Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AVG Wont' run or update, left click not working on desktop/start menu


  • Please log in to reply
23 replies to this topic

#1 jrbslc

jrbslc

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 19 February 2013 - 05:49 PM

Hi in addition to all that there are many issues with my machine right now.  I believe there is a virus and or malware because my it won't even let windows update successfully, nor would it run malwarebytes

 

If anyone can help, tI'd appreciate it.  Thank you.


Edited by hamluis, 19 February 2013 - 05:51 PM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 19 February 2013 - 08:32 PM

Are you referring to left click or the right click ?

 

Can you run scans in safemode with networking?

 

What happens when try to update malwarebytes?



#3 jrbslc

jrbslc
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 26 February 2013 - 03:08 PM

Left click will not open desktop icons, but functions on firefox fine.  It won't let me run the scans in safe mode. I get errors when trying to update or run scans including windows updates. AVG just shuts down as does malwarebytes. Thanks for getting back to me. I had a root kit virus you all helped me get rid of a couple years ago.

Edited by jrbslc, 26 February 2013 - 05:04 PM.


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 26 February 2013 - 10:38 PM

Copy this tool to infected PC if you cant download it from your PC and run it

 

 

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg
     
  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png
     
  • Click Start Scan and allow the scan process to run
     
  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg
     
  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------
 

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.
     

     

    ===================================================


    Autoruns

    --------------------
     

    • Please download AutoRuns and save it to your desktop
    • Double click the AutoRuns.zip folder
    • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
    • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
    • Double click on the text file,copy and paste the contents in your reply

     

     

    ===================================================


    ESET Online Scanner

    --------------------

    I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal
     

    • Hold down Control and click on this link to open ESET OnlineScan in a new window.
    • Click the esetonlinebtn.png  button.
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

      [list=1]
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.

Edited by narenxp, 26 February 2013 - 10:38 PM.


#5 jrbslc

jrbslc
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 27 February 2013 - 02:35 PM

Thank you here are the requested text Files...

12:50:11.0203 2684 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:50:13.0546 2684 ============================================================
12:50:13.0546 2684 Current date / time: 2013/02/27 12:50:13.0546
12:50:13.0546 2684 SystemInfo:
12:50:13.0546 2684
12:50:13.0546 2684 OS Version: 5.1.2600 ServicePack: 3.0
12:50:13.0546 2684 Product type: Workstation
12:50:13.0640 2684 ComputerName: JEFF
12:50:13.0640 2684 UserName: Guest2
12:50:13.0640 2684 Windows directory: C:\WINDOWS
12:50:13.0640 2684 System windows directory: C:\WINDOWS
12:50:13.0640 2684 Processor architecture: Intel x86
12:50:13.0640 2684 Number of processors: 2
12:50:13.0640 2684 Page size: 0x1000
12:50:13.0640 2684 Boot type: Normal boot
12:50:13.0640 2684 ============================================================
12:50:24.0250 2684 BG loaded
12:50:27.0171 2684 Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:50:27.0843 2684 ============================================================
12:50:27.0843 2684 \Device\Harddisk0\DR0:
12:50:28.0078 2684 MBR partitions:
12:50:28.0078 2684 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950283F
12:50:28.0078 2684 ============================================================
12:50:33.0921 2684 C: <-> \Device\Harddisk0\DR0\Partition1
12:50:34.0156 2684 ============================================================
12:50:34.0156 2684 Initialize success
12:50:34.0156 2684 ============================================================
12:53:39.0953 3184 ============================================================
12:53:39.0953 3184 Scan started
12:53:39.0953 3184 Mode: Manual; TDLFS;
12:53:39.0953 3184 ============================================================
12:53:40.0453 3184 ================ Scan system memory ========================
12:53:40.0453 3184 System memory - ok
12:53:40.0453 3184 ================ Scan services =============================
12:53:40.0656 3184 [ 21AF8E9C727C6D7643AD497268F55BF1 ] A3AB C:\WINDOWS\system32\DRIVERS\A3AB.sys
12:53:40.0671 3184 A3AB - ok
12:53:40.0671 3184 Abiosdsk - ok
12:53:40.0703 3184 abp480n5 - ok
12:53:40.0765 3184 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:53:40.0765 3184 ACPI - ok
12:53:40.0812 3184 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
12:53:40.0812 3184 ACPIEC - ok
12:53:40.0921 3184 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:53:40.0921 3184 AdobeFlashPlayerUpdateSvc - ok
12:53:40.0937 3184 adpu160m - ok
12:53:40.0968 3184 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
12:53:40.0968 3184 aec - ok
12:53:41.0031 3184 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
12:53:41.0046 3184 AFD - ok
12:53:41.0046 3184 Aha154x - ok
12:53:41.0078 3184 aic78u2 - ok
12:53:41.0093 3184 aic78xx - ok
12:53:41.0140 3184 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
12:53:41.0156 3184 Alerter - ok
12:53:41.0187 3184 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
12:53:41.0187 3184 ALG - ok
12:53:41.0203 3184 AliIde - ok
12:53:41.0218 3184 amsint - ok
12:53:41.0234 3184 [ 920298C7AEF97D8168D219D35975D295 ] ANIO C:\WINDOWS\system32\ANIO.SYS
12:53:41.0250 3184 ANIO - ok
12:53:41.0437 3184 [ AA3D68F26B2A27F660AFC46039B061A4 ] ANIWZCSdService C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
12:53:41.0453 3184 ANIWZCSdService - ok
12:53:41.0703 3184 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:53:41.0703 3184 Apple Mobile Device - ok
12:53:41.0796 3184 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
12:53:41.0812 3184 AppMgmt - ok
12:53:41.0812 3184 asc - ok
12:53:41.0843 3184 asc3350p - ok
12:53:41.0859 3184 asc3550 - ok
12:53:42.0000 3184 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
12:53:42.0031 3184 aspnet_state - ok
12:53:42.0062 3184 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:53:42.0078 3184 AsyncMac - ok
12:53:42.0109 3184 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
12:53:42.0109 3184 atapi - ok
12:53:42.0125 3184 Atdisk - ok
12:53:42.0156 3184 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:53:42.0156 3184 Atmarpc - ok
12:53:42.0218 3184 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
12:53:42.0218 3184 AudioSrv - ok
12:53:42.0296 3184 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
12:53:42.0296 3184 audstub - ok
12:53:42.0593 3184 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
12:53:42.0625 3184 AVGIDSAgent - ok
12:53:42.0671 3184 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
12:53:42.0671 3184 AVGIDSDriver - ok
12:53:42.0703 3184 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
12:53:42.0703 3184 AVGIDSHX - ok
12:53:42.0718 3184 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
12:53:42.0718 3184 AVGIDSShim - ok
12:53:42.0750 3184 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
12:53:42.0750 3184 Avgldx86 - ok
12:53:42.0781 3184 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\WINDOWS\system32\DRIVERS\avglogx.sys
12:53:42.0781 3184 Avglogx - ok
12:53:42.0796 3184 [ 6C7C00B8DD22B4343B47FED148387057 ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
12:53:42.0796 3184 Avgmfx86 - ok
12:53:42.0812 3184 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
12:53:42.0812 3184 Avgrkx86 - ok
12:53:42.0843 3184 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
12:53:42.0843 3184 Avgtdix - ok
12:53:42.0890 3184 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
12:53:42.0890 3184 avgwd - ok
12:53:42.0953 3184 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
12:53:42.0968 3184 Beep - ok
12:53:43.0031 3184 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
12:53:43.0109 3184 BITS - ok
12:53:43.0203 3184 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:53:43.0203 3184 Bonjour Service - ok
12:53:43.0250 3184 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
12:53:43.0265 3184 Browser - ok
12:53:43.0421 3184 catchme - ok
12:53:43.0437 3184 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
12:53:43.0437 3184 cbidf2k - ok
12:53:43.0484 3184 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
12:53:43.0484 3184 CCDECODE - ok
12:53:43.0500 3184 cd20xrnt - ok
12:53:43.0546 3184 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
12:53:43.0546 3184 Cdaudio - ok
12:53:43.0562 3184 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
12:53:43.0578 3184 Cdfs - ok
12:53:43.0640 3184 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:53:43.0640 3184 Cdrom - ok
12:53:43.0671 3184 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
12:53:43.0687 3184 cercsr6 - ok
12:53:43.0687 3184 Changer - ok
12:53:43.0734 3184 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
12:53:43.0734 3184 CiSvc - ok
12:53:43.0765 3184 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
12:53:43.0765 3184 ClipSrv - ok
12:53:43.0828 3184 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:53:44.0093 3184 clr_optimization_v2.0.50727_32 - ok
12:53:44.0109 3184 CmdIde - ok
12:53:44.0140 3184 COMSysApp - ok
12:53:44.0187 3184 Cpqarray - ok
12:53:44.0234 3184 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
12:53:44.0234 3184 CryptSvc - ok
12:53:44.0250 3184 dac2w2k - ok
12:53:44.0265 3184 dac960nt - ok
12:53:44.0359 3184 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
12:53:44.0359 3184 DcomLaunch - ok
12:53:44.0390 3184 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
12:53:44.0390 3184 Dhcp - ok
12:53:44.0406 3184 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
12:53:44.0406 3184 Disk - ok
12:53:44.0421 3184 dmadmin - ok
12:53:44.0484 3184 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
12:53:44.0500 3184 dmboot - ok
12:53:44.0515 3184 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
12:53:44.0531 3184 dmio - ok
12:53:44.0546 3184 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
12:53:44.0546 3184 dmload - ok
12:53:44.0593 3184 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
12:53:44.0593 3184 dmserver - ok
12:53:44.0609 3184 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
12:53:44.0609 3184 DMusic - ok
12:53:44.0671 3184 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
12:53:44.0671 3184 Dnscache - ok
12:53:44.0718 3184 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
12:53:44.0734 3184 Dot3svc - ok
12:53:44.0750 3184 dpti2o - ok
12:53:44.0796 3184 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
12:53:44.0796 3184 drmkaud - ok
12:53:44.0843 3184 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
12:53:44.0843 3184 EapHost - ok
12:53:44.0875 3184 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
12:53:44.0875 3184 ERSvc - ok
12:53:44.0921 3184 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
12:53:44.0937 3184 Eventlog - ok
12:53:45.0000 3184 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
12:53:45.0000 3184 EventSystem - ok
12:53:45.0031 3184 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
12:53:45.0031 3184 Fastfat - ok
12:53:45.0093 3184 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
12:53:45.0093 3184 FastUserSwitchingCompatibility - ok
12:53:45.0125 3184 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
12:53:45.0125 3184 Fdc - ok
12:53:45.0140 3184 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
12:53:45.0140 3184 Fips - ok
12:53:45.0171 3184 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
12:53:45.0171 3184 Flpydisk - ok
12:53:45.0187 3184 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
12:53:45.0203 3184 FltMgr - ok
12:53:45.0296 3184 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:53:45.0296 3184 FontCache3.0.0.0 - ok
12:53:45.0312 3184 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:53:45.0312 3184 Fs_Rec - ok
12:53:45.0343 3184 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:53:45.0343 3184 Ftdisk - ok
12:53:45.0390 3184 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
12:53:45.0390 3184 GEARAspiWDM - ok
12:53:45.0406 3184 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:53:45.0406 3184 Gpc - ok
12:53:45.0531 3184 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
12:53:45.0531 3184 gupdate - ok
12:53:45.0531 3184 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
12:53:45.0546 3184 gupdatem - ok
12:53:45.0671 3184 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:53:45.0671 3184 helpsvc - ok
12:53:45.0734 3184 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
12:53:45.0734 3184 HidServ - ok
12:53:45.0734 3184 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:53:45.0750 3184 hidusb - ok
12:53:45.0796 3184 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
12:53:45.0796 3184 hkmsvc - ok
12:53:45.0812 3184 hpn - ok
12:53:45.0953 3184 [ B14328CFEEB6B736BE44C2C9DB3B162C ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
12:53:45.0968 3184 hpqcxs08 - ok
12:53:46.0015 3184 [ DF446BA625CC441617843E87798CE048 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
12:53:46.0015 3184 hpqddsvc - ok
12:53:46.0062 3184 [ 75F122CDCA3C71BD09089F2CA824B796 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
12:53:46.0062 3184 HPSLPSVC - ok
12:53:46.0109 3184 [ D03D10F7DED688FECF50F8FBF1EA9B8A ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
12:53:46.0109 3184 HPZid412 - ok
12:53:46.0125 3184 [ 89F41658929393487B6B7D13C8528CE3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
12:53:46.0125 3184 HPZipr12 - ok
12:53:46.0140 3184 [ ABCB05CCDBF03000354B9553820E39F8 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
12:53:46.0140 3184 HPZius12 - ok
12:53:46.0203 3184 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
12:53:46.0203 3184 HTTP - ok
12:53:46.0234 3184 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
12:53:46.0234 3184 HTTPFilter - ok
12:53:46.0250 3184 i2omgmt - ok
12:53:46.0265 3184 i2omp - ok
12:53:46.0296 3184 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\drivers\i8042prt.sys
12:53:46.0296 3184 i8042prt - ok
12:53:46.0406 3184 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:53:46.0421 3184 idsvc - ok
12:53:46.0453 3184 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
12:53:46.0453 3184 Imapi - ok
12:53:46.0531 3184 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
12:53:46.0531 3184 ImapiService - ok
12:53:46.0546 3184 ini910u - ok
12:53:46.0578 3184 IntelIde - ok
12:53:46.0656 3184 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:53:46.0656 3184 intelppm - ok
12:53:46.0703 3184 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
12:53:46.0703 3184 Ip6Fw - ok
12:53:46.0734 3184 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:53:46.0734 3184 IpFilterDriver - ok
12:53:46.0750 3184 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:53:46.0765 3184 IpInIp - ok
12:53:46.0812 3184 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:53:46.0812 3184 IpNat - ok
12:53:46.0890 3184 [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:53:46.0906 3184 iPod Service - ok
12:53:46.0921 3184 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:53:46.0921 3184 IPSec - ok
12:53:46.0937 3184 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
12:53:46.0937 3184 IRENUM - ok
12:53:46.0968 3184 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:53:46.0968 3184 isapnp - ok
12:53:47.0093 3184 [ 381B25DC8E958D905B33130D500BBF29 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
12:53:47.0093 3184 JavaQuickStarterService - ok
12:53:47.0187 3184 [ 9BA53BFBFF4AA25FA2290B539F4D075B ] jswpsapi C:\Program Files\D-Link\RangeBooster G WDA-2320\JSWUtil\jswpsapi.exe
12:53:47.0203 3184 jswpsapi - ok
12:53:47.0250 3184 [ 0C79476CEB3D497A7D0D6D828E9DE4C6 ] JSWSCIMD C:\WINDOWS\system32\DRIVERS\jswscimd.sys
12:53:47.0250 3184 JSWSCIMD - ok
12:53:47.0265 3184 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:53:47.0265 3184 Kbdclass - ok
12:53:47.0281 3184 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
12:53:47.0296 3184 kbdhid - ok
12:53:47.0312 3184 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
12:53:47.0312 3184 kmixer - ok
12:53:47.0343 3184 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
12:53:47.0343 3184 KSecDD - ok
12:53:47.0406 3184 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
12:53:47.0406 3184 lanmanserver - ok
12:53:47.0421 3184 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
12:53:47.0421 3184 lanmanworkstation - ok
12:53:47.0437 3184 lbrtfdc - ok
12:53:47.0515 3184 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
12:53:47.0515 3184 LmHosts - ok
12:53:47.0562 3184 [ 1A7DB7A00A4B0D8DA24CD691A4547291 ] LVPr2Mon C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
12:53:47.0562 3184 LVPr2Mon - ok
12:53:47.0656 3184 [ 0DDFDCAA92C7F553328DB06BA599BEA9 ] LVPrcSrv C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
12:53:47.0671 3184 LVPrcSrv - ok
12:53:47.0734 3184 [ 87ECCE893D8AEC5A9337B917742D339C ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
12:53:47.0734 3184 LVRS - ok
12:53:47.0765 3184 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
12:53:47.0765 3184 MBAMProtector - ok
12:53:47.0843 3184 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:53:47.0843 3184 MBAMScheduler - ok
12:53:47.0875 3184 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
12:53:47.0890 3184 MBAMService - ok
12:53:47.0937 3184 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\WINDOWS\system32\drivers\mbamswissarmy.sys
12:53:47.0937 3184 MBAMSwissArmy - ok
12:53:47.0968 3184 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
12:53:47.0968 3184 Messenger - ok
12:53:48.0015 3184 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
12:53:48.0015 3184 mnmdd - ok
12:53:48.0062 3184 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
12:53:48.0078 3184 mnmsrvc - ok
12:53:48.0093 3184 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
12:53:48.0093 3184 Modem - ok
12:53:48.0140 3184 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:53:48.0140 3184 Mouclass - ok
12:53:48.0140 3184 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:53:48.0156 3184 mouhid - ok
12:53:48.0171 3184 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
12:53:48.0171 3184 MountMgr - ok
12:53:48.0281 3184 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:53:48.0296 3184 MozillaMaintenance - ok
12:53:48.0312 3184 mraid35x - ok
12:53:48.0343 3184 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:53:48.0343 3184 MRxDAV - ok
12:53:48.0406 3184 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:53:48.0406 3184 MRxSmb - ok
12:53:48.0437 3184 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
12:53:48.0437 3184 MSDTC - ok
12:53:48.0468 3184 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
12:53:48.0468 3184 Msfs - ok
12:53:48.0484 3184 MSIServer - ok
12:53:48.0515 3184 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:53:48.0515 3184 MSKSSRV - ok
12:53:48.0515 3184 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:53:48.0531 3184 MSPCLOCK - ok
12:53:48.0546 3184 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
12:53:48.0546 3184 MSPQM - ok
12:53:48.0578 3184 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:53:48.0578 3184 mssmbios - ok
12:53:48.0593 3184 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
12:53:48.0593 3184 MSTEE - ok
12:53:48.0625 3184 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
12:53:48.0625 3184 Mup - ok
12:53:48.0640 3184 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
12:53:48.0640 3184 NABTSFEC - ok
12:53:48.0687 3184 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
12:53:48.0687 3184 napagent - ok
12:53:48.0703 3184 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
12:53:48.0718 3184 NDIS - ok
12:53:48.0750 3184 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
12:53:48.0750 3184 NdisIP - ok
12:53:48.0812 3184 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:53:48.0812 3184 NdisTapi - ok
12:53:48.0828 3184 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:53:48.0828 3184 Ndisuio - ok
12:53:48.0843 3184 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:53:48.0843 3184 NdisWan - ok
12:53:48.0906 3184 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
12:53:48.0906 3184 NDProxy - ok
12:53:48.0968 3184 [ 51C6D8BFBD4EA5B62A1BA7F4469250D3 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
12:53:48.0968 3184 Net Driver HPZ12 - ok
12:53:48.0984 3184 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
12:53:49.0000 3184 NetBIOS - ok
12:53:49.0015 3184 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
12:53:49.0015 3184 NetBT - ok
12:53:49.0078 3184 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
12:53:49.0078 3184 NetDDE - ok
12:53:49.0093 3184 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
12:53:49.0093 3184 NetDDEdsdm - ok
12:53:49.0140 3184 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
12:53:49.0140 3184 Netlogon - ok
12:53:49.0171 3184 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
12:53:49.0171 3184 Netman - ok
12:53:49.0218 3184 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:53:49.0218 3184 NetTcpPortSharing - ok
12:53:49.0265 3184 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
12:53:49.0281 3184 Nla - ok
12:53:49.0312 3184 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
12:53:49.0312 3184 Npfs - ok
12:53:49.0359 3184 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
12:53:49.0375 3184 Ntfs - ok
12:53:49.0375 3184 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
12:53:49.0390 3184 NtLmSsp - ok
12:53:49.0437 3184 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
12:53:49.0437 3184 NtmsSvc - ok
12:53:49.0468 3184 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
12:53:49.0468 3184 Null - ok
12:53:49.0500 3184 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:53:49.0515 3184 NwlnkFlt - ok
12:53:49.0515 3184 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:53:49.0531 3184 NwlnkFwd - ok
12:53:49.0609 3184 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:53:49.0609 3184 ose - ok
12:53:49.0671 3184 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
12:53:49.0671 3184 Parport - ok
12:53:49.0687 3184 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
12:53:49.0687 3184 PartMgr - ok
12:53:49.0765 3184 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
12:53:49.0765 3184 ParVdm - ok
12:53:49.0781 3184 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
12:53:49.0781 3184 PCI - ok
12:53:49.0796 3184 PCIDump - ok
12:53:49.0828 3184 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
12:53:49.0828 3184 PCIIde - ok
12:53:49.0859 3184 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
12:53:49.0859 3184 Pcmcia - ok
12:53:49.0921 3184 [ FD2A66E8B1A3D1483A8F6CFA3C950B9B ] PCPitstop Scheduling C:\Program Files\PCPitstop\PCPitstopScheduleService.exe
12:53:49.0921 3184 PCPitstop Scheduling - ok
12:53:49.0937 3184 PDCOMP - ok
12:53:49.0953 3184 PDFRAME - ok
12:53:49.0968 3184 PDRELI - ok
12:53:49.0984 3184 PDRFRAME - ok
12:53:50.0046 3184 [ B20F958B207E6AAAC5F70D04DD2C30D8 ] pepifilter C:\WINDOWS\system32\DRIVERS\lv302af.sys
12:53:50.0046 3184 pepifilter - ok
12:53:50.0062 3184 perc2 - ok
12:53:50.0093 3184 perc2hib - ok
12:53:50.0265 3184 [ DD184D9ADFE2A8A21741DBDFE9E22F5C ] PID_PEPI C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
12:53:50.0312 3184 PID_PEPI - ok
12:53:50.0343 3184 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
12:53:50.0343 3184 PlugPlay - ok
12:53:50.0359 3184 [ 79834AA2FBF9FE81EEBB229024F6F7FC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
12:53:50.0375 3184 Pml Driver HPZ12 - ok
12:53:50.0421 3184 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
12:53:50.0421 3184 PolicyAgent - ok
12:53:50.0484 3184 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:53:50.0484 3184 PptpMiniport - ok
12:53:50.0500 3184 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
12:53:50.0515 3184 ProtectedStorage - ok
12:53:50.0562 3184 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
12:53:50.0562 3184 PSched - ok
12:53:50.0625 3184 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:53:50.0625 3184 Ptilink - ok
12:53:50.0687 3184 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
12:53:50.0687 3184 PxHelp20 - ok
12:53:50.0687 3184 ql1080 - ok
12:53:50.0718 3184 Ql10wnt - ok
12:53:50.0734 3184 ql12160 - ok
12:53:50.0750 3184 ql1240 - ok
12:53:50.0765 3184 ql1280 - ok
12:53:50.0828 3184 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:53:50.0828 3184 RasAcd - ok
12:53:50.0890 3184 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
12:53:50.0890 3184 RasAuto - ok
12:53:50.0921 3184 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:53:50.0937 3184 Rasl2tp - ok
12:53:51.0000 3184 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
12:53:51.0000 3184 RasMan - ok
12:53:51.0015 3184 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:53:51.0015 3184 RasPppoe - ok
12:53:51.0031 3184 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
12:53:51.0031 3184 Raspti - ok
12:53:51.0062 3184 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:53:51.0062 3184 Rdbss - ok
12:53:51.0078 3184 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:53:51.0078 3184 RDPCDD - ok
12:53:51.0109 3184 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
12:53:51.0109 3184 rdpdr - ok
12:53:51.0171 3184 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
12:53:51.0187 3184 RDPWD - ok
12:53:51.0203 3184 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
12:53:51.0203 3184 RDSessMgr - ok
12:53:51.0218 3184 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
12:53:51.0234 3184 redbook - ok
12:53:51.0265 3184 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
12:53:51.0265 3184 RemoteAccess - ok
12:53:51.0296 3184 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
12:53:51.0312 3184 RemoteRegistry - ok
12:53:51.0328 3184 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
12:53:51.0328 3184 RpcLocator - ok
12:53:51.0375 3184 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
12:53:51.0375 3184 RpcSs - ok
12:53:51.0437 3184 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
12:53:51.0437 3184 RSVP - ok
12:53:51.0484 3184 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
12:53:51.0484 3184 SamSs - ok
12:53:51.0515 3184 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
12:53:51.0515 3184 SCardSvr - ok
12:53:51.0578 3184 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
12:53:51.0578 3184 Schedule - ok
12:53:51.0625 3184 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:53:51.0625 3184 Secdrv - ok
12:53:51.0656 3184 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
12:53:51.0656 3184 seclogon - ok
12:53:51.0687 3184 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
12:53:51.0687 3184 SENS - ok
12:53:51.0703 3184 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
12:53:51.0703 3184 serenum - ok
12:53:51.0734 3184 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
12:53:51.0734 3184 Serial - ok
12:53:51.0781 3184 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
12:53:51.0781 3184 Sfloppy - ok
12:53:51.0843 3184 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
12:53:51.0843 3184 SharedAccess - ok
12:53:51.0875 3184 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:53:51.0875 3184 ShellHWDetection - ok
12:53:51.0890 3184 Simbad - ok
12:53:51.0953 3184 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
12:53:51.0953 3184 SkypeUpdate - ok
12:53:52.0000 3184 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
12:53:52.0000 3184 SLIP - ok
12:53:52.0015 3184 Sparrow - ok
12:53:52.0062 3184 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
12:53:52.0062 3184 splitter - ok
12:53:52.0125 3184 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
12:53:52.0125 3184 Spooler - ok
12:53:52.0140 3184 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
12:53:52.0140 3184 sr - ok
12:53:52.0171 3184 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
12:53:52.0187 3184 srservice - ok
12:53:52.0250 3184 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
12:53:52.0250 3184 Srv - ok
12:53:52.0296 3184 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
12:53:52.0296 3184 SSDPSRV - ok
12:53:52.0328 3184 [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
12:53:52.0328 3184 StillCam - ok
12:53:52.0390 3184 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
12:53:52.0390 3184 stisvc - ok
12:53:52.0406 3184 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
12:53:52.0406 3184 streamip - ok
12:53:52.0437 3184 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
12:53:52.0437 3184 swenum - ok
12:53:52.0468 3184 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
12:53:52.0468 3184 swmidi - ok
12:53:52.0468 3184 SwPrv - ok
12:53:52.0500 3184 symc810 - ok
12:53:52.0515 3184 symc8xx - ok
12:53:52.0546 3184 sym_hi - ok
12:53:52.0562 3184 sym_u3 - ok
12:53:52.0625 3184 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
12:53:52.0625 3184 sysaudio - ok
12:53:52.0671 3184 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
12:53:52.0671 3184 SysmonLog - ok
12:53:52.0703 3184 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
12:53:52.0703 3184 TapiSrv - ok
12:53:52.0765 3184 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:53:52.0765 3184 Tcpip - ok
12:53:52.0796 3184 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
12:53:52.0812 3184 TDPIPE - ok
12:53:52.0828 3184 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
12:53:52.0843 3184 TDTCP - ok
12:53:52.0875 3184 [ 9101FFFCFCCD1A30E870A5B8A9091B10 ] teamviewervpn C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys
12:53:52.0875 3184 teamviewervpn - ok
12:53:52.0906 3184 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
12:53:52.0921 3184 TermDD - ok
12:53:52.0953 3184 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
12:53:52.0953 3184 TermService - ok
12:53:52.0984 3184 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
12:53:53.0000 3184 Themes - ok
12:53:53.0031 3184 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
12:53:53.0031 3184 TlntSvr - ok
12:53:53.0046 3184 TosIde - ok
12:53:53.0093 3184 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
12:53:53.0093 3184 TrkWks - ok
12:53:53.0140 3184 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
12:53:53.0140 3184 Udfs - ok
12:53:53.0156 3184 ultra - ok
12:53:53.0234 3184 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
12:53:53.0234 3184 Update - ok
12:53:53.0265 3184 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
12:53:53.0281 3184 upnphost - ok
12:53:53.0296 3184 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
12:53:53.0296 3184 UPS - ok
12:53:53.0343 3184 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
12:53:53.0343 3184 USBAAPL - ok
12:53:53.0390 3184 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
12:53:53.0406 3184 usbaudio - ok
12:53:53.0453 3184 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:53:53.0453 3184 usbccgp - ok
12:53:53.0484 3184 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:53:53.0484 3184 usbehci - ok
12:53:53.0531 3184 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:53:53.0546 3184 usbhub - ok
12:53:53.0671 3184 [ 284735A34FA673820A9AB6165D06104D ] USBPNPA C:\WINDOWS\system32\drivers\CM108.sys
12:53:53.0687 3184 USBPNPA - ok
12:53:53.0734 3184 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:53:53.0734 3184 usbprint - ok
12:53:53.0750 3184 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:53:53.0750 3184 usbscan - ok
12:53:53.0796 3184 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:53:53.0796 3184 USBSTOR - ok
12:53:53.0796 3184 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:53:53.0812 3184 usbuhci - ok
12:53:53.0828 3184 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
12:53:53.0843 3184 VgaSave - ok
12:53:53.0843 3184 ViaIde - ok
12:53:53.0875 3184 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
12:53:53.0875 3184 VolSnap - ok
12:53:53.0937 3184 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
12:53:53.0953 3184 VSS - ok
12:53:53.0984 3184 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
12:53:53.0984 3184 W32Time - ok
12:53:54.0000 3184 WajamUpdater - ok
12:53:54.0031 3184 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:53:54.0031 3184 Wanarp - ok
12:53:54.0046 3184 WDICA - ok
12:53:54.0062 3184 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
12:53:54.0062 3184 wdmaud - ok
12:53:54.0093 3184 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
12:53:54.0093 3184 WebClient - ok
12:53:54.0140 3184 [ 05FB36A51E04A6C6B3A5F125FA692E6B ] wimmount C:\WINDOWS\system32\DRIVERS\wimmount.sys
12:53:54.0140 3184 wimmount - ok
12:53:54.0250 3184 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
12:53:54.0250 3184 winmgmt - ok
12:53:54.0328 3184 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
12:53:54.0328 3184 WmdmPmSN - ok
12:53:54.0390 3184 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
12:53:54.0390 3184 Wmi - ok
12:53:54.0437 3184 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
12:53:54.0437 3184 WmiApSrv - ok
12:53:54.0562 3184 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
12:53:54.0578 3184 WMPNetworkSvc - ok
12:53:54.0640 3184 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
12:53:54.0640 3184 WS2IFSL - ok
12:53:54.0703 3184 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
12:53:54.0703 3184 wscsvc - ok
12:53:54.0750 3184 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
12:53:54.0750 3184 WSTCODEC - ok
12:53:54.0781 3184 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
12:53:54.0781 3184 wuauserv - ok
12:53:54.0843 3184 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
12:53:54.0843 3184 WudfPf - ok
12:53:54.0875 3184 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
12:53:54.0875 3184 WudfRd - ok
12:53:54.0906 3184 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
12:53:54.0906 3184 WudfSvc - ok
12:53:54.0968 3184 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
12:53:54.0984 3184 WZCSVC - ok
12:53:55.0015 3184 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
12:53:55.0015 3184 xmlprov - ok
12:53:55.0046 3184 ================ Scan global ===============================
12:53:55.0093 3184 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
12:53:55.0156 3184 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
12:53:55.0171 3184 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
12:53:55.0187 3184 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
12:53:55.0203 3184 [Global] - ok
12:53:55.0203 3184 ================ Scan MBR ==================================
12:53:55.0234 3184 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
12:53:55.0562 3184 \Device\Harddisk0\DR0 - ok
12:53:55.0562 3184 ================ Scan VBR ==================================
12:53:55.0578 3184 [ 9A24F5463670DBF0A2D1F378EF99484F ] \Device\Harddisk0\DR0\Partition1
12:53:55.0578 3184 \Device\Harddisk0\DR0\Partition1 - ok
12:53:55.0578 3184 ================ Scan active images ========================
12:53:55.0593 3184 [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
12:53:55.0593 3184 C:\WINDOWS\system32\drivers\intelppm.sys - ok
12:53:55.0609 3184 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
12:53:55.0609 3184 C:\WINDOWS\system32\drivers\usbport.sys - ok
12:53:55.0625 3184 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
12:53:55.0625 3184 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
12:53:55.0640 3184 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
12:53:55.0640 3184 C:\WINDOWS\system32\drivers\usbehci.sys - ok
12:53:55.0656 3184 [ 21AF8E9C727C6D7643AD497268F55BF1 ] C:\WINDOWS\system32\drivers\A3AB.sys
12:53:55.0656 3184 C:\WINDOWS\system32\drivers\A3AB.sys - ok
12:53:55.0671 3184 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
12:53:55.0671 3184 C:\WINDOWS\system32\drivers\fdc.sys - ok
12:53:55.0687 3184 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] C:\WINDOWS\system32\drivers\parport.sys
12:53:55.0687 3184 C:\WINDOWS\system32\drivers\parport.sys - ok
12:53:55.0703 3184 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
12:53:55.0703 3184 C:\WINDOWS\system32\drivers\serial.sys - ok
12:53:55.0718 3184 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] C:\WINDOWS\system32\drivers\serenum.sys
12:53:55.0718 3184 C:\WINDOWS\system32\drivers\serenum.sys - ok
12:53:55.0734 3184 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
12:53:55.0734 3184 C:\WINDOWS\system32\drivers\cdrom.sys - ok
12:53:55.0765 3184 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
12:53:55.0765 3184 C:\WINDOWS\system32\drivers\ks.sys - ok
12:53:55.0781 3184 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
12:53:55.0781 3184 C:\WINDOWS\system32\drivers\redbook.sys - ok
12:53:55.0796 3184 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
12:53:55.0796 3184 C:\WINDOWS\system32\drivers\audstub.sys - ok
12:53:55.0812 3184 [ 185ADA973B5020655CEE342059A86CBB ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
12:53:55.0812 3184 C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
12:53:55.0828 3184 [ 0C79476CEB3D497A7D0D6D828E9DE4C6 ] C:\WINDOWS\system32\drivers\jswscimd.sys
12:53:55.0828 3184 C:\WINDOWS\system32\drivers\jswscimd.sys - ok
12:53:55.0843 3184 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
12:53:55.0843 3184 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
12:53:55.0859 3184 [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
12:53:55.0859 3184 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
12:53:55.0859 3184 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
12:53:55.0859 3184 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
12:53:55.0890 3184 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
12:53:55.0890 3184 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
12:53:55.0906 3184 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
12:53:55.0906 3184 C:\WINDOWS\system32\drivers\tdi.sys - ok
12:53:55.0921 3184 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
12:53:55.0921 3184 C:\WINDOWS\system32\drivers\raspptp.sys - ok
12:53:55.0937 3184 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
12:53:55.0937 3184 C:\WINDOWS\system32\drivers\psched.sys - ok
12:53:55.0953 3184 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
12:53:55.0953 3184 C:\WINDOWS\system32\drivers\msgpc.sys - ok
12:53:55.0968 3184 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
12:53:55.0968 3184 C:\WINDOWS\system32\drivers\ptilink.sys - ok
12:53:55.0984 3184 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
12:53:55.0984 3184 C:\WINDOWS\system32\drivers\raspti.sys - ok
12:53:56.0000 3184 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
12:53:56.0000 3184 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
12:53:56.0015 3184 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
12:53:56.0015 3184 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
12:53:56.0031 3184 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
12:53:56.0031 3184 C:\WINDOWS\system32\drivers\termdd.sys - ok
12:53:56.0046 3184 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
12:53:56.0046 3184 C:\WINDOWS\system32\drivers\mouclass.sys - ok
12:53:56.0062 3184 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
12:53:56.0062 3184 C:\WINDOWS\system32\drivers\swenum.sys - ok
12:53:56.0078 3184 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
12:53:56.0078 3184 C:\WINDOWS\system32\drivers\update.sys - ok
12:53:56.0109 3184 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
12:53:56.0109 3184 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
12:53:56.0125 3184 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
12:53:56.0125 3184 C:\WINDOWS\system32\drivers\usbd.sys - ok
12:53:56.0125 3184 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
12:53:56.0125 3184 C:\WINDOWS\system32\drivers\usbhub.sys - ok
12:53:56.0140 3184 [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
12:53:56.0140 3184 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
12:53:56.0156 3184 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
12:53:56.0156 3184 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
12:53:56.0171 3184 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
12:53:56.0171 3184 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
12:53:56.0187 3184 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
12:53:56.0187 3184 C:\WINDOWS\system32\drivers\beep.sys - ok
12:53:56.0218 3184 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
12:53:56.0218 3184 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
12:53:56.0234 3184 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
12:53:56.0234 3184 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
12:53:56.0250 3184 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
12:53:56.0250 3184 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
12:53:56.0265 3184 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
12:53:56.0265 3184 C:\WINDOWS\system32\drivers\null.sys - ok
12:53:56.0281 3184 [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
12:53:56.0281 3184 C:\WINDOWS\system32\drivers\hidparse.sys - ok
12:53:56.0296 3184 [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
12:53:56.0296 3184 C:\WINDOWS\system32\drivers\kbdhid.sys - ok
12:53:56.0312 3184 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
12:53:56.0312 3184 C:\WINDOWS\system32\drivers\vga.sys - ok
12:53:56.0328 3184 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
12:53:56.0328 3184 C:\WINDOWS\system32\drivers\videoprt.sys - ok
12:53:56.0343 3184 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
12:53:56.0343 3184 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
12:53:56.0359 3184 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
12:53:56.0359 3184 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
12:53:56.0375 3184 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
12:53:56.0375 3184 C:\WINDOWS\system32\drivers\msfs.sys - ok
12:53:56.0390 3184 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
12:53:56.0390 3184 C:\WINDOWS\system32\drivers\ipsec.sys - ok
12:53:56.0406 3184 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
12:53:56.0406 3184 C:\WINDOWS\system32\drivers\npfs.sys - ok
12:53:56.0421 3184 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
12:53:56.0421 3184 C:\WINDOWS\system32\drivers\rasacd.sys - ok
12:53:56.0437 3184 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
12:53:56.0437 3184 C:\WINDOWS\system32\drivers\tcpip.sys - ok
12:53:56.0453 3184 [ BA73B38E9033FC6018DB736B635706AE ] C:\WINDOWS\system32\drivers\avgtdix.sys
12:53:56.0453 3184 C:\WINDOWS\system32\drivers\avgtdix.sys - ok
12:53:56.0468 3184 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
12:53:56.0468 3184 C:\WINDOWS\system32\drivers\ipnat.sys - ok
12:53:56.0484 3184 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
12:53:56.0484 3184 C:\WINDOWS\system32\drivers\afd.sys - ok
12:53:56.0500 3184 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
12:53:56.0500 3184 C:\WINDOWS\system32\drivers\netbt.sys - ok
12:53:56.0515 3184 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
12:53:56.0515 3184 C:\WINDOWS\system32\drivers\wanarp.sys - ok
12:53:56.0531 3184 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
12:53:56.0531 3184 C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
12:53:56.0546 3184 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
12:53:56.0546 3184 C:\WINDOWS\system32\drivers\netbios.sys - ok
12:53:56.0562 3184 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
12:53:56.0562 3184 C:\WINDOWS\system32\drivers\rdbss.sys - ok
12:53:56.0593 3184 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
12:53:56.0593 3184 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
12:53:56.0609 3184 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
12:53:56.0609 3184 C:\WINDOWS\system32\drivers\imapi.sys - ok
12:53:56.0625 3184 [ D53D35031365A0ECCB1DC1BC1B15B18E ] C:\WINDOWS\system32\drivers\avgldx86.sys
12:53:56.0625 3184 C:\WINDOWS\system32\drivers\avgldx86.sys - ok
12:53:56.0640 3184 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
12:53:56.0640 3184 C:\WINDOWS\system32\drivers\fips.sys - ok
12:53:56.0656 3184 [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
12:53:56.0656 3184 C:\WINDOWS\system32\drivers\usbccgp.sys - ok
12:53:56.0671 3184 [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
12:53:56.0671 3184 C:\WINDOWS\system32\drivers\hidclass.sys - ok
12:53:56.0687 3184 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
12:53:56.0687 3184 C:\WINDOWS\system32\drivers\hidusb.sys - ok
12:53:56.0703 3184 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
12:53:56.0703 3184 C:\WINDOWS\system32\drivers\drmk.sys - ok
12:53:56.0718 3184 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
12:53:56.0718 3184 C:\WINDOWS\system32\drivers\portcls.sys - ok
12:53:56.0734 3184 [ 284735A34FA673820A9AB6165D06104D ] C:\WINDOWS\system32\drivers\CM108.sys
12:53:56.0734 3184 C:\WINDOWS\system32\drivers\CM108.sys - ok
12:53:56.0750 3184 [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
12:53:56.0750 3184 C:\WINDOWS\system32\drivers\mouhid.sys - ok
12:53:56.0765 3184 [ 7BB2C605094DBCA536D127B434214862 ] C:\WINDOWS\system32\drivers\avgidsdriverx.sys
12:53:56.0765 3184 C:\WINDOWS\system32\drivers\avgidsdriverx.sys - ok
12:53:56.0781 3184 [ A8DE230CC8536790CA07D37FBCD87A74 ] C:\WINDOWS\system32\drivers\avgidsshimx.sys
12:53:56.0781 3184 C:\WINDOWS\system32\drivers\avgidsshimx.sys - ok
12:53:56.0812 3184 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
12:53:56.0812 3184 C:\WINDOWS\system32\smss.exe - ok
12:53:56.0828 3184 [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
12:53:56.0828 3184 C:\WINDOWS\system32\ntdll.dll - ok
12:53:56.0843 3184 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
12:53:56.0843 3184 C:\WINDOWS\system32\autochk.exe - ok
12:53:56.0859 3184 [ 544D486301588C8199187C9AB5778B4B ] C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
12:53:56.0859 3184 C:\PROGRA~1\AVG\AVG2013\avgrsx.exe - ok
12:53:56.0875 3184 [ 40D70FDA37369916B6078EC4DF4BE49F ] C:\Program Files\AVG\AVG2013\avgsysx.dll
12:53:56.0875 3184 C:\Program Files\AVG\AVG2013\avgsysx.dll - ok
12:53:56.0875 3184 [ 42836D10270B1940F9A2FF77AE679537 ] C:\Program Files\AVG\AVG2013\avgntopensslx.dll
12:53:56.0875 3184 C:\Program Files\AVG\AVG2013\avgntopensslx.dll - ok
12:53:56.0890 3184 [ 1C2E1FC9F8ED794CC191E92F27D1391C ] C:\Program Files\AVG\AVG2013\avglogx.dll
12:53:56.0890 3184 C:\Program Files\AVG\AVG2013\avglogx.dll - ok
12:53:56.0906 3184 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
12:53:56.0906 3184 C:\WINDOWS\system32\drivers\cdfs.sys - ok
12:53:56.0937 3184 [ 38D332A6D56AF32635675F132548343E ] C:\WINDOWS\system32\drivers\fastfat.sys
12:53:56.0937 3184 C:\WINDOWS\system32\drivers\fastfat.sys - ok
12:53:56.0953 3184 [ DD5A89274B47499CCFF7ADCA3A3C560E ] C:\WINDOWS\system32\ntoskrnl.exe
12:53:56.0953 3184 C:\WINDOWS\system32\ntoskrnl.exe - ok
12:53:56.0968 3184 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
12:53:56.0968 3184 C:\WINDOWS\system32\csrss.exe - ok
12:53:56.0984 3184 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
12:53:56.0984 3184 C:\WINDOWS\system32\kbdus.dll - ok
12:53:57.0000 3184 [ C3200506FB212A0F4FB736A80E646C40 ] C:\WINDOWS\system32\lz32.dll
12:53:57.0000 3184 C:\WINDOWS\system32\lz32.dll - ok
12:53:57.0015 3184 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
12:53:57.0015 3184 C:\WINDOWS\system32\msidle.dll - ok
12:53:57.0031 3184 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
12:53:57.0031 3184 C:\WINDOWS\system32\msimg32.dll - ok
12:53:57.0046 3184 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
12:53:57.0046 3184 C:\WINDOWS\system32\rasadhlp.dll - ok
12:53:57.0062 3184 [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
12:53:57.0062 3184 C:\WINDOWS\system32\sensapi.dll - ok
12:53:57.0078 3184 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
12:53:57.0078 3184 C:\WINDOWS\system32\sfc.dll - ok
12:53:57.0093 3184 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
12:53:57.0093 3184 C:\WINDOWS\system32\wmi.dll - ok
12:53:57.0109 3184 [ 401E7822BF609BA026DA016A7D6A1510 ] C:\Program Files\Java\jre6\bin\jp2native.dll
12:53:57.0109 3184 C:\Program Files\Java\jre6\bin\jp2native.dll - ok
12:53:57.0125 3184 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
12:53:57.0125 3184 C:\WINDOWS\system32\dot3dlg.dll - ok
12:53:57.0140 3184 [ C669A8B0A436641AAD3C2EADA780CBB9 ] C:\WINDOWS\system32\framebuf.dll
12:53:57.0140 3184 C:\WINDOWS\system32\framebuf.dll - ok
12:53:57.0156 3184 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
12:53:57.0156 3184 C:\WINDOWS\system32\vga.dll - ok
12:53:57.0171 3184 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
12:53:57.0171 3184 C:\WINDOWS\system32\wuauserv.dll - ok
12:53:57.0187 3184 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
12:53:57.0187 3184 C:\WINDOWS\system32\lmhsvc.dll - ok
12:53:57.0203 3184 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
12:53:57.0203 3184 C:\WINDOWS\system32\lsass.exe - ok
12:53:57.0218 3184 [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
12:53:57.0218 3184 C:\WINDOWS\system32\netrap.dll - ok
12:53:57.0234 3184 [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
12:53:57.0234 3184 C:\WINDOWS\system32\pjlmon.dll - ok
12:53:57.0250 3184 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
12:53:57.0250 3184 C:\WINDOWS\system32\svchost.exe - ok
12:53:57.0265 3184 [ 1E744353BD534405187A404667DA3DC3 ] C:\WINDOWS\system32\mgmtapi.dll
12:53:57.0265 3184 C:\WINDOWS\system32\mgmtapi.dll - ok
12:53:57.0296 3184 [ D8361BEAB7109AB8B069F7F5028E37B1 ] C:\WINDOWS\system32\olesvr32.dll
12:53:57.0296 3184 C:\WINDOWS\system32\olesvr32.dll - ok
12:53:57.0312 3184 [ 8357809E111E09393633039769D96281 ] C:\WINDOWS\system32\tcpmib.dll
12:53:57.0312 3184 C:\WINDOWS\system32\tcpmib.dll - ok
12:53:57.0328 3184 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
12:53:57.0328 3184 C:\WINDOWS\system32\version.dll - ok
12:53:57.0343 3184 [ D5A9D4E5DFD788A5F427DEC60A278FBD ] C:\WINDOWS\system32\vga64k.dll
12:53:57.0343 3184 C:\WINDOWS\system32\vga64k.dll - ok
12:53:57.0359 3184 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
12:53:57.0359 3184 C:\WINDOWS\system32\dimsntfy.dll - ok
12:53:57.0375 3184 [ 322FD75A97DBA67FC8F97A9957F857F1 ] C:\WINDOWS\system32\mdimon.dll
12:53:57.0375 3184 C:\WINDOWS\system32\mdimon.dll - ok
12:53:57.0390 3184 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
12:53:57.0390 3184 C:\WINDOWS\system32\nddeapi.dll - ok
12:53:57.0406 3184 [ 99F59B3392AD68F08BB528791F5D880D ] C:\WINDOWS\system32\oleaccrc.dll
12:53:57.0406 3184 C:\WINDOWS\system32\oleaccrc.dll - ok
12:53:57.0421 3184 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
12:53:57.0421 3184 C:\WINDOWS\system32\powrprof.dll - ok
12:53:57.0437 3184 [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
12:53:57.0437 3184 C:\WINDOWS\system32\seclogon.dll - ok
12:53:57.0453 3184 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
12:53:57.0453 3184 C:\WINDOWS\system32\winrnr.dll - ok
12:53:57.0468 3184 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
12:53:57.0468 3184 C:\WINDOWS\system32\ws2help.dll - ok
12:53:57.0484 3184 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
12:53:57.0484 3184 C:\WINDOWS\system32\wshtcpip.dll - ok
12:53:57.0500 3184 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
12:53:57.0500 3184 C:\WINDOWS\system32\wtsapi32.dll - ok
12:53:57.0515 3184 [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
12:53:57.0515 3184 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
12:53:57.0531 3184 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
12:53:57.0531 3184 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
12:53:57.0546 3184 [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
12:53:57.0546 3184 C:\WINDOWS\system32\cfgmgr32.dll - ok
12:53:57.0562 3184 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
12:53:57.0562 3184 C:\WINDOWS\system32\normaliz.dll - ok
12:53:57.0578 3184 [ 86440EDFF27095E03741AEDC5752AA51 ] C:\WINDOWS\system32\olecnv32.dll
12:53:57.0578 3184 C:\WINDOWS\system32\olecnv32.dll - ok
12:53:57.0609 3184 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
12:53:57.0609 3184 C:\WINDOWS\system32\psapi.dll - ok
12:53:57.0625 3184 [ 5C1F0537E61F87B435F56E00B4F20EE8 ] C:\WINDOWS\system32\snmpapi.dll
12:53:57.0625 3184 C:\WINDOWS\system32\snmpapi.dll - ok
12:53:57.0640 3184 [ EA8647A21BCB56C5F15712D4B7407501 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
12:53:57.0640 3184 C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll - ok
12:53:57.0656 3184 [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
12:53:57.0656 3184 C:\WINDOWS\system32\usbmon.dll - ok
12:53:57.0671 3184 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
12:53:57.0671 3184 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
12:53:57.0687 3184 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
12:53:57.0687 3184 C:\WINDOWS\system32\wsock32.dll - ok
12:53:57.0703 3184 [ 165D71AD88A5CF0600302782B4889449 ] C:\Program Files\Java\jre6\bin\hpi.dll
12:53:57.0703 3184 C:\Program Files\Java\jre6\bin\hpi.dll - ok
12:53:57.0718 3184 [ AC819C27921D88235C721677A9038DB9 ] C:\Program Files\Java\jre6\bin\nio.dll
12:53:57.0718 3184 C:\Program Files\Java\jre6\bin\nio.dll - ok
12:53:57.0734 3184 [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
12:53:57.0734 3184 C:\WINDOWS\system32\csrsrv.dll - ok
12:53:57.0750 3184 [ 57EDEC2E5F59F0335E92F35184BC8631 ] C:\WINDOWS\system32\dmserver.dll
12:53:57.0750 3184 C:\WINDOWS\system32\dmserver.dll - ok
12:53:57.0765 3184 [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
12:53:57.0765 3184 C:\WINDOWS\system32\ersvc.dll - ok
12:53:57.0781 3184 [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
12:53:57.0781 3184 C:\WINDOWS\system32\hid.dll - ok
12:53:57.0796 3184 [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
12:53:57.0796 3184 C:\WINDOWS\system32\hidserv.dll - ok
12:53:57.0812 3184 [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
12:53:57.0812 3184 C:\WINDOWS\system32\odbcbcp.dll - ok
12:53:57.0828 3184 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
12:53:57.0828 3184 C:\WINDOWS\system32\profmap.dll - ok
12:53:57.0859 3184 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
12:53:57.0859 3184 C:\WINDOWS\system32\dot3api.dll - ok
12:53:57.0875 3184 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
12:53:57.0875 3184 C:\WINDOWS\system32\eapolqec.dll - ok
12:53:57.0890 3184 [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
12:53:57.0890 3184 C:\WINDOWS\system32\mspatcha.dll - ok
12:53:57.0906 3184 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
12:53:57.0906 3184 C:\WINDOWS\system32\ncobjapi.dll - ok
12:53:57.0921 3184 [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
12:53:57.0921 3184 C:\WINDOWS\system32\perfdisk.dll - ok
12:53:57.0937 3184 [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
12:53:57.0937 3184 C:\WINDOWS\system32\perfos.dll - ok
12:53:57.0953 3184 [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
12:53:57.0953 3184 C:\WINDOWS\system32\winipsec.dll - ok
12:53:57.0968 3184 [ AB7E93506072ABCC232D2AE4E8773E3E ] C:\Program Files\Java\jre6\bin\verify.dll
12:53:57.0968 3184 C:\Program Files\Java\jre6\bin\verify.dll - ok
12:53:57.0984 3184 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
12:53:57.0984 3184 C:\WINDOWS\system32\mpr.dll - ok
12:53:58.0000 3184 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:53:58.0000 3184 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
12:53:58.0015 3184 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
12:53:58.0015 3184 C:\WINDOWS\AppPatch\acadproc.dll - ok
12:53:58.0031 3184 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
12:53:58.0031 3184 C:\WINDOWS\system32\cryptdll.dll - ok
12:53:58.0046 3184 [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
12:53:58.0062 3184 C:\WINDOWS\system32\pstorsvc.dll - ok
12:53:58.0078 3184 [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
12:53:58.0078 3184 C:\WINDOWS\system32\secur32.dll - ok
12:53:58.0093 3184 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
12:53:58.0093 3184 C:\WINDOWS\system32\wups.dll - ok
12:53:58.0109 3184 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
12:53:58.0109 3184 C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
12:53:58.0125 3184 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
12:53:58.0125 3184 C:\WINDOWS\system32\basesrv.dll - ok
12:53:58.0140 3184 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
12:53:58.0140 3184 C:\WINDOWS\system32\eappprxy.dll - ok
12:53:58.0156 3184 [ FA1B9CAE64B23C950DA3D96ABBF23BD0 ] C:\WINDOWS\system32\olecli32.dll
12:53:58.0156 3184 C:\WINDOWS\system32\olecli32.dll - ok
12:53:58.0171 3184 [ AE9543F20FCC1E7BCAA13051CC076147 ] C:\WINDOWS\system32\olethk32.dll
12:53:58.0171 3184 C:\WINDOWS\system32\olethk32.dll - ok
12:53:58.0187 3184 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
12:53:58.0187 3184 C:\WINDOWS\system32\regapi.dll - ok
12:53:58.0203 3184 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
12:53:58.0203 3184 C:\WINDOWS\system32\rtutils.dll - ok
12:53:58.0218 3184 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
12:53:58.0218 3184 C:\WINDOWS\system32\sens.dll - ok
12:53:58.0234 3184 [ 1FB5E4AD68B9091148D2A28CF6831D77 ] C:\WINDOWS\system32\vga256.dll
12:53:58.0234 3184 C:\WINDOWS\system32\vga256.dll - ok
12:53:58.0250 3184 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe
12:53:58.0250 3184 C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
12:53:58.0265 3184 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
12:53:58.0265 3184 C:\WINDOWS\system32\msprivs.dll - ok
12:53:58.0296 3184 [ 56C73C5BC1656656CAC38A23B4310466 ] C:\Program Files\AVG\AVG2013\avgidsagent.exe
12:53:58.0296 3184 C:\Program Files\AVG\AVG2013\avgidsagent.exe - ok
12:53:58.0312 3184 [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
12:53:58.0312 3184 C:\WINDOWS\system32\dnsrslvr.dll - ok
12:53:58.0328 3184 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
12:53:58.0328 3184 C:\WINDOWS\system32\audiosrv.dll - ok
12:53:58.0343 3184 [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
12:53:58.0343 3184 C:\WINDOWS\system32\msasn1.dll - ok
12:53:58.0359 3184 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files\Google\Update\1.3.21.123\goopdateres_en.dll
12:53:58.0359 3184 C:\Program Files\Google\Update\1.3.21.123\goopdateres_en.dll - ok
12:53:58.0375 3184 [ 572334E13E0D4C8A2986CCA2A736DCE5 ] C:\WINDOWS\system32\msxml3r.dll
12:53:58.0375 3184 C:\WINDOWS\system32\msxml3r.dll - ok
12:53:58.0390 3184 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
12:53:58.0390 3184 C:\WINDOWS\system32\authz.dll - ok
12:53:58.0406 3184 [ 51C6D8BFBD4EA5B62A1BA7F4469250D3 ] C:\WINDOWS\system32\HPZinw12.dll
12:53:58.0406 3184 C:\WINDOWS\system32\HPZinw12.dll - ok
12:53:58.0421 3184 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
12:53:58.0421 3184 C:\WINDOWS\system32\msvcrt40.dll - ok
12:53:58.0437 3184 [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
12:53:58.0437 3184 C:\WINDOWS\system32\wdigest.dll - ok
12:53:58.0453 3184 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
12:53:58.0453 3184 C:\WINDOWS\system32\winsta.dll - ok
12:53:58.0468 3184 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
12:53:58.0468 3184 C:\WINDOWS\system32\apphelp.dll - ok
12:53:58.0484 3184 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
12:53:58.0484 3184 C:\WINDOWS\system32\eventlog.dll - ok
12:53:58.0515 3184 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
12:53:58.0515 3184 C:\WINDOWS\system32\samlib.dll - ok
12:53:58.0531 3184 [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
12:53:58.0531 3184 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
12:53:58.0546 3184 [ 277F3E3333F1D10CA428568197FCCE70 ] C:\WINDOWS\system32\wsnmp32.dll
12:53:58.0546 3184 C:\WINDOWS\system32\wsnmp32.dll - ok
12:53:58.0562 3184 [ 566382CA5F2C41FEAEEEFAC908F1EB92 ] C:\WINDOWS\system32\xmlprovi.dll
12:53:58.0562 3184 C:\WINDOWS\system32\xmlprovi.dll - ok
12:53:58.0578 3184 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
12:53:58.0578 3184 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
12:53:58.0593 3184 [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
12:53:58.0593 3184 C:\WINDOWS\system32\cnbjmon.dll - ok
12:53:58.0609 3184 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
12:53:58.0609 3184 C:\WINDOWS\system32\ntdsapi.dll - ok
12:53:58.0625 3184 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
12:53:58.0625 3184 C:\WINDOWS\system32\shimeng.dll - ok
12:53:58.0640 3184 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
12:53:58.0640 3184 C:\WINDOWS\system32\ws2_32.dll - ok
12:53:58.0656 3184 [ 8624E0E2418413614EE1FECDB7B76B88 ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll
12:53:58.0656 3184 C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll - ok
12:53:58.0671 3184 [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
12:53:58.0671 3184 C:\WINDOWS\system32\tcpmon.dll - ok
12:53:58.0687 3184 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
12:53:58.0687 3184 C:\WINDOWS\system32\wups2.dll - ok
12:53:58.0703 3184 [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
12:53:58.0703 3184 C:\WINDOWS\system32\digest.dll - ok
12:53:58.0718 3184 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
12:53:58.0718 3184 C:\WINDOWS\system32\msacm32.dll - ok
12:53:58.0734 3184 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
12:53:58.0734 3184 C:\WINDOWS\system32\odbcint.dll - ok
12:53:58.0750 3184 [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
12:53:58.0750 3184 C:\WINDOWS\system32\wzcsapi.dll - ok
12:53:58.0765 3184 [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
12:53:58.0765 3184 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
12:53:58.0781 3184 [ ABC6254BD961CD29F5F3AE90B4BB96BA ] C:\Program Files\Java\jre6\bin\zip.dll
12:53:58.0781 3184 C:\Program Files\Java\jre6\bin\zip.dll - ok
12:53:58.0796 3184 [ 79834AA2FBF9FE81EEBB229024F6F7FC ] C:\WINDOWS\system32\HPZipm12.dll
12:53:58.0796 3184 C:\WINDOWS\system32\HPZipm12.dll - ok
12:53:58.0812 3184 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
12:53:58.0812 3184 C:\WINDOWS\system32\imm32.dll - ok
12:53:58.0828 3184 [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
12:53:58.0828 3184 C:\WINDOWS\system32\msapsspc.dll - ok
12:53:58.0843 3184 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:53:58.0843 3184 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
12:53:58.0875 3184 [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
12:53:58.0875 3184 C:\WINDOWS\system32\atl.dll - ok
12:53:58.0890 3184 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
12:53:58.0890 3184 C:\WINDOWS\system32\rasman.dll - ok
12:53:58.0890 3184 [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
12:53:58.0890 3184 C:\WINDOWS\system32\wuauclt.exe - ok
12:53:58.0906 3184 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
12:53:58.0906 3184 C:\WINDOWS\system32\cabinet.dll - ok
12:53:58.0921 3184 [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
12:53:58.0921 3184 C:\WINDOWS\system32\clusapi.dll - ok
12:53:58.0937 3184 [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
12:53:58.0937 3184 C:\WINDOWS\system32\colbact.dll - ok
12:53:58.0953 3184 [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
12:53:58.0968 3184 C:\WINDOWS\system32\imagehlp.dll - ok
12:53:58.0984 3184 [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
12:53:58.0984 3184 C:\WINDOWS\system32\spoolsv.exe - ok
12:53:59.0000 3184 [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
12:53:59.0000 3184 C:\WINDOWS\system32\cryptsvc.dll - ok
12:53:59.0015 3184 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
12:53:59.0015 3184 C:\WINDOWS\system32\iphlpapi.dll - ok
12:53:59.0031 3184 [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
12:53:59.0031 3184 C:\WINDOWS\system32\resutils.dll - ok
12:53:59.0046 3184 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
12:53:59.0046 3184 C:\WINDOWS\system32\services.exe - ok
12:53:59.0062 3184 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
12:53:59.0062 3184 C:\WINDOWS\system32\shgina.dll - ok
12:53:59.0078 3184 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
12:53:59.0078 3184 C:\WINDOWS\system32\winscard.dll - ok
12:53:59.0093 3184 [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
12:53:59.0093 3184 C:\WINDOWS\system32\webclnt.dll - ok
12:53:59.0109 3184 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
12:53:59.0109 3184 C:\WINDOWS\system32\wldap32.dll - ok
12:53:59.0125 3184 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
12:53:59.0125 3184 C:\WINDOWS\system32\comdlg32.dll - ok
12:53:59.0140 3184 [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
12:53:59.0140 3184 C:\WINDOWS\system32\mtxclu.dll - ok
12:53:59.0156 3184 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
12:53:59.0156 3184 C:\WINDOWS\system32\gdi32.dll - ok
12:53:59.0171 3184 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
12:53:59.0171 3184 C:\WINDOWS\system32\qutil.dll - ok
12:53:59.0187 3184 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\WINDOWS\system32\dnssd.dll
12:53:59.0187 3184 C:\WINDOWS\system32\dnssd.dll - ok
12:53:59.0203 3184 [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
12:53:59.0203 3184 C:\WINDOWS\system32\mscms.dll - ok
12:53:59.0218 3184 [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
12:53:59.0218 3184 C:\WINDOWS\system32\raschap.dll - ok
12:53:59.0234 3184 [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
12:53:59.0234 3184 C:\WINDOWS\system32\shsvcs.dll - ok
12:53:59.0250 3184 [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
12:53:59.0250 3184 C:\WINDOWS\system32\spoolss.dll - ok
12:53:59.0265 3184 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
12:53:59.0265 3184 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
12:53:59.0281 3184 [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
12:53:59.0281 3184 C:\WINDOWS\system32\inetpp.dll - ok
12:53:59.0296 3184 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
12:53:59.0296 3184 C:\WINDOWS\system32\mprapi.dll - ok
12:53:59.0328 3184 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
12:53:59.0328 3184 C:\WINDOWS\system32\ntmarta.dll - ok
12:53:59.0343 3184 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
12:53:59.0343 3184 C:\WINDOWS\system32\umpnpmgr.dll - ok
12:53:59.0359 3184 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
12:53:59.0359 3184 C:\WINDOWS\system32\wlnotify.dll - ok
12:53:59.0375 3184 [ A56CCBBFCCEDCE2FD9C69FED24E035E3 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
12:53:59.0375 3184 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
12:53:59.0390 3184 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
12:53:59.0390 3184 C:\WINDOWS\system32\cscdll.dll - ok
12:53:59.0406 3184 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
12:53:59.0406 3184 C:\WINDOWS\system32\sfc_os.dll - ok
12:53:59.0421 3184 [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
12:53:59.0421 3184 C:\WINDOWS\system32\trkwks.dll - ok
12:53:59.0437 3184 [ 045DF7AE14CAAED71338916D6FB66812 ] C:\WINDOWS\system32\wow32.dll
12:53:59.0437 3184 C:\WINDOWS\system32\wow32.dll - ok
12:53:59.0453 3184 [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
12:53:59.0453 3184 C:\WINDOWS\system32\wscsvc.dll - ok
12:53:59.0468 3184 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
12:53:59.0468 3184 C:\WINDOWS\system32\user32.dll - ok
12:53:59.0484 3184 [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
12:53:59.0484 3184 C:\WINDOWS\system32\psbase.dll - ok
12:53:59.0500 3184 [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
12:53:59.0500 3184 C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
12:53:59.0515 3184 [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
12:53:59.0515 3184 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
12:53:59.0546 3184 [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
12:53:59.0546 3184 C:\WINDOWS\system32\actxprxy.dll - ok
12:53:59.0562 3184 [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
12:53:59.0562 3184 C:\WINDOWS\system32\shlwapi.dll - ok
12:53:59.0578 3184 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
12:53:59.0578 3184 C:\Program Files\Bonjour\mdnsNSP.dll - ok
12:53:59.0593 3184 [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
12:53:59.0593 3184 C:\WINDOWS\system32\dnsapi.dll - ok
12:53:59.0609 3184 [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
12:53:59.0609 3184 C:\WINDOWS\system32\msv1_0.dll - ok
12:53:59.0625 3184 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
12:53:59.0625 3184 C:\WINDOWS\system32\msvcrt.dll - ok
12:53:59.0640 3184 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
12:53:59.0640 3184 C:\WINDOWS\system32\dhcpcsvc.dll - ok
12:53:59.0656 3184 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
12:53:59.0656 3184 C:\WINDOWS\system32\srvsvc.dll - ok
12:53:59.0671 3184 [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
12:53:59.0671 3184 C:\WINDOWS\system32\winmm.dll - ok
12:53:59.0687 3184 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
12:53:59.0687 3184 C:\WINDOWS\system32\eappcfg.dll - ok
12:53:59.0703 3184 [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
12:53:59.0703 3184 C:\WINDOWS\system32\rastls.dll - ok
12:53:59.0718 3184 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
12:53:59.0718 3184 C:\WINDOWS\system32\w32time.dll - ok
12:53:59.0734 3184 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
12:53:59.0734 3184 C:\WINDOWS\system32\win32spl.dll - ok
12:53:59.0750 3184 [ 681B807E53BDADA337735C28C0E48A1B ] C:\WINDOWS\system32\ntvdm.exe
12:53:59.0750 3184 C:\WINDOWS\system32\ntvdm.exe - ok
12:53:59.0765 3184 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
12:53:59.0765 3184 C:\WINDOWS\system32\adsldpc.dll - ok
12:53:59.0781 3184 [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
12:53:59.0781 3184 C:\WINDOWS\system32\comctl32.dll - ok
12:53:59.0796 3184 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
12:53:59.0796 3184 C:\WINDOWS\system32\uxtheme.dll - ok
12:53:59.0812 3184 [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
12:53:59.0812 3184 C:\WINDOWS\system32\ole32.dll - ok
12:53:59.0828 3184 [ 48AD60D7DB76F0C9E511DC9A3F5A5C04 ] C:\Program Files\Java\jre6\bin\deploy.dll
12:53:59.0828 3184 C:\Program Files\Java\jre6\bin\deploy.dll - ok
12:53:59.0843 3184 [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
12:53:59.0843 3184 C:\WINDOWS\system32\advapi32.dll - ok
12:53:59.0859 3184 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
12:53:59.0859 3184 C:\WINDOWS\system32\winsrv.dll - ok
12:53:59.0875 3184 [ 42D8FCD4E7C3A38AD65C3361AE82AEB8 ] C:\Program Files\Java\jre6\bin\net.dll
12:53:59.0875 3184 C:\Program Files\Java\jre6\bin\net.dll - ok
12:53:59.0906 3184 [ 6C14796D7D1A41345F0A24B55E485DB1 ] C:\WINDOWS\system32\hpz3l5mu.dll
12:53:59.0906 3184 C:\WINDOWS\system32\hpz3l5mu.dll - ok
12:53:59.0906 3184 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
12:53:59.0906 3184 C:\WINDOWS\system32\scecli.dll - ok
12:53:59.0921 3184 [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
12:53:59.0921 3184 C:\WINDOWS\system32\wkssvc.dll - ok
12:53:59.0937 3184 [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
12:53:59.0937 3184 C:\WINDOWS\system32\rpcrt4.dll - ok
12:53:59.0953 3184 [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
12:53:59.0953 3184 C:\WINDOWS\system32\msnsspc.dll - ok
12:53:59.0968 3184 [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
12:53:59.0968 3184 C:\WINDOWS\system32\odbc32.dll - ok
12:53:59.0984 3184 [ 0A088320F77453FA250A63ACC3BADE02 ] C:\WINDOWS\system32\url.dll
12:53:59.0984 3184 C:\WINDOWS\system32\url.dll - ok
12:54:00.0000 3184 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files\Google\Update\GoogleUpdate.exe
12:54:00.0000 3184 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
12:54:00.0031 3184 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
12:54:00.0031 3184 C:\WINDOWS\system32\credui.dll - ok
12:54:00.0046 3184 [ DF446BA625CC441617843E87798CE048 ] C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
12:54:00.0046 3184 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - ok
12:54:00.0062 3184 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
12:54:00.0062 3184 C:\WINDOWS\system32\rsaenh.dll - ok
12:54:00.0078 3184 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
12:54:00.0078 3184 C:\WINDOWS\system32\scesrv.dll - ok
12:54:00.0093 3184 [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
12:54:00.0093 3184 C:\WINDOWS\system32\schannel.dll - ok
12:54:00.0109 3184 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
12:54:00.0109 3184 C:\WINDOWS\system32\dssenh.dll - ok
12:54:00.0125 3184 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
12:54:00.0125 3184 C:\WINDOWS\system32\onex.dll - ok
12:54:00.0140 3184 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
12:54:00.0140 3184 C:\WINDOWS\system32\tapi32.dll - ok
12:54:00.0156 3184 [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
12:54:00.0156 3184 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
12:54:00.0171 3184 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
12:54:00.0171 3184 C:\WINDOWS\system32\activeds.dll - ok
12:54:00.0187 3184 [ DA45AD502B4F2B7FC4ADEBA2E309F384 ] C:\WINDOWS\system32\netevent.dll
12:54:00.0187 3184 C:\WINDOWS\system32\netevent.dll - ok
12:54:00.0203 3184 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
12:54:00.0203 3184 C:\WINDOWS\system32\schedsvc.dll - ok
12:54:00.0218 3184 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
12:54:00.0218 3184 C:\WINDOWS\system32\userenv.dll - ok
12:54:00.0234 3184 [ 381B25DC8E958D905B33130D500BBF29 ] C:\Program Files\Java\jre6\bin\jqs.exe
12:54:00.0234 3184 C:\Program Files\Java\jre6\bin\jqs.exe - ok
12:54:00.0250 3184 [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
12:54:00.0250 3184 C:\WINDOWS\system32\kerberos.dll - ok
12:54:00.0265 3184 [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
12:54:00.0265 3184 C:\WINDOWS\system32\netmsg.dll - ok
12:54:00.0281 3184 [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
12:54:00.0281 3184 C:\WINDOWS\system32\srsvc.dll - ok
12:54:00.0296 3184 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
12:54:00.0296 3184 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
12:54:00.0312 3184 [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\msctf.dll
12:54:00.0312 3184 C:\WINDOWS\system32\msctf.dll - ok
12:54:00.0328 3184 [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
12:54:00.0328 3184 C:\WINDOWS\system32\oleacc.dll - ok
12:54:00.0343 3184 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
12:54:00.0343 3184 C:\WINDOWS\system32\winlogon.exe - ok
12:54:00.0375 3184 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files\Skype\Updater\Updater.exe
12:54:00.0375 3184 C:\Program Files\Skype\Updater\Updater.exe - ok
12:54:00.0390 3184 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
12:54:00.0390 3184 C:\WINDOWS\system32\msvcp60.dll - ok
12:54:00.0406 3184 [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
12:54:00.0406 3184 C:\WINDOWS\system32\mswsock.dll - ok
12:54:00.0421 3184 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
12:54:00.0421 3184 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
12:54:00.0437 3184 [ C83C0791FC7FA3CBE9BE2825B8A47EAF ] C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
12:54:00.0437 3184 C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll - ok
12:54:00.0453 3184 [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
12:54:00.0453 3184 C:\WINDOWS\system32\ipsecsvc.dll - ok
12:54:00.0468 3184 [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
12:54:00.0468 3184 C:\WINDOWS\system32\certcli.dll - ok
12:54:00.0484 3184 [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
12:54:00.0484 3184 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
12:54:00.0500 3184 [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
12:54:00.0500 3184 C:\WINDOWS\system32\wintrust.dll - ok
12:54:00.0515 3184 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
12:54:00.0515 3184 C:\WINDOWS\system32\rasapi32.dll - ok
12:54:00.0531 3184 [ CC93EF6C7E4606037AA0DFC3030FB1AF ] C:\Program Files\Java\jre6\bin\java.dll
12:54:00.0531 3184 C:\Program Files\Java\jre6\bin\java.dll - ok
12:54:00.0546 3184 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
12:54:00.0546 3184 C:\WINDOWS\system32\netlogon.dll - ok
12:54:00.0562 3184 [ F036DB9CF05B3C21405403FF074A78D9 ] C:\Program Files\AVG\AVG2013\avgopensslx.dll
12:54:00.0562 3184 C:\Program Files\AVG\AVG2013\avgopensslx.dll - ok
12:54:00.0593 3184 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
12:54:00.0593 3184 C:\WINDOWS\system32\netman.dll - ok
12:54:00.0609 3184 [ 02CF580510234E519736559A7F19EA20 ] C:\WINDOWS\system32\WgaLogon.dll
12:54:00.0609 3184 C:\WINDOWS\system32\WgaLogon.dll - ok
12:54:00.0625 3184 [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
12:54:00.0625 3184 C:\WINDOWS\system32\rpcss.dll - ok
12:54:00.0640 3184 [ EE4309C3BEBB9CA54E5A84E412023E0F ] C:\Program Files\AVG\AVG2013\avgwdwsc.dll
12:54:00.0640 3184 C:\Program Files\AVG\AVG2013\avgwdwsc.dll - ok
12:54:00.0656 3184 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
12:54:00.0656 3184 C:\WINDOWS\system32\samsrv.dll - ok
12:54:00.0671 3184 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
12:54:00.0671 3184 C:\WINDOWS\system32\sfcfiles.dll - ok
12:54:00.0671 3184 [ C6E3798B2324BA6084CCA514BC2E17E0 ] C:\Program Files\Java\jre6\bin\dcpr.dll
12:54:00.0671 3184 C:\Program Files\Java\jre6\bin\dcpr.dll - ok
12:54:00.0703 3184 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
12:54:00.0703 3184 C:\WINDOWS\system32\hnetcfg.dll - ok
12:54:00.0718 3184 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
12:54:00.0718 3184 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
12:54:00.0734 3184 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
12:54:00.0734 3184 C:\WINDOWS\system32\duser.dll - ok
12:54:00.0750 3184 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
12:54:00.0750 3184 C:\WINDOWS\system32\sxs.dll - ok
12:54:00.0765 3184 [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
12:54:00.0765 3184 C:\WINDOWS\system32\localspl.dll - ok
12:54:00.0781 3184 [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
12:54:00.0781 3184 C:\WINDOWS\system32\netapi32.dll - ok
12:54:00.0812 3184 [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
12:54:00.0812 3184 C:\WINDOWS\system32\es.dll - ok
12:54:00.0828 3184 [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
12:54:00.0828 3184 C:\WINDOWS\system32\pdh.dll - ok
12:54:00.0843 3184 [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
12:54:00.0843 3184 C:\WINDOWS\system32\wbem\esscli.dll - ok
12:54:00.0859 3184 [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
12:54:00.0859 3184 C:\WINDOWS\system32\winhttp.dll - ok
12:54:00.0875 3184 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
12:54:00.0875 3184 C:\WINDOWS\system32\setupapi.dll - ok
12:54:00.0890 3184 [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
12:54:00.0890 3184 C:\WINDOWS\system32\lsasrv.dll - ok
12:54:00.0906 3184 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
12:54:00.0906 3184 C:\WINDOWS\system32\msgina.dll - ok
12:54:00.0921 3184 [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
12:54:00.0921 3184 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
12:54:00.0937 3184 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
12:54:00.0937 3184 C:\WINDOWS\system32\wzcsvc.dll - ok
12:54:00.0953 3184 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
12:54:00.0953 3184 C:\WINDOWS\AppPatch\acgenral.dll - ok
12:54:00.0968 3184 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
12:54:00.0968 3184 C:\WINDOWS\system32\riched20.dll - ok
12:54:01.0000 3184 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
12:54:01.0000 3184 C:\WINDOWS\system32\clbcatq.dll - ok
12:54:01.0015 3184 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\Java\jre6\bin\msvcr71.dll
12:54:01.0015 3184 C:\Program Files\Java\jre6\bin\msvcr71.dll - ok
12:54:01.0031 3184 [ 4044E880593FE1AC9942190FCE414BE7 ] C:\WINDOWS\system32\mstask.dll
12:54:01.0031 3184 C:\WINDOWS\system32\mstask.dll - ok
12:54:01.0046 3184 [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
12:54:01.0046 3184 C:\WINDOWS\system32\oakley.dll - ok
12:54:01.0062 3184 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
12:54:01.0062 3184 C:\WINDOWS\system32\cryptui.dll - ok
12:54:01.0078 3184 [ A55CD65BCE3A2BA6ACD94895F949262E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp5mu.dll
12:54:01.0078 3184 C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp5mu.dll - ok
12:54:01.0093 3184 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
12:54:01.0093 3184 C:\WINDOWS\system32\xpsp2res.dll - ok
12:54:01.0109 3184 [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
12:54:01.0109 3184 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
12:54:01.0125 3184 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
12:54:01.0125 3184 C:\WINDOWS\system32\esent.dll - ok
12:54:01.0140 3184 [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
12:54:01.0140 3184 C:\WINDOWS\system32\wbem\wbemess.dll - ok
12:54:01.0156 3184 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
12:54:01.0156 3184 C:\WINDOWS\system32\comres.dll - ok
12:54:01.0171 3184 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
12:54:01.0171 3184 C:\WINDOWS\system32\logonui.exe - ok
12:54:01.0187 3184 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
12:54:01.0187 3184 C:\WINDOWS\system32\mlang.dll - ok
12:54:01.0203 3184 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
12:54:01.0203 3184 C:\WINDOWS\system32\wiaservc.dll - ok
12:54:01.0218 3184 [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
12:54:01.0218 3184 C:\WINDOWS\system32\msxml3.dll - ok
12:54:01.0234 3184 [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
12:54:01.0234 3184 C:\WINDOWS\system32\ipnathlp.dll - ok
12:54:01.0265 3184 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
12:54:01.0265 3184 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
12:54:01.0281 3184 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
12:54:01.0281 3184 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
12:54:01.0296 3184 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
12:54:01.0296 3184 C:\WINDOWS\system32\netshell.dll - ok
12:54:01.0312 3184 [ 75F122CDCA3C71BD09089F2CA824B796 ] C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
12:54:01.0312 3184 C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL - ok
12:54:01.0328 3184 [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
12:54:01.0328 3184 C:\WINDOWS\system32\vssapi.dll - ok
12:54:01.0343 3184 [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
12:54:01.0343 3184 C:\WINDOWS\system32\wbem\fastprox.dll - ok
12:54:01.0359 3184 [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
12:54:01.0359 3184 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
12:54:01.0375 3184 [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
12:54:01.0375 3184 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
12:54:01.0390 3184 [ 9225A1067BC2858575B9787BB3ECC4FD ] C:\Program Files\Java\jre6\bin\javaw.exe
12:54:01.0390 3184 C:\Program Files\Java\jre6\bin\javaw.exe - ok
12:54:01.0406 3184 [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
12:54:01.0406 3184 C:\WINDOWS\system32\msi.dll - ok
12:54:01.0421 3184 [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
12:54:01.0421 3184 C:\WINDOWS\system32\comsvcs.dll - ok
12:54:01.0437 3184 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
12:54:01.0437 3184 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
12:54:01.0453 3184 [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
12:54:01.0453 3184 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
12:54:01.0468 3184 [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
12:54:01.0468 3184 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
12:54:01.0484 3184 [ 76FFA2433FEB42E78FB5421A50C8FBE3 ] C:\Program Files\AVG\AVG2013\avgclitx.dll
12:54:01.0484 3184 C:\Program Files\AVG\AVG2013\avgclitx.dll - ok
12:54:01.0500 3184 [ 18301B40411B2108076AB685B4E4B6DC ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
12:54:01.0500 3184 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
12:54:01.0515 3184 [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
12:54:01.0515 3184 C:\WINDOWS\system32\crypt32.dll - ok
12:54:01.0531 3184 [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
12:54:01.0531 3184 C:\WINDOWS\system32\atmfd.dll - ok
12:54:01.0546 3184 [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
12:54:01.0546 3184 C:\WINDOWS\system32\kernel32.dll - ok
12:54:01.0578 3184 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
12:54:01.0578 3184 C:\WINDOWS\system32\wuaueng.dll - ok
12:54:01.0593 3184 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
12:54:01.0593 3184 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
12:54:01.0609 3184 [ A6251155B7017D4B4A77A3531A8DA6D8 ] C:\Program Files\AVG\AVG2013\avgcommx.dll
12:54:01.0609 3184 C:\Program Files\AVG\AVG2013\avgcommx.dll - ok
12:54:01.0625 3184 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files\Google\Update\1.3.21.123\goopdate.dll
12:54:01.0625 3184 C:\Program Files\Google\Update\1.3.21.123\goopdate.dll - ok
12:54:01.0640 3184 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
12:54:01.0640 3184 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
12:54:01.0656 3184 [ F820B93E4ABCCABD698A175FD5FC83FE ] C:\Program Files\AVG\AVG2013\avgntsqlitex.dll
12:54:01.0656 3184 C:\Program Files\AVG\AVG2013\avgntsqlitex.dll - ok
12:54:01.0671 3184 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] C:\Program Files\AVG\AVG2013\avgwdsvc.exe
12:54:01.0671 3184 C:\Program Files\AVG\AVG2013\avgwdsvc.exe - ok
12:54:01.0687 3184 [ 1391D167A90FAB82EDF9BAB7A5197CA9 ] C:\Program Files\Java\jre6\bin\jpeg.dll
12:54:01.0687 3184 C:\Program Files\Java\jre6\bin\jpeg.dll - ok
12:54:01.0703 3184 [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
12:54:01.0703 3184 C:\WINDOWS\system32\shell32.dll - ok
12:54:01.0718 3184 [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
12:54:01.0718 3184 C:\WINDOWS\system32\oleaut32.dll - ok
12:54:01.0734 3184 [ 2C9091C3350E369BBB2464AABE2FD7CA ] C:\WINDOWS\system32\ntkrnlpa.exe
12:54:01.0734 3184 C:\WINDOWS\system32\ntkrnlpa.exe - ok
12:54:01.0750 3184 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
12:54:01.0750 3184 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
12:54:01.0765 3184 [ 30DA1E051CE4CD91067FB7C205268796 ] C:\Program Files\Java\jre6\bin\regutils.dll
12:54:01.0765 3184 C:\Program Files\Java\jre6\bin\regutils.dll - ok
12:54:01.0781 3184 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\WINDOWS\system32\msvcp100.dll
12:54:01.0781 3184 C:\WINDOWS\system32\msvcp100.dll - ok
12:54:01.0796 3184 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\WINDOWS\system32\msvcr100.dll
12:54:01.0796 3184 C:\WINDOWS\system32\msvcr100.dll - ok
12:54:01.0828 3184 [ F59BEDB7C098DAE90DC5C9EB5296621A ] C:\Program Files\AVG\AVG2013\avgcfgx.dll
12:54:01.0828 3184 C:\Program Files\AVG\AVG2013\avgcfgx.dll - ok
12:54:01.0843 3184 [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
12:54:01.0843 3184 C:\WINDOWS\system32\dbghelp.dll - ok
12:54:01.0859 3184 [ 8622AE563E2AC2F8BF9FAFEE726FC7B8 ] C:\Program Files\AVG\AVG2013\avgsched.dll
12:54:01.0859 3184 C:\Program Files\AVG\AVG2013\avgsched.dll - ok
12:54:01.0875 3184 [ 8BEA0348E53222D9D09FEDB6B074C554 ] C:\Program Files\AVG\AVG2013\avgxpl.dll
12:54:01.0875 3184 C:\Program Files\AVG\AVG2013\avgxpl.dll - ok
12:54:01.0890 3184 [ 39108FC94EE1FEA6ED043CC8FD3F1BC0 ] C:\Program Files\AVG\AVG2013\avgsecapix.dll
12:54:01.0890 3184 C:\Program Files\AVG\AVG2013\avgsecapix.dll - ok
12:54:01.0906 3184 [ A4932026499FFE9A493E3E9BBFDAA682 ] C:\Program Files\AVG\AVG2013\avgemcx.exe
12:54:01.0906 3184 C:\Program Files\AVG\AVG2013\avgemcx.exe - ok
12:54:01.0921 3184 [ 8F2AE8122F98E20549165F9D526E4430 ] C:\Program Files\AVG\AVG2013\avgwd.dll
12:54:01.0921 3184 C:\Program Files\AVG\AVG2013\avgwd.dll - ok
12:54:01.0937 3184 [ 1CA7C04957F8419E426E334B5FF2D0FA ] C:\Program Files\AVG\AVG2013\avgnsx.exe
12:54:01.0937 3184 C:\Program Files\AVG\AVG2013\avgnsx.exe - ok
12:54:01.0953 3184 [ FF9AFBD2864BBEA6A9E7F90F8C94F6B7 ] C:\Program Files\AVG\AVG2013\avgidpsdkx.dll
12:54:01.0953 3184 C:\Program Files\AVG\AVG2013\avgidpsdkx.dll - ok
12:54:01.0968 3184 [ 10D5823CD673836BC9961F3FE0D87B9F ] C:\Program Files\AVG\AVG2013\avgcorex.dll
12:54:01.0968 3184 C:\Program Files\AVG\AVG2013\avgcorex.dll - ok
12:54:01.0984 3184 [ EC8771B7E50FEF948A57A1C065AC944B ] C:\Program Files\AVG\AVG2013\avgkrnlapix.dll
12:54:01.0984 3184 C:\Program Files\AVG\AVG2013\avgkrnlapix.dll - ok
12:54:02.0000 3184 [ D175F91A4C98B8848818C9B5089F88A2 ] C:\WINDOWS\system32\wininet.dll
12:54:02.0000 3184 C:\WINDOWS\system32\wininet.dll - ok
12:54:02.0015 3184 [ 84A5C7B9B1B82F94A8245781FD44D8BA ] C:\WINDOWS\system32\urlmon.dll
12:54:02.0015 3184 C:\WINDOWS\system32\urlmon.dll - ok
12:54:02.0031 3184 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
12:54:02.0031 3184 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe - ok
12:54:02.0046 3184 [ 990987446144409E9BE6BBBA2C8D3F24 ] C:\Program Files\Java\jre6\bin\fontmanager.dll
12:54:02.0046 3184 C:\Program Files\Java\jre6\bin\fontmanager.dll - ok
12:54:02.0062 3184 [ 1072452CBC7108FEE14529069A150646 ] C:\Program Files\Java\jre6\bin\awt.dll
12:54:02.0062 3184 C:\Program Files\Java\jre6\bin\awt.dll - ok
12:54:02.0078 3184 [ 01DFD17D4911287193A2F9800BB92637 ] C:\Program Files\Java\jre6\bin\client\jvm.dll
12:54:02.0078 3184 C:\Program Files\Java\jre6\bin\client\jvm.dll - ok
12:54:02.0093 3184 [ 4BE1DCAD76BE96D1EC887A41E570C404 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll
12:54:02.0093 3184 C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll - ok
12:54:02.0109 3184 [ D1B3D1E05BEDC8F9B0BBBC03D6033F82 ] C:\WINDOWS\system32\iertutil.dll
12:54:02.0109 3184 C:\WINDOWS\system32\iertutil.dll - ok
12:54:02.0125 3184 [ D4467A285C91752018F67CDBA8680BAB ] C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll
12:54:02.0125 3184 C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll - ok
12:54:02.0140 3184 [ 53249B2147DDC8212B290ACF80570290 ] C:\WINDOWS\system32\ieframe.dll
12:54:02.0140 3184 C:\WINDOWS\system32\ieframe.dll - ok
12:54:02.0171 3184 [ 1F9D933A3B3760E789711DB305A6F6A3 ] C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll
12:54:02.0171 3184 C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll - ok
12:54:02.0187 3184 [ CCF775179F42797A3EE8BA5678543621 ] C:\PROGRA~1\AVG\AVG2013\avgcclix.dll
12:54:02.0187 3184 C:\PROGRA~1\AVG\AVG2013\avgcclix.dll - ok
12:54:02.0187 3184 [ 99997FA9056ACB38AA388BDA134CEF6E ] C:\Program Files\AVG\AVG2013\avgcsrvx.exe
12:54:02.0187 3184 C:\Program Files\AVG\AVG2013\avgcsrvx.exe - ok
12:54:02.0203 3184 [ 95EFDCB44DD093EDAD447F1D21C8A3F7 ] C:\Program Files\AVG\AVG2013\avgcertx.dll
12:54:02.0203 3184 C:\Program Files\AVG\AVG2013\avgcertx.dll - ok
12:54:02.0218 3184 [ 6F19639188F792BBB234B2A3FCB0C8C9 ] C:\Program Files\AVG\AVG2013\avgchclx.dll
12:54:02.0218 3184 C:\Program Files\AVG\AVG2013\avgchclx.dll - ok
12:54:02.0234 3184 [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
12:54:02.0234 3184 C:\WINDOWS\system32\drivers\wmilib.sys - ok
12:54:02.0250 3184 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
12:54:02.0250 3184 C:\WINDOWS\system32\drivers\atapi.sys - ok
12:54:02.0281 3184 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
12:54:02.0281 3184 C:\WINDOWS\system32\drivers\dxapi.sys - ok
12:54:02.0296 3184 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
12:54:02.0296 3184 C:\WINDOWS\system32\watchdog.sys - ok
12:54:02.0312 3184 [ BD39EC6064A1B5DFDABCF312A38A37EE ] C:\WINDOWS\system32\win32k.sys
12:54:02.0312 3184 C:\WINDOWS\system32\win32k.sys - ok
12:54:02.0328 3184 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
12:54:02.0328 3184 C:\WINDOWS\system32\drivers\dxg.sys - ok
12:54:02.0343 3184 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
12:54:02.0343 3184 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
12:54:02.0359 3184 [ 3F790874A85819E94574F3E7AF9C5806 ] C:\WINDOWS\system32\msctfime.ime
12:54:02.0359 3184 C:\WINDOWS\system32\msctfime.ime - ok
12:54:02.0375 3184 [ 629CABB0421668C9D3D402A3C3D77E14 ] C:\WINDOWS\system32\drivers\mbam.sys
12:54:02.0375 3184 C:\WINDOWS\system32\drivers\mbam.sys - ok
12:54:02.0390 3184 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
12:54:02.0390 3184 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
12:54:02.0406 3184 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
12:54:02.0406 3184 C:\WINDOWS\system32\winspool.drv - ok
12:54:02.0421 3184 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
12:54:02.0421 3184 C:\WINDOWS\system32\cscui.dll - ok
12:54:02.0437 3184 [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\system32\dpcdll.dll
12:54:02.0437 3184 C:\WINDOWS\system32\dpcdll.dll - ok
12:54:02.0453 3184 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
12:54:02.0453 3184 C:\WINDOWS\system32\wdmaud.drv - ok
12:54:02.0468 3184 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
12:54:02.0468 3184 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
12:54:02.0484 3184 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
12:54:02.0484 3184 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
12:54:02.0500 3184 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
12:54:02.0500 3184 C:\WINDOWS\system32\drivers\splitter.sys - ok
12:54:02.0515 3184 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
12:54:02.0515 3184 C:\WINDOWS\system32\drivers\aec.sys - ok
12:54:02.0531 3184 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
12:54:02.0531 3184 C:\WINDOWS\system32\drivers\swmidi.sys - ok
12:54:02.0546 3184 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
12:54:02.0546 3184 C:\WINDOWS\system32\drivers\dmusic.sys - ok
12:54:02.0562 3184 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
12:54:02.0562 3184 C:\WINDOWS\system32\drivers\kmixer.sys - ok
12:54:02.0578 3184 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
12:54:02.0578 3184 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
12:54:02.0609 3184 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
12:54:02.0609 3184 C:\WINDOWS\system32\userinit.exe - ok
12:54:02.0625 3184 [ C10C57F42042781B9CE4F0F492B1D5C2 ] C:\Program Files\Real\RealUpgrade\realupgrade.exe
12:54:02.0625 3184 C:\Program Files\Real\RealUpgrade\realupgrade.exe - ok
12:54:02.0640 3184 [ B1296D52B0D2096EC4759EEEB806D759 ] C:\WINDOWS\system32\WgaTray.exe
12:54:02.0640 3184 C:\WINDOWS\system32\WgaTray.exe - ok
12:54:02.0656 3184 [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
12:54:02.0656 3184 C:\WINDOWS\system32\msacm32.drv - ok
12:54:02.0671 3184 [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
12:54:02.0671 3184 C:\WINDOWS\system32\midimap.dll - ok
12:54:02.0687 3184 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
12:54:02.0687 3184 C:\WINDOWS\explorer.exe - ok
12:54:02.0687 3184 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
12:54:02.0687 3184 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll - ok
12:54:02.0703 3184 [ C4A230C8052A656198781572D81EA663 ] C:\Program Files\Real\RealUpgrade\Common\hxmedpltfm.dll
12:54:02.0703 3184 C:\Program Files\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
12:54:02.0734 3184 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
12:54:02.0734 3184 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll - ok
12:54:02.0750 3184 [ 2EC58F700BDCEA908E250A57F19E7E99 ] C:\WINDOWS\system32\browseui.dll
12:54:02.0750 3184 C:\WINDOWS\system32\browseui.dll - ok
12:54:02.0765 3184 [ 25A5E3E7E5544584EC04BF565954921D ] C:\Program Files\Real\RealUpgrade\Plugins\upgrade.dll
12:54:02.0765 3184 C:\Program Files\Real\RealUpgrade\Plugins\upgrade.dll - ok
12:54:02.0781 3184 [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
12:54:02.0781 3184 C:\WINDOWS\system32\cryptnet.dll - ok
12:54:02.0796 3184 [ CC26451A90025F6C55F64146C333DEA5 ] C:\WINDOWS\system32\LegitCheckControl.dll
12:54:02.0796 3184 C:\WINDOWS\system32\LegitCheckControl.dll - ok
12:54:02.0812 3184 [ B253EFB7D828007F4A17CA240E809A70 ] C:\WINDOWS\system32\shdocvw.dll
12:54:02.0812 3184 C:\WINDOWS\system32\shdocvw.dll - ok
12:54:02.0828 3184 [ 6D74290856347CF8682277A54B433D4B ] C:\Documents and Settings\Guest2\Application Data\Dropbox\bin\DropboxExt.14.dll
12:54:02.0828 3184 C:\Documents and Settings\Guest2\Application Data\Dropbox\bin\DropboxExt.14.dll - ok
12:54:02.0843 3184 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Documents and Settings\Guest2\Application Data\Dropbox\bin\msvcp71.dll
12:54:02.0843 3184 C:\Documents and Settings\Guest2\Application Data\Dropbox\bin\msvcp71.dll - ok
12:54:02.0859 3184 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Documents and Settings\Guest2\Application Data\Dropbox\bin\msvcr71.dll
12:54:02.0859 3184 C:\Documents and Settings\Guest2\Application Data\Dropbox\bin\msvcr71.dll - ok
12:54:02.0875 3184 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
12:54:02.0875 3184 C:\WINDOWS\system32\desk.cpl - ok
12:54:02.0890 3184 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
12:54:02.0890 3184 C:\WINDOWS\system32\themeui.dll - ok
12:54:02.0906 3184 [ 037B1E7798960E0420003D05BB577EE6 ] C:\WINDOWS\system32\rundll32.exe
12:54:02.0906 3184 C:\WINDOWS\system32\rundll32.exe - ok
12:54:02.0921 3184 [ 20518FD38B03E858DFCE386D02C27AEA ] C:\WINDOWS\system32\sti_ci.dll
12:54:02.0921 3184 C:\WINDOWS\system32\sti_ci.dll - ok
12:54:02.0937 3184 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
12:54:02.0937 3184 C:\WINDOWS\system32\cmd.exe - ok
12:54:02.0953 3184 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
12:54:02.0953 3184 C:\WINDOWS\system32\drivers\mrxdav.sys - ok
12:54:02.0968 3184 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] C:\WINDOWS\system32\drivers\parvdm.sys
12:54:02.0968 3184 C:\WINDOWS\system32\drivers\parvdm.sys - ok
12:54:02.0984 3184 [ 920298C7AEF97D8168D219D35975D295 ] C:\WINDOWS\system32\ANIO.sys
12:54:02.0984 3184 C:\WINDOWS\system32\ANIO.sys - ok
12:54:03.0000 3184 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
12:54:03.0000 3184 C:\WINDOWS\system32\drivers\srv.sys - ok
12:54:03.0015 3184 [ 7853D2AB445C10F97610B2B05FA4CF0A ] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
12:54:03.0015 3184 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe - ok
12:54:03.0031 3184 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
12:54:03.0031 3184 C:\WINDOWS\system32\wuapi.dll - ok
12:54:03.0046 3184 [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
12:54:03.0046 3184 C:\WINDOWS\system32\wbem\ncprov.dll - ok
12:54:03.0078 3184 [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
12:54:03.0078 3184 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
12:54:03.0093 3184 [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\Guest2\LOCALS~1\temp\0D0D07CF-B963-46F9-BF1A-2B83CF3D827D.exe
12:54:03.0093 3184 C:\DOCUME~1\Guest2\LOCALS~1\temp\0D0D07CF-B963-46F9-BF1A-2B83CF3D827D.exe - ok
12:54:03.0109 3184 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
12:54:03.0109 3184 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
12:54:03.0125 3184 [ 6AFD3970A41F48306874DB23991A4955 ] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
12:54:03.0125 3184 C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe - ok
12:54:03.0140 3184 [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
12:54:03.0140 3184 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
12:54:03.0156 3184 [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
12:54:03.0156 3184 C:\WINDOWS\system32\ntshrui.dll - ok
12:54:03.0171 3184 [ 48E6868781B4E8BF4B77DBEC7694BCE8 ] C:\Program Files\Real\RealPlayer\Update\realsched.exe
12:54:03.0171 3184 C:\Program Files\Real\RealPlayer\Update\realsched.exe - ok
12:54:03.0187 3184 [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files\QuickTime\QTTask.exe
12:54:03.0187 3184 C:\Program Files\QuickTime\QTTask.exe - ok
12:54:03.0203 3184 [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files\iTunes\iTunesHelper.exe
12:54:03.0203 3184 C:\Program Files\iTunes\iTunesHelper.exe - ok
12:54:03.0218 3184 [ 1D2B51E5291448DA123644A41250F6D6 ] C:\Program Files\AVG\AVG2013\avgui.exe
12:54:03.0218 3184 C:\Program Files\AVG\AVG2013\avgui.exe - ok
12:54:03.0234 3184 [ 1CA2943DC17355330BA5B3EFC6CA4537 ] C:\PROGRA~1\Yahoo!\MESSEN~1\YahooMessenger.exe
12:54:03.0234 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\YahooMessenger.exe - ok
12:54:03.0250 3184 [ 9EB925EDC8CF1C3D06E50E9348B54A0A ] C:\Documents and Settings\Guest2\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
12:54:03.0250 3184 C:\Documents and Settings\Guest2\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe - ok
12:54:03.0265 3184 [ 6274FF72C0B4A7FE6D94094C74580F93 ] C:\WINDOWS\system32\ANIWZCS2.dll
12:54:03.0265 3184 C:\WINDOWS\system32\ANIWZCS2.dll - ok
12:54:03.0281 3184 [ 6D9E1356A9C1B5F36698FAFF9205E34A ] C:\Program Files\Xvid\CheckUpdate.exe
12:54:03.0281 3184 C:\Program Files\Xvid\CheckUpdate.exe - ok
12:54:03.0296 3184 [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe
12:54:03.0296 3184 C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
12:54:03.0312 3184 [ F1B967838DBAD78327434D36A447E183 ] C:\WINDOWS\system32\ANIOApi.dll
12:54:03.0312 3184 C:\WINDOWS\system32\ANIOApi.dll - ok
12:54:03.0328 3184 [ 76848CB1AA5818DB47D5F5986E0A7485 ] C:\WINDOWS\system32\mfc42.dll
12:54:03.0328 3184 C:\WINDOWS\system32\mfc42.dll - ok
12:54:03.0343 3184 [ BB10B7B63E1B5DFF60BDA0071BD5FB4C ] C:\WINDOWS\system32\WlanApp.dll
12:54:03.0343 3184 C:\WINDOWS\system32\WlanApp.dll - ok
12:54:03.0359 3184 [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
12:54:03.0359 3184 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
12:54:03.0390 3184 [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files\iTunes\iTunesHelper.dll
12:54:03.0390 3184 C:\Program Files\iTunes\iTunesHelper.dll - ok
12:54:03.0406 3184 [ 3A297135731D63418C5300EA30AF1FB3 ] C:\WINDOWS\system32\wnicapi.dll
12:54:03.0406 3184 C:\WINDOWS\system32\wnicapi.dll - ok
12:54:03.0421 3184 [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
12:54:03.0421 3184 C:\WINDOWS\system32\webcheck.dll - ok
12:54:03.0437 3184 [ 49D3F53BEA86A4EFEFA53550E0DBFDB1 ] C:\Documents and Settings\Guest2\Local Settings\Application Data\Facebook\Update\1.2.205.0\goopdate.dll
12:54:03.0437 3184 C:\Documents and Settings\Guest2\Local Settings\Application Data\Facebook\Update\1.2.205.0\goopdate.dll - ok
12:54:03.0453 3184 [ F32077DF74EFD435A1DCDF415E189DF1 ] C:\WINDOWS\system32\mfc100u.dll
12:54:03.0453 3184 C:\WINDOWS\system32\mfc100u.dll - ok
12:54:03.0468 3184 [ EE5B38DD8B8EBBE8868B9EF00B815585 ] C:\Program Files\Real\RealPlayer\Update\setu3270.dll
12:54:03.0468 3184 C:\Program Files\Real\RealPlayer\Update\setu3270.dll - ok
12:54:03.0484 3184 [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
12:54:03.0484 3184 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
12:54:03.0500 3184 [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
12:54:03.0500 3184 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
12:54:03.0515 3184 [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
12:54:03.0515 3184 C:\WINDOWS\system32\stobject.dll - ok
12:54:03.0531 3184 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\39026665.sys
12:54:03.0531 3184 C:\WINDOWS\system32\drivers\39026665.sys - ok
12:54:03.0546 3184 [ B9B5C142C75E7E2A95E7E958CF6EAB3A ] C:\Program Files\Xvid\autoupdate-windows.exe
12:54:03.0546 3184 C:\Program Files\Xvid\autoupdate-windows.exe - ok
12:54:03.0562 3184 [ CF5905E75BDA423FF97A0BE4D4E1B499 ] C:\PROGRA~1\Yahoo!\MESSEN~1\YImage.dll
12:54:03.0562 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\YImage.dll - ok
12:54:03.0578 3184 [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
12:54:03.0578 3184 C:\WINDOWS\system32\batmeter.dll - ok
12:54:03.0593 3184 [ 045E228F71C31901084B64BE59093499 ] C:\WINDOWS\system32\WPDShServiceObj.dll
12:54:03.0593 3184 C:\WINDOWS\system32\WPDShServiceObj.dll - ok
12:54:03.0609 3184 [ 538A270F35A713C360B7ED4168BB7521 ] C:\WINDOWS\system32\mydocs.dll
12:54:03.0625 3184 C:\WINDOWS\system32\mydocs.dll - ok
12:54:03.0640 3184 [ 22358578CB321F3325496A3723029409 ] C:\WINDOWS\system32\PortableDeviceTypes.dll
12:54:03.0640 3184 C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
12:54:03.0656 3184 [ 01243FA89FBEC041E873DE8386138440 ] C:\Program Files\Real\RealPlayer\realplay.exe
12:54:03.0656 3184 C:\Program Files\Real\RealPlayer\realplay.exe - ok
12:54:03.0671 3184 [ A5D7FA7A6D985A53C266BD089401E790 ] C:\PROGRA~1\Yahoo!\MESSEN~1\ylog.dll
12:54:03.0671 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\ylog.dll - ok
12:54:03.0687 3184 [ 9D45B2201D0ECF9F42136C7B99DEB8B2 ] C:\WINDOWS\system32\PortableDeviceApi.dll
12:54:03.0687 3184 C:\WINDOWS\system32\PortableDeviceApi.dll - ok
12:54:03.0703 3184 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
12:54:03.0703 3184 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
12:54:03.0718 3184 [ 325F4688FAA06C83DF12CB642331F1D7 ] C:\PROGRA~1\Yahoo!\MESSEN~1\YCPFoundation.dll
12:54:03.0718 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\YCPFoundation.dll - ok
12:54:03.0734 3184 [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
12:54:03.0734 3184 C:\WINDOWS\system32\upnp.dll - ok
12:54:03.0750 3184 [ F908FE45F8FE9E0D4CBE65F9FF5DF6DA ] C:\WINDOWS\system32\mfc100enu.dll
12:54:03.0750 3184 C:\WINDOWS\system32\mfc100enu.dll - ok
12:54:03.0765 3184 [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
12:54:03.0765 3184 C:\WINDOWS\system32\ssdpapi.dll - ok
12:54:03.0781 3184 [ E58B59AF60AD879C7EE47C171259D1E0 ] C:\PROGRA~1\Yahoo!\MESSEN~1\nspr4.dll
12:54:03.0781 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\nspr4.dll - ok
12:54:03.0796 3184 [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
12:54:03.0796 3184 C:\WINDOWS\system32\netcfgx.dll - ok
12:54:03.0812 3184 [ 0E51B156D7D51D97D6BB730B5DBC8B61 ] C:\PROGRA~1\Yahoo!\MESSEN~1\yui.dll
12:54:03.0812 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\yui.dll - ok
12:54:03.0828 3184 [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
12:54:03.0828 3184 C:\WINDOWS\system32\linkinfo.dll - ok
12:54:03.0859 3184 [ 020D5F7ABD814935C1BBD55D97F11DB8 ] C:\Program Files\Real\RealPlayer\rpwa3260.dll
12:54:03.0859 3184 C:\Program Files\Real\RealPlayer\rpwa3260.dll - ok
12:54:03.0875 3184 [ 17C1359CA8829B6B478E553E22F023CC ] C:\PROGRA~1\Yahoo!\MESSEN~1\ymsglite.dll
12:54:03.0875 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\ymsglite.dll - ok
12:54:03.0890 3184 [ 9730643AB698D3B7F19D9192E4D3E4B0 ] C:\Program Files\AVG\AVG2013\avgidpmx.dll
12:54:03.0890 3184 C:\Program Files\AVG\AVG2013\avgidpmx.dll - ok
12:54:03.0906 3184 [ 262BE8A4C4ABC919A20B3B8DAC922490 ] C:\PROGRA~1\Yahoo!\MESSEN~1\YHTTP.dll
12:54:03.0906 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\YHTTP.dll - ok
12:54:03.0921 3184 [ DFDF919265139FF792D42DEC0899397E ] C:\Program Files\AVG\AVG2013\avgdiagex.exe
12:54:03.0921 3184 C:\Program Files\AVG\AVG2013\avgdiagex.exe - ok
12:54:03.0937 3184 [ 4879406E85F3EA889532476725EC530C ] C:\PROGRA~1\Yahoo!\MESSEN~1\RGX.dll
12:54:03.0937 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\RGX.dll - ok
12:54:03.0953 3184 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
12:54:03.0953 3184 C:\WINDOWS\system32\rasmans.dll - ok
12:54:03.0968 3184 [ FCFB6021D96D4D4BD0F40A59467835D8 ] C:\PROGRA~1\Yahoo!\MESSEN~1\YCPSSL.dll
12:54:03.0968 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\YCPSSL.dll - ok
12:54:03.0984 3184 [ 751EEDB874FD17A6F26B9E2CC5E19170 ] C:\Program Files\AVG\AVG2013\avglngx.dll
12:54:03.0984 3184 C:\Program Files\AVG\AVG2013\avglngx.dll - ok
12:54:04.0000 3184 [ EB74C861075ECFA1B51B396615387657 ] C:\Program Files\AVG\AVG2013\avguires.dll
12:54:04.0000 3184 C:\Program Files\AVG\AVG2013\avguires.dll - ok
12:54:04.0015 3184 [ E90BD22303817C6B5BC3398852957725 ] C:\PROGRA~1\Yahoo!\MESSEN~1\yalertcenterM.dll
12:54:04.0015 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\yalertcenterM.dll - ok
12:54:04.0031 3184 [ 09EFB6439C76E94059C5E22409926B48 ] C:\Documents and Settings\Guest2\Local Settings\temp\BR3.tmp
12:54:04.0031 3184 C:\Documents and Settings\Guest2\Local Settings\temp\BR3.tmp - ok
12:54:04.0046 3184 [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
12:54:04.0046 3184 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
12:54:04.0062 3184 [ 80FEED32426AC1D78918EA6A84D9B3B7 ] C:\PROGRA~1\Yahoo!\MESSEN~1\ymdm_audio.dll
12:54:04.0062 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\ymdm_audio.dll - ok
12:54:04.0078 3184 [ 94AFC154BEE8CF7010417E7E188F53C2 ] C:\PROGRA~1\Yahoo!\MESSEN~1\rmc_audio.dll
12:54:04.0078 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\rmc_audio.dll - ok
12:54:04.0093 3184 [ 08AD4CD2A940379F1DCDBDB9884A1375 ] C:\DOCUME~1\Guest2\LOCALS~1\temp\BR4.tmp
12:54:04.0093 3184 C:\DOCUME~1\Guest2\LOCALS~1\temp\BR4.tmp - ok
12:54:04.0109 3184 [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
12:54:04.0109 3184 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
12:54:04.0125 3184 [ E35514FC402F6268333529384CFD7B20 ] C:\DOCUME~1\Guest2\LOCALS~1\temp\BR5.tmp
12:54:04.0125 3184 C:\DOCUME~1\Guest2\LOCALS~1\temp\BR5.tmp - ok
12:54:04.0140 3184 [ 027491B39A7B16B116E780F55ABC288E ] C:\DOCUME~1\Guest2\LOCALS~1\temp\BR6.tmp
12:54:04.0140 3184 C:\DOCUME~1\Guest2\LOCALS~1\temp\BR6.tmp - ok
12:54:04.0156 3184 [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
12:54:04.0156 3184 C:\WINDOWS\system32\wbem\framedyn.dll - ok
12:54:04.0171 3184 [ 594F2C8739C805887CE1DD96B69BF60A ] C:\PROGRA~1\Yahoo!\MESSEN~1\ymdm_video.dll
12:54:04.0171 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\ymdm_video.dll - ok
12:54:04.0187 3184 [ A210F1AC135E5331C314CE5F394FB5A5 ] C:\DOCUME~1\Guest2\LOCALS~1\temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll
12:54:04.0187 3184 C:\DOCUME~1\Guest2\LOCALS~1\temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll - ok
12:54:04.0203 3184 [ AA19CDBD71959499B1A7988A87A7974B ] C:\PROGRA~1\Yahoo!\MESSEN~1\core_video.dll
12:54:04.0203 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\core_video.dll - ok
12:54:04.0218 3184 [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
12:54:04.0218 3184 C:\WINDOWS\system32\security.dll - ok
12:54:04.0234 3184 [ 72FAB2C90296330ECA3787DC4093E208 ] C:\DOCUME~1\Guest2\LOCALS~1\temp\BR7.tmp
12:54:04.0234 3184 C:\DOCUME~1\Guest2\LOCALS~1\temp\BR7.tmp - ok
12:54:04.0250 3184 [ A340CD71EB535A3DD751B5F28723E50C ] C:\WINDOWS\system32\ddraw.dll
12:54:04.0250 3184 C:\WINDOWS\system32\ddraw.dll - ok
12:54:04.0265 3184 [ 0607CBC6FA20114CB491EFE4B2F9EFAD ] C:\WINDOWS\system32\d3d9.dll
12:54:04.0265 3184 C:\WINDOWS\system32\d3d9.dll - ok
12:54:04.0281 3184 [ D8B91D94ECB123862B390FDE3250D3BB ] C:\WINDOWS\system32\dciman32.dll
12:54:04.0281 3184 C:\WINDOWS\system32\dciman32.dll - ok
12:54:04.0296 3184 [ 31B067C412FA1A9BAD3CA2A63D7DA440 ] C:\WINDOWS\system32\d3d8thk.dll
12:54:04.0296 3184 C:\WINDOWS\system32\d3d8thk.dll - ok
12:54:04.0328 3184 [ 8806D9932EA029FFBF5473C9EC7B05BC ] C:\PROGRA~1\Yahoo!\MESSEN~1\pcre.dll
12:54:04.0328 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\pcre.dll - ok
12:54:04.0343 3184 [ F7E915FA38C119101873AE5E0E7C8B66 ] C:\Program Files\AVG\AVG2013\avgapps.dll
12:54:04.0343 3184 C:\Program Files\AVG\AVG2013\avgapps.dll - ok
12:54:04.0359 3184 [ D1E18F4AE94FFEC7270BE0A10C0B295E ] C:\WINDOWS\system32\xmllite.dll
12:54:04.0359 3184 C:\WINDOWS\system32\xmllite.dll - ok
12:54:04.0375 3184 [ A2CB2C4AE876A9C4DEAC070C58DE05C2 ] C:\PROGRA~1\Yahoo!\MESSEN~1\ConnectionWizard.dll
12:54:04.0375 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\ConnectionWizard.dll - ok
12:54:04.0390 3184 [ 1793CC660605F63B14FB96C7707F75BA ] C:\WINDOWS\system32\perfproc.dll
12:54:04.0390 3184 C:\WINDOWS\system32\perfproc.dll - ok
12:54:04.0406 3184 [ D6EAE5CD8B8F78ED11E9E0DB1737C3DB ] C:\PROGRA~1\Yahoo!\MESSEN~1\resources\en-US\res_msgr.dll
12:54:04.0406 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\resources\en-US\res_msgr.dll - ok
12:54:04.0421 3184 [ 79FC43289B528CFB49A18D209C1E7E6D ] C:\PROGRA~1\Yahoo!\MESSEN~1\Ymsgr_tray.exe
12:54:04.0421 3184 C:\PROGRA~1\Yahoo!\MESSEN~1\Ymsgr_tray.exe - ok
12:54:04.0437 3184 [ B4EB1E7438DC099078CE8FE6E5A2C99D ] C:\DOCUME~1\Guest2\LOCALS~1\temp\BR8.tmp
12:54:04.0437 3184 C:\DOCUME~1\Guest2\LOCALS~1\temp\BR8.tmp - ok
12:54:04.0453 3184 [ B24BF80927D3D0A391CB8426F7CB290D ] C:\DOCUME~1\Guest2\LOCALS~1\temp\BR9.tmp
12:54:04.0453 3184 C:\DOCUME~1\Guest2\LOCALS~1\temp\BR9.tmp - ok
12:54:04.0468 3184 [ C88C65DF1ED4DFD34CFBD11CDFE519A3 ] C:\WINDOWS\system32\wucltui.dll
12:54:04.0468 3184 C:\WINDOWS\system32\wucltui.dll - ok
12:54:04.0484 3184 [ C31DD4CEC06D2908AE5F212A0B13805B ] C:\WINDOWS\system32\wuaucpl.cpl
12:54:04.0484 3184 C:\WINDOWS\system32\wuaucpl.cpl - ok
12:54:04.0500 3184 [ BBDFDBEAD1B7A1CFD44BFFFD177FB627 ] C:\WINDOWS\system32\mucltui.dll
12:54:04.0500 3184 C:\WINDOWS\system32\mucltui.dll - ok
12:54:04.0515 3184 [ F3370C98F4981EDA6036689D298E67B9 ] C:\WINDOWS\system32\browselc.dll
12:54:04.0515 3184 C:\WINDOWS\system32\browselc.dll - ok
12:54:04.0531 3184 [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
12:54:04.0531 3184 C:\WINDOWS\system32\termsrv.dll - ok
12:54:04.0562 3184 [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
12:54:04.0562 3184 C:\WINDOWS\system32\icaapi.dll - ok
12:54:04.0578 3184 [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
12:54:04.0578 3184 C:\WINDOWS\system32\mstlsapi.dll - ok
12:54:04.0593 3184 [ B14328CFEEB6B736BE44C2C9DB3B162C ] C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
12:54:04.0593 3184 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - ok
12:54:04.0609 3184 [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
12:54:04.0609 3184 C:\WINDOWS\system32\shfolder.dll - ok
12:54:04.0625 3184 [ 6895427873D6C37A6D6DA7C3DB37DA14 ] C:\WINDOWS\system32\licwmi.dll
12:54:04.0625 3184 C:\WINDOWS\system32\licwmi.dll - ok
12:54:04.0640 3184 [ A693A49A67673F2C8D76797EA9A628D0 ] C:\WINDOWS\system32\licdll.dll
12:54:04.0640 3184 C:\WINDOWS\system32\licdll.dll - ok
12:54:04.0656 3184 [ 9EFBB3055B3EECE5B0FC7BAED07A6EE9 ] C:\WINDOWS\system32\msxml6.dll
12:54:04.0656 3184 C:\WINDOWS\system32\msxml6.dll - ok
12:54:04.0671 3184 [ F92E1076C42FCD6DB3D72D8CFE9816D5 ] C:\WINDOWS\system32\wscntfy.exe
12:54:04.0671 3184 C:\WINDOWS\system32\wscntfy.exe - ok
12:54:04.0687 3184 [ 574738F61FCA2935F5265DC4E5691314 ] C:\WINDOWS\system32\qmgr.dll
12:54:04.0687 3184 C:\WINDOWS\system32\qmgr.dll - ok
12:54:04.0703 3184 [ 7425C32BA15AFD9ECE75029B00843F64 ] C:\Program Files\Google\Update\1.3.21.123\psmachine.dll
12:54:04.0703 3184 C:\Program Files\Google\Update\1.3.21.123\psmachine.dll - ok
12:54:04.0718 3184 [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
12:54:04.0718 3184 C:\WINDOWS\system32\drivers\http.sys - ok
12:54:04.0734 3184 [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
12:54:04.0734 3184 C:\WINDOWS\system32\ssdpsrv.dll - ok
12:54:04.0750 3184 [ F1DAC7969C1337AF790BD1D981AA780C ] C:\WINDOWS\system32\qmgrprxy.dll
12:54:04.0750 3184 C:\WINDOWS\system32\qmgrprxy.dll - ok
12:54:04.0765 3184 [ E8A39D41474BE42FD8830CED32932D6C ] C:\Program Files\iPod\bin\iPodService.exe
12:54:04.0765 3184 C:\Program Files\iPod\bin\iPodService.exe - ok
12:54:04.0781 3184 [ 7DF0DECD3006B8BA450AEC714086FF3C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
12:54:04.0781 3184 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
12:54:04.0796 3184 [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
12:54:04.0796 3184 C:\WINDOWS\system32\rasdlg.dll - ok
12:54:04.0812 3184 [ 280013E1CA1A648A6B896D884CC46601 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
12:54:04.0812 3184 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
12:54:04.0828 3184 [ 2DE1190196EE9555DB548A57622022EB ] C:\WINDOWS\system32\drprov.dll
12:54:04.0828 3184 C:\WINDOWS\system32\drprov.dll - ok
12:54:04.0843 3184 [ 36468087E22C57A83DF758B3F90DF73F ] C:\WINDOWS\system32\ntlanman.dll
12:54:04.0843 3184 C:\WINDOWS\system32\ntlanman.dll - ok
12:54:04.0859 3184 [ AC5DF42FE314C1446B1DAD237BFCFFE0 ] C:\WINDOWS\system32\netui0.dll
12:54:04.0859 3184 C:\WINDOWS\system32\netui0.dll - ok
12:54:04.0875 3184 [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
12:54:04.0875 3184 C:\WINDOWS\system32\alg.exe - ok
12:54:04.0890 3184 [ ED5A816D8E11E03F1937AC3C56826EE4 ] C:\WINDOWS\system32\netui1.dll
12:54:04.0890 3184 C:\WINDOWS\system32\netui1.dll - ok
12:54:04.0921 3184 [ FB8F8EEC8D9C2157789472DD61CDC78B ] C:\WINDOWS\system32\davclnt.dll
12:54:04.0921 3184 C:\WINDOWS\system32\davclnt.dll - ok
12:54:04.0937 3184 [ 79B0A04E2DF042045A25706B4BAD2116 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
12:54:04.0937 3184 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll - ok
12:54:04.0953 3184 [ 88BEEF09C654252F3E46B6167B7F4ECB ] C:\WINDOWS\system32\msisip.dll
12:54:04.0953 3184 C:\WINDOWS\system32\msisip.dll - ok
12:54:04.0968 3184 [ 3A6D465F379E5C815F4AD565391E654C ] C:\WINDOWS\system32\wshext.dll
12:54:04.0968 3184 C:\WINDOWS\system32\wshext.dll - ok
12:54:04.0968 3184 [ F3AD8EA144F411A6292775FA2B230DE5 ] C:\WINDOWS\system32\windowspowershell\v1.0\pwrshsip.dll
12:54:04.0968 3184 C:\WINDOWS\system32\windowspowershell\v1.0\pwrshsip.dll - ok
12:54:04.0984 3184 [ 40FA2F035ED88108850757CA51DAD942 ] C:\PROGRA~1\MI1933~1\OFFICE11\MCPS.DLL
12:54:04.0984 3184 C:\PROGRA~1\MI1933~1\OFFICE11\MCPS.DLL - ok
12:54:05.0000 3184 [ E9AF8B12CFFC04C0F4399ED8E4D3826E ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
12:54:05.0000 3184 C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
12:54:05.0015 3184 [ 58ED0528F2B1BFB3301BC10E0E707C35 ] C:\Program Files\Mozilla Firefox\firefox.exe
12:54:05.0015 3184 C:\Program Files\Mozilla Firefox\firefox.exe - ok
12:54:05.0046 3184 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Mozilla Firefox\msvcr100.dll
12:54:05.0046 3184 C:\Program Files\Mozilla Firefox\msvcr100.dll - ok
12:54:05.0062 3184 [ 262D86B6E19F7A4766402981B07D9F61 ] C:\Program Files\Mozilla Firefox\mozglue.dll
12:54:05.0062 3184 C:\Program Files\Mozilla Firefox\mozglue.dll - ok
12:54:05.0078 3184 [ 5294E28996A54959E53FDF1956CF8888 ] C:\Program Files\Mozilla Firefox\nspr4.dll
12:54:05.0078 3184 C:\Program Files\Mozilla Firefox\nspr4.dll - ok
12:54:05.0093 3184 [ 577A365E730736D3DC2FB870156D1BB8 ] C:\Program Files\Mozilla Firefox\mozjs.dll
12:54:05.0093 3184 C:\Program Files\Mozilla Firefox\mozjs.dll - ok
12:54:05.0109 3184 [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files\Mozilla Firefox\msvcp100.dll
12:54:05.0109 3184 C:\Program Files\Mozilla Firefox\msvcp100.dll - ok
12:54:05.0125 3184 [ 06798CDC2698C0798089B44124C77253 ] C:\Program Files\Mozilla Firefox\nss3.dll
12:54:05.0125 3184 C:\Program Files\Mozilla Firefox\nss3.dll - ok
12:54:05.0140 3184 [ 810D3D884387DAE0E1C1A5010C12508A ] C:\Program Files\Mozilla Firefox\nssutil3.dll
12:54:05.0140 3184 C:\Program Files\Mozilla Firefox\nssutil3.dll - ok
12:54:05.0156 3184 [ FCDB95CAD0F44BA045CB6E7620F2E3D4 ] C:\Program Files\Mozilla Firefox\plc4.dll
12:54:05.0156 3184 C:\Program Files\Mozilla Firefox\plc4.dll - ok
12:54:05.0171 3184 [ CC6B544120760F0AE1146927447AF319 ] C:\Program Files\Mozilla Firefox\plds4.dll
12:54:05.0171 3184 C:\Program Files\Mozilla Firefox\plds4.dll - ok
12:54:05.0187 3184 [ 165BEB6D3C856AD618E6E95B4D69217A ] C:\Program Files\Mozilla Firefox\smime3.dll
12:54:05.0187 3184 C:\Program Files\Mozilla Firefox\smime3.dll - ok
12:54:05.0203 3184 [ 574299294DB5E98F963BBA61E0112C58 ] C:\Program Files\Mozilla Firefox\mozsqlite3.dll
12:54:05.0203 3184 C:\Program Files\Mozilla Firefox\mozsqlite3.dll - ok
12:54:05.0218 3184 [ F7868F18670E0D7D7D161C5F093F19CB ] C:\Program Files\Mozilla Firefox\ssl3.dll
12:54:05.0218 3184 C:\Program Files\Mozilla Firefox\ssl3.dll - ok
12:54:05.0234 3184 [ 12439FD1B08CE5EAD888A7467086CFF6 ] C:\Program Files\Mozilla Firefox\gkmedias.dll
12:54:05.0234 3184 C:\Program Files\Mozilla Firefox\gkmedias.dll - ok
12:54:05.0250 3184 [ F6886DA015E93A5B42304BA3A5FD8E23 ] C:\Program Files\Mozilla Firefox\mozalloc.dll
12:54:05.0250 3184 C:\Program Files\Mozilla Firefox\mozalloc.dll - ok
12:54:05.0265 3184 [ 9E03DC5AB51CFD0190541CE2038D819D ] C:\WINDOWS\system32\usp10.dll
12:54:05.0265 3184 C:\WINDOWS\system32\usp10.dll - ok
12:54:05.0281 3184 [ 2D74DA2F9DCFA013158BAA5D5B17C5B3 ] C:\Program Files\Mozilla Firefox\xul.dll
12:54:05.0281 3184 C:\Program Files\Mozilla Firefox\xul.dll - ok
12:54:05.0296 3184 [ D25C03D04159D462D69F294BA7142BDB ] C:\WINDOWS\system32\msdmo.dll
12:54:05.0296 3184 C:\WINDOWS\system32\msdmo.dll - ok
12:54:05.0328 3184 [ 0098E4B99614900C33F795A81635EAE1 ] C:\Program Files\Mozilla Firefox\xpcom.dll
12:54:05.0328 3184 C:\Program Files\Mozilla Firefox\xpcom.dll - ok
12:54:05.0343 3184 [ E34CA3DE924143F693A5E22B87C5CC4F ] C:\Program Files\Mozilla Firefox\components\browsercomps.dll
12:54:05.0343 3184 C:\Program Files\Mozilla Firefox\components\browsercomps.dll - ok
12:54:05.0359 3184 [ D0049860B63DD87A73A5D165C829C65F ] C:\WINDOWS\system32\t2embed.dll
12:54:05.0359 3184 C:\WINDOWS\system32\t2embed.dll - ok
12:54:05.0375 3184 [ 303A63F4B913AA5D8998161CB77A8CE7 ] C:\WINDOWS\system32\feclient.dll
12:54:05.0375 3184 C:\WINDOWS\system32\feclient.dll - ok
12:54:05.0390 3184 [ 4C99AED2AABDEDD7B0C99B62A7E24B3D ] C:\Program Files\Mozilla Firefox\softokn3.dll
12:54:05.0390 3184 C:\Program Files\Mozilla Firefox\softokn3.dll - ok
12:54:05.0406 3184 [ D31E86BA9D9D3C5608CC916D0C38410D ] C:\Program Files\Mozilla Firefox\nssdbm3.dll
12:54:05.0406 3184 C:\Program Files\Mozilla Firefox\nssdbm3.dll - ok
12:54:05.0421 3184 [ B06643DB1CFFF911F80F03A80FDD6203 ] C:\Program Files\Mozilla Firefox\freebl3.dll
12:54:05.0421 3184 C:\Program Files\Mozilla Firefox\freebl3.dll - ok
12:54:05.0437 3184 [ 585F0850AEACE07B6D095CA9CBF02226 ] C:\Program Files\Mozilla Firefox\nssckbi.dll
12:54:05.0437 3184 C:\Program Files\Mozilla Firefox\nssckbi.dll - ok
12:54:05.0453 3184 ============================================================
12:54:05.0453 3184 Scan finished
12:54:05.0453 3184 ============================================================
12:54:05.0484 2248 Detected object count: 0
12:54:05.0484 2248 Actual detected object count: 0
12:54:16.0453 2620 Deinitialize success


==================================================================================



AUTORUNS.TXT:

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "ANIWZCS2Service" "ANIWZCS2 launcher for Windows." "Wireless Service" "c:\program files\ani\aniwzcs2 service\wzcsldr2.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe"
+ "AVG_UI" "AVG User Interface" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgui.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe"
+ "TkBellExe" "RealNetworks Scheduler" "RealNetworks, Inc." "c:\program files\real\realplayer\update\realsched.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Address Book 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe"
+ "Microsoft Outlook Express 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Facebook Update" "Facebook Installer" "Facebook Inc." "c:\documents and settings\guest2\local settings\application data\facebook\update\facebookupdate.exe"
+ "Messenger (Yahoo!)" "Yahoo! Messenger" "Yahoo! Inc." "c:\program files\yahoo!\messenger\yahoomessenger.exe"
+ "Xvid" "" "" "c:\program files\xvid\checkupdate.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office11\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "linkscanner" "" "" "File not found: C:\Program Files\AVG\AVG2012\avgpp.dll"
+ "livecall" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.14.0.8117.0416.dll"
+ "msnim" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.14.0.8117.0416.dll"
+ "mso-offdap11" "Microsoft Office Web Components 2003" "Microsoft Corporation" "c:\program files\common files\microsoft shared\web components\11\owc11.dll"
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components" "" "" ""
+ "0" "" "" "File not found: About:Home"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgse.dll"
+ "HamsterLiteMenu" "" "" "File not found: C:\Program Files\Hamster Soft\Free ZIP Archiver\HamsterContextMenu.dll"
+ "HamsterMenu" "" "" "File not found: C:\Program Files\Hamster Soft\Free ZIP Archiver\HamsterContextMenu.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "HamsterMenu" "" "" "File not found: C:\Program Files\Hamster Soft\Free ZIP Archiver\HamsterContextMenu.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "AVG Safe Search" "" "" "File not found: C:\Program Files\AVG\AVG2012\avgssie.dll"
+ "DivX Plus Web Player HTML5 <video>" "DivX Plus Web Player HTML5 <video> version 2.1.2.145" "DivX, LLC" "c:\program files\divx\divx plus web player\ie\divxhtml5\divxhtml5.dll"
+ "HP Smart BHO Class" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "JQSIEStartDetectorImpl Class" "Java™ Quick Starter binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll"
+ "Vuze Remote Toolbar" "Conduit Toolbar" "Conduit Ltd." "c:\program files\vuze_remote\prxtbvuze.dll"
+ "Wajam" "" "" "File not found: C:\Program Files\Wajam\IE\priam_bho.dll"
+ "Windows Live Sign-in Helper" "WindowsLiveLogin.dll" "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks" "" "" ""
+ "Vuze Remote Toolbar" "Conduit Toolbar" "Conduit Ltd." "c:\program files\vuze_remote\prxtbvuze.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Vuze Remote Toolbar" "Conduit Toolbar" "Conduit Ltd." "c:\program files\vuze_remote\prxtbvuze.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files\windows live\writer\writerbrowserextension.dll"
+ "HP Smart Select" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Windows Messenger" "Windows Messenger" "Microsoft Corporation" "c:\program files\messenger\msmsgs.exe"
"Task Scheduler" "" "" ""
+ "Adobe Flash Player Updater.job" "Adobe® Flash® Player Update Service 11.6 r602" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AppleSoftwareUpdate.job" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "FacebookUpdateTaskUserS-1-5-21-2000478354-412668190-682003330-1004Core.job" "Facebook Installer" "Facebook Inc." "c:\documents and settings\guest2\local settings\application data\facebook\update\facebookupdate.exe"
+ "FacebookUpdateTaskUserS-1-5-21-2000478354-412668190-682003330-1004UA.job" "Facebook Installer" "Facebook Inc." "c:\documents and settings\guest2\local settings\application data\facebook\update\facebookupdate.exe"
+ "GoogleUpdateTaskMachineCore.job" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "GoogleUpdateTaskMachineUA.job" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "RealUpgradeLogonTaskS-1-5-21-2000478354-412668190-682003330-1004.job" "RealUpgrade Launcher" "RealNetworks, Inc." "c:\program files\real\realupgrade\realupgrade.exe"
+ "RealUpgradeScheduledTaskS-1-5-21-2000478354-412668190-682003330-1004.job" "RealUpgrade Launcher" "RealNetworks, Inc." "c:\program files\real\realupgrade\realupgrade.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AVGIDSAgent" "Provides Identity Protection Against Cyber Crime." "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgidsagent.exe"
+ "avgwd" "AVG Watchdog Service" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgwdsvc.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "hpqcxs08" "HP CUE Context Manager Objects" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc" "This service detects and monitors CUE devices on the system." "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpqddsvc.dll"
+ "HPSLPSVC" "Discovers and monitors the state and the configuration of the HP devices attached to your network. If the service is stopped, and your network devices change IP addresses, they might become unavailable" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpslpsvc32.dll"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "JavaQuickStarterService" "Prefetches JRE files for faster startup of Java applets and applications" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jqs.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe"
+ "WajamUpdater" "Wajam Updater" "" "File not found: C:\Program Files\Wajam\Updater\WajamUpdater.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "A3AB" "Driver for D-Link Wireless Network Adapter" "D-Link Corporation" "c:\windows\system32\drivers\a3ab.sys"
+ "ANIO" "ANIO (NT5) Driver " "Alpha Networks Inc." "c:\windows\system32\anio.sys"
+ "aswMBR" "" "" "File not found: C:\DOCUME~1\Guest2\LOCALS~1\Temp\aswMBR.sys"
+ "AVGIDSDriver" "AVG Technologies IDS Application Activity Monitor Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsdriverx.sys"
+ "AVGIDSHX" "AVG Technologies IDS Application Activity Monitor Helper Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidshx.sys"
+ "AVGIDSShim" "AVG Technologies IDS Application Activity Monitor Shim Loader Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsshimx.sys"
+ "Avgldx86" "AVG AVI Loader Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgldx86.sys"
+ "Avglogx" "AVG Logging Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avglogx.sys"
+ "Avgmfx86" "AVG Resident Shield Minifilter Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgmfx86.sys"
+ "Avgrkx86" "AVG Anti-Rootkit Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgrkx86.sys"
+ "Avgtdix" "AVG Network connection watcher" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgtdix.sys"
+ "catchme" "" "" "File not found: C:\DOCUME~1\Guest2\LOCALS~1\Temp\catchme.sys"
+ "cercsr6" "DELL CERC SATA1.5/6ch Miniport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\cercsr6.sys"
+ "Changer" "" "" "File not found: C:\WINDOWS\System32\Drivers\Changer.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "HPZid412" "IEEE-1284.4-1999 Driver (Windows 2000)" "HP" "c:\windows\system32\drivers\hpzid412.sys"
+ "HPZipr12" "IEEE-1284.4-1999 Print Class Driver" "HP" "c:\windows\system32\drivers\hpzipr12.sys"
+ "HPZius12" "1284.4<->Usb Datalink Driver (Windows 2000)" "HP" "c:\windows\system32\drivers\hpzius12.sys"
+ "i2omgmt" "" "" "File not found: C:\WINDOWS\System32\Drivers\i2omgmt.sys"
+ "JSWSCIMD" "Wireless Intermediate Miniport Driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\jswscimd.sys"
+ "lbrtfdc" "" "" "File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys"
+ "LVPr2Mon" "Logitech ProcMon Driver" "Logitech Inc." "c:\windows\system32\drivers\lvpr2mon.sys"
+ "LVRS" "Logitech Kernel Audio Improvement Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvrs.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "MBAMSwissArmy" "Malwarebytes' Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbamswissarmy.sys"
+ "PCIDump" "" "" "File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys"
+ "PDCOMP" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys"
+ "PDFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys"
+ "PDRELI" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys"
+ "PDRFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys"
+ "pepifilter" "Audio filter for Express Plus" "Logitech Inc." "c:\windows\system32\drivers\lv302af.sys"
+ "PID_PEPI" "Logitech Webcam Software Driver" "Logitech Inc." "c:\windows\system32\drivers\lv302v32.sys"
+ "Ptilink" "Direct Parallel Link Driver" "Parallel Technologies, Inc." "c:\windows\system32\drivers\ptilink.sys"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys"
+ "Secdrv" "SafeDisc driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "teamviewervpn" "TeamViewerVPN Network Adapter" "TeamViewer GmbH" "c:\windows\system32\drivers\teamviewervpn.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
+ "USBPNPA" "C-Media Audio WDM Driver" "C-Media Electronics Inc" "c:\windows\system32\drivers\cm108.sys"
+ "WDICA" "" "" "File not found: C:\WINDOWS\System32\Drivers\WDICA.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.iac2" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax"
+ "msacm.l3acm" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecp.acm"
+ "msacm.sl_anet" "Audio codec for MS ACM" "Sipro Lab Telecom Inc." "c:\windows\system32\sl_anet.acm"
+ "msacm.trspch" "DSP Group TrueSpeech™ Audio Codec for MSACM V3.50" "DSP GROUP, INC." "c:\windows\system32\tssoft32.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\system32\divx.dll"
+ "VIDC.I420" "Video Codec" "Logitech Inc." "c:\windows\system32\lvcodec2.dll"
+ "vidc.iv31" "" "" "c:\windows\system32\ir32_32.dll"
+ "vidc.iv32" "" "" "c:\windows\system32\ir32_32.dll"
+ "vidc.iv41" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "vidc.iv50" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "vidc.XVID" "" "" "c:\windows\system32\xvidvfw.dll"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\system32\divx.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "minimoog V" "" "" "c:\program files\arturia\minimoog v\minimoogvdx.dll"
+ "minimoog V" "" "" "c:\program files\arturia\minimoog v\minimoogvdx.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ACELP.net Audio Decoder" "ACELP.net Audio Decoder" "Sipro Lab Telecom Inc." "c:\windows\system32\acelpdec.ax"
+ "Allocator Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files\google\google earth\client\wavdest.ax"
+ "Bitmap" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "DivX AAC Decoder" "AAC audio decoder filter" "DivX, Inc." "c:\program files\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files\divx\divx codec\divxdec.ax"
+ "DivX Demux Filter" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX Demux Filter (Unrestricted Edition)" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files\divx\divx plus directshow filters\divxdech264.ax"
+ "Frame Eater" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "HP VTK Frame Grabber Filter" "HP Video Toolkit" "Hewlett-Packard Co." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK MPEG-1 Encoder" "HP Video Toolkit" "Hewlett-Packard Co." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK Resize Filter" "HP Video Toolkit" "Hewlett-Packard Co." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK Rotate Filter" "HP Video Toolkit" "Hewlett-Packard Co." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "Indeo® audio software" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "MPEG Layer-3 Decoder" "MPEG Layer-3 Audio Decoder" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecx.ax"
+ "RealPlayer Audio Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Mp3 Transform Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer MPEG4 Transform Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Transcode Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Video Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "Record Queue" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ShotDetect" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Stetch" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WIA Stream Snapshot Filter" "WIA Stream Snapshot Filter" "MyCompanyName" "c:\windows\system32\wiasf.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WM VIH2 Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Screen capture Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Xvid MPEG-4 Video Decoder" "" "" "c:\windows\system32\xvid.ax"
"HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute" "" "" ""
+ "C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart" "AVG Resident Shield Service" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgrsx.exe"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"





=======================================================================================


ESET SCAN:


C:\Documents and Settings\All Users\Application Data\Tarma

Installer\{C049526F-B3EB-4151-9B11-B11F00F53A96}\_Setupx.dll a variant of

Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\Application

Data\Sun\Java\Deployment\cache\6.0\31\34d1b95f-26132695 multiple threats

deleted - quarantined
C:\Documents and Settings\Guest2\Desktop\Unused Desktop

Shortcuts\Arturia.Arp2600.V.VSTi.RTAS.v1.2.incl.Keygen-AiR\Arturia.Arp2600.V.VSTi.RT

AS.v1.2.incl.Keygen-AiR\a-a2612a.zip a variant of Win32/Keygen.AD application

deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\7zip_installer_d162802.exe

probably a variant of Win32/InstallIQ application cleaned by deleting -

quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\avc-free.exe

Win32/OpenCandy application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My

Documents\Downloads\cbsidlm-cbsi5_0_1_80-Pazera_Free_MP4_to_AVI_Converter-SEO2-10784

027.exe a variant of Win32/CNETInstaller.A application cleaned by deleting -

quarantined
C:\Documents and Settings\Guest2\My

Documents\Downloads\cbsidlm-tr1_6-Lazesoft_Windows_Recovery_Media_Builder_Home-75750

075.exe Win32/DownloadAdmin.G application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My

Documents\Downloads\cnet2_cell_phone_number_trace_exe.exe a variant of

Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\cnet2_DivXInstaller_exe.exe

a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\ezlookerA.exe multiple

threats cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\FreeTwitTubeSetup-BD(1).exe

multiple threats cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\FreeTwitTubeSetup-BD.exe

multiple threats cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\iLividSetupV1(1).exe

Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\iLividSetupV1.exe

Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Downloads\YouTubeDownloaderSetup35.exe

Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Reference\Batch File Creation\Process.exe Win32/PrcView application

cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Reference\Dialup Password\Dialupass.exe Win32/PSWTool.Dialupass.243

application deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Reference\Dialup Password\DialuPass.rar Win32/PSWTool.Dialupass.243

application deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Reference\Scheduled Updates - AT\Process.exe Win32/PrcView

application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Software\SnadBoy's Revelation v2\Revelation.exe

Win32/PSWTool.SnadBoy.2011 application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Software\SnadBoy's Revelation v2\RevelationHelper.dll

Win32/PSWTool.SnadBoy.2011 application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Software\SnadBoy's Revelation v2\RevelationV1.1.zip a variant of

Win32/PSWTool.SnadBoy.B application deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Software\SnadBoy's Revelation v2\RevelationV2.zip

Win32/PSWTool.SnadBoy.2011 application deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Nailfix.zip Win32/PrcView application deleted -

quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Process.exe Win32/PrcView application cleaned by

deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\SpyAxeRemover.rar Win32/PrcView application deleted -

quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Ad-Aware08\Process.exe Win32/PrcView application

cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Microsoft\Process.exe Win32/PrcView application

cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Other\haxfix.exe multiple threats cleaned by deleting

- quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Other\SmitfraudFix\Process.exe Win32/PrcView application

cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Other\SmitfraudFix\restart.exe Win32/Shutdown.NAA

application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Other\SmitfraudFix\SmitfraudFix\SmitfraudFix\Process.exe

Win32/PrcView application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Spyware\Other\SmitfraudFix\SmitfraudFix\SmitfraudFix\restart.exe

Win32/Shutdown.NAA application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Backup12182010\Steve's

Stuff\Tech CD\Virus\McAfee SuperDAT\Process.exe Win32/PrcView application

cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Reference\Batch File

Creation\Process.exe Win32/PrcView application cleaned by deleting -

quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Reference\Dialup

Password\Dialupass.exe Win32/PSWTool.Dialupass.243 application deleted -

quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Reference\Dialup

Password\DialuPass.rar Win32/PSWTool.Dialupass.243 application deleted -

quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Reference\Scheduled

Updates - AT\Process.exe Win32/PrcView application cleaned by deleting

- quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Software\SnadBoy's

Revelation v2\Revelation.exe Win32/PSWTool.SnadBoy.2011 application cleaned by

deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Software\SnadBoy's

Revelation v2\RevelationHelper.dll Win32/PSWTool.SnadBoy.2011 application

cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Software\SnadBoy's

Revelation v2\RevelationV1.1.zip a variant of Win32/PSWTool.SnadBoy.B

application deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Software\SnadBoy's

Revelation v2\RevelationV2.zip Win32/PSWTool.SnadBoy.2011 application deleted -

quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Spyware\Nailfix.zip

Win32/PrcView application deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Spyware\Process.exe

Win32/PrcView application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech

CD\Spyware\SpyAxeRemover.rar Win32/PrcView application deleted -

quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech

CD\Spyware\Ad-Aware08\Process.exe Win32/PrcView application cleaned by

deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech

CD\Spyware\Microsoft\Process.exe Win32/PrcView application cleaned by

deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Spyware\Other\haxfix.exe

multiple threats cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech

CD\Spyware\Other\SmitfraudFix\Process.exe Win32/PrcView application

cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech

CD\Spyware\Other\SmitfraudFix\restart.exe Win32/Shutdown.NAA application

cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech

CD\Spyware\Other\SmitfraudFix\SmitfraudFix\SmitfraudFix\Process.exe

Win32/PrcView application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech

CD\Spyware\Other\SmitfraudFix\SmitfraudFix\SmitfraudFix\restart.exe

Win32/Shutdown.NAA application cleaned by deleting - quarantined
C:\Documents and Settings\Guest2\My Documents\Steve\Tech CD\Virus\McAfee

SuperDAT\Process.exe Win32/PrcView application cleaned by deleting -

quarantined
C:\Documents and Settings\Guest2\My Documents\Vuze

Downloads\Arturia.Arp2600.V.VSTi.RTAS.v1.2.incl.Keygen-AiR.rar a variant of

Win32/Keygen.AD application deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Vuze

Downloads\Arturia.Arp2600.V.VSTi.RTAS.v1.2.incl.Keygen-AiR.zip a variant of

Win32/Keygen.AD application deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Vuze

Downloads\Arturia.Arp2600.V.VSTi.RTAS.v1.2.incl.Keygen-AiR\Arturia.Arp2600.V.VSTi.RT

AS.v1.2.incl.Keygen-AiR\a-a2612.rar a variant of Win32/Keygen.AD application

deleted - quarantined
C:\Documents and Settings\Guest2\My Documents\Vuze

Downloads\Arturia.Arp2600.V.VSTi.RTAS.v1.2.incl.Keygen-AiR\Arturia.Arp2600.V.VSTi.RT

AS.v1.2.incl.Keygen-AiR\a-a2612a.zip a variant of Win32/Keygen.AD application

deleted - quarantined
C:\Documents and Settings\Jeffrey\Local Settings\Temp\vzf-8219540458278508197.dll

a variant of Win32/Bunndle application cleaned by deleting - quarantined
C:\Program Files\Playbryte\uninstall.exe a variant of MSIL/Adware.iBryte.A

application cleaned by deleting - quarantined
C:\Program Files\Vuze\bunndle.zip a variant of Win32/Bunndle application

deleted - quarantined
C:\Program Files\Vuze\.install4j\i4j_extf_27_5p83tu.dll a variant of Win32/Bunndle

application cleaned by deleting - quarantined
C:\Program Files\Vuze\.install4j\i4j_extf_31_5p83tu.dll a variant of Win32/Bunndle

application cleaned by deleting - quarantined
C:\System Volume

Information\_restore{A1BBF642-5989-43F8-A1B9-C8945568BE82}\RP491\A0059429.dll a

variant of Win32/DealPly.A application cleaned by deleting - quarantined
C:\System Volume

Information\_restore{A1BBF642-5989-43F8-A1B9-C8945568BE82}\RP491\A0059480.exe a

variant of MSIL/Adware.iBryte.A application cleaned by deleting - quarantined
C:\System Volume

Information\_restore{A1BBF642-5989-43F8-A1B9-C8945568BE82}\RP494\A0059933.dll a

variant of Win32/Adware.Yontoo.A application cleaned by deleting - quarantined
C:\System Volume

Information\_restore{A1BBF642-5989-43F8-A1B9-C8945568BE82}\RP494\A0059935.dll a

variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined

Edited by jrbslc, 27 February 2013 - 09:36 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 01 March 2013 - 07:15 PM

Do not edit your posts


Current issues?



#7 jrbslc

jrbslc
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 02 March 2013 - 05:53 PM

Sorry about "editing" my post. I actually just added the requested materials to my "thank you"

 

My current issues are still the same after running the suggested scans.  Left Click does not function on the desk top or start menu, quick launch items won't load, Official Windows updates fail to install, malwarebytes and AVG won't run, I also think I have a trojan virus because I'm receiving emails with my name and email address on them that are not from me.



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 02 March 2013 - 05:57 PM

You need to change your email id password first.

 

I'm not finding any trojans in your log.

 

Create a new user account and let me know if you can run scans.



#9 jrbslc

jrbslc
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 03 March 2013 - 04:20 PM

Do you mean create a new Windows XP User account?  I created a new one and was able to run AVG scan in Safe Mode.  Malwarebytes still will not run. I tried re-installing it and running it and get error message that says:  "Run-time error '372':  Failed to load control "WebBrowser" from ieframe.dll. Your version of ieframe.dll may be outdated.  So I tried downloading Internet Explorer 8, and that is failing to install also.

 

My Computer is still experiencing the previous mentioned problems.

 

Thanks in advance for any help.



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 03 March 2013 - 04:22 PM

Download

 

http://www.dougknox.com/xp/fileassoc/linkfile_fix.zip

 

Extract and launch it ,click YES

 

Restart
the PC.Malwarebytes should launch now.Class not registered error should
have stopped malwarebytes from creating icon on desktop so you need to
browse to C:\programfiles\malwarebytes folder and launch mbam.exe.

 

LNK fix should also fix the Internet explorer crash.

 

Let us know what other issues you have.



#11 jrbslc

jrbslc
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 05 March 2013 - 08:40 PM

Thank you.  Everything is working better. Left click works, Malwarebytes ran, quick launch is back.  The only thing it won't let me do is Windows Updates still. 



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 05 March 2013 - 10:59 PM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log


 



#13 jrbslc

jrbslc
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 07 March 2013 - 03:08 AM

Per your request, here are all 7 Logs in the order in which they were asked forl

 

 

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.07.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Guest2 :: JEFF [administrator]

3/6/2013 10:36:30 PM
mbam-log-2013-03-06 (22-36-30).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra |

Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 312455
Time elapsed: 9 minute(s), 9 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
==================================================================================




MiniToolBox by Farbar  Version:05-03-2013
Ran by Guest2 (administrator) on 07-03-2013 at 00:08:28
Running from "C:\Documents and Settings\Guest2\My Documents\Downloads"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
Windows IP ConfigurationSuccessfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

TeamViewer VPN Adapter = TeamViewer VPN (Disconnected)
D-Link WDA-2320 Desktop Adapter = Wireless Network Connection (Connected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp


popd
# End of interface IP configuration


Windows IP Configuration        Host Name . . . . . . . . . . . . : jeff        

Primary Dns Suffix  . . . . . . . :         Node Type . . . . . . . . . . . . :

Broadcast        IP Routing Enabled. . . . . . . . : No        WINS Proxy Enabled. .

. . . . . . : No        DNS Suffix Search List. . . . . . : domain.actdsltmpEthernet

adapter Wireless Network Connection:        Connection-specific DNS Suffix  . :

domain.actdsltmp        Description . . . . . . . . . . . : D-Link WDA-2320 Desktop

Adapter        Physical Address. . . . . . . . . : 00-15-E9-81-64-B1        Dhcp

Enabled. . . . . . . . . . . : Yes        Autoconfiguration Enabled . . . . : Yes    

    IP Address. . . . . . . . . . . . : 192.168.0.2        Subnet Mask . . . . . . .

. . . . : 255.255.255.0        Default Gateway . . . . . . . . . : 192.168.0.1       

 DHCP Server . . . . . . . . . . . : 192.168.0.1        DNS Servers . . . . . . . .

. . . : 192.168.0.1                                            205.171.3.25        

Lease Obtained. . . . . . . . . . : Wednesday, March 06, 2013 11:18:01 PM        

Lease Expires . . . . . . . . . . : Wednesday, March 13, 2013 11:18:01 PMServer:  

qwestmodem.domain.actdsltmp
Address:  192.168.0.1

Name:    google.com
Addresses:  74.125.225.192, 74.125.225.193, 74.125.225.194, 74.125.225.195
      74.125.225.196, 74.125.225.197, 74.125.225.198, 74.125.225.199,

74.125.225.200
      74.125.225.201, 74.125.225.206

Pinging google.com [74.125.225.194] with 32 bytes of data:Reply from 74.125.225.194:

bytes=32 time=66ms TTL=57Reply from 74.125.225.194: bytes=32 time=66ms TTL=57Ping

statistics for 74.125.225.194:    Packets: Sent = 2, Received = 2, Lost = 0 (0%

loss),Approximate round trip times in milli-seconds:    Minimum = 66ms, Maximum =

66ms, Average = 66msServer:  qwestmodem.domain.actdsltmp
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  206.190.36.45, 98.138.253.109, 98.139.183.24

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:Reply from 98.138.253.109:

bytes=32 time=140ms TTL=52Reply from 98.138.253.109: bytes=32 time=191ms TTL=52Ping

statistics for 98.138.253.109:    Packets: Sent = 2, Received = 2, Lost = 0 (0%

loss),Approximate round trip times in milli-seconds:    Minimum = 140ms, Maximum =

191ms, Average = 165msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1:

bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping

statistics for 127.0.0.1:    Packets: Sent = 2, Received = 2, Lost = 0 (0%

loss),Approximate round trip times in milli-seconds:    Minimum = 0ms, Maximum =

0ms, Average =

0ms===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 15 e9 81 64 b1

...... D-Link WDA-2320 Desktop Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.2      25
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      192.168.0.0    255.255.255.0      192.168.0.2     192.168.0.2      25
      192.168.0.2  255.255.255.255        127.0.0.1       127.0.0.1      25
    192.168.0.255  255.255.255.255      192.168.0.2     192.168.0.2      25
        224.0.0.0        240.0.0.0      192.168.0.2     192.168.0.2      25
  255.255.255.255  255.255.255.255      192.168.0.2     192.168.0.2      1
Default Gateway:       192.168.0.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/06/2013 11:22:45 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 11:22:45 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 11:18:03 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 11:18:03 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 10:24:58 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 10:24:58 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 10:24:42 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 10:24:42 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 10:12:31 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most

likely caused by a faulty registration.

Error: (03/06/2013 10:12:31 PM) (Source: Userenv) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for

{7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most

likely caused by a faulty registration.


System errors:
=============
Error: (03/06/2013 11:18:23 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following

error:
%%5

Error: (03/06/2013 11:18:23 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following

error:
%%5

Error: (03/04/2013 05:43:35 PM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update

with error 0x80070643: Security Update for Microsoft .NET Framework 2.0 SP2 on

Windows Server 2003 and Windows XP x86 (KB2742596).

Error: (03/04/2013 05:43:26 PM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update

with error 0x80070643: Security Update for Microsoft .NET Framework 3.0 SP2 on

Windows Server 2003 and Windows XP x86 (KB2756918).

Error: (03/04/2013 05:43:13 PM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update

with error 0x80070641: Update for Outlook 2003 Junk E-mail Filter (KB2767887).

Error: (03/04/2013 05:43:05 PM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update

with error 0x80070641: Security Update for Office 2003 (KB2760574).

Error: (03/04/2013 05:43:05 PM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update

with error 0x80070643: Security Update for Microsoft .NET Framework 3.5 SP1 on

Windows XP, Server 2003, Vista, Server 2008 x86 (KB2736416).

Error: (03/04/2013 05:42:55 PM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update

with error 0x80070643: Security Update for Microsoft .NET Framework 2.0 SP2 on

Windows Server 2003 and Windows XP x86 (KB2789643).

Error: (03/04/2013 03:36:27 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {4EB61BAC-A3B6-4760-9581-655041EF4D69} did not register with

DCOM within the required timeout.

Error: (03/04/2013 03:35:58 PM) (Source: Service Control Manager) (User: )
Description: The HP CUE DeviceDiscovery Service service hung on starting.


Microsoft Office Sessions:
=========================
Error: (03/06/2013 11:22:45 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (03/06/2013 11:22:45 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (03/06/2013 11:18:03 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (03/06/2013 11:18:03 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (03/06/2013 10:24:58 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (03/06/2013 10:24:58 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (03/06/2013 10:24:42 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (03/06/2013 10:24:42 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}

Error: (03/06/2013 10:12:31 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}

Error: (03/06/2013 10:12:31 PM) (Source: Userenv)(User: NT AUTHORITY)
Description: {7B849a69-220F-451E-B3FE-2CB811AF94AE}


=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 1.0.0)
4660_4680_Help (Version: 1.00.0000)
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.171)
Adobe Flash Player 11 Plugin (Version: 11.6.602.171)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Shockwave Player 11.6 (Version: 11.6.0.626)
AIM 7
ANIO Service
ANIWZCS2 Service
Any Video Converter 3.5.2
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
ARP2600 V2 2.5.1 (Version: 2.5.1)
Arturia Minimoog V v1.0
AVG 2013 (Version: 13.0.2637)
AVG 2013 (Version: 13.0.2805)
AVG 2013 (Version: 2013.0.2805)
Bing Maps 3D (Version: 4.0.903.16005)
Bonjour (Version: 3.0.0.10)
BPD_HPSU (Version: 1.00.0000)
bpd_scan (Version: 3.00.0000)
BPDSoftware (Version: 50.0.165.000)
BPDSoftware_Ini (Version: 1.00.0000)
BufferChm (Version: 100.0.170.000)
Coby Media Manager (Version: 1.0.4606)
Convert VOB to AVI
Coupon Printer for Windows (Version: 5.0.0.1)
CS-80V2 2.5.1 (Version: 2.5.1)
Destination Component (Version: 100.0.0.0)
DeviceDiscovery (Version: 100.0.190.000)
DeviceManagementQFolder (Version: 1.00.0000)
DivX Setup (Version: 2.6.1.9)
DocMgr (Version: 100.0.201.000)
DocProc (Version: 10.0.0.0)
DocProcQFolder (Version: 1.00.0000)
Dropbox (Version: 1.2.51)
eLicenser Control
ESET Online Scanner v3
eSupportQFolder (Version: 1.00.0000)
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Fax (Version: 100.0.272.000)
Flixster Collections (Version: 1.0.76)
Free PDF to Word Converter 1.5
FreeRIP 3.80 (Version: 3.80)
Google Chrome (Version: 23.0.1271.97)
Google Earth (Version: 6.1.0.5001)
Google Earth Plug-in (Version: 6.2.2.6613)
Google Update Helper (Version: 1.3.21.123)
GPBaseService (Version: 100.0.187.000)
Hamster Lite Archiver 2.0.0.24 (Version: 2.0.0.24)
HP Document Manager 1.0 (Version: 1.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
HP Officejet All-In-One Series (Version: 1.0)
HP Photosmart Essential 2.5 (Version: 1.02.0000)
HP Photosmart Essential 2.5 (Version: 2.5)
HP Smart Web Printing (Version: 3.5)
HP Solution Center 10.0 (Version: 10.0)
HP Update (Version: 4.000.007.003)
HPProductAssistant (Version: 100.0.170.000)
iTunes (Version: 11.0.1.12)
J4680 (Version: 50.0.165.000)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 14.0.8117.416)
Jupiter-8V2 2.0
Jupiter-8V2 2.5.0 (Version: 2.5.0)
Keynote Connector
Lazesoft Windows Recovery version 3.2 Home Edition (Version: 3.2)
Logitech Vid HD (Version: 7.2 (7248))
Logitech Webcam Software (Version: 12.10.1113)
Logitech Webcam Software Driver Package (Version: 12.10.1110)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version:

8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version:

9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version:

9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version:

9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Moog Modular V 2 2.6.1 (Version: 2.6.1)
Mozilla Firefox 19.0 (x86 en-US) (Version: 19.0)
Mozilla Maintenance Service (Version: 19.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NetDeviceManager (Version: 100.0.170.000)
OCR Software by I.R.I.S. 10.0 (Version: 10.0)
OpenOffice.org 3.3 (Version: 3.3.9567)
Pazera Free MP4 to AVI Converter 1.6 (Version: 1.6)
PC Pitstop Driver Alert2 2.0.0.0 (Version: 2.0.0.0)
ProductContext (Version: 50.0.165.000)
Prophet-V2 2.5.1 (Version: 2.5.1)
PSSWCORE (Version: 2.02.0000)
QuickTime (Version: 7.73.80.64)
RangeBooster G WDA-2320
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
RealPlayer (Version: 16.0.0)
RealUpgrade 1.1 (Version: 1.1.0)
Scan (Version: 10.1.0.0)
Segoe UI (Version: 14.0.4327.805)
Skype™ 6.0 (Version: 6.0.126)
SmartWebPrintingOC (Version: 100.0.189.000)
SolutionCenter (Version: 100.0.175.000)
Spark 1.4.1
Status (Version: 100.0.272.000)
swMSM (Version: 12.0.0.1)
TeamViewer 6 (Version: 6.0.11117)
TeamViewer 7 (Version: 7.0.12541)
Toolbox (Version: 100.0.170.000)
TrayApp (Version: 100.0.170.000)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB961503) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
USB PnP Sound Device
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VideoToolkit01 (Version: 100.0.128.000)
VLC media player 2.0.3 (Version: 2.0.3)
Vuze (Version: 4.7)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 100.0.170.000)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live OneCare safety scanner
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell™ 1.0 (Version: 2)
Windows XP Service Pack 3 (Version: 20080414.031525)
Xvid Video Codec (Version: 1.3.2)
Yahoo! Messenger

========================= Memory info: ===================================

Percentage of memory in use: 13%
Total physical RAM: 3062.07 MB
Available physical RAM: 2652.8 MB
Total Pagefile: 4952.27 MB
Available Pagefile: 4611.9 MB
Total Virtual: 2047.88 MB
Available Virtual: 1980.64 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:74.5 GB) (Free:9.22 GB) NTFS

========================= Users: ========================================

User accounts for \\JEFF

Admin2                   Administrator            April                    
Guest                    Guest2                   HelpAssistant            
SUPPORT_388945a0         


**** End of log ****



============================================================================


Farbar's Servic Scanner Log:

Farbar Service Scanner Version: 03-03-2013
Ran by Guest2 (administrator) on 06-03-2013 at 23:07:02
Running from "C:\Documents and Settings\Guest2\My Documents\Downloads"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll
[2011-05-08 18:34] - [2008-04-13 17:12] - 0006656 ____A (Microsoft Corporation)

35321FB577CDC98CE3EB3A3EB9E4610A

C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe
[2004-08-04 03:00] - [2009-02-06 04:11] - 0110592 ____A (Microsoft Corporation)

65DF52F5B8B6E9BBD183505225C37315


Extra List:
=======
Avgtdix(9) Gpc(3) IPSec(5) JSWSCIMD(8) NetBT(6) PSched(7) Tcpip(4)
0x09000000050000000100000002000000030000000400000009000000060000000700000008000000
IpSec Tag value is correct.

**** End of log ****


--------------------------------====================================================

=====




AdwCleaner log:


# AdwCleaner v2.114 - Logfile created 03/06/2013 at 23:13:31
# Updated 05/03/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Guest2 - JEFF
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Guest2\My

Documents\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : WajamUpdater

***** [Files / Folders] *****

Deleted on reboot : C:\Documents and Settings\Guest2\Local Settings\Application

Data\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.xpt
Folder Deleted : C:\Documents and Settings\All Users\Application Data\APN
Folder Deleted : C:\Documents and Settings\All Users\Application Data\FreeRIP
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Tarma

Installer
Folder Deleted : C:\Documents and Settings\NetworkService\Local Settings\Application

Data\Vuze_Remote
Folder Deleted : C:\Program Files\Common Files\Software Update Utility
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\FreeRIP
Folder Deleted : C:\Program Files\Ilivid
Folder Deleted : C:\Program Files\Playbryte
Folder Deleted : C:\Program Files\Vuze_Remote

***** [Registry] *****

Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\GreenTree Applications
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Internet

Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted :

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start

Menu2\Programs\DealPly
Key Deleted :

HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B

-08FBA6BD249D}
Key Deleted :

HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258

-49395D5BF99C}
Key Deleted :

HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2

-9732E92D17CC}
Key Deleted :

HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08

FBA6BD249D}
Key Deleted :

HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49

395D5BF99C}
Key Deleted :

HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-97

32E92D17CC}
Key Deleted :

HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-10

0EDDD0C3AE}
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\Vuze_Remote
Key Deleted : HKCU\Software\Wajam
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E30ED111-BD63-48C2-A6CB-AB3C9FFFB07C}
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\ilivid
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Deleted : HKLM\Software\Conduit
Key Deleted :

HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Key Deleted : HKLM\Software\GreenTree Applications
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low

Rights\ElevationPolicy\{BE1AB589-D038-4DAA-89BD-E2A84042C843}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low

Rights\ElevationPolicy\{FB16A509-19F4-4996-A38F-538D563578A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App

Management\ARPCache\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App

Management\ARPCache\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App

Management\ARPCache\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App

Management\ARPCache\Playbryte
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App

Management\ARPCache\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App

Management\ARPCache\Vuze_Remote Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper

Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper

Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted :

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-8

7E1-8156E22C1D96}
Key Deleted :

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E30ED111-BD63-48C2-A

6CB-AB3C9FFFB07C}
Key Deleted :

HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Component

s\063A857434EDED11A893800002C0A966
Key Deleted :

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c

48dc4b7bb7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted :

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote

Toolbar
Key Deleted : HKLM\Software\Playbryte
Key Deleted : HKLM\Software\TENCENT
Key Deleted : HKLM\Software\Vuze_Remote
Key Deleted : HKLM\Software\Wajam
Key Deleted :

HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser

[{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks

[{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar

[{BA14329E-9550-4989-B3F2-9732E92D17CC}]

***** [Internet Browsers] *****

-\\ Internet Explorer v6.0.2900.5512

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Documents and Settings\LocalService\Application

Data\Mozilla\Firefox\Profiles\6z3lper7.default\prefs.js

[OK] File is clean.

File : C:\Documents and Settings\April\Application

Data\Mozilla\Firefox\Profiles\kn6335j5.default\prefs.js

[OK] File is clean.

File : C:\Documents and Settings\Admin2\Application

Data\Mozilla\Firefox\Profiles\afyi02x2.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v23.0.1271.97

*************************

AdwCleaner[S1].txt - [8360 octets] - [06/03/2013 23:13:31]

########## EOF - C:\AdwCleaner[S1].txt - [8420 octets] ##########


====================================================================================

==========



Junkware Removal Tool Log:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.9 (03.06.2013:1)
OS: Microsoft Windows XP x86
Ran by Guest2 on Wed 03/06/2013 at 23:31:59.00
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\smartbar
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet

explorer\searchscopes\{91607fa7-3c2f-4f90-93e3-d5337a6b0ac2}



~~~ Files

Successfully deleted: [File] "C:\Program Files\mozilla

firefox\plugins\npcouponprinter.dll"
Successfully deleted: [File] "C:\Program Files\mozilla

firefox\plugins\npmozcouponprinter.dll"



~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application

data\ytd video downloader"
Successfully deleted: [Folder] "C:\Documents and Settings\Guest2\Local

Settings\Application Data\conduit"
Successfully deleted: [Folder] "C:\Documents and Settings\Guest2\Local

Settings\Application Data\ilivid player"
Successfully deleted: [Folder] "C:\Documents and Settings\Guest2\Local

Settings\Application Data\vuze_remote"
Successfully deleted: [Folder] "C:\Documents and Settings\Guest2\Local

Settings\Application Data\wajam"
Successfully deleted: [Folder] "C:\Program Files\coupons"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\start

menu\programs\ytd video downloader"



~~~ FireFox

Successfully deleted: [File] C:\Documents and Settings\Guest2\Application

Data\mozilla\firefox\profiles\66mjta2j.default\user.js
Successfully deleted: [Folder] C:\Documents and Settings\Guest2\Application

Data\mozilla\firefox\profiles\66mjta2j.default\fctb
Successfully deleted: [Folder] C:\Documents and Settings\Guest2\Application

Data\mozilla\firefox\profiles\66mjta2j.default\smartbar
Successfully deleted: [Folder] C:\Documents and Settings\Guest2\Application

Data\mozilla\firefox\profiles\66mjta2j.default\extensions\playbryte@playbryte.com
Successfully deleted: [Folder] C:\Documents and Settings\Guest2\Application

Data\mozilla\firefox\profiles\66mjta2j.default\extensions\{ba14329e-9550-4989-b3f2-9

732e92d17cc}
Successfully deleted the following from C:\Documents and Settings\Guest2\Application

Data\mozilla\firefox\profiles\66mjta2j.default\prefs.js

user_pref("CT2504091.129079840421401584.isToggled_item0_11", "true");
user_pref("CT2504091.129707804829376918.APP_WIN_FEATURES",

"openposition=offset:50;50,savelocation=0,resizable=no,scrollbars=no,titlebar=yes,sa

veresizedsize=no");
user_pref("CT2504091.ENABALE_HISTORY",

"{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2504091.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE",

"{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2504091.FirstTime", "true");
user_pref("CT2504091.FirstTimeFF3", "true");
user_pref("CT2504091.LoginRevertSettingsEnabled", true);
user_pref("CT2504091.RevertSettingsEnabled", false);
user_pref("CT2504091.UserID", "UN41270112384117429");
user_pref("CT2504091.addressBarTakeOverEnabledInHidden", "true");
user_pref("CT2504091.autoDisableScopes", -1);
user_pref("CT2504091.cb", "0");
user_pref("CT2504091.cb_experience_000", "16");
user_pref("CT2504091.cb_firstuse0100", "1");
user_pref("CT2504091.cbcountry_001", "US");
user_pref("CT2504091.cbfirsttime", "Sat Aug 11 2012 04:12:47 GMT-0600 (Mountain

Daylight Time)");
user_pref("CT2504091.defaultSearch", "false");
user_pref("CT2504091.enableAlerts", "false");
user_pref("CT2504091.enableFix404ByUser", "FALSE");
user_pref("CT2504091.enableSearchFromAddressBar", "true");
user_pref("CT2504091.firstTimeDialogOpened", "true");
user_pref("CT2504091.fixPageNotFoundError", "true");
user_pref("CT2504091.fixPageNotFoundErrorByUser", "true");
user_pref("CT2504091.fixPageNotFoundErrorInHidden", "true");
user_pref("CT2504091.fixUrls", true);
user_pref("CT2504091.installId", "ConduitNSISIntegration");
user_pref("CT2504091.installType", "ConduitNSISIntegration");
user_pref("CT2504091.isCheckedStartAsHidden", true);
user_pref("CT2504091.isEnableAllDialogs",

"{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2504091.isFirstTimeToolbarLoading", "false");
user_pref("CT2504091.isNewTabEnabled", true);
user_pref("CT2504091.isPerformedSmartBarTransition", "true");
user_pref("CT2504091.isToolbarShrinked",

"{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2504091.lastVersion", "10.14.65.43");
user_pref("CT2504091.migrateAppsAndComponents", true);
user_pref("CT2504091.navigationAliasesJson",

"{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"\",\"EB_MAIN_FRAME_TITLE\":\"\",\"

EB_TOOLBAR_SUB_DOMAIN\":\"hxxp://VuzeRemote.Ou
user_pref("CT2504091.openThankYouPage", "false");
user_pref("CT2504091.openUninstallPage", "false");
user_pref("CT2504091.search.searchAppId", "129079840422026594");
user_pref("CT2504091.search.searchCount", "0");
user_pref("CT2504091.searchInNewTabEnabledByUser", "true");
user_pref("CT2504091.searchInNewTabEnabledInHidden", "true");
user_pref("CT2504091.selectToSearchBoxEnabled",

"{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2504091.serviceLayer_service_login_isFirstLoginInvoked",

"{\"dataType\":\"boolean\",\"data\":\"true\"}");
user_pref("CT2504091.serviceLayer_service_login_loginCount",

"{\"dataType\":\"number\",\"data\":\"4\"}");
user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeCTID",

"{\"dataType\":\"string\",\"data\":\"CT2504091\"}");
user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeDownloadUrl",

"{\"dataType\":\"string\",\"data\":\"hxxp://VuzeRemote.OurToolbar.com//xpi\"}");
user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeToolbarName",

"{\"dataType\":\"string\",\"data\":\"Vuze Remote\"}");
user_pref("CT2504091.serviceLayer_service_toolbarGrouping_invoked",

"{\"dataType\":\"string\",\"data\":\"true\"}");
user_pref("CT2504091.serviceLayer_service_usage_toolbarUsageCount",

"{\"dataType\":\"number\",\"data\":\"2\"}");
user_pref("CT2504091.serviceLayer_services_appTrackingFirstTime_lastUpdate",

"1344679958220");
user_pref("CT2504091.serviceLayer_services_appTracking_lastUpdate",

"1344679964264");
user_pref("CT2504091.serviceLayer_services_appsMetadata_lastUpdate",

"1344679957961");
user_pref("CT2504091.serviceLayer_services_gottenAppsContextMenu_lastUpdate",

"1344679961328");
user_pref("CT2504091.serviceLayer_services_login_10.10.20.14_lastUpdate",

"1345709511468");
user_pref("CT2504091.serviceLayer_services_login_10.10.27.6_lastUpdate",

"1352862891953");
user_pref("CT2504091.serviceLayer_services_login_10.13.40.15_lastUpdate",

"1358397110249");
user_pref("CT2504091.serviceLayer_services_login_10.14.40.128_lastUpdate",

"1359752095890");
user_pref("CT2504091.serviceLayer_services_login_10.14.42.7_lastUpdate",

"1361304333927");
user_pref("CT2504091.serviceLayer_services_login_10.14.65.43_lastUpdate",

"1362631982106");
user_pref("CT2504091.serviceLayer_services_optimizer_lastUpdate", "1344679960288");
user_pref("CT2504091.serviceLayer_services_otherAppsContextMenu_lastUpdate",

"1344679961650");
user_pref("CT2504091.serviceLayer_services_searchAPI_lastUpdate", "1344679955489");
user_pref("CT2504091.serviceLayer_services_serviceMap_lastUpdate", "1362631972350");
user_pref("CT2504091.serviceLayer_services_toolbarContextMenu_lastUpdate",

"1344679959371");
user_pref("CT2504091.serviceLayer_services_toolbarSettings_lastUpdate",

"1362631974977");
user_pref("CT2504091.serviceLayer_services_translation_lastUpdate",

"1362631973931");
user_pref("CT2504091.settingsINI", true);
user_pref("CT2504091.shouldFirstTimeDialog", "false");
user_pref("CT2504091.smartbar.CTID", "CT2504091");
user_pref("CT2504091.smartbar.Uninstall", "0");
user_pref("CT2504091.smartbar.toolbarName", "Vuze Remote ");
user_pref("CT2504091.startPage", "false");
user_pref("CT2504091.toolbarBornServerTime", "11-8-2012");
user_pref("CT2504091.toolbarCurrentServerTime", "7-3-2013");
user_pref("CT2504091.upgradeFromClearSBVersion", true);
user_pref("CT2504091.url_history0001",

"hxxp://us.mg6.mail.yahoo.com/neo/launch?.rand=e0hu95tro7rur#:::clickhandler:::13528

64139363,,,hxxp://us.mg6.mail.yahoo.com/neo/launch?.
user_pref("CT2504091_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading

toolbar\",\"time\":1362637461118,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFrom

Prev\":0}
user_pref("freecause771f303798854423b50fa5ede4854e26.2806055.KeywordHistory",

"club%2520sound%2520salt%2520lake%7Cclub%2520pure%2520salt%2520lake%7Ccarpenters%252

0Solitaire%25
user_pref("freecause771f303798854423b50fa5ede4854e26.AutoSearchEventData",

"auto%20search");
user_pref("freecause771f303798854423b50fa5ede4854e26.ClearCacheDate", 9);
user_pref("freecause771f303798854423b50fa5ede4854e26.DisplayEULA", false);
user_pref("freecause771f303798854423b50fa5ede4854e26.DnsCatchEventData",

"dns%20catch");
user_pref("freecause771f303798854423b50fa5ede4854e26.FirstLaunchShown", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.LoadLayoutDate.62133", 8);
user_pref("freecause771f303798854423b50fa5ede4854e26.NewTabSearchEventData",

"tab%20search");
user_pref("freecause771f303798854423b50fa5ede4854e26.RemoveAllData", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.ShowRecommendedOptions", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.StateReportDate",

"1320703816198");
user_pref("freecause771f303798854423b50fa5ede4854e26.TopRightSearchEventData",

"top%20right%20search");
user_pref("freecause771f303798854423b50fa5ede4854e26.beforeInstallSaved", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.beforeinstall.homepage",

"www.google.com");
user_pref("freecause771f303798854423b50fa5ede4854e26.beforeinstall.search",

"Google");
user_pref("freecause771f303798854423b50fa5ede4854e26.customNewTab", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.helpUsImprove", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.hideOthers", false);
user_pref("freecause771f303798854423b50fa5ede4854e26.processAddrBar", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.remove_search", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.restoreSearch", false);
user_pref("freecause771f303798854423b50fa5ede4854e26.runcmd.", "453989012");
user_pref("freecause771f303798854423b50fa5ede4854e26.searchHistory", true);
user_pref("freecause771f303798854423b50fa5ede4854e26.showFirstLaunchOptions",

false);
user_pref("freecause771f303798854423b50fa5ede4854e26.tb_lang", "en");
user_pref("freecause771f303798854423b50fa5ede4854e26.tool_id", "62133");
user_pref("freecause771f303798854423b50fa5ede4854e26.user_id", "70555861");
user_pref("freecause771f303798854423b50fa5ede4854e26.user_key",

"4263033c00f27c0c465fece65c6cf576c51a6b50");
user_pref("freecause771f303798854423b50fa5ede4854e26.user_layouts", "62133");
user_pref("freecause771f303798854423b50fa5ede4854e26.user_lnames", "InboxDollars");
user_pref("freecause771f303798854423b50fa5ede4854e26.yahooSearch", true);
user_pref("keyword.URL",

"hxxp://search.freecause.com/search?fr=freecause&ourmark=3&type=62133&p=");
user_pref("smartbar.machineId",

"JWCQHK4Q58KNWIH6N0SJIHM/AGJABZ8QK9TGEG2EBHTBXCYUX7DEV93VJ0SWGOGOAS6SUAUA0OF5OF4/GOG

SRQ");





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 03/06/2013 at 23:38:34.93
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



RKILL Log:




Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/06/2013 11:49:48 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Documents and Settings\Guest2\My Documents\Downloads\JRT.exe (PID: 3700)

[UP-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * RpcSs => %SystemRoot%\system32\svchost.exe -k rpcss [Incorrect ImagePath]

Searching for Missing Digital Signatures:

 * C:\WINDOWS\System32\drivers\mqac.sys [NoSig]
 +-> C:\WINDOWS\$hf_mig$\KB971032\SP2QFE\mqac.sys : 91,776 : 06/22/2009 00:30 AM :

9229e191fe206628be17d1e67a5faed9 [Pos Repl]
 +-> C:\WINDOWS\$NtUninstallKB971032$\mqac.sys : 72,960 : 08/04/2004 00:00 AM :

db07b0088cdfd20c2a22e675120ede34 [Pos Repl]
 +-> C:\WINDOWS\ServicePackFiles\i386\mqac.sys : 92,544 : 04/13/2008 00:39 AM :

70c14f5cca5cf73f8a645c73a01d8726 [Pos Repl]
 +-> C:\WINDOWS\system32\dllcache\mqac.sys : 91,776 : 06/22/2009 00:48 AM :

eee50bf24caeedb515a8f3b22756d3bb [Pos Repl]

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 03/06/2013 11:50:56 PM
Execution time: 0 hours(s), 1 minute(s), and 8 seconds(s)



------------------------------------------------------------------------------------

---------


Autoruns Log:


"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    

"c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "ANIWZCS2Service"    "ANIWZCS2 launcher for Windows."    "Wireless Service"    

"c:\program files\ani\aniwzcs2 service\wzcsldr2.exe"
+ "APSDaemon"    "Apple Push"    "Apple Inc."    "c:\program files\common

files\apple\apple application support\apsdaemon.exe"
+ "AVG_UI"    "AVG User Interface"    "AVG Technologies CZ, s.r.o."    "c:\program

files\avg\avg2013\avgui.exe"
+ "iTunesHelper"    "iTunesHelper"    "Apple Inc."    "c:\program

files\itunes\ituneshelper.exe"
+ "QuickTime Task"    "QuickTime Task"    "Apple Inc."    "c:\program

files\quicktime\qttask.exe"
+ "TkBellExe"    "RealNetworks Scheduler"    "RealNetworks, Inc."    "c:\program

files\real\realplayer\update\realsched.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Address Book 6"    "Outlook Express Setup Library"    "Microsoft Corporation"    

"c:\program files\outlook express\setup50.exe"
+ "Microsoft Outlook Express 6"    "Outlook Express Setup Library"    "Microsoft

Corporation"    "c:\program files\outlook express\setup50.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Facebook Update"    "Facebook Installer"    "Facebook Inc."    "c:\documents and

settings\guest2\local settings\application data\facebook\update\facebookupdate.exe"
+ "Messenger (Yahoo!)"    "Yahoo! Messenger"    "Yahoo! Inc."    "c:\program

files\yahoo!\messenger\yahoomessenger.exe"
+ "Xvid"    ""    ""    "c:\program files\xvid\checkupdate.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    

"c:\program files\common files\microsoft shared\office11\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""
+ "linkscanner"    ""    ""    "File not found: C:\Program

Files\AVG\AVG2012\avgpp.dll"
+ "livecall"    "Windows Live Messenger Protocol Handler Module"    "Microsoft

Corporation"    "c:\program files\windows live\messenger\msgrapp.14.0.8117.0416.dll"
+ "msnim"    "Windows Live Messenger Protocol Handler Module"    "Microsoft

Corporation"    "c:\program files\windows live\messenger\msgrapp.14.0.8117.0416.dll"
+ "mso-offdap11"    "Microsoft Office Web Components 2003"    "Microsoft

Corporation"    "c:\program files\common files\microsoft shared\web

components\11\owc11.dll"
+ "skype4com"    "Skype for COM API"    "Skype Technologies"    "c:\program

files\common files\skype\skype4com.dll"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components"    ""    ""    ""
+ "0"    ""    ""    "File not found: About:Home"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and

settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    

""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    

"c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and

settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    

""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and

settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program

files\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}"    ""    "OpenOffice.org"    

"c:\program files\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "AVG Shell Extension"    "AVG Shell Extension"    "AVG Technologies CZ, s.r.o."    

"c:\program files\avg\avg2013\avgse.dll"
+ "HamsterLiteMenu"    ""    ""    "File not found: C:\Program Files\Hamster

Soft\Free ZIP Archiver\HamsterContextMenu.dll"
+ "HamsterMenu"    ""    ""    "File not found: C:\Program Files\Hamster Soft\Free

ZIP Archiver\HamsterContextMenu.dll"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    

"c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""
+ "HamsterMenu"    ""    ""    "File not found: C:\Program Files\Hamster Soft\Free

ZIP Archiver\HamsterContextMenu.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers

"    ""    ""    ""
+ "DropboxExt1"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and

settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and

settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and

settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and

settings\guest2\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    

""    ""    ""
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    

"Adobe Systems Incorporated"    "c:\program files\common

files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "AVG Safe Search"    ""    ""    "File not found: C:\Program

Files\AVG\AVG2012\avgssie.dll"
+ "DivX Plus Web Player HTML5 <video>"    "DivX Plus Web Player HTML5 <video> version

2.1.2.145"    "DivX, LLC"    "c:\program files\divx\divx plus web

player\ie\divxhtml5\divxhtml5.dll"
+ "HP Smart BHO Class"    "HP Smart Web Printing add-on for Internet Explorer"    

"Hewlett-Packard Co."    "c:\program files\hp\digital imaging\smart web

printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Sun

Microsystems, Inc."    "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "JQSIEStartDetectorImpl Class"    "Java™ Quick Starter binary"    "Sun

Microsystems, Inc."    "c:\program

files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll"
+ "Windows Live Sign-in Helper"    "WindowsLiveLogin.dll"    "Microsoft Corporation"    

"c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "&Blog This in Windows Live Writer"    "Windows Live Writer Blog This Extension"    

"Microsoft Corporation"    "c:\program files\windows

live\writer\writerbrowserextension.dll"
+ "HP Smart Select"    "HP Smart Web Printing add-on for Internet Explorer"    

"Hewlett-Packard Co."    "c:\program files\hp\digital imaging\smart web

printing\hpswp_bho.dll"
+ "Windows Messenger"    "Windows Messenger"    "Microsoft Corporation"    "c:\program

files\messenger\msmsgs.exe"
"Task Scheduler"    ""    ""    ""
+ "Adobe Flash Player Updater.job"    "Adobe® Flash® Player Update Service 11.6

r602"    "Adobe Systems Incorporated"    

"c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AppleSoftwareUpdate.job"    "Apple Software Update"    "Apple Inc."    "c:\program

files\apple software update\softwareupdate.exe"
+ "FacebookUpdateTaskUserS-1-5-21-2000478354-412668190-682003330-1004Core.job"    

"Facebook Installer"    "Facebook Inc."    "c:\documents and settings\guest2\local

settings\application data\facebook\update\facebookupdate.exe"
+ "FacebookUpdateTaskUserS-1-5-21-2000478354-412668190-682003330-1004UA.job"    

"Facebook Installer"    "Facebook Inc."    "c:\documents and settings\guest2\local

settings\application data\facebook\update\facebookupdate.exe"
+ "GoogleUpdateTaskMachineCore1ce1928ce744c3c.job"    "Google Installer"    

"Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "GoogleUpdateTaskMachineUA1ce1928cec0977c.job"    "Google Installer"    

"Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "RealUpgradeLogonTaskS-1-5-21-2000478354-412668190-682003330-1004.job"    

"RealUpgrade Launcher"    "RealNetworks, Inc."    "c:\program

files\real\realupgrade\realupgrade.exe"
+ "RealUpgradeScheduledTaskS-1-5-21-2000478354-412668190-682003330-1004.job"    

"RealUpgrade Launcher"    "RealNetworks, Inc."    "c:\program

files\real\realupgrade\realupgrade.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player

installation up to date with the latest enhancements and security fixes."    

"Adobe Systems Incorporated"    

"c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    

"Apple Inc."    "c:\program files\common files\apple\mobile device

support\applemobiledeviceservice.exe"
+ "AVGIDSAgent"    "Provides Identity Protection Against Cyber Crime."    "AVG

Technologies CZ, s.r.o."    "c:\program files\avg\avg2013\avgidsagent.exe"
+ "avgwd"    "AVG Watchdog Service"    "AVG Technologies CZ, s.r.o."    "c:\program

files\avg\avg2013\avgwdsvc.exe"
+ "gupdate"    "Keeps your Google software up to date. If this service is disabled

or stopped, your Google software will not be kept up to date, meaning security

vulnerabilities that may arise cannot be fixed and features may not work. This

service uninstalls itself when there is no Google software using it."    "Google

Inc."    "c:\program files\google\update\googleupdate.exe"
+ "gupdatem"    "Keeps your Google software up to date. If this service is disabled

or stopped, your Google software will not be kept up to date, meaning security

vulnerabilities that may arise cannot be fixed and features may not work. This

service uninstalls itself when there is no Google software using it."    "Google

Inc."    "c:\program files\google\update\googleupdate.exe"
+ "hpqcxs08"    "HP CUE Context Manager Objects"    "Hewlett-Packard Co."    

"c:\program files\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc"    "This service detects and monitors CUE devices on the system."    

"Hewlett-Packard Co."    "c:\program files\hp\digital imaging\bin\hpqddsvc.dll"
+ "HPSLPSVC"    "Discovers and monitors the state and the configuration of the HP

devices attached to your network. If the service is stopped, and your network

devices change IP addresses, they might become unavailable"    "Hewlett-Packard

Co."    "c:\program files\hp\digital imaging\bin\hpslpsvc32.dll"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    

"c:\program files\ipod\bin\ipodservice.exe"
+ "JavaQuickStarterService"    "Prefetches JRE files for faster startup of Java

applets and applications"    "Sun Microsystems, Inc."    "c:\program

files\java\jre6\bin\jqs.exe"
+ "MBAMScheduler"    "Malwarebytes Anti-Malware scheduler"    "Malwarebytes

Corporation"    "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService"    "Malwarebytes Anti-Malware service"    "Malwarebytes Corporation"    

"c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the

latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox

up to date is very important for your online security, and Mozilla strongly

recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program

files\mozilla maintenance service\maintenanceservice.exe"
+ "Net Driver HPZ12"    "Dot4Net Module"    "Hewlett-Packard"    

"c:\windows\system32\hpzinw12.dll"
+ "ose"    "Saves installation files used for updates and repairs and is required for

the downloading of Setup updates and Watson error reports."    "Microsoft

Corporation"    "c:\program files\common files\microsoft shared\source

engine\ose.exe"
+ "Pml Driver HPZ12"    "PmlDrv Module"    "Hewlett-Packard"    

"c:\windows\system32\hpzipm12.dll"
+ "SkypeUpdate"    "Enables the detection, download and installation of updates for

Skype."    "Skype Technologies"    "c:\program files\skype\updater\updater.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "A3AB"    "Driver for D-Link Wireless Network Adapter"    "D-Link Corporation"    

"c:\windows\system32\drivers\a3ab.sys"
+ "ANIO"    "ANIO (NT5) Driver "    "Alpha Networks Inc."    

"c:\windows\system32\anio.sys"
+ "AVGIDSDriver"    "AVG Technologies IDS Application Activity Monitor Driver"    

"AVG Technologies CZ, s.r.o. "    "c:\windows\system32\drivers\avgidsdriverx.sys"
+ "AVGIDSHX"    "AVG Technologies IDS Application Activity Monitor Helper Driver"    

"AVG Technologies CZ, s.r.o. "    "c:\windows\system32\drivers\avgidshx.sys"
+ "AVGIDSShim"    "AVG Technologies IDS Application Activity Monitor Shim Loader

Driver"    "AVG Technologies CZ, s.r.o. "    

"c:\windows\system32\drivers\avgidsshimx.sys"
+ "Avgldx86"    "AVG AVI Loader Driver"    "AVG Technologies CZ, s.r.o."    

"c:\windows\system32\drivers\avgldx86.sys"
+ "Avglogx"    "AVG Logging Driver"    "AVG Technologies CZ, s.r.o."    

"c:\windows\system32\drivers\avglogx.sys"
+ "Avgmfx86"    "AVG Resident Shield Minifilter Driver"    "AVG Technologies CZ,

s.r.o."    "c:\windows\system32\drivers\avgmfx86.sys"
+ "Avgrkx86"    "AVG Anti-Rootkit Driver"    "AVG Technologies CZ, s.r.o."    

"c:\windows\system32\drivers\avgrkx86.sys"
+ "Avgtdix"    "AVG Network connection watcher"    "AVG Technologies CZ,

s.r.o."    "c:\windows\system32\drivers\avgtdix.sys"
+ "catchme"    ""    ""    "File not found:

C:\DOCUME~1\Guest2\LOCALS~1\Temp\catchme.sys"
+ "cercsr6"    "DELL CERC SATA1.5/6ch Miniport Driver"    "Adaptec, Inc."    

"c:\windows\system32\drivers\cercsr6.sys"
+ "Changer"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\Changer.sys"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    

"c:\windows\system32\drivers\gearaspiwdm.sys"
+ "HPZid412"    "IEEE-1284.4-1999 Driver (Windows 2000)"    "HP"    

"c:\windows\system32\drivers\hpzid412.sys"
+ "HPZipr12"    "IEEE-1284.4-1999 Print Class Driver"    "HP"    

"c:\windows\system32\drivers\hpzipr12.sys"
+ "HPZius12"    "1284.4<->Usb Datalink Driver (Windows 2000)"    "HP"    

"c:\windows\system32\drivers\hpzius12.sys"
+ "i2omgmt"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\i2omgmt.sys"
+ "JSWSCIMD"    "Wireless Intermediate Miniport Driver"    "Atheros Communications,

Inc."    "c:\windows\system32\drivers\jswscimd.sys"
+ "lbrtfdc"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\lbrtfdc.sys"
+ "LVPr2Mon"    "Logitech ProcMon Driver"    "Logitech Inc."    

"c:\windows\system32\drivers\lvpr2mon.sys"
+ "LVRS"    "Logitech Kernel Audio Improvement Filter Driver"    "Logitech

Inc."    "c:\windows\system32\drivers\lvrs.sys"
+ "MBAMProtector"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    

"c:\windows\system32\drivers\mbam.sys"
+ "PCIDump"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\PCIDump.sys"
+ "PDCOMP"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\PDCOMP.sys"
+ "PDFRAME"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\PDFRAME.sys"
+ "PDRELI"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\PDRELI.sys"
+ "PDRFRAME"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\PDRFRAME.sys"
+ "pepifilter"    "Audio filter for Express Plus"    "Logitech Inc."    

"c:\windows\system32\drivers\lv302af.sys"
+ "PID_PEPI"    "Logitech Webcam Software Driver"    "Logitech Inc."    

"c:\windows\system32\drivers\lv302v32.sys"
+ "Ptilink"    "Direct Parallel Link Driver"    "Parallel Technologies, Inc."    

"c:\windows\system32\drivers\ptilink.sys"
+ "PxHelp20"    "Px Engine Device Driver for Windows 2000/XP"    "Sonic Solutions"    

"c:\windows\system32\drivers\pxhelp20.sys"
+ "Secdrv"    "SafeDisc driver"    "Macrovision Corporation, Macrovision Europe

Limited, and Macrovision Japan and Asia K.K."    

"c:\windows\system32\drivers\secdrv.sys"
+ "teamviewervpn"    "TeamViewerVPN Network Adapter"    "TeamViewer GmbH"    

"c:\windows\system32\drivers\teamviewervpn.sys"
+ "USBAAPL"    "Apple Mobile Device USB Driver"    "Apple, Inc."    

"c:\windows\system32\drivers\usbaapl.sys"
+ "USBPNPA"    "C-Media Audio WDM Driver"    "C-Media Electronics Inc"    

"c:\windows\system32\drivers\cm108.sys"
+ "WDICA"    ""    ""    "File not found:

C:\WINDOWS\System32\Drivers\WDICA.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.iac2"    "Indeo® audio software"    "Intel Corporation"    

"c:\windows\system32\iac25_32.ax"
+ "msacm.l3acm"    "MPEG Audio Layer-3 Codec for MSACM"    "Fraunhofer Institut

Integrierte Schaltungen IIS"    "c:\windows\system32\l3codecp.acm"
+ "msacm.sl_anet"    "Audio codec for MS ACM"    "Sipro Lab Telecom Inc."    

"c:\windows\system32\sl_anet.acm"
+ "msacm.trspch"    "DSP Group TrueSpeech™ Audio Codec for MSACM V3.50"    "DSP

GROUP, INC."    "c:\windows\system32\tssoft32.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    

"c:\windows\system32\iccvid.dll"
+ "vidc.DIVX"    "DivX"    "DivX, Inc."    "c:\windows\system32\divx.dll"
+ "VIDC.I420"    "Video Codec"    "Logitech Inc."    "c:\windows\system32\lvcodec2.dll"
+ "vidc.iv31"    ""    ""    "c:\windows\system32\ir32_32.dll"
+ "vidc.iv32"    ""    ""    "c:\windows\system32\ir32_32.dll"
+ "vidc.iv41"    "Intel Indeo® Video 4.5"    "Intel Corporation"    

"c:\windows\system32\ir41_32.ax"
+ "vidc.iv50"    "Intel Indeo® video 5.10"    "Intel Corporation"    

"c:\windows\system32\ir50_32.dll"
+ "vidc.XVID"    ""    ""    "c:\windows\system32\xvidvfw.dll"
+ "vidc.yv12"    "DivX"    "DivX, Inc."    "c:\windows\system32\divx.dll"
"HKLM\Software\Classes\Filter"    ""    ""    ""
+ "Indeo® video 4.4 Compression Filter"    "Intel Indeo® Video 4.5"    "Intel

Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Compression Filter"    "Intel Indeo® Video 4.5"    "Intel

Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter"    "Intel Indeo® Video 4.5"    

"Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter"    "Intel Indeo® Video 4.5"    

"Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "minimoog V"    ""    ""    "c:\program files\arturia\minimoog

v\minimoogvdx.dll"
+ "minimoog V"    ""    ""    "c:\program files\arturia\minimoog

v\minimoogvdx.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    

""    ""
+ "9x8Resize"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "ACELP.net Audio Decoder"    "ACELP.net Audio Decoder"    "Sipro Lab Telecom

Inc."    "c:\windows\system32\acelpdec.ax"
+ "Allocator Fix"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "Audio Destination"    "WAVDest Filter (Sample)"    "Microsoft Corporation"    

"c:\program files\google\google earth\client\wavdest.ax"
+ "Bitmap"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "Capture File Writer"    "Windows Live Video Acquisition Filters"    "Microsoft

Corporation"    "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "DivX AAC Decoder"    "AAC audio decoder filter"    "DivX, Inc."    "c:\program

files\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter"    "DivX Decoder Filter"    "DivX, Inc."    "c:\program

files\divx\divx codec\divxdec.ax"
+ "DivX Demux Filter"    "DivX Plus DMF Navigator Filter"    "DivX, Inc."    

"c:\program files\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX Demux Filter (Unrestricted Edition)"    "DivX Plus DMF Navigator Filter"    

"DivX, Inc."    "c:\program files\divx\divx plus directshow

filters\directshowdemuxfilter.dll"
+ "DivX H.264 Decoder"    "DivX H.264 Decoder Filter"    "DivX, Inc."    "c:\program

files\divx\divx plus directshow filters\divxdech264.ax"
+ "Frame Eater"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "HP VTK Frame Grabber Filter"    "HP Video Toolkit"    "Hewlett-Packard Co."    

"c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK MPEG-1 Encoder"    "HP Video Toolkit"    "Hewlett-Packard Co."    

"c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK Resize Filter"    "HP Video Toolkit"    "Hewlett-Packard Co."    

"c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK Rotate Filter"    "HP Video Toolkit"    "Hewlett-Packard Co."    

"c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "Indeo® audio software"    "Indeo® audio software"    "Intel Corporation"    

"c:\windows\system32\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter"    "Intel Indeo® video 5.10"    

"Intel Corporation"    "c:\windows\system32\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter"    "Intel Indeo® video 5.10"    

"Intel Corporation"    "c:\windows\system32\ir50_32.dll"
+ "MPEG Layer-3 Decoder"    "MPEG Layer-3 Audio Decoder"    "Fraunhofer Institut

Integrierte Schaltungen IIS"    "c:\windows\system32\l3codecx.ax"
+ "RealPlayer Audio Filter"    "Audio Filter Plugin"    "RealNetworks, Inc."    

"c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Mp3 Transform Filter"    "Audio Filter Plugin"    "RealNetworks, Inc."    

"c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer MPEG4 Transform Filter"    "Audio Filter Plugin"    "RealNetworks, Inc."    

"c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Transcode Filter"    "Audio Filter Plugin"    "RealNetworks, Inc."    

"c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Video Filter"    "Audio Filter Plugin"    "RealNetworks, Inc."    

"c:\program files\real\realplayer\rdsf3260.dll"
+ "Record Queue"    "Windows Live Video Acquisition Filters"    "Microsoft

Corporation"    "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "Record Queue"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "ShotDetect"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "Stetch"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "WIA Stream Snapshot Filter"    "WIA Stream Snapshot Filter"    "MyCompanyName"    

"c:\windows\system32\wiasf.ax"
+ "WM VIH2 Fix"    "Windows Live Video Acquisition Filters"    "Microsoft

Corporation"    "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WM VIH2 Fix"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator"    "Movie Maker Filters"    "Microsoft Corporation"    

"c:\program files\movie maker\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper"    "Movie Maker Filters"    "Microsoft

Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter"    "Windows Live Video Acquisition Filters"    

"Microsoft Corporation"    "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter"    "Movie Maker Filters"    "Microsoft Corporation"    

"c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion"    "Movie Maker Filters"    "Microsoft Corporation"    

"c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "WMT Interlacer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "WMT Log Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter"    "Windows Live Video Acquisition Filters"    

"Microsoft Corporation"    "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter"    "Movie Maker Filters"    "Microsoft Corporation"    

"c:\program files\movie maker\wmm2filt.dll"
+ "WMT Screen capture Filter"    "Movie Maker Filters"    "Microsoft Corporation"    

"c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter"    "Windows Live Video Acquisition Filters"    "Microsoft

Corporation"    "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer"    "Windows Live Video Acquisition Filters"    

"Microsoft Corporation"    "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer"    "Movie Maker Filters"    "Microsoft Corporation"    

"c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source"    "Windows Live Video Acquisition Filters"    "Microsoft

Corporation"    "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "WMT Volume"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program

files\movie maker\wmm2filt.dll"
+ "Xvid MPEG-4 Video Decoder"    ""    ""    "c:\windows\system32\xvid.ax"
"HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute"    ""    ""    

""
+ "C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart"    "AVG Resident Shield

Service"    "AVG Technologies CZ, s.r.o."    "c:\program

files\avg\avg2013\avgrsx.exe"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catal

og_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program

files\bonjour\mdnsnsp.dll"








 



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 07 March 2013 - 05:43 AM

What happens when you run windows updates?



#15 jrbslc

jrbslc
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 16 March 2013 - 12:04 AM

They download, start to install and then I get a message saying "Updates failed".  It does the same thing with the adobe flash player update I tried to install.  Immediate failure on that.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users