Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ads not by this site


  • Please log in to reply
13 replies to this topic

#1 intersection

intersection

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:38 AM

Posted 09 December 2012 - 06:33 PM

Evening Gents

I have an unwanted ad banner which appears on my home page, (both ie & chrome)it states "ads not by this site" just below it
When browsing, messages appear very briefly on the bottom left of the home page, "Adyield manager, doubleclick are just a couple i can manage to read.


I have downloaded some software to try and clear the problem, all free versions
Ad aware antivirus
Spybotsd162
Malwarebytes Anti-Malware
AVG 2013
I also have McAfee internet security installed.

I downloaded and ran Rkill, followed by a malwarebytes full scan. however i still have the problem.
Help appriciated

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 09 December 2012 - 09:15 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 intersection

intersection
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:38 AM

Posted 10 December 2012 - 02:57 PM

Hi narenxp

Thanks for the prompt reply.
I did all the scans in safe mode.
My computer still functions, however i am not logging in to any site requiring my password, other than this on of course.
See below.

5:32:08.0946 2168 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
15:32:09.0211 2168 ============================================================
15:32:09.0211 2168 Current date / time: 2012/12/10 15:32:09.0211
15:32:09.0211 2168 SystemInfo:
15:32:09.0211 2168
15:32:09.0211 2168 OS Version: 6.0.6001 ServicePack: 1.0
15:32:09.0211 2168 Product type: Workstation
15:32:09.0211 2168 ComputerName: MARK-PC
15:32:09.0211 2168 UserName: Mark
15:32:09.0211 2168 Windows directory: C:\Windows
15:32:09.0211 2168 System windows directory: C:\Windows
15:32:09.0211 2168 Processor architecture: Intel x86
15:32:09.0211 2168 Number of processors: 2
15:32:09.0211 2168 Page size: 0x1000
15:32:09.0211 2168 Boot type: Safe boot with network
15:32:09.0211 2168 ============================================================
15:32:09.0867 2168 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:32:09.0867 2168 ============================================================
15:32:09.0867 2168 \Device\Harddisk0\DR0:
15:32:09.0867 2168 MBR partitions:
15:32:09.0867 2168 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xFEC800, BlocksNum 0x1C1D8970
15:32:09.0867 2168 ============================================================
15:32:09.0898 2168 C: <-> \Device\Harddisk0\DR0\Partition1
15:32:09.0898 2168 ============================================================
15:32:09.0898 2168 Initialize success
15:32:09.0898 2168 ============================================================
15:32:21.0769 2212 ============================================================
15:32:21.0769 2212 Scan started
15:32:21.0769 2212 Mode: Manual; TDLFS;
15:32:21.0769 2212 ============================================================
15:32:21.0879 2212 ================ Scan system memory ========================
15:32:21.0879 2212 System memory - ok
15:32:21.0879 2212 ================ Scan services =============================
15:32:22.0284 2212 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
15:32:22.0284 2212 ACPI - ok
15:32:22.0393 2212 [ E9BACEDF8511EF671E817D8690E12DE3 ] Ad-Aware Service C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
15:32:22.0409 2212 Ad-Aware Service - ok
15:32:22.0471 2212 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:32:22.0471 2212 AdobeARMservice - ok
15:32:22.0534 2212 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:32:22.0534 2212 AdobeFlashPlayerUpdateSvc - ok
15:32:22.0596 2212 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:32:22.0596 2212 adp94xx - ok
15:32:22.0612 2212 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:32:22.0612 2212 adpahci - ok
15:32:22.0627 2212 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
15:32:22.0627 2212 adpu160m - ok
15:32:22.0643 2212 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:32:22.0643 2212 adpu320 - ok
15:32:22.0690 2212 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:32:22.0690 2212 AeLookupSvc - ok
15:32:22.0737 2212 [ 48EB99503533C27AC6135648E5474457 ] AFD C:\Windows\system32\drivers\afd.sys
15:32:22.0737 2212 AFD - ok
15:32:22.0768 2212 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:32:22.0768 2212 agp440 - ok
15:32:22.0799 2212 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:32:22.0799 2212 aic78xx - ok
15:32:22.0815 2212 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
15:32:22.0815 2212 ALG - ok
15:32:22.0830 2212 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
15:32:22.0830 2212 aliide - ok
15:32:22.0861 2212 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:32:22.0861 2212 amdagp - ok
15:32:22.0877 2212 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
15:32:22.0877 2212 amdide - ok
15:32:22.0908 2212 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
15:32:22.0908 2212 AmdK7 - ok
15:32:22.0908 2212 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:32:22.0924 2212 AmdK8 - ok
15:32:22.0955 2212 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
15:32:22.0955 2212 Appinfo - ok
15:32:22.0986 2212 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
15:32:22.0986 2212 arc - ok
15:32:23.0002 2212 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:32:23.0002 2212 arcsas - ok
15:32:23.0033 2212 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:32:23.0033 2212 AsyncMac - ok
15:32:23.0049 2212 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
15:32:23.0049 2212 atapi - ok
15:32:23.0127 2212 [ 600EFE56F37ADBD65A0FB076B50D1B8D ] athr C:\Windows\system32\DRIVERS\athr.sys
15:32:23.0127 2212 athr - ok
15:32:23.0298 2212 [ A4E212F45B2457B39D59D4972A67AF47 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:32:23.0329 2212 atikmdag - ok
15:32:23.0423 2212 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:32:23.0423 2212 AudioEndpointBuilder - ok
15:32:23.0439 2212 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:32:23.0454 2212 Audiosrv - ok
15:32:23.0657 2212 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
15:32:23.0704 2212 AVGIDSAgent - ok
15:32:23.0751 2212 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
15:32:23.0751 2212 AVGIDSDriver - ok
15:32:23.0766 2212 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
15:32:23.0766 2212 AVGIDSHX - ok
15:32:23.0782 2212 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
15:32:23.0782 2212 AVGIDSShim - ok
15:32:23.0797 2212 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
15:32:23.0797 2212 Avgldx86 - ok
15:32:23.0813 2212 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
15:32:23.0813 2212 Avglogx - ok
15:32:23.0813 2212 [ 6C7C00B8DD22B4343B47FED148387057 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
15:32:23.0813 2212 Avgmfx86 - ok
15:32:23.0844 2212 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
15:32:23.0844 2212 Avgrkx86 - ok
15:32:23.0860 2212 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
15:32:23.0860 2212 Avgtdix - ok
15:32:23.0891 2212 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
15:32:23.0891 2212 avgwd - ok
15:32:23.0969 2212 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
15:32:23.0969 2212 BcmSqlStartupSvc - ok
15:32:24.0000 2212 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
15:32:24.0000 2212 Beep - ok
15:32:24.0047 2212 [ 8582E233C346AEFE759833E8A30DD697 ] BFE C:\Windows\System32\bfe.dll
15:32:24.0047 2212 BFE - ok
15:32:24.0094 2212 [ 02ED7B4DBC2A3232A389106DA7515C3D ] BITS C:\Windows\System32\qmgr.dll
15:32:24.0109 2212 BITS - ok
15:32:24.0125 2212 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
15:32:24.0125 2212 blbdrive - ok
15:32:24.0156 2212 [ 8153396D5551276227FA146900F734E6 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:32:24.0156 2212 bowser - ok
15:32:24.0172 2212 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
15:32:24.0172 2212 BrFiltLo - ok
15:32:24.0187 2212 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
15:32:24.0187 2212 BrFiltUp - ok
15:32:24.0203 2212 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
15:32:24.0203 2212 Browser - ok
15:32:24.0219 2212 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
15:32:24.0219 2212 Brserid - ok
15:32:24.0250 2212 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
15:32:24.0250 2212 BrSerWdm - ok
15:32:24.0265 2212 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
15:32:24.0265 2212 BrUsbMdm - ok
15:32:24.0281 2212 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
15:32:24.0281 2212 BrUsbSer - ok
15:32:24.0297 2212 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:32:24.0297 2212 BTHMODEM - ok
15:32:24.0312 2212 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:32:24.0312 2212 cdfs - ok
15:32:24.0328 2212 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:32:24.0328 2212 cdrom - ok
15:32:24.0375 2212 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
15:32:24.0406 2212 CertPropSvc - ok
15:32:24.0453 2212 [ 67B20DA4727F54AEA29FDDAD810C898D ] cfwids C:\Windows\system32\drivers\cfwids.sys
15:32:24.0453 2212 cfwids - ok
15:32:24.0468 2212 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
15:32:24.0468 2212 circlass - ok
15:32:24.0484 2212 [ 465745561C832B29F7C48B488AAB3842 ] CLFS C:\Windows\system32\CLFS.sys
15:32:24.0499 2212 CLFS - ok
15:32:24.0562 2212 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:32:24.0562 2212 clr_optimization_v2.0.50727_32 - ok
15:32:24.0609 2212 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:32:24.0609 2212 clr_optimization_v4.0.30319_32 - ok
15:32:24.0655 2212 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:32:24.0655 2212 CmBatt - ok
15:32:24.0671 2212 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:32:24.0671 2212 cmdide - ok
15:32:24.0687 2212 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:32:24.0687 2212 Compbatt - ok
15:32:24.0687 2212 COMSysApp - ok
15:32:24.0733 2212 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:32:24.0733 2212 crcdisk - ok
15:32:24.0749 2212 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
15:32:24.0749 2212 Crusoe - ok
15:32:24.0811 2212 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:32:24.0811 2212 CryptSvc - ok
15:32:24.0889 2212 [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:32:24.0889 2212 DcomLaunch - ok
15:32:24.0952 2212 [ A3E9FA213F443AC77C7746119D13FEEC ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:32:24.0952 2212 DfsC - ok
15:32:25.0030 2212 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
15:32:25.0045 2212 DFSR - ok
15:32:25.0108 2212 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
15:32:25.0108 2212 Dhcp - ok
15:32:25.0139 2212 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
15:32:25.0139 2212 disk - ok
15:32:25.0155 2212 [ F206E28ED74C491FD5D7C0A1119CE37F ] DMICall C:\Windows\system32\DRIVERS\DMICall.sys
15:32:25.0155 2212 DMICall - ok
15:32:25.0186 2212 [ 4805D9A6D281C7A7DEFD9094DEC6AF7D ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:32:25.0201 2212 Dnscache - ok
15:32:25.0233 2212 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
15:32:25.0248 2212 dot3svc - ok
15:32:25.0264 2212 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
15:32:25.0264 2212 DPS - ok
15:32:25.0279 2212 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:32:25.0279 2212 drmkaud - ok
15:32:25.0326 2212 [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:32:25.0326 2212 DXGKrnl - ok
15:32:25.0357 2212 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
15:32:25.0357 2212 E1G60 - ok
15:32:25.0373 2212 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
15:32:25.0373 2212 EapHost - ok
15:32:25.0435 2212 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
15:32:25.0435 2212 Ecache - ok
15:32:25.0529 2212 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:32:25.0529 2212 ehRecvr - ok
15:32:25.0545 2212 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
15:32:25.0560 2212 ehSched - ok
15:32:25.0560 2212 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
15:32:25.0576 2212 ehstart - ok
15:32:25.0638 2212 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:32:25.0638 2212 elxstor - ok
15:32:25.0716 2212 [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt C:\Windows\system32\emdmgmt.dll
15:32:25.0716 2212 EMDMgmt - ok
15:32:25.0747 2212 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:32:25.0747 2212 ErrDev - ok
15:32:25.0794 2212 [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem C:\Windows\system32\es.dll
15:32:25.0794 2212 EventSystem - ok
15:32:25.0810 2212 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
15:32:25.0810 2212 exfat - ok
15:32:25.0825 2212 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:32:25.0825 2212 fastfat - ok
15:32:25.0857 2212 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:32:25.0857 2212 fdc - ok
15:32:25.0888 2212 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
15:32:25.0888 2212 fdPHost - ok
15:32:25.0903 2212 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
15:32:25.0903 2212 FDResPub - ok
15:32:25.0935 2212 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:32:25.0935 2212 FileInfo - ok
15:32:25.0950 2212 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:32:25.0950 2212 Filetrace - ok
15:32:25.0966 2212 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:32:25.0966 2212 flpydisk - ok
15:32:25.0981 2212 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:32:25.0981 2212 FltMgr - ok
15:32:26.0028 2212 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:32:26.0028 2212 FontCache3.0.0.0 - ok
15:32:26.0044 2212 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:32:26.0044 2212 Fs_Rec - ok
15:32:26.0059 2212 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:32:26.0059 2212 gagp30kx - ok
15:32:26.0091 2212 [ 483924F92E55A5F9423201EC635E2CED ] gfibto C:\Windows\system32\drivers\gfibto.sys
15:32:26.0091 2212 gfibto - ok
15:32:26.0169 2212 [ B39662E4C237AA25A2CD2379FF508099 ] GoogleDesktopManager-022208-143751 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
15:32:26.0169 2212 GoogleDesktopManager-022208-143751 - ok
15:32:26.0215 2212 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
15:32:26.0231 2212 gpsvc - ok
15:32:26.0278 2212 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:32:26.0278 2212 gupdate - ok
15:32:26.0309 2212 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:32:26.0309 2212 gupdatem - ok
15:32:26.0325 2212 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:32:26.0325 2212 gusvc - ok
15:32:26.0371 2212 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:32:26.0371 2212 HdAudAddService - ok
15:32:26.0387 2212 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:32:26.0387 2212 HDAudBus - ok
15:32:26.0403 2212 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:32:26.0418 2212 HidBth - ok
15:32:26.0449 2212 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
15:32:26.0449 2212 HidIr - ok
15:32:26.0481 2212 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\system32\hidserv.dll
15:32:26.0481 2212 hidserv - ok
15:32:26.0496 2212 [ 3C64042B95E583B366BA4E5D2450235E ] HidUsb C:\Windows\system32\drivers\hidusb.sys
15:32:26.0496 2212 HidUsb - ok
15:32:26.0527 2212 [ 8F72C4916A288485812745DC5AF873FC ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
15:32:26.0527 2212 HipShieldK - ok
15:32:26.0559 2212 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:32:26.0559 2212 hkmsvc - ok
15:32:26.0652 2212 [ 31FB9D7453C424D14A6C3927483E5E60 ] HomeNetSvc C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
15:32:26.0652 2212 HomeNetSvc - ok
15:32:26.0730 2212 [ C5F00D15AA15CB7F55A027FF75E44BB7 ] HP Port Resolver C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBPRO.EXE
15:32:26.0730 2212 HP Port Resolver - ok
15:32:26.0746 2212 [ C5A288E4CEEF5A26D105117BAA3763AB ] HP Status Server C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBOID.EXE
15:32:26.0746 2212 HP Status Server - ok
15:32:26.0824 2212 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
15:32:26.0824 2212 HpCISSs - ok
15:32:26.0871 2212 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
15:32:26.0871 2212 HSFHWAZL - ok
15:32:26.0949 2212 [ 7BC42C65B5C6281777C1A7605B253BA8 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
15:32:26.0964 2212 HSF_DPV - ok
15:32:27.0027 2212 [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
15:32:27.0027 2212 HSXHWAZL - ok
15:32:27.0089 2212 [ 96E241624C71211A79C84F50A8E71CAB ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:32:27.0089 2212 HTTP - ok
15:32:27.0089 2212 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
15:32:27.0105 2212 i2omp - ok
15:32:27.0136 2212 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:32:27.0151 2212 i8042prt - ok
15:32:27.0198 2212 [ DB0CC620B27A928D968C1A1E9CD9CB87 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
15:32:27.0198 2212 iaStor - ok
15:32:27.0245 2212 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
15:32:27.0245 2212 iaStorV - ok
15:32:27.0307 2212 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:32:27.0307 2212 idsvc - ok
15:32:27.0417 2212 [ CE5FF5D5E3F4CA974E36DC24C15474D0 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
15:32:27.0432 2212 igfx - ok
15:32:27.0479 2212 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:32:27.0479 2212 iirsp - ok
15:32:27.0510 2212 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
15:32:27.0526 2212 IKEEXT - ok
15:32:27.0619 2212 [ 4A0F260DF9A5333C07F4AB40CA9D4F4B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
15:32:27.0619 2212 IntcAzAudAddService - ok
15:32:27.0666 2212 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
15:32:27.0682 2212 intelide - ok
15:32:27.0697 2212 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:32:27.0697 2212 intelppm - ok
15:32:27.0713 2212 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:32:27.0713 2212 IPBusEnum - ok
15:32:27.0729 2212 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:32:27.0744 2212 IpFilterDriver - ok
15:32:27.0775 2212 [ 6A35D233693EDC29A12742049BC5E37F ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:32:27.0775 2212 iphlpsvc - ok
15:32:27.0775 2212 IpInIp - ok
15:32:27.0791 2212 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
15:32:27.0791 2212 IPMIDRV - ok
15:32:27.0822 2212 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
15:32:27.0822 2212 IPNAT - ok
15:32:27.0838 2212 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:32:27.0838 2212 IRENUM - ok
15:32:27.0853 2212 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:32:27.0853 2212 isapnp - ok
15:32:27.0885 2212 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:32:27.0885 2212 iScsiPrt - ok
15:32:27.0900 2212 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
15:32:27.0900 2212 iteatapi - ok
15:32:27.0916 2212 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
15:32:27.0916 2212 iteraid - ok
15:32:27.0947 2212 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
15:32:27.0947 2212 IviRegMgr - ok
15:32:27.0978 2212 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:32:27.0978 2212 kbdclass - ok
15:32:27.0994 2212 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:32:27.0994 2212 kbdhid - ok
15:32:28.0009 2212 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] KeyIso C:\Windows\system32\lsass.exe
15:32:28.0009 2212 KeyIso - ok
15:32:28.0041 2212 [ 7A0CF7908B6824D6A2A1D313E5AE3DCA ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:32:28.0041 2212 KSecDD - ok
15:32:28.0103 2212 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:32:28.0103 2212 KtmRm - ok
15:32:28.0134 2212 [ 1925E63C91CF1610AE41BFD539062079 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:32:28.0134 2212 LanmanServer - ok
15:32:28.0165 2212 [ 2AE2E1628C5D3F1C0A46A67C9FA1DF15 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:32:28.0165 2212 LanmanWorkstation - ok
15:32:28.0197 2212 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:32:28.0197 2212 lltdio - ok
15:32:28.0212 2212 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:32:28.0212 2212 lltdsvc - ok
15:32:28.0243 2212 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:32:28.0243 2212 lmhosts - ok
15:32:28.0275 2212 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:32:28.0275 2212 LSI_FC - ok
15:32:28.0290 2212 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:32:28.0290 2212 LSI_SAS - ok
15:32:28.0321 2212 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:32:28.0321 2212 LSI_SCSI - ok
15:32:28.0337 2212 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
15:32:28.0337 2212 luafv - ok
15:32:28.0384 2212 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:32:28.0384 2212 MBAMProtector - ok
15:32:28.0477 2212 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:32:28.0477 2212 MBAMScheduler - ok
15:32:28.0493 2212 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
15:32:28.0509 2212 MBAMService - ok
15:32:28.0587 2212 [ C226CE46CD17FCE6261A9DE406F01C8B ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
15:32:28.0587 2212 McAfee SiteAdvisor Service - ok
15:32:28.0618 2212 [ 31FB9D7453C424D14A6C3927483E5E60 ] McMPFSvc C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
15:32:28.0618 2212 McMPFSvc - ok
15:32:28.0618 2212 [ 31FB9D7453C424D14A6C3927483E5E60 ] McNaiAnn C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
15:32:28.0618 2212 McNaiAnn - ok
15:32:28.0696 2212 [ 2D5BA691B249789E70ED787B8C769A53 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
15:32:28.0696 2212 McODS - ok
15:32:28.0711 2212 [ 31FB9D7453C424D14A6C3927483E5E60 ] mcpltsvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
15:32:28.0711 2212 mcpltsvc - ok
15:32:28.0743 2212 [ 31FB9D7453C424D14A6C3927483E5E60 ] McProxy C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
15:32:28.0743 2212 McProxy - ok
15:32:28.0774 2212 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:32:28.0774 2212 Mcx2Svc - ok
15:32:28.0805 2212 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
15:32:28.0805 2212 mdmxsdk - ok
15:32:28.0836 2212 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
15:32:28.0836 2212 megasas - ok
15:32:28.0852 2212 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
15:32:28.0852 2212 MegaSR - ok
15:32:28.0899 2212 [ BA3004F4C0A0CD19DB9C2C0AB3A84EFE ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
15:32:28.0899 2212 mfeapfk - ok
15:32:28.0945 2212 [ 39C20B7D9AC19BFE616CA09DD3A240AF ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
15:32:28.0945 2212 mfeavfk - ok
15:32:28.0977 2212 [ E3470DECDA0A4015A0CA00ED645F2EBE ] mfebopk C:\Windows\system32\drivers\mfebopk.sys
15:32:28.0977 2212 mfebopk - ok
15:32:29.0039 2212 [ A687B3EEED3E8B305AC247DEC61EE362 ] mfecore C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
15:32:29.0039 2212 mfecore - ok
15:32:29.0101 2212 [ 4E13EA496E202BCB4FCC342D96FAF83A ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
15:32:29.0101 2212 mfefire - ok
15:32:29.0117 2212 [ C8AC8147E02ED8795E1FD946165BACCF ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
15:32:29.0117 2212 mfefirek - ok
15:32:29.0164 2212 [ 7AAF92954D8D2801B17A1163C60ABFE9 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
15:32:29.0179 2212 mfehidk - ok
15:32:29.0195 2212 [ 7401E85D5D4B5B0F6A3098EBEE0639AA ] mfencbdc C:\Windows\system32\DRIVERS\mfencbdc.sys
15:32:29.0195 2212 mfencbdc - ok
15:32:29.0211 2212 [ 439B06E366643B32D549B939780742BE ] mfencrk C:\Windows\system32\DRIVERS\mfencrk.sys
15:32:29.0211 2212 mfencrk - ok
15:32:29.0242 2212 [ 82B7415D5A8FB24D3F6736400F5E1600 ] mfevtp C:\Windows\system32\mfevtps.exe
15:32:29.0242 2212 mfevtp - ok
15:32:29.0273 2212 [ 15F92BCD5CB189F5CC7D2F2381F179AC ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
15:32:29.0273 2212 mfewfpk - ok
15:32:29.0304 2212 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
15:32:29.0304 2212 MMCSS - ok
15:32:29.0335 2212 [ 35176FA09A0FC58DB630991A81A0BA39 ] MOBKbackup C:\Program Files\McAfee Online Backup\MOBKbackup.exe
15:32:29.0351 2212 MOBKbackup - ok
15:32:29.0367 2212 [ E896775837A8BCE436348DF460522394 ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
15:32:29.0367 2212 MOBKFilter - ok
15:32:29.0398 2212 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
15:32:29.0398 2212 Modem - ok
15:32:29.0429 2212 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:32:29.0429 2212 monitor - ok
15:32:29.0429 2212 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:32:29.0445 2212 mouclass - ok
15:32:29.0476 2212 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\drivers\mouhid.sys
15:32:29.0476 2212 mouhid - ok
15:32:29.0491 2212 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
15:32:29.0491 2212 MountMgr - ok
15:32:29.0523 2212 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
15:32:29.0523 2212 mpio - ok
15:32:29.0538 2212 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:32:29.0538 2212 mpsdrv - ok
15:32:29.0569 2212 [ D1639BA315B0D79DEC49A4B0E1FB929B ] MpsSvc C:\Windows\system32\mpssvc.dll
15:32:29.0569 2212 MpsSvc - ok
15:32:29.0585 2212 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
15:32:29.0585 2212 Mraid35x - ok
15:32:29.0601 2212 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:32:29.0601 2212 MRxDAV - ok
15:32:29.0616 2212 [ 5734A0F2BE7E495F7D3ED6EFD4B9F5A1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:32:29.0632 2212 mrxsmb - ok
15:32:29.0679 2212 [ 6B5FA5ADFACAC9DBBE0991F4566D7D55 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:32:29.0679 2212 mrxsmb10 - ok
15:32:29.0741 2212 [ 5C80D8159181C7ABF1B14BA703B01E0B ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:32:29.0741 2212 mrxsmb20 - ok
15:32:29.0772 2212 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
15:32:29.0772 2212 msahci - ok
15:32:29.0835 2212 [ A99D2C7E30AD63EF920A894131CAF5F7 ] MSCSPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
15:32:29.0835 2212 MSCSPTISRV - ok
15:32:29.0850 2212 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:32:29.0850 2212 msdsm - ok
15:32:29.0866 2212 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
15:32:29.0866 2212 MSDTC - ok
15:32:29.0913 2212 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:32:29.0913 2212 Msfs - ok
15:32:29.0928 2212 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:32:29.0928 2212 msisadrv - ok
15:32:29.0975 2212 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:32:29.0975 2212 MSiSCSI - ok
15:32:29.0975 2212 msiserver - ok
15:32:30.0006 2212 [ 31FB9D7453C424D14A6C3927483E5E60 ] MSK80Service C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
15:32:30.0006 2212 MSK80Service - ok
15:32:30.0022 2212 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:32:30.0037 2212 MSKSSRV - ok
15:32:30.0053 2212 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:32:30.0053 2212 MSPCLOCK - ok
15:32:30.0084 2212 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:32:30.0084 2212 MSPQM - ok
15:32:30.0100 2212 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:32:30.0100 2212 MsRPC - ok
15:32:30.0115 2212 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:32:30.0115 2212 mssmbios - ok
15:32:30.0209 2212 MSSQL$MSSMLBIZ - ok
15:32:30.0256 2212 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
15:32:30.0256 2212 MSSQLServerADHelper - ok
15:32:30.0287 2212 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:32:30.0287 2212 MSTEE - ok
15:32:30.0303 2212 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
15:32:30.0303 2212 Mup - ok
15:32:30.0349 2212 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
15:32:30.0349 2212 napagent - ok
15:32:30.0381 2212 [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:32:30.0381 2212 NativeWifiP - ok
15:32:30.0427 2212 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:32:30.0427 2212 NDIS - ok
15:32:30.0474 2212 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:32:30.0474 2212 NdisTapi - ok
15:32:30.0490 2212 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:32:30.0490 2212 Ndisuio - ok
15:32:30.0521 2212 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:32:30.0521 2212 NdisWan - ok
15:32:30.0537 2212 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:32:30.0537 2212 NDProxy - ok
15:32:30.0552 2212 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:32:30.0552 2212 NetBIOS - ok
15:32:30.0568 2212 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
15:32:30.0568 2212 netbt - ok
15:32:30.0584 2212 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] Netlogon C:\Windows\system32\lsass.exe
15:32:30.0584 2212 Netlogon - ok
15:32:30.0615 2212 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
15:32:30.0630 2212 Netman - ok
15:32:30.0662 2212 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
15:32:30.0662 2212 netprofm - ok
15:32:30.0708 2212 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:32:30.0708 2212 NetTcpPortSharing - ok
15:32:30.0740 2212 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:32:30.0740 2212 nfrd960 - ok
15:32:30.0755 2212 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:32:30.0771 2212 NlaSvc - ok
15:32:30.0771 2212 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:32:30.0771 2212 Npfs - ok
15:32:30.0786 2212 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
15:32:30.0786 2212 nsi - ok
15:32:30.0802 2212 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:32:30.0802 2212 nsiproxy - ok
15:32:30.0896 2212 [ FD141D19F1392920A6A517316910D770 ] NSUService C:\Program Files\Sony\Network Utility\NSUService.exe
15:32:30.0896 2212 NSUService - ok
15:32:30.0942 2212 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:32:30.0942 2212 Ntfs - ok
15:32:30.0958 2212 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
15:32:30.0958 2212 ntrigdigi - ok
15:32:30.0974 2212 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
15:32:30.0974 2212 Null - ok
15:32:31.0005 2212 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:32:31.0005 2212 nvraid - ok
15:32:31.0036 2212 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:32:31.0036 2212 nvstor - ok
15:32:31.0052 2212 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:32:31.0052 2212 nv_agp - ok
15:32:31.0067 2212 NwlnkFlt - ok
15:32:31.0083 2212 NwlnkFwd - ok
15:32:31.0176 2212 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:32:31.0176 2212 odserv - ok
15:32:31.0223 2212 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:32:31.0223 2212 ohci1394 - ok
15:32:31.0254 2212 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:32:31.0254 2212 ose - ok
15:32:31.0301 2212 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
15:32:31.0301 2212 p2pimsvc - ok
15:32:31.0348 2212 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
15:32:31.0348 2212 p2psvc - ok
15:32:31.0379 2212 [ 41C33FB4FD929FED732A00D2DAEF5BE0 ] PACSPTISVR C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
15:32:31.0379 2212 PACSPTISVR - ok
15:32:31.0410 2212 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
15:32:31.0410 2212 Parport - ok
15:32:31.0426 2212 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:32:31.0426 2212 partmgr - ok
15:32:31.0442 2212 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
15:32:31.0442 2212 Parvdm - ok
15:32:31.0457 2212 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
15:32:31.0457 2212 PcaSvc - ok
15:32:31.0473 2212 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
15:32:31.0473 2212 pci - ok
15:32:31.0504 2212 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
15:32:31.0504 2212 pciide - ok
15:32:31.0551 2212 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:32:31.0551 2212 pcmcia - ok
15:32:31.0598 2212 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:32:31.0598 2212 PEAUTH - ok
15:32:31.0676 2212 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
15:32:31.0691 2212 pla - ok
15:32:31.0738 2212 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:32:31.0738 2212 PlugPlay - ok
15:32:31.0769 2212 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
15:32:31.0769 2212 PNRPAutoReg - ok
15:32:31.0800 2212 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
15:32:31.0800 2212 PNRPsvc - ok
15:32:31.0863 2212 [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:32:31.0863 2212 PolicyAgent - ok
15:32:31.0894 2212 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:32:31.0894 2212 PptpMiniport - ok
15:32:31.0910 2212 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
15:32:31.0910 2212 Processor - ok
15:32:31.0941 2212 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
15:32:31.0941 2212 ProfSvc - ok
15:32:31.0956 2212 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:32:31.0956 2212 ProtectedStorage - ok
15:32:31.0988 2212 [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched C:\Windows\system32\DRIVERS\pacer.sys
15:32:31.0988 2212 PSched - ok
15:32:32.0019 2212 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
15:32:32.0019 2212 PxHelp20 - ok
15:32:32.0066 2212 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:32:32.0081 2212 ql2300 - ok
15:32:32.0097 2212 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:32:32.0097 2212 ql40xx - ok
15:32:32.0128 2212 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
15:32:32.0128 2212 QWAVE - ok
15:32:32.0144 2212 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:32:32.0144 2212 QWAVEdrv - ok
15:32:32.0190 2212 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:32:32.0190 2212 RasAcd - ok
15:32:32.0206 2212 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
15:32:32.0206 2212 RasAuto - ok
15:32:32.0222 2212 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:32:32.0222 2212 Rasl2tp - ok
15:32:32.0237 2212 [ 6E7C284FC5C4EC07AD164D93810385A6 ] RasMan C:\Windows\System32\rasmans.dll
15:32:32.0237 2212 RasMan - ok
15:32:32.0268 2212 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:32:32.0268 2212 RasPppoe - ok
15:32:32.0268 2212 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:32:32.0268 2212 RasSstp - ok
15:32:32.0284 2212 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:32:32.0284 2212 rdbss - ok
15:32:32.0300 2212 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:32:32.0300 2212 RDPCDD - ok
15:32:32.0331 2212 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
15:32:32.0331 2212 rdpdr - ok
15:32:32.0346 2212 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:32:32.0346 2212 RDPENCDD - ok
15:32:32.0362 2212 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:32:32.0378 2212 RDPWD - ok
15:32:32.0409 2212 [ 001B4278407F4303EFC902A2B16F2453 ] regi C:\Windows\system32\drivers\regi.sys
15:32:32.0409 2212 regi - ok
15:32:32.0456 2212 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:32:32.0456 2212 RemoteAccess - ok
15:32:32.0487 2212 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:32:32.0487 2212 RemoteRegistry - ok
15:32:32.0518 2212 [ D0C2A0CE1091E08EFB7CCBA6CEA4C3F9 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
15:32:32.0518 2212 rimsptsk - ok
15:32:32.0534 2212 [ C22E4E27CCDF9AA5FE8143104F28CDE3 ] risdptsk C:\Windows\system32\DRIVERS\risdptsk.sys
15:32:32.0549 2212 risdptsk - ok
15:32:32.0565 2212 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
15:32:32.0565 2212 RpcLocator - ok
15:32:32.0627 2212 [ 301AE00E12408650BADDC04DBC832830 ] RpcSs C:\Windows\system32\rpcss.dll
15:32:32.0627 2212 RpcSs - ok
15:32:32.0705 2212 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:32:32.0705 2212 rspndr - ok
15:32:32.0736 2212 [ 65330E78C17DB8A99A7FF1BA3C8824B6 ] RtkAudioService C:\Windows\RtkAudioService.exe
15:32:32.0736 2212 RtkAudioService - ok
15:32:32.0752 2212 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] SamSs C:\Windows\system32\lsass.exe
15:32:32.0752 2212 SamSs - ok
15:32:32.0877 2212 [ 99FC1599F89A80216E41175B8CA44D89 ] SBAMSvc C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
15:32:32.0892 2212 SBAMSvc - ok
15:32:32.0924 2212 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:32:32.0924 2212 sbp2port - ok
15:32:33.0002 2212 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
15:32:33.0002 2212 SBSDWSCService - ok
15:32:33.0048 2212 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:32:33.0048 2212 SCardSvr - ok
15:32:33.0095 2212 [ 7B587B8A6D4A99F79D2902D0385F29BD ] Schedule C:\Windows\system32\schedsvc.dll
15:32:33.0095 2212 Schedule - ok
15:32:33.0126 2212 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
15:32:33.0126 2212 SCPolicySvc - ok
15:32:33.0173 2212 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
15:32:33.0173 2212 sdbus - ok
15:32:33.0189 2212 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:32:33.0189 2212 SDRSVC - ok
15:32:33.0204 2212 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:32:33.0204 2212 secdrv - ok
15:32:33.0220 2212 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
15:32:33.0220 2212 seclogon - ok
15:32:33.0236 2212 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
15:32:33.0236 2212 SENS - ok
15:32:33.0236 2212 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
15:32:33.0236 2212 Serenum - ok
15:32:33.0251 2212 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
15:32:33.0251 2212 Serial - ok
15:32:33.0267 2212 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:32:33.0267 2212 sermouse - ok
15:32:33.0298 2212 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
15:32:33.0314 2212 SessionEnv - ok
15:32:33.0360 2212 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
15:32:33.0360 2212 SFEP - ok
15:32:33.0360 2212 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:32:33.0360 2212 sffdisk - ok
15:32:33.0376 2212 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:32:33.0376 2212 sffp_mmc - ok
15:32:33.0392 2212 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:32:33.0392 2212 sffp_sd - ok
15:32:33.0407 2212 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:32:33.0407 2212 sfloppy - ok
15:32:33.0438 2212 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:32:33.0438 2212 SharedAccess - ok
15:32:33.0485 2212 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:32:33.0485 2212 ShellHWDetection - ok
15:32:33.0501 2212 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:32:33.0501 2212 sisagp - ok
15:32:33.0516 2212 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
15:32:33.0516 2212 SiSRaid2 - ok
15:32:33.0532 2212 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:32:33.0532 2212 SiSRaid4 - ok
15:32:33.0579 2212 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
15:32:33.0579 2212 SkypeUpdate - ok
15:32:33.0657 2212 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
15:32:33.0672 2212 slsvc - ok
15:32:33.0704 2212 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
15:32:33.0704 2212 SLUINotify - ok
15:32:33.0719 2212 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:32:33.0719 2212 Smb - ok
15:32:33.0735 2212 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:32:33.0735 2212 SNMPTRAP - ok
15:32:33.0782 2212 [ DC826AFFA608F50C385BCA4C71EF1BDD ] SOHCImp C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe
15:32:33.0782 2212 SOHCImp - ok
15:32:33.0797 2212 [ 1EC739F65C51FA1C7AC4502464A3C3A8 ] SOHDms C:\Program Files\Sony\VAIO Media plus\SOHDms.exe
15:32:33.0797 2212 SOHDms - ok
15:32:33.0797 2212 [ EC8FAB4AC684445D6032AA5C6E77CA2E ] SOHDs C:\Program Files\Sony\VAIO Media plus\SOHDs.exe
15:32:33.0797 2212 SOHDs - ok
15:32:33.0828 2212 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
15:32:33.0828 2212 spldr - ok
15:32:33.0860 2212 [ 3665F79026A3F91FBCA63F2C65A09B19 ] Spooler C:\Windows\System32\spoolsv.exe
15:32:33.0860 2212 Spooler - ok
15:32:33.0891 2212 [ F63102F289AE2039940B22E9B2A8E0BD ] SPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
15:32:33.0891 2212 SPTISRV - ok
15:32:33.0938 2212 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
15:32:33.0938 2212 SQLBrowser - ok
15:32:33.0984 2212 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
15:32:33.0984 2212 SQLWriter - ok
15:32:34.0016 2212 [ 2252AEF839B1093D16761189F45AF885 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:32:34.0016 2212 srv - ok
15:32:34.0031 2212 [ B7FF59408034119476B00A81BB53D5D1 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:32:34.0031 2212 srv2 - ok
15:32:34.0047 2212 [ 2ACCC9B12AF02030F531E6CCA6F8B76E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:32:34.0047 2212 srvnet - ok
15:32:34.0062 2212 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:32:34.0078 2212 SSDPSRV - ok
15:32:34.0094 2212 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:32:34.0094 2212 SstpSvc - ok
15:32:34.0140 2212 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
15:32:34.0156 2212 stisvc - ok
15:32:34.0187 2212 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:32:34.0187 2212 swenum - ok
15:32:34.0203 2212 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
15:32:34.0203 2212 swprv - ok
15:32:34.0218 2212 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
15:32:34.0218 2212 Symc8xx - ok
15:32:34.0218 2212 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
15:32:34.0218 2212 Sym_hi - ok
15:32:34.0234 2212 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
15:32:34.0234 2212 Sym_u3 - ok
15:32:34.0296 2212 [ 99DA94793332AADBB17BBB521AE56E21 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:32:34.0296 2212 SynTP - ok
15:32:34.0312 2212 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
15:32:34.0328 2212 SysMain - ok
15:32:34.0343 2212 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:32:34.0343 2212 TabletInputService - ok
15:32:34.0359 2212 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
15:32:34.0359 2212 TapiSrv - ok
15:32:34.0374 2212 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
15:32:34.0390 2212 TBS - ok
15:32:34.0437 2212 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:32:34.0437 2212 Tcpip - ok
15:32:34.0468 2212 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
15:32:34.0484 2212 Tcpip6 - ok
15:32:34.0499 2212 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:32:34.0499 2212 tcpipreg - ok
15:32:34.0530 2212 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:32:34.0530 2212 TDPIPE - ok
15:32:34.0546 2212 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:32:34.0546 2212 TDTCP - ok
15:32:34.0593 2212 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:32:34.0593 2212 tdx - ok
15:32:34.0608 2212 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:32:34.0608 2212 TermDD - ok
15:32:34.0624 2212 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
15:32:34.0640 2212 TermService - ok
15:32:34.0686 2212 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] Themes C:\Windows\system32\shsvcs.dll
15:32:34.0686 2212 Themes - ok
15:32:34.0702 2212 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
15:32:34.0702 2212 THREADORDER - ok
15:32:34.0718 2212 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
15:32:34.0718 2212 TrkWks - ok
15:32:34.0764 2212 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:32:34.0764 2212 TrustedInstaller - ok
15:32:34.0796 2212 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:32:34.0796 2212 tssecsrv - ok
15:32:34.0796 2212 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
15:32:34.0796 2212 tunmp - ok
15:32:34.0827 2212 [ 6042505FF6FA9AC1EF7684D0E03B6940 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:32:34.0827 2212 tunnel - ok
15:32:34.0842 2212 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:32:34.0858 2212 uagp35 - ok
15:32:34.0858 2212 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:32:34.0874 2212 udfs - ok
15:32:34.0920 2212 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:32:34.0920 2212 UI0Detect - ok
15:32:34.0952 2212 UIUSys - ok
15:32:34.0967 2212 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:32:34.0967 2212 uliagpkx - ok
15:32:34.0983 2212 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
15:32:34.0983 2212 uliahci - ok
15:32:34.0998 2212 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
15:32:34.0998 2212 UlSata - ok
15:32:35.0014 2212 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
15:32:35.0014 2212 ulsata2 - ok
15:32:35.0030 2212 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:32:35.0030 2212 umbus - ok
15:32:35.0061 2212 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
15:32:35.0061 2212 upnphost - ok
15:32:35.0108 2212 [ A7CD5B4ADEA26765CAB06BDAB7B07B13 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:32:35.0108 2212 usbccgp - ok
15:32:35.0123 2212 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:32:35.0123 2212 usbcir - ok
15:32:35.0139 2212 [ 686D4188AE36254C3008B71FEDACADF3 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:32:35.0139 2212 usbehci - ok
15:32:35.0154 2212 [ 4E42F665A658F08D153F7FFFE7C83806 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:32:35.0154 2212 usbhub - ok
15:32:35.0170 2212 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:32:35.0170 2212 usbohci - ok
15:32:35.0201 2212 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:32:35.0201 2212 usbprint - ok
15:32:35.0217 2212 [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:32:35.0232 2212 USBSTOR - ok
15:32:35.0232 2212 [ 40F95A3D6D50D82F947F1D167C2EC39D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:32:35.0232 2212 usbuhci - ok
15:32:35.0248 2212 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:32:35.0248 2212 usbvideo - ok
15:32:35.0279 2212 [ 032A0ACC3909AE7215D524E29D536797 ] UxSms C:\Windows\System32\uxsms.dll
15:32:35.0279 2212 UxSms - ok
15:32:35.0326 2212 [ 2A640DC735CB0112AC1DCD1E1549B27E ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
15:32:35.0326 2212 VAIO Entertainment TV Device Arbitration Service - ok
15:32:35.0404 2212 [ 693A3FDD279C345105FFF9DDE277849B ] VAIO Event Service C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
15:32:35.0404 2212 VAIO Event Service - ok
15:32:35.0435 2212 [ 43CEC9BF5A4F2917982AD01D92E0F44D ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
15:32:35.0435 2212 VAIO Power Management - ok
15:32:35.0466 2212 [ CBCBE2233D21E9B278F95F5CB28BC8AE ] VCFw C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
15:32:35.0466 2212 VCFw - ok
15:32:35.0576 2212 [ 27888F132D2EE0B72B28093A5F5F20EB ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
15:32:35.0576 2212 VcmIAlzMgr - ok
15:32:35.0576 2212 [ EE9ABFC2F8F2DCDC624B6A9D5CF3B19D ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
15:32:35.0576 2212 VcmXmlIfHelper - ok
15:32:35.0591 2212 Vcsw - ok
15:32:35.0622 2212 [ B13BC395B9D6116628F5AF47E0802AC4 ] vds C:\Windows\System32\vds.exe
15:32:35.0638 2212 vds - ok
15:32:35.0669 2212 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:32:35.0669 2212 vga - ok
15:32:35.0685 2212 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
15:32:35.0685 2212 VgaSave - ok
15:32:35.0716 2212 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:32:35.0716 2212 viaagp - ok
15:32:35.0732 2212 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
15:32:35.0732 2212 ViaC7 - ok
15:32:35.0732 2212 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
15:32:35.0732 2212 viaide - ok
15:32:35.0794 2212 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:32:35.0794 2212 volmgr - ok
15:32:35.0810 2212 [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:32:35.0810 2212 volmgrx - ok
15:32:35.0825 2212 [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:32:35.0825 2212 volsnap - ok
15:32:35.0841 2212 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:32:35.0841 2212 vsmraid - ok
15:32:35.0888 2212 [ D5FB73D19C46ADE183F968E13F186B23 ] VSS C:\Windows\system32\vssvc.exe
15:32:35.0903 2212 VSS - ok
15:32:35.0966 2212 [ 071634532066C2E29350D450C3412837 ] VzCdbSvc C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
15:32:35.0966 2212 VzCdbSvc - ok
15:32:35.0997 2212 [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time C:\Windows\system32\w32time.dll
15:32:35.0997 2212 W32Time - ok
15:32:36.0059 2212 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:32:36.0059 2212 WacomPen - ok
15:32:36.0106 2212 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:32:36.0106 2212 Wanarp - ok
15:32:36.0106 2212 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:32:36.0106 2212 Wanarpv6 - ok
15:32:36.0137 2212 [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:32:36.0137 2212 wcncsvc - ok
15:32:36.0153 2212 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:32:36.0153 2212 WcsPlugInService - ok
15:32:36.0168 2212 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
15:32:36.0168 2212 Wd - ok
15:32:36.0184 2212 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:32:36.0200 2212 Wdf01000 - ok
15:32:36.0200 2212 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:32:36.0200 2212 WdiServiceHost - ok
15:32:36.0215 2212 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:32:36.0215 2212 WdiSystemHost - ok
15:32:36.0231 2212 [ CF9A5F41789B642DB967021DE06A2713 ] WebClient C:\Windows\System32\webclnt.dll
15:32:36.0231 2212 WebClient - ok
15:32:36.0262 2212 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:32:36.0262 2212 Wecsvc - ok
15:32:36.0278 2212 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:32:36.0278 2212 wercplsupport - ok
15:32:36.0309 2212 [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc C:\Windows\System32\WerSvc.dll
15:32:36.0309 2212 WerSvc - ok
15:32:36.0371 2212 [ 090A2B8F055343815556A01F725F6C35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
15:32:36.0371 2212 WimFltr - ok
15:32:36.0402 2212 [ 5A77AC34A0FFB70CE8B35B524FEDE9BA ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
15:32:36.0402 2212 winachsf - ok
15:32:36.0465 2212 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:32:36.0480 2212 WinDefend - ok
15:32:36.0480 2212 WinHttpAutoProxySvc - ok
15:32:36.0558 2212 [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:32:36.0558 2212 Winmgmt - ok
15:32:36.0621 2212 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
15:32:36.0621 2212 WinRM - ok
15:32:36.0683 2212 [ 275F4346E569DF56CFB95243BD6F6FF0 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:32:36.0699 2212 Wlansvc - ok
15:32:36.0746 2212 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:32:36.0746 2212 WmiAcpi - ok
15:32:36.0761 2212 [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:32:36.0761 2212 wmiApSrv - ok
15:32:36.0792 2212 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:32:36.0808 2212 WMPNetworkSvc - ok
15:32:36.0855 2212 [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:32:36.0855 2212 WPCSvc - ok
15:32:36.0855 2212 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:32:36.0870 2212 WPDBusEnum - ok
15:32:36.0917 2212 [ 0CEC23084B51B8288099EB710224E955 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
15:32:36.0917 2212 WpdUsb - ok
15:32:36.0995 2212 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:32:37.0011 2212 WPFFontCache_v0400 - ok
15:32:37.0011 2212 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:32:37.0011 2212 ws2ifsl - ok
15:32:37.0026 2212 [ 683DD16B590372F2C9661D277F35E49C ] wscsvc C:\Windows\System32\wscsvc.dll
15:32:37.0026 2212 wscsvc - ok
15:32:37.0042 2212 WSearch - ok
15:32:37.0104 2212 [ D79538B67FA641E986855DEF651E78FE ] wuauserv C:\Windows\system32\wuaueng.dll
15:32:37.0120 2212 wuauserv - ok
15:32:37.0151 2212 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:32:37.0151 2212 WUDFRd - ok
15:32:37.0167 2212 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:32:37.0167 2212 wudfsvc - ok
15:32:37.0198 2212 [ 88AF537264F2B818DA15479CEEAF5D7C ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
15:32:37.0198 2212 XAudio - ok
15:32:37.0214 2212 [ 15A317674A08DF26BE65164D959E9203 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
15:32:37.0214 2212 XAudioService - ok
15:32:37.0229 2212 [ 7D4CCA3659FA0780603206E3D12A993F ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
15:32:37.0229 2212 yukonwlh - ok
15:32:37.0245 2212 ================ Scan global ===============================
15:32:37.0276 2212 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
15:32:37.0307 2212 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
15:32:37.0338 2212 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
15:32:37.0370 2212 [ 2B336AB6286D6C81FA02CBAB914E3C6C ] C:\Windows\system32\services.exe
15:32:37.0370 2212 [Global] - ok
15:32:37.0370 2212 ================ Scan MBR ==================================
15:32:37.0385 2212 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
15:32:37.0775 2212 \Device\Harddisk0\DR0 - ok
15:32:37.0775 2212 ================ Scan VBR ==================================
15:32:37.0775 2212 [ 21A1251AD014CAE8893FC998DC9630EF ] \Device\Harddisk0\DR0\Partition1
15:32:37.0775 2212 \Device\Harddisk0\DR0\Partition1 - ok
15:32:37.0775 2212 ============================================================
15:32:37.0775 2212 Scan finished
15:32:37.0775 2212 ============================================================
15:32:37.0791 2284 Detected object count: 0
15:32:37.0791 2284 Actual detected object count: 0
15:32:50.0115 2176 Deinitialize success





swMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-10 15:34:44
-----------------------------
15:34:44.230 OS Version: Windows 6.0.6001 Service Pack 1
15:34:44.230 Number of processors: 2 586 0xF0D
15:34:44.230 ComputerName: MARK-PC UserName: Mark
15:35:02.544 Initialize success
15:39:17.138 AVAST engine defs: 12121000
15:39:30.663 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
15:39:30.679 Disk 0 Vendor: FUJITSU_ 0041 Size: 238475MB BusType: 3
15:39:30.679 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000006e
15:39:30.694 Disk 1 Vendor: RICOH 01 Size: 238475MB BusType: 0
15:39:30.694 Disk 2 \Device\Harddisk2\DR2 -> \Device\0000006f
15:39:30.694 Disk 2 Vendor: RICOH 02 Size: 238475MB BusType: 0
15:39:30.710 Disk 0 MBR read successfully
15:39:30.710 Disk 0 MBR scan
15:39:30.725 Disk 0 Windows VISTA default MBR code
15:39:30.725 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 8152 MB offset 2048
15:39:30.741 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 230321 MB offset 16697344
15:39:30.757 Disk 0 scanning sectors +488395120
15:39:30.819 Disk 0 scanning C:\Windows\system32\drivers
15:39:40.226 Service scanning
15:40:10.864 Modules scanning
15:40:14.562 Disk 0 trace - called modules:
15:40:14.593 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll iaStor.sys
15:40:14.593 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85cc7348]
15:40:14.593 3 CLASSPNP.SYS[8a1ab745] -> nt!IofCallDriver -> [0x848a38f8]
15:40:14.608 5 acpi.sys[806a06a0] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x851f1028]
15:40:17.869 AVAST engine scan C:\Windows
15:40:25.560 AVAST engine scan C:\Windows\system32
15:43:29.891 AVAST engine scan C:\Windows\system32\drivers
15:43:59.624 AVAST engine scan C:\Users\Mark
15:50:19.596 AVAST engine scan C:\ProgramData
15:52:09.327 Disk 0 MBR has been saved successfully to "C:\Users\Mark\Desktop\BC\Scans\MBR.dat"
15:52:09.343 The log file has been saved successfully to "C:\Users\Mark\Desktop\BC\Scans\aswMBR.txt"




:\Users\All Users\SaveAs\50b51839aa56e.ocx Win32/Adware.MultiPlug.D application unable to clean
C:\ProgramData\SaveAs\50b51839aa56e.ocx Win32/Adware.MultiPlug.D application cleaned by deleting - quarantined

Regards
Mark

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 10 December 2012 - 10:25 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#5 intersection

intersection
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:38 AM

Posted 11 December 2012 - 03:57 PM

Hi Narenxp

See logs, hopefully in correct order.
Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.12.11.10

Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 7.0.6001.18000
Mark :: MARK-PC [administrator]

Protection: Enabled

11/12/2012 18:12:14
mbam-log-2012-12-11 (18-12-14).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 309960
Time elapsed: 1 hour(s), 35 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

MiniToolBox by Farbar Version: 25-11-2012
Ran by Mark (administrator) on 11-12-2012 at 19:53:24
Running from "C:\Users\Mark\Desktop\BC"
Windows Vista ™ Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR928x Wireless Network Adapter = Wireless Network Connection (Connected)
Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Mark-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Home

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : Atheros AR928x Wireless Network Adapter
Physical Address. . . . . . . . . : 00-1F-E1-D9-1F-5E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3971:21bb:54ec:e198%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 11 December 2012 17:56:55
Lease Expires . . . . . . . . . . : 12 December 2012 17:56:54
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller
Physical Address. . . . . . . . . : 00-1D-BA-87-79-80
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : isatap.Home
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:1cd0:3517:3f57:fff9(Preferred)
Link-local IPv6 Address . . . . . : fe80::1cd0:3517:3f57:fff9%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: SkyRouter.Home
Address: 192.168.0.1

Name: google.com
Addresses: 2a00:1450:4009:807::1009
173.194.41.110
173.194.41.96
173.194.41.97
173.194.41.98
173.194.41.99
173.194.41.100
173.194.41.101
173.194.41.102
173.194.41.103
173.194.41.104
173.194.41.105



Pinging google.com [173.194.41.110] with 32 bytes of data:

Reply from 173.194.41.110: bytes=32 time=351ms TTL=57

Reply from 173.194.41.110: bytes=32 time=36ms TTL=57



Ping statistics for 173.194.41.110:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 36ms, Maximum = 351ms, Average = 193ms

Server: SkyRouter.Home
Address: 192.168.0.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=281ms TTL=54

Reply from 72.30.38.140: bytes=32 time=237ms TTL=54



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 237ms, Maximum = 281ms, Average = 259ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=22ms TTL=128

Reply from 127.0.0.1: bytes=32 time=5ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 5ms, Maximum = 22ms, Average = 13ms

===========================================================================
Interface List
11 ...00 1f e1 d9 1f 5e ...... Atheros AR928x Wireless Network Adapter
10 ...00 1d ba 87 79 80 ...... Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller
1 ........................... Software Loopback Interface 1
12 ...00 00 00 00 00 00 00 e0 isatap.Home
13 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.6 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.6 281
192.168.0.6 255.255.255.255 On-link 192.168.0.6 281
192.168.0.255 255.255.255.255 On-link 192.168.0.6 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.6 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.6 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 18 ::/0 On-link
1 306 ::1/128 On-link
13 18 2001::/32 On-link
13 266 2001:0:5ef5:79fb:1cd0:3517:3f57:fff9/128
On-link
11 281 fe80::/64 On-link
13 266 fe80::/64 On-link
13 266 fe80::1cd0:3517:3f57:fff9/128
On-link
11 281 fe80::3971:21bb:54ec:e198/128
On-link
1 306 ff00::/8 On-link
13 266 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/11/2012 05:59:56 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {d6fea6f0-20b6-4294-ac81-7ee55fb9d00a}

Error: (12/11/2012 05:57:44 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)

Error: (12/11/2012 05:57:08 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/10/2012 11:43:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2403226

Error: (12/10/2012 11:43:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2403226

Error: (12/10/2012 11:43:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/10/2012 11:43:30 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2401869

Error: (12/10/2012 11:43:30 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2401869

Error: (12/10/2012 11:43:30 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/10/2012 11:43:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2400824


System errors:
=============
Error: (12/11/2012 05:57:09 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/11/2012 05:57:09 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (12/11/2012 05:56:49 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (12/11/2012 05:56:49 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: C:\Windows\system32\athihvs.dll126

Error: (12/10/2012 11:53:20 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/10/2012 09:50:37 PM) (Source: DCOM) (User: )
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (12/10/2012 09:37:37 PM) (Source: Service Control Manager) (User: )
Description: Apple Mobile Device1600001Restart the service

Error: (12/10/2012 08:55:21 PM) (Source: DCOM) (User: )
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (12/10/2012 08:51:46 PM) (Source: DCOM) (User: )
Description: 1053Vcsw{AD824619-9A64-4DFF-9426-4111B582A967}

Error: (12/10/2012 08:51:46 PM) (Source: Service Control Manager) (User: )
Description: VAIO Entertainment UPnP Client Adapter%%1053


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2012-12-11 19:43:16.305
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:16.132
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:15.900
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:15.732
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:15.569
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:15.408
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:15.179
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:14.990
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:14.772
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-11 19:43:14.619
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

2007 Microsoft Office system (Version: 12.0.6612.1000)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Ad-Aware Antivirus (Version: 10.4.47.4163)
Ad-Aware Browsing Protection (Version: 1.0.1.80)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.110)
Adobe Reader XI (Version: 11.0.00)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
ArcSoft WebCam Companion 2
AVG 2013 (Version: 13.0.2634)
AVG 2013 (Version: 13.0.2793)
AVG 2013 (Version: 13.0.2805)
AVG 2013 (Version: 2013.0.2805)
Big Fish Games Game Suite
Bonjour (Version: 3.0.0.10)
Browser Address Error Redirector
Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1)
Click to Disc (Version: 1.2.00.06190)
Click to Disc Editor (Version: 1.2.00)
ESET Online Scanner v3
Google Chrome (Version: 23.0.1271.95)
Google Desktop (Version: 5.7.0802.22438)
Google Earth (Version: 7.0.1.8244)
Google Talk (remove only)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
HDAUDIO SoftV92 Data Fax Modem with SmartCP
Intel® Graphics Media Accelerator Driver
iTunes (Version: 11.0.0.163)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 6 (Version: 1.6.0.60)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
McAfee Internet Security (Version: 12.1.253)
McAfee Online Backup
McAfee Online Backup (Version: 1.16.4.0)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2003 Web Components (Version: 11.0.8173.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Small Business Connectivity Components (Version: 2.0.7024.0)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Music Transfer (Version: 1.2.00.17290)
OpenMG Secure Module 5.1.00 (Version: 5.1.00.05200)
Picasa 2 (Version: 2.0)
Primo (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5653)
Roxio Central Audio (Version: 3.7.0)
Roxio Central Copy (Version: 3.7.0)
Roxio Central Core (Version: 3.7.0)
Roxio Central Data (Version: 3.7.0)
Roxio Central Tools (Version: 3.7.0)
Roxio Easy Media Creator 10 LJ (Version: 10.1)
Roxio Easy Media Creator Home (Version: 10.1.177)
SaveAs (Version: )
Search Assistant MocaFlix 1.66
Setting Utility Series (Version: 4.1.00.07030)
Shared C Run-time for x86 (Version: 10.0.0)
Skype™ 5.10 (Version: 5.10.116)
Sony Picture Utility (Version: 3.2.02.06170)
Sony Video Shared Library (Version: 3.4.00)
Spybot - Search & Destroy (Version: 1.6.2)
Synaptics Pointing Device Driver (Version: 9.1.13.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760413) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VAIO Content Folder Setting (Version: 2.0.00.17290)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 3.2.00.06115)
VAIO Content Metadata Manager Setting (Version: 3.2.00.06062)
VAIO Content Metadata XML Interface Library (Version: 3.2.00.06112)
VAIO Control Center (Version: 3.1.00.07040)
VAIO Data Restore Tool (Version: 1.0.04.01170)
VAIO DVD Menu Data Basic (Version: 1.0.00.08130)
VAIO Entertainment Platform (Version: 3.2.00.06200)
VAIO Event Service (Version: 4.1.00.07070)
VAIO Guide  (Version: 2.4.00.06190)
VAIO Launcher (Version: 2.1.00.06130)
VAIO Marketing Tools
VAIO Media plus (Version: 1.1.00.05240)
VAIO Movie Story (Version: 1.3.00.06240)
VAIO Movie Story Template Data (Version: 1.3.00.06120)
VAIO MusicBox (Version: 2.1.00.06110)
VAIO MusicBox Sample Music (Version: 1.1.00.14140)
VAIO Original Function Setting (Version: 1.4.00.04230)
VAIO Power Management (Version: 3.1.00.06190)
VAIO Presentation Support (Version: 1.0.00.04240)
VAIO Smart Network (Version: 2.1.00.06270)
VAIO Update 4 (Version: 4.0.0.06110)
VAIO Wallpaper Contents (Version: 1.2.00.05200)
WinDVD for VAIO (Version: 8.0-B9.513)

========================= Memory info: ===================================

Percentage of memory in use: 62%
Total physical RAM: 2938.31 MB
Available physical RAM: 1104.77 MB
Total Pagefile: 6082.92 MB
Available Pagefile: 4057.72 MB
Total Virtual: 2047.88 MB
Available Virtual: 1944.81 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:224.92 GB) (Free:160.88 GB) NTFS

========================= Users: ========================================

User accounts for \\MARK-PC

Administrator Guest Mark

========================= Restore Points ==================================

24-11-2012 01:17:34 Windows Update
24-11-2012 09:07:57 Windows Update
24-11-2012 11:05:16 Windows Update
25-11-2012 23:57:55 Windows Update
26-11-2012 19:08:43 Scheduled Checkpoint
27-11-2012 07:57:34 Scheduled Checkpoint
27-11-2012 21:04:37 Scheduled Checkpoint
29-11-2012 20:31:53 Scheduled Checkpoint
02-12-2012 20:18:28 McAfee Vulnerability Scanner
02-12-2012 20:25:42 Windows Update
02-12-2012 23:22:34 Windows Update
03-12-2012 18:32:23 Scheduled Checkpoint
03-12-2012 23:46:28 Windows Update
04-12-2012 20:21:56 Scheduled Checkpoint
04-12-2012 22:48:52 Device Driver Package Install: HP Printers
06-12-2012 20:56:55 Installed AVG 2013
06-12-2012 20:58:55 Installed AVG 2013
09-12-2012 23:59:39 Windows Update
10-12-2012 13:02:11 Scheduled Checkpoint
10-12-2012 21:11:55 Device Driver Package Install: Apple, Inc. Universal Serial Bus controllers
10-12-2012 21:12:38 Device Driver Package Install: Apple Network adapters
10-12-2012 21:14:19 Installed iTunes
10-12-2012 21:32:27 Installed iPod for Windows 2005-09-23
10-12-2012 21:37:39 Installed iTunes

**** End of log ****

Farbar Service Scanner Version: 10-12-2012
Ran by Mark (administrator) on 11-12-2012 at 20:03:10
Running from "C:\Users\Mark\Desktop\BC"
Windows Vista ™ Home Premium Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys
[2012-11-22 22:00] - [2011-04-21 13:16] - 0273408 ____A (Microsoft Corporation) 48EB99503533C27AC6135648E5474457

C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-11-22 22:00] - [2010-06-16 15:59] - 0898952 ____A (Microsoft Corporation) 782568AB6A43160A159B6215B70BCCE9

C:\Windows\system32\dnsrslvr.dll
[2012-11-22 21:57] - [2011-03-02 14:49] - 0086528 ____A (Microsoft Corporation) 4805D9A6D281C7A7DEFD9094DEC6AF7D

C:\Windows\system32\mpssvc.dll
[2008-01-21 02:24] - [2008-01-21 02:24] - 0393216 ____A (Microsoft Corporation) D1639BA315B0D79DEC49A4B0E1FB929B

C:\Windows\system32\bfe.dll
[2008-01-21 02:23] - [2008-01-21 02:23] - 0328704 ____A (Microsoft Corporation) 8582E233C346AEFE759833E8A30DD697

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe
[2008-01-21 02:23] - [2008-01-21 02:23] - 1054720 ____A (Microsoft Corporation) D5FB73D19C46ADE183F968E13F186B23

C:\Windows\system32\wscsvc.dll
[2008-01-21 02:23] - [2008-01-21 02:23] - 0061440 ____A (Microsoft Corporation) 683DD16B590372F2C9661D277F35E49C

C:\Windows\system32\wbem\WMIsvc.dll
[2008-01-21 02:24] - [2008-01-21 02:24] - 0161792 ____A (Microsoft Corporation) 00B79A7C984678F24CF052E5BEB3A2F5

C:\Windows\system32\wuaueng.dll
[2008-01-21 02:25] - [2008-01-21 02:25] - 1695232 ____A (Microsoft Corporation) D79538B67FA641E986855DEF651E78FE

C:\Windows\system32\qmgr.dll
[2008-01-21 02:25] - [2008-01-21 02:25] - 0758272 ____A (Microsoft Corporation) 02ED7B4DBC2A3232A389106DA7515C3D

C:\Windows\system32\es.dll
[2012-11-22 22:01] - [2008-04-18 05:48] - 0269312 ____A (Microsoft Corporation) 3CB3343D720168B575133A0A20DC2465

C:\Windows\system32\cryptsvc.dll
[2008-01-21 02:24] - [2008-01-21 02:24] - 0128000 ____A (Microsoft Corporation) 6DE363F9F99334514C46AEC02D3E3678

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll
[2012-11-22 22:02] - [2010-02-18 14:11] - 0190464 ____A (Microsoft Corporation) 6A35D233693EDC29A12742049BC5E37F

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll
[2012-11-22 22:01] - [2009-03-03 04:39] - 0551424 ____A (Microsoft Corporation) 301AE00E12408650BADDC04DBC832830



**** End of log ****


# AdwCleaner v2.100 - Logfile created 12/11/2012 at 20:10:24
# Updated 09/12/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 1 (32 bits)
# User : Mark - MARK-PC
# Boot Mode : Normal
# Running from : C:\Users\Mark\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5GEEDUG4\2-adwcleaner[1].exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}

***** [Internet Browsers] *****

-\\ Internet Explorer v7.0.6001.18639

[OK] Registry is clean.

-\\ Google Chrome v23.0.1271.95

File : C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1089 octets] - [11/12/2012 20:10:24]

########## EOF - C:\AdwCleaner[S1].txt - [1149 octets] ##########



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.0.7 (12.11.2012:3)
OS: Windows Vista ™ Home Premium x86
Ran by Mark on 11/12/2012 at 20:29:01.08
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\windows nt\currentversion\windows\\AppInit_DLLs
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\main\\Start Page



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\saveas"
Successfully deleted: [Folder] "C:\Users\Mark\appdata\local\adawarebp"
Successfully deleted: [Folder] "C:\Users\Mark\appdata\locallow\adawaretb"
Successfully deleted: [Folder] "C:\Users\Mark\appdata\locallow\saveas"
Successfully deleted: [Folder] "C:\Program Files\adawaretb"
Failed to delete: [Folder] "C:\Program Files\mocaflix"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\saveas"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11/12/2012 at 20:40:57.09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Thanks
Regards
Mark

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 13 December 2012 - 01:47 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#7 intersection

intersection
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:38 AM

Posted 13 December 2012 - 07:13 PM

Hi Narenxp

Not sure what is happening with my computer, the CPU & mem usage seems to be at around 50% most of the time. There is also a long delay following the click to select anew site / page.
Hopefully these scans with reveal all?
I am out of the country from Saturday, so will have to follow further instructions whem i return in a week or so

Regards
Mark



Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/13/2012 11:32:43 PM in x86 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Automatic

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost
::1 localhost

Program finished at: 12/13/2012 11:33:04 PM
Execution time: 0 hours(s), 0 minute(s), and 20 seconds(s



"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Ad-Aware Antivirus" "Ad-Aware Antivirus Launcher" "Lavasoft Limited" "c:\program files\ad-aware antivirus\adawarelauncher.exe"
+ "Ad-Aware Browsing Protection" "Ad-Aware Browsing Protection and Anti-Phishing" "Lavasoft" "c:\programdata\ad-aware browsing protection\adawarebp.exe"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe"
+ "AVG_UI" "AVG User Interface" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgui.exe"
+ "Google Desktop Search" "Google Desktop" "Google" "c:\program files\google\google desktop search\googledesktop.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "ISBMgr.exe" "" "Sony Corporation" "c:\program files\sony\isb utility\isbmgr.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe"
+ "MarketingTools" "Marketing Tools" "Sony Corporation" "c:\program files\sony\marketing tools\marketingtools.exe"
+ "mcpltui_exe" "McAfee Security Center" "McAfee, Inc." "c:\program files\mcafee.com\agent\mcagent.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "RtHDVCpl" "HD Audio Control Panel" "Realtek Semiconductor" "c:\windows\rthdvcpl.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics, Inc." "c:\program files\synaptics\syntp\syntpenh.exe"
+ "Windows Defender" "Windows Defender User Interface" "Microsoft Corporation" "c:\program files\windows defender\msascui.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Google Update" "Google Installer" "Google Inc." "c:\users\mark\appdata\local\google\update\googleupdate.exe"
+ "NSUFloatingUI" "VAIO Smart Network" "Sony Corporation" "c:\program files\sony\network utility\lanutil.exe"
+ "SpybotSD TeaTimer" "System settings protector" "Safer Networking Limited" "c:\program files\spybot - search & destroy\teatimer.exe"
+ "swg" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "application/x-mfe-ipt" "McAfee MSC IE plugin DLL" "McAfee, Inc." "c:\program files\mcafee\msc\mcsniepl.dll"
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "dssrequest" "SiteAdvisor" "McAfee, Inc." "c:\program files\mcafee\siteadvisor\mcieplg.dll"
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "mso-offdap11" "Microsoft Office Web Components 2003" "Microsoft Corporation" "c:\program files\common files\microsoft shared\web components\11\owc11.dll"
+ "sacore" "SiteAdvisor" "McAfee, Inc." "c:\program files\mcafee\siteadvisor\mcieplg.dll"
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgse.dll"
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "RXDCExtSvr" "Roxio Creator Shell Extension" "Sonic Solutions" "c:\program files\roxio\virtual drive 10\dc_shellext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "AdAwareContextMenu" "Ad-Aware Antivirus Shell Extension" "Lavasoft Limited" "c:\program files\ad-aware antivirus\adawareshellextension.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files\mcafee online backup\mobkshell.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files\mcafee online backup\mobkshell.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files\mcafee online backup\mobkshell.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgse.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files\mcafee online backup\mobkshell.dll"
+ "RXDCExtSvr" "Roxio Creator Shell Extension" "Sonic Solutions" "c:\program files\roxio\virtual drive 10\dc_shellext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files\mcafee online backup\mobkshell.dll"
+ "MOBK2" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files\mcafee online backup\mobkshell.dll"
+ "MOBK3" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files\mcafee online backup\mobkshell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "CBrowserHelperObject Object" "BAE.dll" "Your Company Name" "c:\program files\google bae\bae.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.7.7529.1424\swg.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files\mcafee\siteadvisor\mcieplg.dll"
+ "Spybot-S&D IE Protection" "SBSD IE Protection" "Safer Networking Limited" "c:\program files\spybot - search & destroy\sdhelper.dll"
"HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks" "" "" ""
+ "McAfee SiteAdvisor Toolbar" "SiteAdvisor" "McAfee, Inc." "c:\program files\mcafee\siteadvisor\mcieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files\mcafee\siteadvisor\mcieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Spybot - Search && Destroy Configuration" "SBSD IE Protection" "Safer Networking Limited" "c:\program files\spybot - search & destroy\sdhelper.dll"
+ "Sun Java Console" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2iexp.dll"
"Task Scheduler" "" "" ""
+ "\Ad-Aware Antivirus Scheduled Scan" "Ad-Aware Antivirus Launcher" "Lavasoft Limited" "c:\program files\ad-aware antivirus\adawarelauncher.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-335287378-1196502693-4279821595-1003Core" "Google Installer" "Google Inc." "c:\users\mark\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-335287378-1196502693-4279821595-1003UA" "Google Installer" "Google Inc." "c:\users\mark\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs"
+ "\SONY\VAIO Update\VAIO Update" "VAIO Update" "Sony Corporation" "c:\program files\sony\vaio update 4\vaioupdt.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Ad-Aware Service" "Ad-Aware Service" "Lavasoft Limited" "c:\program files\ad-aware antivirus\adawareservice.exe"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AVGIDSAgent" "Provides Identity Protection Against Cyber Crime." "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgidsagent.exe"
+ "avgwd" "AVG Watchdog Service" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgwdsvc.exe"
+ "BcmSqlStartupSvc" "Controls the start of the Business Contact Manager SQL Server instance (MSSMLBIZ)." "Microsoft Corporation" "c:\program files\microsoft small business\business contact manager\bcmsqlstartupsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "GoogleDesktopManager-022208-143751" "Google Desktop" "Google" "c:\program files\google\google desktop search\googledesktop.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "HomeNetSvc" "Allows McAfee applications to communicate securely on the local network." "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "HP Port Resolver" "PortResolver Module" "Hewlett-Packard Company" "c:\windows\system32\spool\drivers\w32x86\3\hpbpro.exe"
+ "HP Status Server" "HP Status Server Module" "Hewlett-Packard Company" "c:\windows\system32\spool\drivers\w32x86\3\hpboid.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "IviRegMgr" "InterVideo Register Manager" "InterVideo" "c:\program files\common files\intervideo\regmgr\iviregmgr.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "McAfee SiteAdvisor Service" "McAfee SiteAdvisor Service" "McAfee, Inc." "c:\program files\mcafee\siteadvisor\mcsacore.exe"
+ "McMPFSvc" "Helps protect your computer from intrusion and let's you manage your computer's trusted programs." "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McNaiAnn" "McAfee VirusScan Announcer" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McODS" "McAfee Scanner" "McAfee, Inc." "c:\program files\mcafee\virusscan\mcods.exe"
+ "mcpltsvc" "McAfee Platform Services" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McProxy" "McAfee Proxy Service" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "mfecore" "McAfee OnAccess Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\amcore\mcshield.exe"
+ "mfefire" "Provides firewall services to McAfee products" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mfefire.exe"
+ "mfevtp" "Provides validation trust protection services" "McAfee, Inc." "c:\windows\system32\mfevtps.exe"
+ "MOBKbackup" "Backs up configured files to the McAfee Online Backup servers. Please do not stop or restart this service - it could corrupt your McAfee Online Backup installation." "McAfee, Inc." "c:\program files\mcafee online backup\mobkbackup.exe"
+ "MSCSPTISRV" "MSCSPTISRV Module" "Sony Corporation" "c:\program files\common files\sony shared\avlib\mscsptisrv.exe"
+ "MSK80Service" "This service filters e-mail messages on your computer" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "MSSQL$MSSMLBIZ" "Provides storage, processing and controlled access of data and rapid transaction processing." "Microsoft Corporation" "c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe"
+ "NSUService" "VAIO Smart Network" "Sony Corporation" "c:\program files\sony\network utility\nsuservice.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "PACSPTISVR" "PACSPTISVR Module" "Sony Corporation" "c:\program files\common files\sony shared\avlib\pacsptisvr.exe"
+ "RtkAudioService" "To check external HDMI device availability, HDMI device audio capability and update HDMI device capability into audio control panel" "Realtek Semiconductor" "c:\windows\rtkaudioservice.exe"
+ "SBAMSvc" "Manages your antispyware and antivirus application" "GFI Software" "c:\program files\ad-aware antivirus\sbamsvc.exe"
+ "SBSDWSCService" "Spybot-S&D Security Center integration" "Safer Networking Ltd." "c:\program files\spybot - search & destroy\sdwinsec.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe"
+ "SOHCImp" "VAIO Media plus Content Importer" "Sony Corporation" "c:\program files\sony\vaio media plus\sohcimp.exe"
+ "SOHDms" "VAIO Media plus Digital Media Server" "Sony Corporation" "c:\program files\sony\vaio media plus\sohdms.exe"
+ "SOHDs" "VAIO Media plus Device Searcher" "Sony Corporation" "c:\program files\sony\vaio media plus\sohds.exe"
+ "SPTISRV" "SPTISRV Module" "Sony Corporation" "c:\program files\common files\sony shared\avlib\sptisrv.exe"
+ "SQLBrowser" "Provides SQL Server connection information to client computers." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlbrowser.exe"
+ "SQLWriter" "Provides the interface to backup/restore Microsoft SQL server through the Windows VSS infrastructure." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlwriter.exe"
+ "VAIO Entertainment TV Device Arbitration Service" "Hardware Resource Manager" "Sony Corporation" "c:\program files\common files\sony shared\vaio entertainment platform\vzhardwareresourcemanager\vzhardwareresourcemanager\vzhardwareresourcemanager.exe"
+ "VAIO Event Service" "Provides the hardware event managing service for VAIO. During termination of this service, some fuctions such as Special button ,Hotkey ,and VAIO original powermanagement are limited." "Sony Corporation" "c:\program files\sony\vaio event service\vesmgr.exe"
+ "VAIO Power Management" "Provides power management service for VAIO. If this service is stopped or disabled, power management functions for VAIO will not be available." "Sony Corporation" "c:\program files\sony\vaio power management\spmservice.exe"
+ "VCFw" "VAIO Content Folder Watcher" "Sony Corporation" "c:\program files\common files\sony shared\vaio content folder watcher\vcfw.exe"
+ "VcmIAlzMgr" "VAIO Content Metadata Intelligent Analyzing Manager" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmialzmgr.exe"
+ "VcmXmlIfHelper" "VcmXml Helper Interface" "Sony Corporation" "c:\program files\common files\sony shared\vcmxml\vcmxmlifhelper.exe"
+ "Vcsw" "VAIO Entertainment UPnP Client Adapter" "Sony Corporation" "c:\program files\common files\sony shared\vaio entertainment platform\vcsw\vcsw.exe"
+ "VzCdbSvc" "VAIO Entertainment Database Service" "Sony Corporation" "c:\program files\common files\sony shared\vaio entertainment platform\vzcdb\vzcdbsvc.exe"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
+ "XAudioService" "User-mode gate for Modem Speakerphone" "Conexant Systems, Inc." "c:\windows\system32\drivers\xaudio.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athr.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "AVGIDSDriver" "AVG Technologies IDS Application Activity Monitor Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsdriverx.sys"
+ "AVGIDSHX" "AVG Technologies IDS Application Activity Monitor Helper Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidshx.sys"
+ "AVGIDSShim" "AVG Technologies IDS Application Activity Monitor Shim Loader Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsshimx.sys"
+ "Avgldx86" "AVG AVI Loader Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgldx86.sys"
+ "Avglogx" "AVG Logging Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avglogx.sys"
+ "Avgmfx86" "AVG Resident Shield Minifilter Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgmfx86.sys"
+ "Avgrkx86" "AVG Anti-Rootkit Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgrkx86.sys"
+ "Avgtdix" "AVG Network connection watcher" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgtdix.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cfwids" "McAfee Personal Firewall IDS Plugin" "McAfee, Inc." "c:\windows\system32\drivers\cfwids.sys"
+ "DMICall" "Windows 2000 DMI Call Kernel Driver" "Sony Corporation" "c:\windows\system32\drivers\dmicall.sys"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "gfibto" "GFI Boot Time Operations Driver" "GFI Software" "c:\windows\system32\drivers\gfibto.sys"
+ "HipShieldK" "McAfee HIP IPS Driver" "McAfee, Inc." "c:\windows\system32\drivers\hipshieldk.sys"
+ "HSF_DPV" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsx_dpv.sys"
+ "HSFHWAZL" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl3.sys"
+ "HSXHWAZL" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsxhwazl.sys"
+ "iaStor" "Intel Matrix Storage Manager driver - ia32" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd32.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhda.sys"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "mdmxsdk" "Diagnostic Interface x86 Driver" "Conexant" "c:\windows\system32\drivers\mdmxsdk.sys"
+ "mfeapfk" "Access Protection Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk" "Anti-Virus File System Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfeavfk01" "" "" "File not found: C:\Windows\System32\Drivers\mfeavfk01.sys"
+ "mfebopk" "Buffer Overflow Protection Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfebopk.sys"
+ "mfefirek" "McAfee Core Firewall Engine Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfefirek.sys"
+ "mfehidk" "McAfee Link Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfehidk.sys"
+ "mfencbdc" "McAfee Content driver Copyright © 2010 McAfee, Inc. All Rights Reserved." "McAfee, Inc." "c:\windows\system32\drivers\mfencbdc.sys"
+ "mfencrk" "McAfee Content driver Copyright © 2010 McAfee, Inc. All Rights Reserved." "McAfee, Inc." "c:\windows\system32\drivers\mfencrk.sys"
+ "mfewfpk" "Anti-Virus Mini-Firewall Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfewfpk.sys"
+ "MOBKFilter" "McAfee Online Backup Change Monitor" "Mozy, Inc." "c:\windows\system32\drivers\mobk.sys"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys"
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys"
+ "regi" "regi driver" "InterVideo" "c:\windows\system32\drivers\regi.sys"
+ "rimsptsk" "RICOH MS Driver" "REDC" "c:\windows\system32\drivers\rimsptsk.sys"
+ "risdptsk" "RICOH SD/MMC Driver" "REDC" "c:\windows\system32\drivers\risdptsk.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SFEP" "Sony Firmware Extension Parser driver" "Sony Corporation" "c:\windows\system32\drivers\sfep.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics, Inc." "c:\windows\system32\drivers\syntp.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
+ "winachsf" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsx_cnxt.sys"
+ "XAudio" "Modem Audio Device Driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\xaudio.sys"
+ "yukonwlh" "Miniport Driver for Marvell Yukon Ethernet Controller." "Marvell" "c:\windows\system32\drivers\yk60x86.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "VIDC.dvsd" "Video for Windows driver for DV" "Sony Corporation" "c:\program files\common files\sony shared\videolib\sonydv.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Sony MPEG2 TS Splitter Ex" "" "Sony Corporation" "c:\program files\common files\sony shared\videolib\tssplt_s.ax"
+ "Sony MPEG2 TS Splitter Ex" "" "Sony Corporation" "c:\program files\common files\sony shared\videolib\tssplt_s.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ArcGetDataSample" "ArcGetDataSample" "arcsoft" "c:\program files\common files\arcsoft\mpeg engine\arcgetdatasample.ax"
+ "ArcPutDataSample" "ArcGetDataSample" "arcsoft" "c:\program files\common files\arcsoft\mpeg engine\arcputdatasample.ax"
+ "ArcSoft MPEG Audio Decoder" "ArcSoft Audio Decoder" "ArcSoft Inc." "c:\program files\common files\arcsoft\mpeg engine\mpgaudio.ax"
+ "ArcSoft Mpeg Encoder Filter" "" "ArcSoft" "c:\program files\common files\arcsoft\mpeg engine\arcmpegcodec.ax"
+ "ArcSoft MPEG Splitter" "MPGSplitter Filter" "ArcSoft, Inc." "c:\program files\common files\arcsoft\mpeg engine\arcspl.ax"
+ "ArcSoft MPEG Video Decoder" "ArcSoft Mpeg Video Decoder Filter" "ArcSoft Inc." "c:\program files\common files\arcsoft\mpeg engine\mpgvideo.ax"
+ "ArcSoft Null Render" "NULL Render" "ArcSoft Inc." "c:\program files\common files\arcsoft\mpeg engine\arcnullrender.ax"
+ "ArcSoft Realtime Capture Encoder Filter" "Arc Real time Capture Encoder Filter" "Arcsoft" "c:\program files\common files\arcsoft\mpeg engine\arccaptureencoder.ax"
+ "ArcSoft Time Stamp" "ArcSoft Time Stamp" "ArcSoft Inc." "c:\program files\common files\arcsoft\mpeg engine\arctimestamp.ax"
+ "ArcSoft TimeShift2.0 Client Filter" "Timeshift2.0 Filter" "Arcsoft Inc." "c:\program files\common files\arcsoft\mpeg engine\timeshift2.ax"
+ "ArcSoft TimeShift2.0 Server Filter" "Timeshift2.0 Filter" "Arcsoft Inc." "c:\program files\common files\arcsoft\mpeg engine\timeshift2.ax"
+ "ArcSoft VideoEffect" "Arcsoft Video Effect Filter 1.0" "Arcsoft Corporation" "c:\program files\common files\arcsoft\mpeg engine\arcvideoeffect.ax"
+ "Arcsoft WMV/ASF Splitter" "ArcWmvSpl" "Arcsoft, Inc." "c:\program files\common files\arcsoft\mpeg engine\arcwmvspl.ax"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files\google\google earth\client\wavdest.ax"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "File Dump" "FileDump DLL" "ArcSoft Inc." "c:\program files\common files\arcsoft\mpeg engine\filedump.ax"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "InterVideo Audio Decoder" "IVIAUDIO LOGID.62048" "InterVideo Inc." "c:\program files\intervideo\common\bin\iviaudio.ax"
+ "InterVideo Video Decoder" "IVIVIDEO LOGID.62048" " InterVideo Inc." "c:\program files\intervideo\common\bin\ivivideo.ax"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "OMG TRANSFORM" "OmgTransform Filter " "Sony Corporation" "c:\program files\common files\sony shared\openmg\omgtrans.ax"
+ "OmgDsee Filter" "" "" "c:\program files\common files\sony shared\openmg\omgdseefilter.ax"
+ "OmgGenericSrcFilter" "OmgGenericSrcFilter" "Sony Corporation" "c:\program files\common files\sony shared\openmg\omggenericsrcfilter.ax"
+ "OmgMP4Decoder2" "OmgMP4Decoder2" "Sony Corporation" "c:\program files\common files\sony shared\openmg\omgmp4decoder2.ax"
+ "OmgPushSrc" "OmgPushSrc" "Sony Corporation" "c:\program files\common files\sony shared\openmg\omgpushsrc.ax"
+ "OpenMG Async. File Source" "OpenMG Async. File Source" "Sony Corporation" "c:\program files\common files\sony shared\avlib\omgafs.ax"
+ "OpenMG Audio Decrypt" "OpenMG Decrypt Filter" "Sony Corporation" "c:\program files\common files\sony shared\openmg\omgdec.ax"
+ "OpenMG OmgSource Filter" "OpenMG OmgSource Filter" "Sony Corporation" "c:\program files\common files\sony shared\openmg\omgsrc.ax"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Roxio Audio Source Filter" "Roxio Audio Source Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsaudiosource.ax"
+ "Roxio Audio Stream Reader Filter" "Roxio Audio Stream Reader Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamreader.ax"
+ "Roxio Audio Stream Writer Filter" "Roxio Audio Stream Writer Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamwriter.ax"
+ "ROXIO LPCMSyncFilter" "LPCMSync Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\lpcmsyncfilter.dll"
+ "Roxio MPEG Analyzer Filter" "MPEG File Analyzer Dynamic Link Library" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\roxiompegprop.dll"
+ "Roxio MPEG Stream Analyzer" "Roxio MPEG Stream Splitter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpegstreamanalyzer.dll"
+ "Roxio MPEG1 Audio Encoder" "ROXIO MPEG Audio Encoder" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\roxioaudioenc.dll"
+ "Roxio MPEG1 Encoder" "ROXIO MPEG1 Codec" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg1vidcodec.dll"
+ "Roxio MPEG1 Muxer" "ROXIO MPEG MUXER" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mpeg1muxer.dll"
+ "Roxio MPEG2 Demuxer" "ROXIO MPEG Demuxer" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\roxiompegdemuxer.dll"
+ "ROXIO Raw Writer" "ROXIO Raw Writer" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\mgirawwriter.dll"
+ "Roxio Repack Filter" "Repack Filter" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\repackfilter.dll"
+ "Roxio Transport Stream Source" "ListFrameSource" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\tsmpegsource.dll"
+ "SaEnvelope" "Sony Sa Envelope Filter" "Sony Corporation" "c:\program files\common files\sony shared\openmg\omgsaenvelope.ax"
+ "SAL Input Converter" "SAL Input Converter Source Filter" "Sony Corporation" "c:\program files\common files\sony shared\openmg\saliconv.ax"
+ "SAL Output Converter" "SAL Output Converter RendererFilter" "Sony Corporation" "c:\program files\common files\sony shared\openmg\saloconv.ax"
+ "Seamless Play" "Seamless-Play Filter (Sample)" "Sony Corporation" "c:\program files\common files\sony shared\openmg\seamlessfilter.ax"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Snapshot" "Arcsoft Snapshot Filter 1.0" "Arcsoft Corporation" "c:\program files\common files\arcsoft\mpeg engine\arcsnap.ax"
+ "Sony Audio CD Source Filter" "OpenMG CdSource Filter" "Sony Corporation" "c:\program files\common files\sony shared\avlib\cdsrc.ax"
+ "Sony AVC Decoder" "Sony AVC Decoder Filter" "Sony Corporation" "c:\program files\common files\sony shared\videolib\sjvtdl.ax"
+ "SONY DV Video Decoder" "Sony DV Video Decoder" "Sony Corporation" "c:\program files\common files\sony shared\videolib\sdvvd.ax"
+ "Sony LPCM Decoder" "Sony LPCM Decode Filter" "Sony Corporation" "c:\program files\common files\sony shared\videolib\slpcmd.ax"
+ "Sony MP4 File Source" "Sony MP4 File Source Filter" "Sony Corporation" "c:\program files\common files\sony shared\videolib\mp4filesource.ax"
+ "Sony MPEG Audio Decoder" "Sony MPEG Audio Decoder" "Sony Corporation" "c:\program files\common files\sony shared\videolib\smad.ax"
+ "SONY MPEG Video Decoder" "Sony MPEG4 Video Decoder" "Sony Corporation" "c:\program files\common files\sony shared\videolib\sm4spvd.ax"
+ "SONY MPEG Video Decoder" "Sony MPEG Video Decoder" "Sony Corporation" "c:\program files\common files\sony shared\videolib\smvd.ax"
+ "Sony MPEG-TS Parser" "Sony MPEG Parser Filter" "Sony Corporation" "c:\program files\common files\sony shared\videolib\smparse.ax"
+ "SonyMSAConv" "OpenMG Converter Filter" "Sony Corporation" "c:\program files\common files\sony shared\avlib\sonycdsrcwriter.ax"
+ "SonyMSAConv" "OpenMG Converter Filter" "Sony Corporation" "c:\program files\common files\sony shared\avlib\sonymsaconverter3.ax"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "SubPicture Encoder" "ROXIO SubPicture Encoder" "Sonic Solutions" "c:\program files\common files\roxio shared\10.0\mpeg\subpictenc.dll"
+ "VAIO Content Metadata Univ Filter" "DirectShow Filter for VCM Intelligent Analyzing Manager" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmsmplcapflt.ax"
+ "VaioAacDecFilter" "Sony MPEG4 AAC Decoder" "Sony Corporation" "c:\program files\common files\sony shared\videolib\saaclcd.ax"
+ "VcmIAlzGPDFilter" "VCM Intelligent Analyzing Manager GPD Library" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmialzgpdfilter.ax"
+ "Video MotionDetect" "Video motiondetect Filter (Sample)" "ArcSoft, Inc." "c:\program files\common files\arcsoft\mpeg engine\motiondetect.ax"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
+ "VESWinlogon" "VAIO Event Service (Winlogon Notification Module)" "Sony Corporation" "c:\windows\system32\veswinlogon.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "PCL hpz3l054" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3l054.dll"
"C:\Users\Mark\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\Clock.gadget\en-us\Gadget.xml"
+ "Feed Headlines" "Track the latest news, sports, and entertainment headlines." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\RSSFeeds.Gadget\en-us\Gadget.xml"
+ "Slide Show" "Show a continuous slide show of your pictures." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\SlideShow.Gadget\en-us\Gadget.xml"

Regards
Mark

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 15 December 2012 - 10:15 AM

Current issues?

#9 intersection

intersection
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:38 AM

Posted 23 December 2012 - 07:29 PM

Hi Narenxp

I have been out of the country for a week.

Current issues are,
My computer takes an age to boot up,
the CPU & mem usage seems to be at around 50% most of the time. There is also a long delay following the click to select anew site / page.
I can not connect to my friends wireless network, although i have the correct network key.
Hope you can help

Regards
Mark

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 23 December 2012 - 09:53 PM

You have three antivirus softwares

Adaware
Mcafee
AVG

Uninstall any two and let me know if that helps

#11 intersection

intersection
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:38 AM

Posted 25 December 2012 - 03:17 PM

Hi Narenxp

I have uninstalled Spybot, AVG & AdAware. My computer seems faster and is using less memory whilst idle.

However, i am unable to connect to the internet using my ethernet card, the WLAN can be seen, but no connection is possible.

It seems unlikely, the adapter has suddenly stopped working, is it possible settings have been changed during the infection, i have

checked what i can. The device says it is working properly.

Thanks
Mark

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 26 December 2012 - 10:08 AM

Press Windows+R key and type

devmgmt.msc and click ok

Expand network adapters and uninstall your network drivers.Reinstall them.See if that helps.

#13 intersection

intersection
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:38 AM

Posted 26 December 2012 - 06:35 PM

Hi Narenxp

I have uninstalled and reinstalled as you suggested.

Before i got your response, i managed to get my computer connected via Wlan.

However after a couple of minutes the connection drops out, and i'm back to the conectivity problem. This process also seems to cause the other computers connections to drop out.
This can be fixed by reseting the router.
Is it possible my computer is altering the router settings?

Cheers Mark

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:38 PM

Posted 26 December 2012 - 10:01 PM

Try to reset the router and see if that helps.If other computers have same problem ,the issue may be with the router or ISP itself.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users