7032 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
06:58:20.0850 7032 Smb - ok
06:58:20.0862 7032 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
06:58:20.0864 7032 SNMPTRAP - ok
06:58:20.0874 7032 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
06:58:20.0875 7032 spldr - ok
06:58:20.0906 7032 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
06:58:20.0912 7032 Spooler - ok
06:58:21.0009 7032 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
06:58:21.0065 7032 sppsvc - ok
06:58:21.0084 7032 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
06:58:21.0087 7032 sppuinotify - ok
06:58:21.0122 7032 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
06:58:21.0127 7032 srv - ok
06:58:21.0141 7032 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
06:58:21.0146 7032 srv2 - ok
06:58:21.0174 7032 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
06:58:21.0176 7032 srvnet - ok
06:58:21.0207 7032 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
06:58:21.0210 7032 SSDPSRV - ok
06:58:21.0222 7032 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
06:58:21.0224 7032 SstpSvc - ok
06:58:21.0262 7032 Steam Client Service - ok
06:58:21.0285 7032 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
06:58:21.0287 7032 stexstor - ok
06:58:21.0314 7032 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
06:58:21.0320 7032 stisvc - ok
06:58:21.0345 7032 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
06:58:21.0346 7032 storflt - ok
06:58:21.0366 7032 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
06:58:21.0367 7032 storvsc - ok
06:58:21.0380 7032 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
06:58:21.0381 7032 swenum - ok
06:58:21.0402 7032 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
06:58:21.0408 7032 swprv - ok
06:58:21.0443 7032 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
06:58:21.0471 7032 SysMain - ok
06:58:21.0526 7032 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
06:58:21.0528 7032 TabletInputService - ok
06:58:21.0545 7032 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
06:58:21.0549 7032 TapiSrv - ok
06:58:21.0565 7032 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
06:58:21.0568 7032 TBS - ok
06:58:21.0646 7032 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
06:58:21.0678 7032 Tcpip - ok
06:58:21.0714 7032 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
06:58:21.0722 7032 TCPIP6 - ok
06:58:21.0733 7032 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
06:58:21.0735 7032 tcpipreg - ok
06:58:21.0750 7032 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
06:58:21.0752 7032 TDPIPE - ok
06:58:21.0780 7032 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
06:58:21.0781 7032 TDTCP - ok
06:58:21.0798 7032 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
06:58:21.0800 7032 tdx - ok
06:58:21.0815 7032 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
06:58:21.0817 7032 TermDD - ok
06:58:21.0833 7032 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
06:58:21.0849 7032 TermService - ok
06:58:21.0887 7032 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
06:58:21.0901 7032 Themes - ok
06:58:21.0926 7032 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
06:58:21.0927 7032 THREADORDER - ok
06:58:21.0944 7032 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
06:58:21.0947 7032 TrkWks - ok
06:58:21.0976 7032 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
06:58:21.0978 7032 TrustedInstaller - ok
06:58:21.0988 7032 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
06:58:21.0990 7032 tssecsrv - ok
06:58:22.0020 7032 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
06:58:22.0022 7032 tunnel - ok
06:58:22.0036 7032 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
06:58:22.0045 7032 uagp35 - ok
06:58:22.0061 7032 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
06:58:22.0065 7032 udfs - ok
06:58:22.0082 7032 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
06:58:22.0084 7032 UI0Detect - ok
06:58:22.0094 7032 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
06:58:22.0099 7032 uliagpkx - ok
06:58:22.0111 7032 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
06:58:22.0115 7032 umbus - ok
06:58:22.0127 7032 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
06:58:22.0128 7032 UmPass - ok
06:58:22.0149 7032 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
06:58:22.0152 7032 UmRdpService - ok
06:58:22.0173 7032 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
06:58:22.0177 7032 upnphost - ok
06:58:22.0203 7032 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
06:58:22.0205 7032 usbaudio - ok
06:58:22.0216 7032 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
06:58:22.0217 7032 usbccgp - ok
06:58:22.0260 7032 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
06:58:22.0262 7032 usbcir - ok
06:58:22.0293 7032 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
06:58:22.0295 7032 usbehci - ok
06:58:22.0325 7032 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
06:58:22.0338 7032 usbhub - ok
06:58:22.0351 7032 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
06:58:22.0352 7032 usbohci - ok
06:58:22.0368 7032 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
06:58:22.0369 7032 usbprint - ok
06:58:22.0392 7032 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
06:58:22.0393 7032 usbscan - ok
06:58:22.0427 7032 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
06:58:22.0444 7032 USBSTOR - ok
06:58:22.0464 7032 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
06:58:22.0465 7032 usbuhci - ok
06:58:22.0482 7032 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
06:58:22.0484 7032 UxSms - ok
06:58:22.0495 7032 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
06:58:22.0496 7032 VaultSvc - ok
06:58:22.0531 7032 [ 03837B80AD5D8A00996148AD57C09791 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
06:58:22.0534 7032 VBoxDrv - ok
06:58:22.0569 7032 [ 51CEE8E2B356FDC351DB20C87F25F5A8 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
06:58:22.0571 7032 VBoxNetAdp - ok
06:58:22.0604 7032 [ CE7E80C7367B2ADAA023D9004C9F4691 ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
06:58:22.0606 7032 VBoxNetFlt - ok
06:58:22.0647 7032 [ 27C9A9F2FA94140DDCF7B9131E13E1B4 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
06:58:22.0650 7032 VBoxUSBMon - ok
06:58:22.0669 7032 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
06:58:22.0671 7032 vdrvroot - ok
06:58:22.0686 7032 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
06:58:22.0693 7032 vds - ok
06:58:22.0709 7032 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
06:58:22.0711 7032 vga - ok
06:58:22.0727 7032 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
06:58:22.0728 7032 VgaSave - ok
06:58:22.0746 7032 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
06:58:22.0749 7032 vhdmp - ok
06:58:22.0756 7032 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
06:58:22.0757 7032 viaide - ok
06:58:22.0779 7032 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
06:58:22.0782 7032 vmbus - ok
06:58:22.0793 7032 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
06:58:22.0794 7032 VMBusHID - ok
06:58:22.0805 7032 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
06:58:22.0806 7032 volmgr - ok
06:58:22.0815 7032 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
06:58:22.0818 7032 volmgrx - ok
06:58:22.0834 7032 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
06:58:22.0837 7032 volsnap - ok
06:58:22.0851 7032 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
06:58:22.0854 7032 vsmraid - ok
06:58:22.0901 7032 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
06:58:22.0916 7032 VSS - ok
06:58:22.0929 7032 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
06:58:22.0930 7032 vwifibus - ok
06:58:22.0940 7032 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
06:58:22.0944 7032 W32Time - ok
06:58:22.0963 7032 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
06:58:22.0964 7032 WacomPen - ok
06:58:22.0985 7032 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
06:58:22.0987 7032 WANARP - ok
06:58:22.0990 7032 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
06:58:22.0991 7032 Wanarpv6 - ok
06:58:23.0034 7032 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
06:58:23.0053 7032 WatAdminSvc - ok
06:58:23.0090 7032 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
06:58:23.0116 7032 wbengine - ok
06:58:23.0130 7032 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
06:58:23.0134 7032 WbioSrvc - ok
06:58:23.0175 7032 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
06:58:23.0179 7032 wcncsvc - ok
06:58:23.0210 7032 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
06:58:23.0212 7032 WcsPlugInService - ok
06:58:23.0225 7032 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
06:58:23.0227 7032 Wd - ok
06:58:23.0263 7032 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
06:58:23.0271 7032 Wdf01000 - ok
06:58:23.0278 7032 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
06:58:23.0280 7032 WdiServiceHost - ok
06:58:23.0284 7032 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
06:58:23.0286 7032 WdiSystemHost - ok
06:58:23.0316 7032 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
06:58:23.0320 7032 WebClient - ok
06:58:23.0336 7032 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
06:58:23.0339 7032 Wecsvc - ok
06:58:23.0368 7032 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
06:58:23.0370 7032 wercplsupport - ok
06:58:23.0382 7032 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
06:58:23.0385 7032 WerSvc - ok
06:58:23.0410 7032 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
06:58:23.0413 7032 WfpLwf - ok
06:58:23.0425 7032 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
06:58:23.0426 7032 WIMMount - ok
06:58:23.0444 7032 WinDefend - ok
06:58:23.0449 7032 WinHttpAutoProxySvc - ok
06:58:23.0499 7032 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
06:58:23.0515 7032 Winmgmt - ok
06:58:23.0558 7032 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
06:58:23.0596 7032 WinRM - ok
06:58:23.0647 7032 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
06:58:23.0650 7032 WinUSB - ok
06:58:23.0688 7032 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
06:58:23.0704 7032 Wlansvc - ok
06:58:23.0798 7032 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
06:58:23.0827 7032 wlidsvc - ok
06:58:23.0860 7032 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
06:58:23.0861 7032 WmiAcpi - ok
06:58:23.0879 7032 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
06:58:23.0886 7032 wmiApSrv - ok
06:58:23.0902 7032 WMPNetworkSvc - ok
06:58:23.0920 7032 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
06:58:23.0922 7032 WPCSvc - ok
06:58:23.0934 7032 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
06:58:23.0937 7032 WPDBusEnum - ok
06:58:23.0951 7032 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
06:58:23.0952 7032 ws2ifsl - ok
06:58:23.0983 7032 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\system32\wscsvc.dll
06:58:23.0991 7032 wscsvc - ok
06:58:23.0993 7032 WSearch - ok
06:58:24.0066 7032 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
06:58:24.0101 7032 wuauserv - ok
06:58:24.0130 7032 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
06:58:24.0132 7032 WudfPf - ok
06:58:24.0174 7032 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
06:58:24.0185 7032 WUDFRd - ok
06:58:24.0225 7032 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
06:58:24.0235 7032 wudfsvc - ok
06:58:24.0270 7032 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
06:58:24.0319 7032 WwanSvc - ok
06:58:24.0388 7032 [ 5A0C788C5BC5F2C993CB60940ADCF95E ] x10nets C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe
06:58:24.0389 7032 x10nets - ok
06:58:24.0435 7032 [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
06:58:24.0448 7032 yukonw7 - ok
06:58:24.0477 7032 ================ Scan global ===============================
06:58:24.0496 7032 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
06:58:24.0531 7032 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
06:58:24.0538 7032 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
06:58:24.0549 7032 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
06:58:24.0567 7032 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
06:58:24.0571 7032 [Global] - ok
06:58:24.0571 7032 ================ Scan MBR ==================================
06:58:24.0578 7032 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
06:58:24.0816 7032 \Device\Harddisk0\DR0 - ok
06:58:24.0828 7032 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
06:58:24.0987 7032 \Device\Harddisk1\DR1 - ok
06:58:24.0987 7032 ================ Scan VBR ==================================
06:58:24.0989 7032 [ BF8FDB74CA0212182EF2261465BCFF64 ] \Device\Harddisk0\DR0\Partition1
06:58:24.0990 7032 \Device\Harddisk0\DR0\Partition1 - ok
06:58:24.0994 7032 [ 355731C60C7E04EB8D30D8AE4460657F ] \Device\Harddisk0\DR0\Partition2
06:58:24.0995 7032 \Device\Harddisk0\DR0\Partition2 - ok
06:58:24.0997 7032 [ B12C6BE3FE7441387B8E513222645825 ] \Device\Harddisk1\DR1\Partition1
06:58:25.0000 7032 \Device\Harddisk1\DR1\Partition1 - ok
06:58:25.0001 7032 ============================================================
06:58:25.0001 7032 Scan finished
06:58:25.0001 7032 ============================================================
06:58:25.0006 3804 Detected object count: 0
06:58:25.0006 3804 Actual detected object count: 0

#4 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 01 December 2012 - 08:40 AM

Here is the log from aswMBR:

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-01 07:00:54
-----------------------------
07:00:54.844 OS Version: Windows x64 6.1.7600
07:00:54.844 Number of processors: 8 586 0x1A04
07:00:54.844 ComputerName: DADDY-PC UserName: daddy
07:00:57.838 Initialize success
07:02:32.886 AVAST engine defs: 12113001
07:03:21.252 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:03:21.254 Disk 0 Vendor: Intel___ 1.0. Size: 1430805MB BusType: 8
07:03:21.257 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000091
07:03:21.259 Disk 1 Vendor: Size: 1430805MB BusType: 0
07:03:21.266 Disk 0 MBR read successfully
07:03:21.269 Disk 0 MBR scan
07:03:21.273 Disk 0 Windows 7 default MBR code
07:03:21.277 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
07:03:21.290 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 1430703 MB offset 206848
07:03:21.308 Disk 0 scanning C:\Windows\system32\drivers
07:03:31.271 Service scanning
07:03:51.070 Modules scanning
07:03:51.079 Disk 0 trace - called modules:
07:03:51.094 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
07:03:51.099 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80071cd060]
07:03:51.104 3 CLASSPNP.SYS[fffff88001b5443f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800630b050]
07:03:53.717 AVAST engine scan C:\Windows
07:03:59.065 AVAST engine scan C:\Windows\system32
07:08:17.808 AVAST engine scan C:\Windows\system32\drivers
07:08:29.928 AVAST engine scan C:\Users\daddy
07:37:54.366 AVAST engine scan C:\ProgramData
07:39:17.079 Scan finished successfully
07:39:32.649 Disk 0 MBR has been saved successfully to "C:\Users\daddy\Downloads\MBR.dat"
07:39:32.655 The log file has been saved successfully to "C:\Users\daddy\Downloads\aswMBR.txt"

#5 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 01 December 2012 - 05:08 PM

here is the log from the eset

C:\N5200backup\TaxStuff\TaxStuff\MikePC\WoodWorking\install.exe a variant of Win32/Adware.WhenU.SaveNow.NAA application cleaned by deleting - quarantined
C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\Search Toolbar\SearchToolbar.dll.vir Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\Search Toolbar\SearchToolbarUpdater.exe.vir Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\StartNow Toolbar\ReactivateIE.exe.vir Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\StartNow Toolbar\Toolbar32.dll.vir Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\StartNow Toolbar\ToolbarBroker.exe.vir Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe.vir Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\daddy\AppData\Local\Deployment\CRE\umchw.dll.vir a variant of Win32/Kryptik.AIZP trojan cleaned by deleting - quarantined
C:\Users\daddy\AppData\Local\Google\Chrome\User Data\Default\Default\aadjgcdjdedcgggggedhgfgddedfddgb\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\daddy\AppData\Local\Google\Chrome\User Data\Default\Default\aadjgcdjdedcgggggedhgfgddedfddgb\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\daddy\Downloads\cnet2_wax20e_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
E:\backups\Mike\Downloads\cnet2_wax20e_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
E:\backups\Mike\Downloads\Windows_Live_Movie_Maker.exe MSIL/Solimba application cleaned by deleting - quarantined
E:\backups\Sherry\Downloads\CouponPrinter.exe probably a variant of Win32/Adware.Softomate.AD application cleaned by deleting - quarantined
E:\TaxStuff\TaxStuff\MikePC\WoodWorking\install (2).exe a variant of Win32/Adware.WhenU.SaveNow.NAA application cleaned by deleting - quarantined
E:\TaxStuff\TaxStuff\MikePC\WoodWorking\install.exe a variant of Win32/Adware.WhenU.SaveNow.NAA application cleaned by deleting - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:12 AM

Posted 01 December 2012 - 05:18 PM

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#7 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 01 December 2012 - 06:30 PM

Here is the mini toolbox log:

MiniToolBox by Farbar Version: 25-11-2012
Ran by daddy (administrator) on 01-12-2012 at 17:29:14
Running from "C:\Users\daddy\Downloads"
Windows 7 Ultimate (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Cisco Systems VPN Adapter for 64-bit Windows = Local Area Connection 3 (Disconnected)
Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller = Local Area Connection 2 (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Hardware not present)
Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled taskoffload=disabled
set interface interface="Local Area Connection 2" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Local Area Connection 3" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
add address name="VirtualBox Host-Only Network" address=192.168.56.1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : daddy-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller #2
Physical Address. . . . . . . . . : 00-24-8C-4D-62-8A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::f407:6a05:c262:66a7%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, December 01, 2012 2:07:10 PM
Lease Expires . . . . . . . . . . : Sunday, December 02, 2012 2:07:10 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 318776460
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-67-E8-DB-00-24-8C-4D-62-89
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller
Physical Address. . . . . . . . . : 00-24-8C-4D-62-89
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2F4A17D1-5F4C-40AC-BD5F-5E5F91F2E1B9}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:38d2:e6a9:e73f:9c67(Preferred)
Link-local IPv6 Address . . . . . : fe80::38d2:e6a9:e73f:9c67%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{0BF899BE-69A2-4562-9E60-00D9667ACCB6}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4009:803::1003
74.125.225.142
74.125.225.128
74.125.225.129
74.125.225.132
74.125.225.135
74.125.225.136
74.125.225.134
74.125.225.137
74.125.225.131
74.125.225.133
74.125.225.130


Pinging google.com [74.125.225.134] with 32 bytes of data:
Reply from 74.125.225.134: bytes=32 time=12ms TTL=57
Reply from 74.125.225.134: bytes=32 time=15ms TTL=57

Ping statistics for 74.125.225.134:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 12ms, Maximum = 15ms, Average = 13ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=142ms TTL=47
Reply from 98.139.183.24: bytes=32 time=67ms TTL=47

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 67ms, Maximum = 142ms, Average = 104ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...00 24 8c 4d 62 8a ......Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller #2
11...00 24 8c 4d 62 89 ......Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 10
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 266
192.168.1.3 255.255.255.255 On-link 192.168.1.3 266
192.168.1.255 255.255.255.255 On-link 192.168.1.3 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 266
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:4137:9e76:38d2:e6a9:e73f:9c67/128
On-link
14 266 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::38d2:e6a9:e73f:9c67/128
On-link
14 266 fe80::f407:6a05:c262:66a7/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
14 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/01/2012 07:41:04 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (12/01/2012 07:40:44 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (12/01/2012 07:40:44 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (12/01/2012 07:39:33 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (12/01/2012 06:54:35 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (11/30/2012 06:23:24 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/29/2012 03:51:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/29/2012 03:24:05 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (11/29/2012 03:24:05 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (11/27/2012 01:15:09 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.


System errors:
=============
Error: (12/01/2012 02:20:14 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 02:19:46 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 02:19:31 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 02:19:19 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 02:19:07 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 02:19:04 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 11:27:48 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 11:14:11 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 11:13:49 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (12/01/2012 11:13:36 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2012-11-29 03:19:40.000
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-29 03:19:39.937
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 06:06:19.374
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-18 06:06:19.327
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-16 03:30:24.624
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-16 03:30:24.561
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-10 11:27:15.594
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-10 11:27:15.532
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-10 10:32:06.970
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-11-10 10:32:06.908
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 2.2.0)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe AIR (Version: 2.5.1.17730)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Reader 9.5.0 (Version: 9.5.0)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD AVIVO64 Codecs (Version: 11.7.0.11025)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.70727.2220)
Animation Director
Apple Application Support (Version: 2.1.5)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar Updater (Version: 1.2.0.20007)
Audacity 1.3.13 (Unicode)
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.4
Awesome Duplicate Photo Finder v. 1.0
Canon Utilities Digital Photo Professional 3.9 (Version: 3.9.4.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.0806.1213.19931)
Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1213.19931)
Catalyst Control Center InstallProxy (Version: 2012.0806.1213.19931)
Catalyst Control Center Localization All (Version: 2012.0806.1213.19931)
ccc-utility64 (Version: 2012.0806.1213.19931)
CCC Help Chinese Standard (Version: 2012.0806.1212.19931)
CCC Help Chinese Traditional (Version: 2012.0806.1212.19931)
CCC Help Czech (Version: 2012.0806.1212.19931)
CCC Help Danish (Version: 2012.0806.1212.19931)
CCC Help Dutch (Version: 2012.0806.1212.19931)
CCC Help English (Version: 2012.0806.1212.19931)
CCC Help Finnish (Version: 2012.0806.1212.19931)
CCC Help French (Version: 2012.0806.1212.19931)
CCC Help German (Version: 2012.0806.1212.19931)
CCC Help Greek (Version: 2012.0806.1212.19931)
CCC Help Hungarian (Version: 2012.0806.1212.19931)
CCC Help Italian (Version: 2012.0806.1212.19931)
CCC Help Japanese (Version: 2012.0806.1212.19931)
CCC Help Korean (Version: 2012.0806.1212.19931)
CCC Help Norwegian (Version: 2012.0806.1212.19931)
CCC Help Polish (Version: 2012.0806.1212.19931)
CCC Help Portuguese (Version: 2012.0806.1212.19931)
CCC Help Russian (Version: 2012.0806.1212.19931)
CCC Help Spanish (Version: 2012.0806.1212.19931)
CCC Help Swedish (Version: 2012.0806.1212.19931)
CCC Help Thai (Version: 2012.0806.1212.19931)
CCC Help Turkish (Version: 2012.0806.1212.19931)
Cisco Systems VPN Client 5.0.07.0290 (Version: 5.0.7)
Cobian Backup 10
Code Hero (Version: 0.192)
Curse Client (Version: 5.1.1.566)
D3DX10 (Version: 15.4.2368.0902)
DebugMode Wax 2.0
DivX Setup (Version: 2.6.1.5)
Download Updater (AOL Inc.)
DxO Optics Pro 6 (Version: 6.6.0)
DxO Optics Pro 7 (Version: 7.2.1)
ESET Online Scanner v3
FastPictureViewer WIC Codec Pack 1.30 (Version: 1.30.1.0)
FastStone Image Viewer 4.2 (Version: 4.2)
Google Chrome (Version: 23.0.1271.95)
Google Drive (Version: 1.6.3837.2778)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
HiJackThis (Version: 1.0.0)
HydraVision (Version: 4.2.218.0)
Intel® Matrix Storage Manager
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 33 (Version: 6.0.330)
K-Lite Mega Codec Pack 9.1.0 (Version: 9.1.0)
Kits Configuration Installer (Version: 8.37.0)
LAME v3.98.3 for Audacity
Light-O-Rama (Version: 3.0.2)
Lightworks (Version: 10.0.35.0)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Matrox VFW Software Codecs, build 28
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Press Training Kit Exam Prep Suite 70-432 (Version: 1.0.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MotoHelper MergeModules (Version: 1.2.0)
Motorola Device Manager (Version: 2.3.4)
Motorola Device Software Update (Version: 12.10.3002)
Motorola Mobile Drivers Installation 5.9.0 (Version: 5.9.0)
MSI Afterburner 2.1.0 (Version: 2.1.0)
MSI Kombustor 2.0.0
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
msxml4 (Version: 1.0.0)
Mumble 1.2.3 (Version: 1.2.3)
Naga Firmware Updater 1.13 (Version: 1.13.01)
Octoshape add-in for Adobe Flash Player
OpenLibraries
Oracle VM VirtualBox 4.1.12 (Version: 4.1.12)
Paint.NET v3.5.10 (Version: 3.60.0)
Pando Media Booster (Version: 2.6.0.1)
Password Safe
Picasa 3 (Version: 3.8)
Pinnacle VideoSpin (Version: 2.0.0.669)
Portal: First Slice
PowerISO (Version: 4.8)
QuickTime (Version: 7.71.80.42)
Razer Naga (Version: 3.02.05)
RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition (Version: v2.24 MSI Master Overclocking Arena 2009 edition)
SDK Debuggers (Version: 8.37.0)
Skype Toolbars (Version: 5.3.7280)
Skype™ 5.10 (Version: 5.10.116)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
TileGem (Version: 2.4.0)
TurboTax 2010
TurboTax 2010 wiliper (Version: 010.000.1266)
TurboTax 2010 WinPerFedFormset (Version: 010.000.4227)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0457)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0214)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2011
TurboTax 2011 wiliper (Version: 011.000.1545)
TurboTax 2011 WinPerFedFormset (Version: 011.000.2955)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0463)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)
TurboTax 2011 wrapper (Version: 011.000.0121)
Uninstall Minleon LightShow Pro (Version: 2.5.4650.19419)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760413) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Ventrilo Client for Windows x64 (Version: 3.0.7.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Vuze (Version: 4.7)
Vuze Remote Toolbar (Version: 6.3.3.3)
Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (Version: 10/22/2009 2.06.00)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Software Development Kit (Version: 8.37.0)
WinZip 16.5 (Version: 16.5.10095)
WinZipBar Toolbar (Version: 6.8.9.0)
Wondershare Video Converter Ultimate(Build 5.4.3.0)
World of Warcraft (Version: 5.1.0.16309)
World of Warcraft Public Test (Version: 0.0.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 60%
Total physical RAM: 6135.08 MB
Available physical RAM: 2424.83 MB
Total Pagefile: 12268.31 MB
Available Pagefile: 5899.69 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.04 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:1397.17 GB) (Free:871.23 GB) NTFS
3 Drive e: (FreeAgent Drive) (Fixed) (Total:931.51 GB) (Free:217.28 GB) NTFS

========================= Users: ========================================

User accounts for \\DADDY-PC

Administrator daddy Guest

========================= Restore Points ==================================

16-11-2012 09:00:15 Windows Update
20-11-2012 11:38:11 Windows Update
23-11-2012 20:01:58 Windows Update
27-11-2012 11:38:29 Windows Update
29-11-2012 09:00:45 Windows Update

**** End of log ****

#8 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 01 December 2012 - 06:31 PM

Here is the farbar service scanner:

Farbar Service Scanner Version: 01-12-2012 02
Ran by daddy (administrator) on 01-12-2012 at 17:30:50
Running from "C:\Users\daddy\Downloads"
Windows 7 Ultimate (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-16 17:58] - [2011-12-27 21:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-09 04:44] - [2012-03-30 05:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-10-10 04:45] - [2012-06-01 23:25] - 0182272 ____A (Microsoft Corporation) BAF19B633933A9FB4883D27D66C39E9A

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll
[2009-07-13 18:09] - [2009-07-13 19:41] - 0565760 ____A (Microsoft Corporation) F8E058D17363EC580E4B7232778B6CB5

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#9 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 01 December 2012 - 06:37 PM

Her eis the log for the adware remover:

# AdwCleaner v2.010 - Logfile created 12/01/2012 at 17:32:44
# Updated 29/11/2012 by Xplode
# Operating system : Windows 7 Ultimate (64 bits)
# User : daddy - DADDY-PC
# Boot Mode : Normal
# Running from : C:\Users\daddy\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\Program Files (x86)\OApps
Folder Deleted : C:\Program Files (x86)\Vuze_Remote
Folder Deleted : C:\Program Files (x86)\WinZipBar
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Users\daddy\AppData\Local\Conduit
Folder Deleted : C:\Users\daddy\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\daddy\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\daddy\AppData\LocalLow\Vuze_Remote
Folder Deleted : C:\Users\daddy\AppData\LocalLow\WinZipBar

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Vuze_Remote
Key Deleted : HKCU\Software\AppDataLow\Software\WinZipBar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{625F420E-A4A9-4B40-BC23-716C1C43893A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5911488E-9D1E-40EC-8CBB-06B231CC153F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5911488E-9D1E-40EC-8CBB-06B231CC153F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0388404D-6072-4CEB-B521-8F090FEAEE57}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7E8A36EA-2501-4ED3-A3C8-CFA9143FB169}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{FAA8C612-F1B6-461B-8B60-B54D74D9642E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Toolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ToolbarBroker.EXE
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.BandObject
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.BandObject.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3106777
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{38BF9661-BDA0-4A74-BB3B-576EC7AE16DC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6857AC4A-95B4-4E2C-B2D2-8A235FCCEF4A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Classes\ZGClnt.Mngr
Key Deleted : HKLM\SOFTWARE\Classes\ZGClnt.Mngr.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9280CAA3-237E-468E-A41C-43EADB5FF61A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CA66EA86-2CAA-41BF-9A61-C5AE321D6143}
Key Deleted : HKLM\Software\StartNow Toolbar
Key Deleted : HKLM\Software\Vuze_Remote
Key Deleted : HKLM\Software\WinZipBar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2CBD2A57-2FD5-4F1A-9FC8-90ED48FA4187}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5911488E-9D1E-40EC-8CBB-06B231CC153F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9280CAA3-237E-468E-A41C-43EADB5FF61A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA66EA86-2CAA-41BF-9A61-C5AE321D6143}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E65F40C8-3CEB-47C2-9E01-BF73323DF4E7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2CBD2A57-2FD5-4F1A-9FC8-90ED48FA4187}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{46E2B48A-86E8-40C9-AAC0-80476ECFBB89}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{75763BA0-D1A9-40E5-9B33-5EC3BF8E0857}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8BA82C41-EB2A-4D59-B6ED-1AFC1818491F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CEE2B4C3-DC4C-4808-B93C-84585BFCFF22}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinZipBar Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E65F40C8-3CEB-47C2-9E01-BF73323DF4E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v23.0.1271.95

File : C:\Users\daddy\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.11] : homepage = "hxxp://klit.startnow.com/?src=startpage&provider=&provider_name=yahoo&provider_co[...]
Deleted [l.1515] : homepage = "hxxp://klit.startnow.com/?src=startpage&provider=&provider_name=yahoo&provider_code=[...]

*************************

AdwCleaner[S1].txt - [9250 octets] - [01/12/2012 17:32:44]

########## EOF - C:\AdwCleaner[S1].txt - [9310 octets] ##########

#10 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 01 December 2012 - 06:43 PM

and here is the junkware removal log:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 3.7.2 (12.01.2012:2)
OS: Windows 7 Ultimate x64
Ran by daddy on Sat 12/01/2012 at 17:38:54.09
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{443789b7-f39c-4b5c-9287-da72d38f4fe6}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{443789b7-f39c-4b5c-9287-da72d38f4fe6}



~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\startnow toolbar"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 12/01/2012 at 17:42:21.37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:12 AM

Posted 02 December 2012 - 11:21 AM

malwarebytes log?

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#12 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 02 December 2012 - 11:37 AM

Here is the rkill log:

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/02/2012 10:36:11 AM in x64 mode.
Windows Version: Windows 7 Ultimate

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Users\daddy\AppData\Local\Apps\2.0\BGMAV825.KRZ\K94KWQZB.M9X\curs..tion_9e9e83ddf3ed3ead_0005.0001_dafeadaaa30c70ac\CurseClient.exe (PID: 3828) [UP-HEUR]
* C:\Users\daddy\Downloads\JRT.exe (PID: 4676) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 12/02/2012 10:36:28 AM
Execution time: 0 hours(s), 0 minute(s), and 17 seconds(s)

#13 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 02 December 2012 - 11:40 AM

Here is the autoruns log:

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "IAAnotif" "Event Monitor User Notification Tool" "Intel Corporation" "c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "Adobe Reader Speed Launcher" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "Cobian Backup 10 Interface" "Cobian Backup 10 Boletus" "Luis Cobian, CobianSoft" "c:\program files (x86)\cobian backup 10\cbinterface.exe"
+ "GrooveMonitor" "GrooveMonitor Utility" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\groovemonitor.exe"
+ "PWRISOVM.EXE" "PowerISO Virtual Drive Manager" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisovm.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "Razer Naga Driver" "Razer Naga Systray" "Razer USA Ltd" "c:\program files (x86)\razer\naga\razernagasystray.exe"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Minleon LightShow Pro Sequencer - Auto Update.lnk" "LightShow Pro" "Minleon International Ltd." "c:\program files (x86)\minleon\lightshowprov25.exe"
"C:\Users\daddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "CurseClientStartup.ccip" "" "" "c:\users\daddy\appdata\roaming\microsoft\windows\start menu\programs\startup\curseclientstartup.ccip"
+ "Password Safe.lnk" "Password Safe Application" "SourceForge.net" "c:\program files (x86)\password safe\pwsafe.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Google Update" "Google Installer" "Google Inc." "c:\users\daddy\appdata\local\google\update\googleupdate.exe"
+ "GoogleDriveSync" "Google Drive" "Google" "c:\program files (x86)\google\drive\googledrivesync.exe"
+ "HydraVisionDesktopManager" "HydraDM" "AMD" "c:\program files (x86)\ati technologies\hydravision\hydradm.exe"
+ "SpybotSD TeaTimer" "System settings protector" "Safer-Networking Ltd." "c:\program files (x86)\spybot - search & destroy\teatimer.exe"
+ "swg" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\googletoolbarnotifier.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "FileOpreation" "" "" "c:\windows\syswow64\ws_contextmenu.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshls64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "GDriveBlacklistedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSharedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncingOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "DivX Plus Web Player HTML5 <video>" "DivX Plus Web Player HTML5 <video> version 2.1.2.145" "DivX, LLC" "c:\program files (x86)\divx\divx plus web player\ie\divxhtml5\divxhtml5.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\ssv.dll"
+ "Skype Plug-In" "Skype add-on for IE" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Spybot-S&D IE Protection" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Skype Plug-In" "Skype add-on for IE" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Spybot - Search & Destroy Configuration" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.4 r402" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-4252921621-273806825-3823496696-1001Core" "Google Installer" "Google Inc." "c:\users\daddy\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-4252921621-273806825-3823496696-1001UA" "Google Installer" "Google Inc." "c:\users\daddy\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Motorola Device Manager Engine" "Motorola Device Management Update" "" "c:\program files (x86)\motorola mobility\motorola device manager\motoroladevicemanagerupdate.exe"
+ "\Motorola Device Manager Initial Update" "Motorola Device Management Update" "" "c:\program files (x86)\motorola mobility\motorola device manager\motoroladevicemanagerupdate.exe"
+ "\Motorola Device Manager Update" "Motorola Device Management Update" "" "c:\program files (x86)\motorola mobility\motorola device manager\motoroladevicemanagerupdate.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\{3FD2ECD4-42C6-41E5-AD55-62E370FFBE29}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "CVPND" "Cisco Systems VPN Client" "Cisco Systems, Inc." "c:\program files (x86)\cisco systems\vpn client\cvpnd.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "IAANTMON" "RAID Monitor" "Intel Corporation" "c:\program files (x86)\intel\intel matrix storage manager\iaantmon.exe"
+ "IntuitUpdateService" "Helps Intuit applications automatically update themselves." "Intuit Inc." "c:\program files (x86)\common files\intuit\update service\intuitupdateservice.exe"
+ "IntuitUpdateServiceV4" "Helps Intuit applications automatically update themselves." "Intuit Inc." "c:\program files (x86)\common files\intuit\update service v4\intuitupdateservice.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveauditservice.exe"
+ "Motorola Device Manager" "MotoHelper Service" "" "c:\program files (x86)\motorola mobility\motorola device manager\motohelperservice.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "PST Service" "Route and execute the requests/commands from PST" "Motorola" "c:\program files (x86)\motorola\motforwarddaemon\forwarddaemon.exe"
+ "SBSDWSCService" "Spybot-S&D Security Center integration" "Safer Networking Ltd." "c:\program files (x86)\spybot - search & destroy\sdwinsec.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
+ "x10nets" "X10 Module" "X10" "c:\program files (x86)\common files\x10\common\x10nets.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "AtiHDAudioService" "AMD High Definition Audio Function Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\atihdw76.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "BTCFilterService" "Motorola Unsafe Removal Filter Driver" "Motorola Inc" "c:\windows\system32\drivers\motfilt.sys"
+ "catchme" "" "" "File not found: C:\ComboFix\catchme.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CVirtA" "Cisco Systems VPN Adapter" "Cisco Systems, Inc." "c:\windows\system32\drivers\cvirta64.sys"
+ "CVPNDRVA" "" "" "c:\windows\system32\drivers\cvpndrva.sys"
+ "DNE" "Deterministic Network Enhancer for NDIS 5.1" "Deterministic Networks, Inc." "c:\windows\system32\drivers\dne64x.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "esgiguard" "" "" "File not found: C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "hitmanpro36" "HitmanPro 3.6 Support Driver" "" "c:\windows\system32\drivers\hitmanpro36.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "Lycosa" "Razer Tarantula Keyboard Driver" "Razer USA Ltd." "c:\windows\system32\drivers\lycosa.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "motccgp" "Motorola USB Composite Device Driver" "Motorola Mobility Inc" "c:\windows\system32\drivers\motccgp.sys"
+ "motccgpfl" "Motorola USB Composite Filter Driver" "Motorola Mobility Inc" "c:\windows\system32\drivers\motccgpfl.sys"
+ "MotoSwitchService" "" "Motorola" "c:\windows\system32\drivers\motswch.sys"
+ "Motousbnet" "Motorola USB Networking Driver" "Motorola Mobility Inc" "c:\windows\system32\drivers\motousbnet.sys"
+ "motusbdevice" "Motorola USB Device Driver (SVC)" "Motorola Inc" "c:\windows\system32\drivers\motusbdevice.sys"
+ "MTsensor" "ATK0110 ACPI Utility" "" "c:\windows\system32\drivers\asacpi.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nusbhost" "Network USB Host Controller Driver" "SerComm" "c:\windows\system32\drivers\nusbhst.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RivaTuner64" "" "" "c:\program files (x86)\rivatuner v2.24 msi master overclocking arena 2009 edition\rivatuner64.sys"
+ "RzSynapse" "Razer Synapse Engine" "Razer USA Ltd" "c:\windows\system32\drivers\rzsynapse.sys"
+ "SCDEmu" "PowerISO Virtual Drive" "PowerISO Computing, Inc." "c:\windows\system32\drivers\scdemu.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "ser2at" "ATEN USB to Serial port driver" "ATEN" "c:\windows\system32\drivers\ser2at64.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "VBoxDrv" "VirtualBox Support Driver" "Oracle Corporation" "c:\windows\system32\drivers\vboxdrv.sys"
+ "VBoxNetAdp" "VirtualBox Host-Only Network Adapter Driver" "Oracle Corporation" "c:\windows\system32\drivers\vboxnetadp.sys"
+ "VBoxNetFlt" "VirtualBox Bridged Networking Driver" "Oracle Corporation" "c:\windows\system32\drivers\vboxnetflt.sys"
+ "VBoxUSBMon" "VirtualBox USB Monitor Driver" "Oracle Corporation" "c:\windows\system32\drivers\vboxusbmon.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "yukonw7" "" "" "c:\windows\system32\drivers\yk62x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.dv25" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "vidc.dv50" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "vidc.dvh1" "Matrox VFW DV100 Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv100.dll"
+ "vidc.dvsd" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "vidc.M101" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfw.dll"
+ "vidc.M102" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwhd.dll"
+ "vidc.M103" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwyuva.dll"
+ "vidc.M104" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwyuvahd.dll"
+ "vidc.M301" "Matrox VFW RefAVI Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwrefavi.dll"
+ "vidc.M701" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hd.dll"
+ "vidc.M702" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hdoffline.dll"
+ "vidc.M703" "Matrox VFW Mpeg-2 HDV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hdv.dll"
+ "vidc.M704" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2alpha.dll"
+ "vidc.M705" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2alphahd.dll"
+ "vidc.MJPG" "Matrox VFW Mjpeg Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmjpeg.dll"
+ "vidc.MMES" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.ac3acm" "AC-3 ACM Codec" "fccHandler" "c:\windows\syswow64\ac3acm.acm"
+ "msacm.l3acm" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codecp.acm"
+ "vidc.444p" "" "" "c:\program files (x86)\t@b\0.958\686\tabdec.dll"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
+ "vidc.dv25" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "vidc.dv50" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "vidc.dvh1" "Matrox VFW DV100 Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv100.dll"
+ "vidc.dvsd" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "VIDC.FFDS" "ffdshow VFW" "" "c:\windows\syswow64\ff_vfw.dll"
+ "VIDC.LAGS" "Lagarith" " " "c:\windows\syswow64\lagarith.dll"
+ "VIDC.LWLR" "" "" "c:\windows\syswow64\rgbacodec.dll"
+ "vidc.M101" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfw.dll"
+ "vidc.M102" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwhd.dll"
+ "vidc.M103" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwyuva.dll"
+ "vidc.M104" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwyuvahd.dll"
+ "vidc.M301" "Matrox VFW RefAVI Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwrefavi.dll"
+ "vidc.M701" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hd.dll"
+ "vidc.M702" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hdoffline.dll"
+ "vidc.M703" "Matrox VFW Mpeg-2 HDV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hdv.dll"
+ "vidc.M704" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2alpha.dll"
+ "vidc.M705" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2alphahd.dll"
+ "vidc.mjpg" "Matrox VFW Mjpeg Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmjpeg.dll"
+ "vidc.MMES" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2.dll"
+ "vidc.mpng" "" "" "c:\program files (x86)\t@b\0.958\686\tabdec.dll"
+ "vidc.mvjp" "" "" "c:\program files (x86)\t@b\0.958\686\tabdec.dll"
+ "VIDC.XVID" "" "" "c:\windows\syswow64\xvidvfw.dll"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files\divx\divx codec\divxdec.ax"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AC3File" "" "" "c:\program files (x86)\k-lite codec pack\filters\ac3file.ax"
+ "AC3Filter" "ac3filter" "" "c:\windows\syswow64\ac3filter.ax"
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "DC-Bass Source" "BASS based DirectShow™ Audio Decoder" "http://www.dsp-worx.de" "c:\program files (x86)\k-lite codec pack\filters\dcbass\dcbasssourcemod.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\k-lite codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\k-lite codec pack\filters\vsfilter.dll"
+ "DivX AAC Decoder" "AAC audio decoder filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx codec\divxdec.ax"
+ "DivX Demux Filter" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX Demux Filter (Unrestricted Edition)" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\divxdech264.ax"
+ "DivX Video Decoder 0004" "DivX® Decoder Filter" "DivX, Inc." "c:\program files (x86)\pinnacle\shared files\filter\divxdec.ax"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\filters\ffdshow\ffdshow.ax"
+ "File Source (Monkey Audio)" "" "" "c:\program files (x86)\k-lite codec pack\filters\monkeysource.ax"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\k-lite codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavaudio.ax"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavvideo.ax"
+ "madFlac Decoder" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files (x86)\k-lite codec pack\filters\madflac.ax"
+ "madFlac Source" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files (x86)\k-lite codec pack\filters\madflac.ax"
+ "madVR" "madshi's D3D9 based video renderer" "madshi.net" "c:\program files (x86)\k-lite codec pack\filters\madvr\madvr.ax"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "PICVideo M-JPEG 3 Compressor" "PICVideo M-JPEG 3 codec" "Pegasus Imaging Corporation" "c:\windows\syswow64\pvmjpg30.dll"
+ "PICVideo M-JPEG 3 Decompressor" "PICVideo M-JPEG 3 codec" "Pegasus Imaging Corporation" "c:\windows\syswow64\pvmjpg30.dll"
+ "Pinnacle MP3 Encoder" "Pinnacle MP3 compressor" "Pinnacle Systems" "c:\program files (x86)\pinnacle\shared files\filter\pclemp3encoder.ax"
+ "RealMediaRenderer2" "Real Media Renderer 2" "Pinnacle Systems, Inc." "c:\program files (x86)\pinnacle\shared files\realvideo\pclermrenderer2.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "T" "VP7 Decompression Filter" "On2.com Inc." "c:\program files (x86)\k-lite codec pack\filters\vp7dec.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WS ScreenCapture" "ScreenCa Dynamic Link Library" "" "c:\program files (x86)\wondershare\video converter ultimate\screencapturefilter.ax"
"HKLM\Software\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "Adobe Dng Format Decoder (FastPictureViewer WIC Codec Pack)" "Adobe Dng Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\adobe\x86\adobecodec.dll"
+ "Canon Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Canon Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\canon\x86\canoncodec.dll"
+ "Fuji Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Fuji Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\fuji\x86\fujicodec.dll"
+ "Hasselblad Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Hasselblad Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\hasselblad\x86\hasselbladcodec.dll"
+ "Kodak Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Kodak Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\kodak\x86\kodakcodec.dll"
+ "Leica Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Leica Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\leica\x86\leicacodec.dll"
+ "Minolta Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Minolta Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\minolta\x86\minoltacodec.dll"
+ "Nikon Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Nikon Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\nikon\x86\nikoncodec.dll"
+ "Olympus Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Olympus Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\olympus\x86\olympuscodec.dll"
+ "Panasonic Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Panasonic Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\panasonic\x86\panasoniccodec.dll"
+ "Pentax Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Pentax Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\pentax\x86\pentaxcodec.dll"
+ "Sigma X3F Format Decoder (FastPictureViewer WIC Codec Pack)" "Sigma X3F Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\sigma\x86\sigmacodec.dll"
+ "Sony Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Sony Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\sony\x86\sonycodec.dll"
+ "TGA Decoder (FastPictureViewer WIC Codec Pack)" "Truevision Targa (TGA) Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raster formats\truevision targa\x86\tgacodec.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "Adobe Dng Format Decoder (FastPictureViewer WIC Codec Pack)" "Adobe Dng Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\adobe\x86\adobecodec.dll"
+ "Canon Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Canon Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\canon\x86\canoncodec.dll"
+ "Fuji Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Fuji Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\fuji\x86\fujicodec.dll"
+ "Hasselblad Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Hasselblad Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\hasselblad\x86\hasselbladcodec.dll"
+ "Kodak Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Kodak Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\kodak\x86\kodakcodec.dll"
+ "Leica Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Leica Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\leica\x86\leicacodec.dll"
+ "Minolta Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Minolta Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\minolta\x86\minoltacodec.dll"
+ "Nikon Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Nikon Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\nikon\x86\nikoncodec.dll"
+ "Olympus Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Olympus Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\olympus\x86\olympuscodec.dll"
+ "Panasonic Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Panasonic Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\panasonic\x86\panasoniccodec.dll"
+ "Pentax Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Pentax Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\pentax\x86\pentaxcodec.dll"
+ "Sigma X3F Format Decoder (FastPictureViewer WIC Codec Pack)" "Sigma X3F Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\sigma\x86\sigmacodec.dll"
+ "Sony Raw Format Decoder (FastPictureViewer WIC Codec Pack)" "Sony Raw Format Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raw formats\sony\x86\sonycodec.dll"
+ "TGA Decoder (FastPictureViewer WIC Codec Pack)" "Truevision Targa (TGA) Decoder" "Axel Rietschin Software Developments" "c:\windows\wiccodecs\{a6d092a4-081a-4f0e-9356-da167e87d922}\raster formats\truevision targa\x86\tgacodec.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "LIDIL hpzllwn7" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpzllwn7.dll"
"C:\Users\daddy\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "WinZip Gadget" "" "WinZip" "C:\Program Files\Windows Sidebar\Shared Gadgets\WinZip.Gadget\en-US\Gadget.xml"

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:12 AM

Posted 02 December 2012 - 01:03 PM

Current issues?

#15 needbrew

needbrew
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:04:12 AM

Posted 02 December 2012 - 01:36 PM

Seems to be better. Will try a few more things and report back later today.

Thanks for the assistance




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users