Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

can't update Windows or MSE after exploit virus!


  • This topic is locked This topic is locked
11 replies to this topic

#1 rsuryase

rsuryase

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 11:56 AM

Attached are the files quarantined by Kaspersky Internet Security. I uninstalled Kaspersky and installed MSE instead, then unsintalled MSE and installed ESET Smart Security 6. Can't update to 7, installation stalls, I think the malware is causing the problem. I also can't uninstall ESET now. I'm gonna follow procedures on these two threads.

 

http://www.bleepingcomputer.com/forums/t/487336/cant-update-windows-or-mse-after-exploit-virus/page-3#entry3283274

 

http://www.bleepingcomputer.com/forums/t/462359/cant-update-windows-or-change-firewall-settingspossible-rootkit/

 

Attached Files


Edited by rsuryase, 08 February 2014 - 01:33 PM.


BC AdBot (Login to Remove)

 


#2 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 12:23 PM

Unable to complete Combofix because stalls or can't create a system restore point.

 

aswMBR crashes while scanning assembly directory.


Edited by rsuryase, 08 February 2014 - 12:49 PM.


#3 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 12:25 PM

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.16428  BrowserJavaVersion: 10.51.2
Run by robert at 8:40:41 on 2014-02-08
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.16351.11967 [GMT -8:00]
.
AV: ESET Smart Security 6.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET Smart Security 6.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
C:\Windows\SysWOW64\bgsvcgen.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Cacheman\CachemanServ.exe
C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
C:\Program Files (x86)\EASEUS\Todo Backup\bin\Agent.exe
C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
C:\Program Files (x86)\HighPoint Technologies, Inc\HighPoint RAID Management Software\service\hptsvr.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\HighPoint Technologies, Inc\HighPoint RAID Management Software\service\drvinst.exe
C:\Windows\system32\IProsetMonitor.exe
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Windows\SysWOW64\wbem\msds.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\RAPID\SamsungRapidSvc.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRService.exe
C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
C:\Windows\system32\EscSvc64.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe
C:\Users\robert\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\AWS\WeatherBug\Weather.exe
C:\Program Files (x86)\DVICO\FusionHDTV\FusionHdtvTray.exe
C:\Program Files (x86)\AIM\aim.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Cacheman\CachemanTray.exe
C:\Users\robert\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
C:\Program Files (x86)\AirVideoServer HD\AirVideoServerStarter.exe
C:\Windows\System32\spool\drivers\x64\3\E_IATIJAE.EXE
C:\Program Files (x86)\AirVideoServer HD\AirVideoServerUI.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\DU Meter\DUMeter.exe
C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe
C:\Program Files (x86)\DVICO\FusionHDTV\ResManager.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\Program Files (x86)\AirVideoServer HD\ExternalEncoder.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRServer.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pnSvc.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRFeature.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\EC Simulator.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Glary Utilities 4\Integrator.exe
C:\Windows\explorer.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Windows\system32\vssvc.exe
C:\Windows\SysWOW64\notepad.exe
C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxps://www.google.com/
BHO: Virtual Account Numbers Helper: {17424104-1444-4810-85D7-B4DA413C5A9A} - C:\Program Files (x86)\Virtual Account Numbers\CitiVANHelper.dll
BHO: Bing Bar Helper: {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO: RoboForm Toolbar Helper: {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: FlashGet GetFlash Class: {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll
BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: &RoboForm Toolbar: {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
TB: FlashGet Bar: {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\fgiebar.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Virtual Account Numbers: {7A21A046-B886-4A62-9D69-EF2059B0A27B} - C:\Program Files (x86)\Virtual Account Numbers\CitiVANToolbar.dll
TB: Bing Bar: {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll
uRun: [uTorrent] "C:\Users\robert\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
uRun: [Weather] C:\Program Files (x86)\AWS\WeatherBug\Weather.exe 1
uRun: [FusionTrayAgent] C:\Program Files (x86)\DVICO\FusionHDTV\FusionHdtvTray.exe
uRun: [Aim] "C:\Program Files (x86)\AIM\aim.exe" /d locale=en-US
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
uRun: [CachemanTray] C:\Program Files (x86)\Cacheman\CachemanTray.exe
uRun: [Amazon Cloud Player] "C:\Users\robert\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe"
uRun: [AirVideoServerHD] C:\Program Files (x86)\AirVideoServer HD\AirVideoServerStarter.exe
uRun: [EPLTarget\P0000000000000001] C:\Windows\System32\spool\DRIVERS\x64\3\E_IATIJAE.EXE /EPT "EPLTarget\P0000000000000001" /M "XP-800 Series" /EF "HKCU"
mRun: [DU Meter] C:\Program Files (x86)\DU Meter\DUMeter.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [adm_tray.exe] C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoSMBalloonTip = dword:0
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: &Download All with FlashGet - C:\PROGRA~2\FlashGet\jc_all.htm
IE: &Download with FlashGet - C:\PROGRA~2\FlashGet\jc_link.htm
IE: Append to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert link target to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Customize Menu - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~3\Office15\EXCEL.EXE/3000
IE: Fill Forms - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: Save Forms - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~3\Office15\ONBttnIE.dll/105
IE: Show RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~2\FlashGet\flashget.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{701C9360-63A1-4E46-B08C-66248B4A6B6F} : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Bing Bar Helper: {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-BHO: RoboForm Toolbar Helper: {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
x64-TB: &RoboForm Toolbar: {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll
x64-TB: Bing Bar: {eec0f710-38b5-4aba-99bf-ec87564a4e13} -
x64-Run: [LogMeIn GUI] "C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe"
x64-Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [RtHDVBg_DTS] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORDTSUPTBT
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
x64-Run: [SamsungRapidApp] C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll
x64-IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll
x64-IE: {724d43aa-0d85-11d4-9908-00400523e39a} - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\robert\AppData\Roaming\Mozilla\Firefox\Profiles\6lnfkvkp.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=714647&p=
FF - prefs.js: network.proxy.ftp - 212.118.224.149
FF - prefs.js: network.proxy.ftp_port - 80
FF - prefs.js: network.proxy.gopher - 212.118.224.149
FF - prefs.js: network.proxy.gopher_port - 80
FF - prefs.js: network.proxy.http - =
FF - prefs.js: network.proxy.ssl - 212.118.224.149
FF - prefs.js: network.proxy.ssl_port - 80
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dll
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
FF - plugin: C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll
FF - plugin: C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.1.38\Bin\npSSOAxCtrlForPTLogin.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\browser\plugins\npMozCouponPrinter.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\robert\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll
FF - plugin: C:\Windows\System32\Wat\npWatWeb.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.proxy.socks -
FF - user.js: network.proxy.socks_port - 0
FF - user.js: network.proxy.type - 0
FF - user.js: extensions.claro.tlbrSrchUrl -
FF - user.js: extensions.claro.id - 88540ec500000000000000268314cdb0
FF - user.js: extensions.claro.appId - {C3110516-8EFC-49D6-8B72-69354F332062}
FF - user.js: extensions.claro.instlDay - 15658
FF - user.js: extensions.claro.vrsn - 1.8.3.10
FF - user.js: extensions.claro.vrsni - 1.8.3.10
FF - user.js: extensions.claro_i.vrsnTs - 1.8.3.1017:35:15
FF - user.js: extensions.claro.prtnrId - claro
FF - user.js: extensions.claro.prdct - claro
FF - user.js: extensions.claro.aflt - babsst
FF - user.js: extensions.claro_i.smplGrp - none
FF - user.js: extensions.claro.tlbrId - claro
FF - user.js: extensions.claro.instlRef - sst
FF - user.js: extensions.claro.dfltLng - en
FF - user.js: extensions.claro.excTlbr - false
FF - user.js: extensions.claro.admin - false
.
============= SERVICES / DRIVERS ===============
.
R?2 McxSvc;Media Center Extender;C:\Windows\System32\wbem\msds.exe --> C:\Windows\System32\wbem\msds.exe [?]
R0 BootDefragDriver;BootDefragDriver;C:\Windows\System32\drivers\BootDefragDriver.sys [2014-1-25 17088]
R0 epfwwfp;epfwwfp;C:\Windows\System32\drivers\epfwwfp.sys [2012-11-23 57904]
R0 EUBAKUP;EUBAKUP;C:\Windows\System32\drivers\eubakup.sys [2014-1-22 36232]
R0 EUBKMON;EUBKMON;C:\Windows\System32\drivers\EUBKMON.sys [2014-1-22 42888]
R0 EUFS;EUFS;C:\Windows\System32\drivers\eufs.sys [2014-1-27 26504]
R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2013-12-5 116000]
R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2013-3-22 678384]
R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2013-3-22 28656]
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-9-27 248240]
R0 mv91cons;Marvell 91xx Config Device Driver;C:\Windows\System32\drivers\mv91cons.sys [2012-10-9 28008]
R0 mv91xx;mv91xx;C:\Windows\System32\drivers\mv91xx.sys [2010-11-21 303408]
R0 Pnp680;SiI 680 ATA Controller;C:\Windows\System32\drivers\PnP680.sys [2007-11-13 80424]
R0 rr232x;rr232x;C:\Windows\System32\drivers\rr232x.sys [2011-4-11 152096]
R0 SamsungRapidDiskFltr;SAMSUNG RAPID Mode Disk Filter Driver;C:\Windows\System32\drivers\SamsungRapidDiskFltr.sys [2014-2-8 240864]
R0 SamsungRapidFSFltr;SamsungRapidFSFltr;C:\Windows\System32\drivers\SamsungRapidFSFltr.sys [2013-7-29 111328]
R0 tib;Acronis TIB Manager;C:\Windows\System32\drivers\tib.sys [2013-12-5 1120032]
R0 tib_mounter;Acronis TIB Mounter;C:\Windows\System32\drivers\tib_mounter.sys [2013-12-5 198432]
R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2013-12-5 161568]
R0 vidsflt;Acronis Disk Storage Filter;C:\Windows\System32\drivers\vidsflt.sys [2013-12-5 117024]
R1 eamonm;eamonm;C:\Windows\System32\drivers\eamonm.sys [2012-10-23 211344]
R1 EpfwLWF;Epfw NDIS LightWeight Filter;C:\Windows\System32\drivers\EpfwLWF.sys [2012-10-23 59440]
R1 EUDSKACS;EUDSKACS;C:\Windows\System32\drivers\eudskacs.sys [2014-1-22 17800]
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5};Power Control [2013/08/23 10:21:03];C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [2013-7-5 130320]
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-5-14 759048]
R2 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2013-12-5 3873784]
R2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [2010-11-3 918144]
R2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [2010-12-1 915584]
R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2011-4-11 586880]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2010-10-27 52896]
R2 CachemanService;Cacheman Service;C:\Program Files (x86)\Cacheman\CachemanServ.exe [2013-5-14 238152]
R2 CyberLink PowerDVD 13 Media Server Monitor Service;CyberLink PowerDVD 13 Media Server Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [2013-8-23 77576]
R2 CyberLink PowerDVD 13 Media Server Service;CyberLink PowerDVD 13 Media Server Service;C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [2013-8-23 327432]
R2 DTSAudioService;DTSAudioService;C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [2013-7-12 210024]
R2 EaseUS Agent;EaseUS Agent;C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2014-1-27 56200]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2012-11-26 1329304]
R2 EpsonCustomerParticipation;EpsonCustomerParticipation;C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [2012-5-10 608864]
R2 EpsonScanSvc;Epson Scanner Service;C:\Windows\System32\escsvc64.exe [2013-10-17 135824]
R2 hptsvr;HighPoint RAID Management Service;C:\Program Files (x86)\HighPoint Technologies, Inc\HighPoint RAID Management Software\Service\hptsvr.exe [2011-4-11 45056]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-3-22 15344]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-5-11 733696]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2013-4-5 183560]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-7-12 169432]
R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [2011-3-1 376144]
R2 LMIInfo;LogMeIn Kernel Information Provider;C:\Program Files (x86)\LogMeIn\x64\rainfo.sys [2010-9-17 16056]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;C:\Windows\System32\drivers\LMIRfsDriver.sys [2011-4-11 72216]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-9-15 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-9-15 701512]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-7-18 762192]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-2 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-7-30 16939296]
R2 SamsungRapidSvc;Samsung RAPID Mode Service;system32\RAPID\SamsungRapidSvc.exe --> system32\RAPID\SamsungRapidSvc.exe [?]
R2 SplashtopRemoteService;Splashtop® Remote Service;C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [2013-9-2 790368]
R2 SSUService;Splashtop Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [2013-8-7 609056]
R2 StarWindServiceAE;StarWind AE Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-12-19 411936]
R2 syncagentsrv;Acronis Sync Agent Service;C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-10-22 7142320]
R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848]
R2 WinI2C-DDC;WinI2C-DDC Kernel Mode Driver;C:\Windows\System32\drivers\ddcdrv.sys [2012-7-27 20832]
R3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2013-12-5 367200]
R3 AthBTPort;Atheros Virtual Bluetooth Class;C:\Windows\System32\drivers\btath_flt.sys [2010-10-27 38248]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.EXE [2013-12-16 247968]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\System32\drivers\btath_a2dp.sys [2010-10-27 301680]
R3 BTATH_BUS;Atheros Bluetooth Bus;C:\Windows\System32\drivers\btath_bus.sys [2010-10-27 31080]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\drivers\btath_hcrp.sys [2010-10-27 203624]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\drivers\btath_lwflt.sys [2010-10-27 58992]
R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\System32\drivers\btath_rcp.sys [2010-10-27 156520]
R3 BtFilter;BtFilter;C:\Windows\System32\drivers\btfilter.sys [2010-10-27 279152]
R3 CX88VID;FusionHDTV 88x AvStream Video Capture;C:\Windows\System32\drivers\zl88avs64.sys [2011-4-11 458496]
R3 EUDISK;EASEUS Disk Enumerator;C:\Windows\System32\drivers\eudisk.sys [2014-1-27 193928]
R3 ICCWDT;Intel® Watchdog Timer Driver (Intel® WDT);C:\Windows\System32\drivers\ICCWDT.sys [2010-8-17 26136]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\System32\drivers\LEqdUsb.sys [2013-1-3 79240]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\System32\drivers\LHidEqd.sys [2013-1-3 15752]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-1-18 351136]
R3 LVUVC64;Logitech Webcam Pro 9000(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-1-18 4865568]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2011-4-11 25928]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2012-8-27 107912]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2012-8-27 226696]
R3 NvStUSB;NVIDIA Stereoscopic 3D USB driver;C:\Windows\System32\drivers\nvstusb.sys [2014-1-7 451872]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-1-23 39200]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-7-12 849992]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
R3 VKbms;Virtual HID Minidriver;C:\Windows\System32\drivers\VKbms.sys [2012-7-21 13312]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-1-5 75624]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.EXE [2013-12-16 193696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 Sentinel64;Sentinel64;C:\Windows\System32\drivers\sentinel64.sys [2012-12-30 145448]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]
S3 ampa;ampa;C:\Windows\System32\ampa.sys [2014-1-27 17008]
S3 ATHDFU;Atheros Valkyrie USB BootROM;C:\Windows\System32\drivers\AthDfu.sys [2010-10-27 55336]
S3 cpudrv64;cpudrv64;C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-6-2 17864]
S3 danewFltr;NewDeathAdder Mouse;C:\Windows\System32\drivers\danew.sys [2012-7-21 12032]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2011-6-5 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-22 1493352]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-12-11 111616]
S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-5-11 822232]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-9-27 134944]
S3 NisSrv;NisSrv;"C:\Program Files\Microsoft Security Client\NisSrv.exe" --> C:\Program Files\Microsoft Security Client\NisSrv.exe [?]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-1 178824]
S3 radpms;Driver for RADPMS Device;C:\Windows\System32\drivers\radpms.sys [2010-12-8 14944]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-4-14 19456]
S3 rzdaendpt;Razer DeathAdder end point;C:\Windows\System32\drivers\rzdaendpt.sys [2013-6-6 25600]
S3 rzjoystk;Razer VJoystick;C:\Windows\System32\drivers\rzjoystk.sys [2011-3-24 19968]
S3 rzjstk;Razer Virtual Joystick Driver;C:\Windows\System32\drivers\rzjstk.sys [2013-6-6 19968]
S3 rzkeypadendpt;Razer Keypad Endpoint;C:\Windows\System32\drivers\rzkeypadendpt.sys [2013-6-6 24576]
S3 RzSynapse;Razer Driver;C:\Windows\System32\drivers\RzSynapse.sys [2011-7-14 157184]
S3 rzudd;Razer Keyboard Driver;C:\Windows\System32\drivers\rzudd.sys [2013-6-6 126464]
S3 rzvkeyboard;Razer Virtual Keyboard Driver;C:\Windows\System32\drivers\rzvkeyboard.sys [2013-6-6 23040]
S3 tbwkern;Kensington TrackballWorks driver;C:\Windows\System32\drivers\tbwkern.sys [2011-6-13 32848]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-4-14 57856]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-1-25 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\notepad.exe %1
ShellExec: dreamweaver.exe: Open="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\dreamweaver.exe", "%1"
.
=============== Created Last 30 ================
.
2014-02-08 08:29:56    240864    ----a-w-    C:\Windows\System32\drivers\SamsungRapidDiskFltr.sys
2014-02-08 08:29:52    --------    d-----w-    C:\Windows\System32\RAPID
2014-02-08 04:45:36    --------    d-----w-    C:\Users\robert\AppData\Local\Tem
2014-02-08 03:17:30    --------    d-----w-    C:\Program Files\ESET
2014-02-08 02:46:04    --------    d-----w-    C:\Windows\System32\wbem\repository
2014-02-08 02:37:46    2692    ----a-w-    C:\mseremoval.bat
2014-02-08 01:31:44    --------    d-----w-    C:\MATS
2014-02-08 01:15:34    772552    ----a-w-    C:\Windows\SysWow64\npDeployJava1.dll
2014-02-08 01:15:34    687560    ----a-w-    C:\Windows\SysWow64\deployJava1.dll
2014-02-07 22:31:58    --------    d-----w-    C:\Program Files (x86)\RAPID
2014-02-07 20:34:34    198    ----a-w-    C:\repair.bat
2014-02-07 19:22:29    --------    d-----w-    C:\Program Files (x86)\Microsoft Security Client
2014-02-07 18:16:16    89888    ----a-w-    C:\Windows\System32\NicInstC.dll
2014-02-07 18:16:16    73480    ----a-w-    C:\Windows\System32\e1cmsg.dll
2014-02-07 18:16:16    494864    ----a-w-    C:\Windows\System32\drivers\e1c62x64.sys
2014-02-07 18:16:16    --------    d-----w-    C:\PROWinx64
2014-02-07 17:25:27    --------    d-----w-    C:\Users\robert\AppData\Local\Avg2014
2014-02-07 16:26:24    7168    ----a-w-    C:\Windows\SysWow64\drivers\uti1ntaw.sys
2014-02-07 16:05:20    --------    d-sh--w-    C:\$RECYCLE.BIN
2014-02-07 08:00:16    91352    ----a-w-    C:\Windows\System32\drivers\mbamchameleon.sys
2014-02-07 02:37:18    --------    d-----w-    C:\Program Files (x86)\HD Tune Pro
2014-02-03 21:18:58    --------    d-----w-    C:\Users\robert\AppData\Roaming\Sega
2014-02-02 12:51:46    75888    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2C9F5699-6678-426B-AFF6-706EB7AF83E4}\offreg.dll
2014-02-01 02:12:28    10315576    ------w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2C9F5699-6678-426B-AFF6-706EB7AF83E4}\mpengine.dll
2014-01-31 05:37:38    --------    d-----w-    C:\Program Files (x86)\Coupons
2014-01-27 14:11:39    1806960    ----a-w-    C:\Windows\ampa.exe
2014-01-27 14:11:39    17008    ----a-w-    C:\Windows\SysWow64\ampa.sys
2014-01-27 14:11:39    17008    ----a-w-    C:\Windows\System32\ampa.sys
2014-01-27 14:11:37    --------    d-----w-    C:\Program Files (x86)\AOMEI Partition Assistant Pro Edition 5.5
2014-01-27 14:07:00    1024    ---ha-w-    C:\AMTAG.BIN
2014-01-27 13:53:04    26504    ----a-w-    C:\Windows\System32\drivers\eufs.sys
2014-01-27 13:53:04    193928    ----a-w-    C:\Windows\System32\drivers\eudisk.sys
2014-01-27 13:51:55    23432    ----a-w-    C:\Windows\System32\fbnative.exe
2014-01-27 13:46:17    --------    d-sh--w-    C:\BOOT
2014-01-27 03:41:09    --------    d-----w-    C:\Program Files (x86)\Karmian
2014-01-27 03:25:54    --------    d-----w-    C:\Program Files (x86)\ps3tools
2014-01-26 04:06:53    --------    d-----w-    C:\MGADiagToolOutput
2014-01-26 03:48:12    --------    d-----w-    C:\Windows\SysWow64\Wat
2014-01-26 03:48:12    --------    d-----w-    C:\Windows\System32\Wat
2014-01-26 00:46:45    17088    ----a-w-    C:\Windows\System32\drivers\BootDefragDriver.sys
2014-01-25 00:20:49    --------    d-----w-    C:\Users\robert\AppData\Roaming\Sync App Settings
2014-01-25 00:20:39    --------    d-----w-    C:\ProgramData\Sync App Settings
2014-01-25 00:20:30    --------    d-----w-    C:\Program Files (x86)\Allway Sync
2014-01-25 00:11:01    --------    d-----w-    C:\Users\robert\AppData\Roaming\MPC-HC
2014-01-23 20:11:02    39200    ----a-w-    C:\Windows\System32\drivers\nvvad64v.sys
2014-01-23 20:11:02    33056    ----a-w-    C:\Windows\SysWow64\nvaudcap32v.dll
2014-01-22 22:44:40    --------    d-----w-    C:\Program Files (x86)\Bruteforce Save Data
2014-01-22 16:59:54    36232    ----a-w-    C:\Windows\System32\drivers\eubakup.sys
2014-01-22 16:59:54    189000    ----a-w-    C:\Windows\System32\drivers\EuFdDisk.sys
2014-01-22 16:59:54    17800    ----a-w-    C:\Windows\System32\drivers\eudskacs.sys
2014-01-22 16:59:53    42888    ----a-w-    C:\Windows\System32\drivers\EUBKMON.sys
2014-01-22 16:58:16    --------    d-----w-    C:\Program Files (x86)\EaseUS
2014-01-20 07:18:25    --------    d-----w-    C:\Users\robert\AppData\Roaming\DarknessII
2014-01-19 23:53:26    --------    d-----w-    C:\Users\robert\AppData\Roaming\HD Tune Pro
2014-01-19 23:51:59    --------    d-----w-    C:\Program Files (x86)\WinDFT
2014-01-19 02:40:28    --------    d-----w-    C:\Users\robert\AppData\Roaming\Red Alert 3 Uprising
2014-01-18 02:30:43    --------    d-----w-    C:\Saves
2014-01-16 04:37:26    --------    d-----w-    C:\Users\robert\AppData\Roaming\TheBannerSaga
2014-01-16 02:38:18    99840    ----a-w-    C:\Windows\System32\drivers\usbccgp.sys
2014-01-16 02:38:18    7808    ----a-w-    C:\Windows\System32\drivers\usbd.sys
2014-01-16 02:38:18    53248    ----a-w-    C:\Windows\System32\drivers\usbehci.sys
2014-01-16 02:38:18    376768    ----a-w-    C:\Windows\System32\drivers\netio.sys
2014-01-16 02:38:18    343040    ----a-w-    C:\Windows\System32\drivers\usbhub.sys
2014-01-16 02:38:18    325120    ----a-w-    C:\Windows\System32\drivers\usbport.sys
2014-01-16 02:38:18    3156480    ----a-w-    C:\Windows\System32\win32k.sys
2014-01-16 02:38:18    30720    ----a-w-    C:\Windows\System32\drivers\usbuhci.sys
2014-01-16 02:38:18    25600    ----a-w-    C:\Windows\System32\drivers\usbohci.sys
2014-01-13 21:56:21    148480    ----a-w-    C:\Windows\SysWow64\OBroker.exe
.
==================== Find3M  ====================
.
2014-02-07 01:22:07    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-07 01:22:07    692616    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-01-22 13:38:53    92488    ----a-w-    C:\Windows\System32\LMIinit.dll
2014-01-22 13:38:53    35656    ----a-w-    C:\Windows\System32\LMIport.dll
2014-01-22 13:38:53    107368    ----a-w-    C:\Windows\System32\LMIRfsClientNP.dll
2014-01-22 01:16:42    117024    ----a-w-    C:\Windows\System32\BootDefrag.exe
2014-01-21 02:53:40    1048152    ----a-w-    C:\Windows\SysWow64\nvspcap.dll
2014-01-21 02:53:29    1179576    ----a-w-    C:\Windows\System32\nvspcap64.dll
2014-01-20 12:00:16    270496    ------w-    C:\Windows\System32\MpSigStub.exe
2013-12-27 18:42:16    35104    ----a-w-    C:\Windows\System32\nvaudcap64v.dll
2013-12-24 05:49:58    867360    ----a-w-    C:\Windows\PE_Rom.dll
2013-12-19 20:20:22    590112    ----a-w-    C:\Windows\SysWow64\nvStreaming.exe
2013-12-19 18:53:46    6671648    ----a-w-    C:\Windows\System32\nvcpl.dll
2013-12-19 18:53:46    3490080    ----a-w-    C:\Windows\System32\nvsvc64.dll
2013-12-19 18:53:44    922912    ----a-w-    C:\Windows\System32\nvvsvc.exe
2013-12-19 18:53:44    63776    ----a-w-    C:\Windows\System32\nvshext.dll
2013-12-19 18:53:44    386336    ----a-w-    C:\Windows\System32\nvmctray.dll
2013-12-19 05:09:39    96168    ----a-w-    C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-12-19 05:01:48    3539040    ----a-w-    C:\Windows\System32\nvcoproc.bin
2013-12-17 13:38:45    107368    ----a-w-    C:\Windows\System32\LMIRfsClientNP.dll.000.bak
2013-12-07 21:08:01    940032    ----a-w-    C:\Windows\System32\MsSpellCheckingFacility.exe
2013-12-07 21:08:01    194048    ----a-w-    C:\Windows\SysWow64\elshyph.dll
2013-12-06 00:04:36    367200    ----a-w-    C:\Windows\System32\drivers\afcdp.sys
2013-12-06 00:04:33    1464096    ----a-w-    C:\Windows\System32\drivers\tdrpman.sys
2013-12-06 00:04:32    198432    ----a-w-    C:\Windows\System32\drivers\tib_mounter.sys
2013-12-06 00:04:32    1120032    ----a-w-    C:\Windows\System32\drivers\tib.sys
2013-12-06 00:04:30    161568    ----a-w-    C:\Windows\System32\drivers\vididr.sys
2013-12-06 00:04:28    117024    ----a-w-    C:\Windows\System32\drivers\vidsflt.sys
2013-12-06 00:04:27    269600    ----a-w-    C:\Windows\System32\drivers\snapman.sys
2013-12-06 00:04:26    116000    ----a-w-    C:\Windows\System32\drivers\fltsrv.sys
2013-11-28 13:38:22    31520    ----a-w-    C:\Windows\System32\nvhdap64.dll
2013-11-28 13:38:18    197408    ----a-w-    C:\Windows\System32\drivers\nvhda64v.sys
2013-11-26 10:19:07    2724864    ----a-w-    C:\Windows\System32\mshtml.tlb
2013-11-26 10:18:23    4096    ----a-w-    C:\Windows\System32\ieetwcollectorres.dll
2013-11-26 09:48:07    66048    ----a-w-    C:\Windows\System32\iesetup.dll
2013-11-26 09:46:25    48640    ----a-w-    C:\Windows\System32\ieetwproxystub.dll
2013-11-26 09:23:02    2724864    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2013-11-26 09:18:39    139264    ----a-w-    C:\Windows\System32\ieUnatt.exe
2013-11-26 09:18:09    111616    ----a-w-    C:\Windows\System32\ieetwcollector.exe
2013-11-26 09:16:57    708608    ----a-w-    C:\Windows\System32\jscript9diag.dll
2013-11-26 08:35:02    5769216    ----a-w-    C:\Windows\System32\jscript9.dll
2013-11-26 08:28:16    553472    ----a-w-    C:\Windows\SysWow64\jscript9diag.dll
2013-11-26 08:16:12    4243968    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2013-11-26 08:02:16    1995264    ----a-w-    C:\Windows\System32\inetcpl.cpl
2013-11-26 07:32:06    1928192    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2013-11-26 07:07:57    2334208    ----a-w-    C:\Windows\System32\wininet.dll
2013-11-26 06:33:33    1820160    ----a-w-    C:\Windows\SysWow64\wininet.dll
2013-11-25 12:10:22    3846241    ----a-w-    C:\Windows\SysWow64\wbem\msds.exe
2013-11-23 18:26:20    417792    ----a-w-    C:\Windows\SysWow64\WMPhoto.dll
2013-11-23 17:47:34    465920    ----a-w-    C:\Windows\System32\WMPhoto.dll
2013-11-22 08:36:08    1515296    ----a-w-    C:\Windows\System32\nvhdagenco6420103.dll
2013-11-14 11:55:24    1884448    ----a-w-    C:\Windows\System32\nvdispco6433182.dll
2013-11-14 11:55:24    1511712    ----a-w-    C:\Windows\System32\nvdispgenco6433182.dll
2013-11-12 02:23:09    2048    ----a-w-    C:\Windows\System32\tzres.dll
2013-11-12 02:07:29    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2012-07-12 08:28:44    2174976    ----a-w-    C:\Program Files (x86)\Common Files\atimpenc.dll
.
============= FINISH:  8:40:57.29 ===============
 


Farbar Service Scanner Version: 02-02-2014
Ran by robert (administrator) on 08-02-2014 at 08:26:23
Running from "C:\Users\robert\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is set to Demand. The default start type is Auto.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is set to Disabled. The default start type is 3.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.


System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


Rkill 2.6.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/08/2014 09:16:55 AM in x64 mode.
Windows Version: Windows 7 Ultimate Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Windows\SysWOW64\bgsvcgen.exe (PID: 3056) [WD-HEUR]
 * C:\Windows\SysWOW64\wbem\msds.exe (PID: 3704) [WD-HEUR]
 * C:\Users\robert\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe (PID: 5856) [UP-HEUR]

3 proccesses terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  * HKLM\Software\Classes\.exe\shell found and deleted!


Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * Windows Firewall (MpsSvc) is not Running.
   Startup Type set to: Manual

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

 * Windows Firewall Authorization Driver (mpsdrv) is not Running.
   Startup Type set to: Manual

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1 lmlicenses.wip4.adobe.com
  127.0.0.1 lm.licenses.adobe.com
  127.0.0.1 na1r.services.adobe.com
  127.0.0.1 hlrcv.stage.adobe.com
  127.0.0.1 practivate.adobe.com
  127.0.0.1 activate.adobe.com
  127.0.0.1 activate.adobe.com
  127.0.0.1 3dns-3.adobe.com
  127.0.0.1 adobe-dns-2.adobe.com
  127.0.0.1 adobe-dns-3.adobe.com
  127.0.0.1 ereg.wip3.adobe.com
  127.0.0.1 activate-sea.adobe.com
  127.0.0.1 wip3.adobe.com
  127.0.0.1 wwis-dubc1-vip60.adobe.com
  127.0.0.1 activate-sjc0.adobe.com
  127.0.0.1 practivate.adobe.com
  127.0.0.1 ereg.adobe.com
  127.0.0.1 activate.wip3.adobe.com
  127.0.0.1 3dns-2.adobe.com
  127.0.0.1 adobe-dns.adobe.com

  20 out of 67 HOSTS entries shown.
  Please review HOSTS file for further entries.

Program finished at: 02/08/2014 09:17:11 AM
Execution time: 0 hours(s), 0 minute(s), and 16 seconds(s)
 



#4 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 12:47 PM

Kaspersky

 

Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\61\7e47263d-59d48aa9    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\61\7e47263d-59d48aa9    HEUR:Exploit.Java.Generic    Trojan program    Yesterday, 8:32 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\11\1145814b-5e6c2684    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\11\1145814b-5e6c2684        Unknown threat    Yesterday, 8:29 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\18\b902f92-7716022d//ewjvaiwebvhtuai124a.class    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\18\b902f92-7716022d//ewjvaiwebvhtuai124a.class    Exploit.Java.CVE-2013-0422.d    Trojan program    Yesterday, 8:29 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\22\4eda056-13d71c7d//ewjvaiwebvhtuai124a.class    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\22\4eda056-13d71c7d//ewjvaiwebvhtuai124a.class    Exploit.Java.CVE-2013-0422.d    Trojan program    Yesterday, 8:30 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\51\ba60233-20c47e77//Kioa/Kioc.class    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\51\ba60233-20c47e77//Kioa/Kioc.class    Exploit.Java.Agent.hd    Trojan program    Yesterday, 8:31 PM
Detected object (file) is no longer available    c:\dvd making\eac3to+aac+sonic.audio.transcoder+surcode.dts-dvd+arcsoft+nero.7-dev.[sharethefiles.com].7z//Sonic Dolby Digital Encoder 3.1/Audio Transcoder.exe    c:\dvd making\eac3to+aac+sonic.audio.transcoder+surcode.dts-dvd+arcsoft+nero.7-dev.[sharethefiles.com].7z//Sonic Dolby Digital Encoder 3.1/Audio Transcoder.exe    Trojan-FakeAV.Win32.MalwareCrush.f    Trojan program    Yesterday, 9:51 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\23\10ee57d7-4f52796a    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\23\10ee57d7-4f52796a    HEUR:Exploit.Java.Generic    Trojan program    Yesterday, 8:30 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\51\ba60233-20c47e77    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\51\ba60233-20c47e77        Unknown threat    Yesterday, 8:31 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\25\f695259-73798395    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\25\f695259-73798395    HEUR:Exploit.Java.Generic    Trojan program    Yesterday, 8:31 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\22\4eda056-13d71c7d    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\22\4eda056-13d71c7d        Unknown threat    Yesterday, 8:30 PM
Detected object (file) was deleted    c:\documents and settings\all users\installmate\{25074507-66da-4711-a5fa-2ef8fee467f1}\custom.dll    c:\documents and settings\all users\installmate\{25074507-66da-4711-a5fa-2ef8fee467f1}\custom.dll    not-a-virus:AdWare.Win32.Agent.aeph    Adware    Yesterday, 8:28 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\11\1145814b-5e6c2684//ewjvaiwebvhtuai124a.class    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\11\1145814b-5e6c2684//ewjvaiwebvhtuai124a.class    Exploit.Java.CVE-2013-0422.d    Trojan program    Yesterday, 8:29 PM
Detected object (file) is not active    
Detected object (file) is not active    
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\18\b902f92-7716022d    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\18\b902f92-7716022d        Unknown threat    Yesterday, 8:29 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\25\51a9c2d9-55f4da09//ewjvaiwebvhtuai124a.class    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\25\51a9c2d9-55f4da09//ewjvaiwebvhtuai124a.class    Exploit.Java.Agent.id    Trojan program    Yesterday, 8:31 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\47\1fe6b2f-1802ec22    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\47\1fe6b2f-1802ec22    HEUR:Exploit.Java.Generic    Trojan program    Yesterday, 8:31 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\62\53ed69be-1ef5b2fc    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\62\53ed69be-1ef5b2fc    HEUR:Exploit.Java.CVE-2012-1723.gen    Trojan program    Yesterday, 8:33 PM
Detected object (file) was deleted    c:\documents and settings\all users\installmate\{ea59f50e-bef7-4903-abe8-f6d531bad7f8}\custom.dll    c:\documents and settings\all users\installmate\{ea59f50e-bef7-4903-abe8-f6d531bad7f8}\custom.dll    not-a-virus:AdWare.Win32.Agent.aeph    Adware    Yesterday, 8:28 PM
Detected object (file) was deleted    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\25\51a9c2d9-55f4da09    c:\documents and settings\robert\appdata\locallow\sun\java\deployment\cache\6.0\25\51a9c2d9-55f4da09        Unknown threat    Yesterday, 8:31 PM
 


Eset Online scanner

 

C:\Users\All Users\Ask\APN-Stub\PTV\APNIC.dll    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    
C:\DVD making\RipBot264v1.17.3\Tools\Process\Process.exe    Win32/PrcView potentially unsafe application    deleted - quarantined
C:\multiAVCHD\tools\process.exe    Win32/PrcView potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\AVCHDCoder\Tools\Process.exe    Win32/PrcView potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\AWS\WeatherBug\Local\askToolbarInstaller-1.9.1.0.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\Bruteforce Save Data\BruteforceSaveData.exe    Win32/HackTool.BruteForce.CF potentially unsafe application    deleted - quarantined
C:\ProgramData\Ask\APN-Stub\PTV\APNIC.dll    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
C:\Users\robert\Desktop\ReimageRepair.exe    Win32/Toolbar.Babylon.T potentially unwanted application    deleted - quarantined
C:\Users\robert\Desktop\Software\multiAVCHD_4.1.exe    Win32/PrcView potentially unsafe application    deleted - quarantined
C:\Users\robert\Desktop\Software\SLIC_ToolKit_V3.2\SLIC_ToolKit_V3.2.EXE    Win32/HackTool.SLICMod.C potentially unsafe application    deleted - quarantined
D:\Software\ADOBE_PHOTOSHOP_CC_MULTI-XFORCE\Crack\disable_activation.cmd    BAT/HostsChanger.A potentially unsafe application    deleted - quarantined
D:\Software\ADOBE_PHOTOSHOP_CC_MULTI-XFORCE\Crack\xf-apscc.exe    a variant of Win32/Keygen.HA potentially unsafe application    deleted - quarantined
D:\Software\Nero 2014 Platinum 15.0.02200 Final (Patch Kindly) [ChingLiu]\Patch Kindly\nero.14.platinum.v15.0.02200_patch.exe    a variant of Win32/HackTool.Patcher.AD potentially unsafe application    deleted - quarantined
D:\Software\VMware.Workstation.v10.0.0.1295980.Keymaker-ZWT\keygen.exe    a variant of Win32/Keygen.IH potentially unsafe application    deleted - quarantined
 



#5 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 01:12 PM

# AdwCleaner v3.018 - Report created 08/02/2014 at 10:05:24
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : robert - ROBERT-2011-PC
# Running from : C:\Users\robert\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : SSUService

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Splashtop
Folder Deleted : C:\ProgramData\StarApp
[!] Folder Deleted : C:\Program Files (x86)\Splashtop
Folder Deleted : C:\Program Files (x86)\Tencent
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\Program Files (x86)\Common Files\Tencent
Folder Deleted : C:\Users\robert\AppData\Local\PackageAware
Folder Deleted : C:\Users\robert\AppData\Local\Splashtop
Folder Deleted : C:\Users\robert\AppData\Roaming\Babylon
Folder Deleted : C:\Users\robert\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
Folder Deleted : C:\Users\robert\AppData\Roaming\Tencent
File Deleted : C:\Users\robert\AppData\Roaming\Mozilla\Firefox\Profiles\6lnfkvkp.default\bprotector_prefs.js
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.xpt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Users\robert\AppData\Roaming\Mozilla\Firefox\Profiles\6lnfkvkp.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Key Deleted : HKCU\Software\53edbddb469bf44
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6517DD27-EA6F-4947-9DEA-F9C487BB1020}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C3110516-8EFC-49D6-8B72-69354F332062}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6517DD27-EA6F-4947-9DEA-F9C487BB1020}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{16466D47-74A8-4928-B8B2-07CD79ABFC9F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{26D5CC0A-7A46-4D86-AF45-2EFA320B0C54}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D13AC8F-037E-40C5-ADA6-231BA74EA2F4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{322EDCF5-9E7D-4021-8C67-F3FFE4961A38}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3E254398-828F-4D51-A39E-3F6B6D96A12C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{442DAF0C-7EAD-48D9-ABEA-E0036470D6D5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{58EB187D-24F8-4423-BD6C-655CE4C416BD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6BEB066C-A791-4A21-B934-7783533FE888}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A07612DF-B1DD-484F-A1C3-36CA4CE919D2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A76F97B2-2C56-456A-A29E-72741595C2E8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B19D9D96-E59C-4936-B283-8A831CDB3A53}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DC8AAABA-3F8B-4866-8B3A-D9368133A478}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E15519AE-99BE-42DD-BE60-FFC3C183F443}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Splashtop Inc.
Key Deleted : HKCU\Software\TENCENT
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Splashtop Inc.
Key Deleted : HKLM\Software\TENCENT
Key Deleted : HKLM\Software\WinWSD ToolBar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Splashtop Software Updater

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\robert\AppData\Roaming\Mozilla\Firefox\Profiles\6lnfkvkp.default\prefs.js ]

Line Deleted : user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_95.name", "sweetness");
Line Deleted : user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_95.url", "hxxp://www.iloveinterracial.com/albums/uservids/93669/d1320/sweetness.flv?start=26393879");
Line Deleted : user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_96.name", "sweetness");
Line Deleted : user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_96.url", "hxxp://www.iloveinterracial.com/albums/uservids/93669/d1320/sweetness.flv?start=17596892");
Line Deleted : user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_97.name", "sweetness");
Line Deleted : user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_97.url", "hxxp://www.iloveinterracial.com/albums/uservids/93669/d1320/sweetness.flv?start=10546523");
Line Deleted : user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_98.name", "sweetness");
Line Deleted : user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_98.url", "hxxp://www.iloveinterracial.com/albums/uservids/93669/d1320/sweetness.flv");
Line Deleted : user_pref("extensions.claro.admin", false);
Line Deleted : user_pref("extensions.claro.aflt", "babsst");
Line Deleted : user_pref("extensions.claro.appId", "{C3110516-8EFC-49D6-8B72-69354F332062}");
Line Deleted : user_pref("extensions.claro.dfltLng", "en");
Line Deleted : user_pref("extensions.claro.excTlbr", false);
Line Deleted : user_pref("extensions.claro.id", "88540ec500000000000000268314cdb0");
Line Deleted : user_pref("extensions.claro.instlDay", "15658");
Line Deleted : user_pref("extensions.claro.instlRef", "sst");
Line Deleted : user_pref("extensions.claro.prdct", "claro");
Line Deleted : user_pref("extensions.claro.prtnrId", "claro");
Line Deleted : user_pref("extensions.claro.tlbrId", "claro");
Line Deleted : user_pref("extensions.claro.tlbrSrchUrl", "");
Line Deleted : user_pref("extensions.claro.vrsn", "1.8.3.10");
Line Deleted : user_pref("extensions.claro.vrsni", "1.8.3.10");
Line Deleted : user_pref("extensions.claro_i.smplGrp", "none");
Line Deleted : user_pref("extensions.claro_i.vrsnTs", "1.8.3.1017:35:15");

-\\ Google Chrome v

[ File : C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [11263 octets] - [08/02/2014 10:04:25]
AdwCleaner[S0].txt - [11152 octets] - [08/02/2014 10:05:24]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11213 octets] ##########
 



#6 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 01:20 PM

Mini ToolBox hangs/stalls at FFproxy settings and List IP Configuration

 

 

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by robert (administrator) on 08-02-2014 at 10:14:47
Running from "C:\Users\robert\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================















::1 localhost



127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 3dns-2.adobe.com

There are 46 more lines starting with "127.0.0.1"

========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 10 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 10 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/08/2014 10:10:28 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/08/2014 10:09:40 AM) (Source: Application) (User: )
Description: Undefined subroutine &PerlSvc::Startup called at /<C:\Windows\SysWOW64\wbem\msds.exe>PerlSvc.pm line 95, <DATA> line 176.

Error: (02/08/2014 09:53:21 AM) (Source: Application Error) (User: )
Description: Faulting application name: aswMBR.exe, version: 0.9.9.1771, time stamp: 0x5147644e
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000005
Fault offset: 0x0002e41b
Faulting process id: 0x1f10
Faulting application start time: 0xaswMBR.exe0
Faulting application path: aswMBR.exe1
Faulting module path: aswMBR.exe2
Report Id: aswMBR.exe3

Error: (02/08/2014 09:50:51 AM) (Source: Application Error) (User: )
Description: Faulting application name: aswMBR.exe, version: 0.9.9.1771, time stamp: 0x5147644e
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000005
Fault offset: 0x0002e41b
Faulting process id: 0x1874
Faulting application start time: 0xaswMBR.exe0
Faulting application path: aswMBR.exe1
Faulting module path: aswMBR.exe2
Report Id: aswMBR.exe3

Error: (02/08/2014 09:44:51 AM) (Source: Application Error) (User: )
Description: Faulting application name: aswMBR.exe, version: 0.9.9.1771, time stamp: 0x5147644e
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000005
Fault offset: 0x0002e41b
Faulting process id: 0xa2c
Faulting application start time: 0xaswMBR.exe0
Faulting application path: aswMBR.exe1
Faulting module path: aswMBR.exe2
Report Id: aswMBR.exe3

Error: (02/08/2014 09:40:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/08/2014 09:33:22 AM) (Source: Application) (User: )
Description: Undefined subroutine &PerlSvc::Startup called at /<C:\Windows\SysWOW64\wbem\msds.exe>PerlSvc.pm line 95, <DATA> line 176.

Error: (02/08/2014 09:28:18 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\wbem\wmiprvse.exe; Description = ComboFix created restore point; Error = 0x81000101).

Error: (02/08/2014 09:18:18 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-792439163-464366848-1032909528-1018.bak).  hr = 0x80070539, The security ID structure is invalid.
.


Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {3da622fc-4a75-4d5a-8cbd-73d9361f62ea}

Error: (02/08/2014 08:26:05 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (02/08/2014 10:13:20 AM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT AUTHORITY)
Description: CBS Client initialization failed. Last error: 0x80080005

Error: (02/08/2014 10:13:20 AM) (Source: DCOM) (User: )
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (02/08/2014 10:11:20 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (02/08/2014 10:09:40 AM) (Source: Service Control Manager) (User: )
Description: The Splashtop® Remote Service service failed to start due to the following error:
%%2

Error: (02/08/2014 10:09:38 AM) (Source: Service Control Manager) (User: )
Description: The Sentinel64 service failed to start due to the following error:
%%20

Error: (02/08/2014 10:06:46 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service did not shut down properly after receiving a preshutdown control.

Error: (02/08/2014 09:39:09 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service hung on starting.

Error: (02/08/2014 09:37:07 AM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT AUTHORITY)
Description: CBS Client initialization failed. Last error: 0x80080005

Error: (02/08/2014 09:37:07 AM) (Source: DCOM) (User: )
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (02/08/2014 09:35:07 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.


Microsoft Office Sessions:
=========================
Error: (02/08/2014 10:10:28 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\robert\Desktop\esetsmartinstaller_enu.exe

Error: (02/08/2014 10:09:40 AM) (Source: Application)(User: )
Description: Undefined subroutine &PerlSvc::Startup called at /<C:\Windows\SysWOW64\wbem\msds.exe>PerlSvc.pm line 95, <DATA> line 176.

Error: (02/08/2014 09:53:21 AM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.17715147644entdll.dll6.1.7601.18247521ea8e7c00000050002e41b1f1001cf24f65a20f282C:\Users\robert\Desktop\aswMBR.exeC:\Windows\SysWOW64\ntdll.dlle56ccbb1-90e9-11e3-963c-00268314cdb0

Error: (02/08/2014 09:50:51 AM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.17715147644entdll.dll6.1.7601.18247521ea8e7c00000050002e41b187401cf24f6105c0782C:\Users\robert\Desktop\aswMBR.exeC:\Windows\SysWOW64\ntdll.dll8c03d021-90e9-11e3-963c-00268314cdb0

Error: (02/08/2014 09:44:51 AM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.17715147644entdll.dll6.1.7601.18247521ea8e7c00000050002e41ba2c01cf24f4efd97789C:\Users\robert\Desktop\aswMBR.exeC:\Windows\SysWOW64\ntdll.dllb578c97d-90e8-11e3-963c-00268314cdb0

Error: (02/08/2014 09:40:59 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\robert\Desktop\esetsmartinstaller_enu.exe

Error: (02/08/2014 09:33:22 AM) (Source: Application)(User: )
Description: Undefined subroutine &PerlSvc::Startup called at /<C:\Windows\SysWOW64\wbem\msds.exe>PerlSvc.pm line 95, <DATA> line 176.

Error: (02/08/2014 09:28:18 AM) (Source: System Restore)(User: )
Description: C:\Windows\system32\wbem\wmiprvse.exeComboFix created restore point0x81000101

Error: (02/08/2014 09:18:18 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-792439163-464366848-1032909528-1018.bak)0x80070539, The security ID structure is invalid.


Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {3da622fc-4a75-4d5a-8cbd-73d9361f62ea}

Error: (02/08/2014 08:26:05 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\robert\Desktop\esetsmartinstaller_enu.exe


CodeIntegrity Errors:
===================================
  Date: 2014-02-08 10:09:45.286
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 09:51:22.530
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 09:33:42.270
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 09:26:54.402
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 09:13:27.435
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 09:04:45.083
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 08:50:31.467
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 08:42:12.147
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 08:19:22.216
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-02-08 08:13:51.767
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

µTorrent (Version: 3.3.2.30303)
A1 Website Download (Version: 4.2.4)
ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212)
AC-3 ACM Codec 1.6 (Version: 1.6)
AC-3 ACM Codec x64 1.6 (Version: 1.6)
Acronis Drive Monitor (Version: 1.0.566)
Acronis True Image 2014 (Version: 17.0.6614)
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.0.0)
Adobe AIR (Version: 2.6.0.19140)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Creative Cloud (Version: 2.0.0.183)
Adobe Dreamweaver CC (Version: 13)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 12 Plugin (Version: 12.0.0.44)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CC (Version: 14.0)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Advanced Find and Replace v1.6.0 (Version: 1.6.0)
Advanced RAR Password Recovery (remove only)
Advanced Renamer
Aegisub 3.0.2 (Version: 3.0.2)
AI Suite II (Version: 1.01.14)
AIM 7
Air Video Server HD 1.0.11 (Version: 1.0.11)
Allway Sync version 14.0.1
Amazon Cloud Drive (Version: 2.1.2013.1340)
Amazon Cloud Player (Version: 2.3.0.422)
Amazon Music Importer (Version: 2.1.0)
AnyDVD (Version: 6.8.8.0)
AOMEI Partition Assistant Pro Edition 5.5
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Application Verifier x64 External Package (Version: 8.59.29722)
AsfTools 3.1 (remove only)
ASUS PC Diagnostics (Version: 1.1.2)
Atomic Clock Sync
Audacity 2.0
Auslogics Disk Defrag (Version: 3.5)
AVCHDCoder (Version: 11.12.27)
AVG 2014 (Version: 14.0.3658)
AVG PC TuneUp 2014 (en-US) (Version: 14.0.1001.229)
AVG PC TuneUp 2014 (Version: 14.0.1001.229)
AviSynth 2.5
AVStoDVD 2.7.3 (Version: 2.7.3)
Battlefield 4™ (Version: 1.0.0.0)
Battlelog Web Plugins (Version: 2.3.0)
BDtoAVCHD 1.7.9 (Version: 1.7.9)
Bigasoft Audio Converter 3.7.24.4700
Bing Bar (Version: 7.3.124.0)
BioShock Infinite *UPDATE 1.1.22.55730* version 0.0.0.9 (Version: 0.0.0.9)
Bluetooth Win7 Suite (64) (Version: 7.2.0.40)
BodyMedia SYNC (Version: 2.0.5.90)
Bonjour (Version: 3.0.0.10)
Borderlands 2
Bruteforce Save Data
Cacheman (Version: 7.70)
CameraHelperMsi (Version: 13.25.1010.0)
Canon MP130
Canon ScanGear Starter
CCE SP Trial Version
CCleaner (Version: 3.26)
Chinese Simplified Fonts Support For Adobe Reader X (Version: 10.0.0)
CoffeeCup HTML Editor
Combined Community Codec Pack 2014-01-17 (Version: 2014.01.17.0)
CoreAAC Audio Decoder (remove only)
CoreAVC Professional Edition (remove only)
CoreWavPack DirectShow Filters (remove only)
Counter-Strike: Global Offensive
Coupon Printer for Windows (Version: 5.0.0.4)
CPUID CPU-Z 1.63.0
Crysis®3 (Version: 1.1.0.0)
CuteFTP 8 Professional (Version: 8.3.4)
CyberLink PowerDVD 13 (Version: 13.0.3105.58)
D3DX10 (Version: 15.4.2368.0902)
Dead Island Riptide
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
Diablo III (Version: 1.0.7.15295)
DirectVobSub (remove only)
Dota 2
Driver Genius Professional 12.0.0.1306 (Version: 12.0.0.1306)
DriverIdentifier 4.2.6
DU Meter
DVD Decrypter (Remove Only)
DVD Identifier (Version: 5.2.0)
DVDFab 8.2.1.0 (07/09/2012) Qt
DVDInfoPro
DVDInfoPro 7.0.0.6
DVD-lab PRO 2.2
DVD-lab PRO 2.51
DVICO FusionHDTV 3.90.00  (Version: 3.68.0000)
EASEUS Todo Backup Professional 2.5 (Version: 2.5.0.1)
eMule
EPSON Artisan 50 Series Printer Uninstall
Epson Connect Printer Setup (Version: 1.1.1)
EPSON Connect version 1.0 (Version: 1.0)
Epson Customer Participation (Version: 1.4.0.0)
Epson Event Manager (Version: 3.01.0003)
Epson FAX Utility (Version: 1.30.00)
Epson Print CD (Version: 2.20.00)
EPSON Scan
EPSON XP-800 Series Printer Uninstall
EpsonNet Print (Version: 2.5.00)
eReg (Version: 1.20.138.34)
ESN Sonar (Version: 0.70.4)
EVGA Precision X 4.2.1 (Version: 4.2.1)
Fable III (Version: 1.0.0001.131)
Far Cry 3 (Version: 1.05)
Far Cry 3 Blood Dragon (Version: 1.00)
ffdshow v1.2.4422 [2012-04-09] (Version: 1.2.4422.0)
FFmpeg v0.6.2 for Audacity
File Splitter and Joiner (FFSJ v3.3)
FileZilla Client 3.7.3 (Version: 3.7.3)
FlashFXP v4.2 (Version: 4.2.5.1813)
FlashGet 1.9.6.1073 (Version: 1.9.6.1073)
FlashGet(JetCar)
foobar2000 v1.1.13 (Version: 1.1.13)
Geeks3D FurMark 1.11.0
GeForce Experience NvStream Client Components (Version: 1.6.28)
Glary Utilities PRO 4.5 (Version: 4.5.0.89)
Google Chrome (Version: 32.0.1700.107)
Google Drive (Version: 1.13.5782.599)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.22.3)
Haali Media Splitter
Half-Life 2
HandBrake 0.9.9.1 (Version: 0.9.9.1)
HAPI Connect (Version: 1.2.6)
HD Tune Pro 5.50
HighPoint RAID Management Software
HP USB Disk Storage Format Tool
HTML-Kit 292 (Version: 1.0)
iCloud (Version: 3.1.0.40)
ImgBurn (Version: 2.5.8.0)
ImTOO HD Video Converter (Version: 7.7.2.20130122)
Intel® Management Engine Components (Version: 9.5.10.1550)
Intel® Network Connections 18.3.72.0 (Version: 18.3.72.0)
Intel® Rapid Storage Technology (Version: 12.5.0.1066)
Intel® Trusted Connect Service Client (Version: 1.28.487.1)
Intel® Watchdog Timer Driver (Intel® WDT)
iPhoneBrowser (Version: 1.9.3)
IsoBuster 2.8.5 (Version: 2.8.5)
iTunes (Version: 11.1.3.8)
Java 7 Update 45 (64-bit) (Version: 7.0.450)
Java 7 Update 51 (Version: 7.0.510)
Java Auto Updater (Version: 2.1.9.8)
JavaFX 2.1.1 (Version: 2.1.1)
JDownloader 0.9 (Version: 0.9)
JDownloader 2 (Version: 2.0)
JMicron JMB36X Driver (Version: 1.17.65.11)
Junk Mail filter update (Version: 15.4.3502.0922)
Kits Configuration Installer (Version: 8.59.25584)
L.A. Noire (Version: 1.00.0000)
Lame ACM MP3 Codec
LAME v3.99.3 (for Windows)
Left 4 Dead 2
Logitech SetPoint 6.52 (Version: 6.52.74)
Logitech Vid HD (Version: 7.2 (7248))
Logitech Webcam Software (Version: 2.0)
LogMeIn (Version: 4.1.1586)
LWS Facebook (Version: 13.20.1166.0)
LWS Gallery (Version: 13.20.1166.0)
LWS Help_main (Version: 13.25.1016.0)
LWS Launcher (Version: 13.20.1166.0)
LWS Motion Detection (Version: 13.20.1176.0)
LWS Pictures And Video (Version: 13.25.1010.0)
LWS Twitter (Version: 13.20.1166.0)
LWS Video Mask Maker (Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.25.1005.0)
LWS Webcam Software (Version: 13.20.1168.0)
LWS WLM Plugin (Version: 1.20.1166.0)
LWS YouTube Plugin (Version: 13.20.1166.0)
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
marvell 91xx driver (Version: 1.2.0.1035)
Media converter
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5.1 (???) (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1 (????) (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1 (CHS) (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1 (JPN) (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1 (KOR) (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1(???) (Version: 4.5.50938)
Microsoft Access MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft DCF MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Excel MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Expression Blend 3 SDK (Version: 1.0.1343.0)
Microsoft Expression Blend 4 (Version: 4.0.20525.0)
Microsoft Expression Blend SDK for .NET 4 (Version: 2.0.20525.0)
Microsoft Expression Blend SDK for Silverlight 4 (Version: 2.0.20525.0)
Microsoft Expression Design 4 (Version: 7.0.20516.0)
Microsoft Expression Encoder 4 (Version: 4.0.1639.0)
Microsoft Expression Encoder 4 Screen Capture Codec (Version: 4.0.1639.0)
Microsoft Expression Studio 4 (Version: 4.0.20525.0)
Microsoft Expression Web 4 (Version: 4.0.1303.0)
Microsoft Expression Web 4 Service Pack 2
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Groove MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Lync MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Mouse and Keyboard Center (Version: 2.2.173.0)
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4420.1017)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Outlook Hotmail Connector 64-bit (Version: 14.0.5118.5000)
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50401.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual J# 2.0 Redistributable Package
Microsoft Visual J# 2.0 Redistributable Package (Version: 2.0.50727)
Microsoft Windows Media Video 9 VCM
Microsoft Word MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 Refresh (Version: 4.0.30901.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
MKVcleaver (Version: 5.0.3)
MKVcleaver 64 bit (Version: 6.0.1)
MKVToolNix 6.4.1 (Version: 6.4.1)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
My Game Long Name
My MP4Box GUI 0.5.6.0 (Version: 0.5.6.0)
Nero 2014 (Version: 15.0.02200)
Nero 7 Premium (Version: 7.02.9753)
Nero Audio Pack 1 (Version: 11.0.11500.110.0)
Nero Blu-ray Player (Version: 12.0.20031)
Nero Blu-ray Player Help (CHM) (Version: 15.0.00015)
Nero Burning Core (Version: 15.0.19000)
Nero Burning ROM (Version: 15.0.19000)
Nero Burning ROM Help (CHM) (Version: 15.0.00018)
Nero ControlCenter (Version: 11.0.16700)
Nero ControlCenter Help (CHM) (Version: 15.0.00015)
Nero Core Components (Version: 11.0.22500)
Nero Disc Menus Basic (Version: 12.0.11500)
Nero Disc to Device (Version: 15.0.12010)
Nero Effects Basic (Version: 15.0.10010)
Nero Express (Version: 15.0.19000)
Nero Express Help (CHM) (Version: 15.0.00018)
Nero Info (Version: 15.1.0023)
Nero Kwik Themes Basic (Version: 12.0.11500)
Nero Launcher (Version: 15.0.8000)
Nero MediaHome (Version: 1.20.8200)
Nero MediaHome Help (CHM) (Version: 15.0.00018)
Nero PiP Effects Basic (Version: 15.0.10008)
Nero Recode (Version: 15.0.14000)
Nero Recode Help (CHM) (Version: 15.0.00018)
Nero RescueAgent (Version: 15.0.2000)
Nero RescueAgent Help (CHM) (Version: 15.0.00015)
Nero SharedVideoCodecs (Version: 1.0.15003)
Nero Update (Version: 11.0.13300.42.0)
Nero Video (Version: 15.0.12000)
Nero Video Help (CHM) (Version: 15.0.00015)
neroxml (Version: 1.0.0)
NVIDIA 3D Vision Controller Driver 332.21 (Version: 332.21)
NVIDIA 3D Vision Driver 332.21 (Version: 332.21)
NVIDIA 3D Vision Video Player (Version: 1.7.5)
NVIDIA Control Panel 332.21 (Version: 332.21)
NVIDIA GeForce Experience 1.8.2 (Version: 1.8.2)
NVIDIA Graphics Driver 332.21 (Version: 332.21)
NVIDIA HD Audio Driver 1.3.30.1 (Version: 1.3.30.1)
NVIDIA Install Application (Version: 2.1002.142.992)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Network Service (Version: 1.0)
NVIDIA PhysX (Version: 9.13.0725)
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 11.10.11 (Version: 11.10.11)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.3221)
NVIDIA Update 11.10.11 (Version: 11.10.11)
NVIDIA Update Core (Version: 11.10.11)
NVIDIA Virtual Audio 1.2.20 (Version: 1.2.20)
OpenAL
Opera 12.16 (Version: 12.16.1860)
Origin (Version: 9.1.15.109)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017)
Path of Exile
PAYDAY: The Heist
PDF Settings CC (Version: 12.0)
Pid
PL-2303 USB-to-Serial (Version: 1.00.000)
Plex Media Server (Version: 0.9.728)
POWERPREP II (Version: 2.1.0000)
Prerequisite installer (Version: 15.0.0005)
PS3Merge version 1.0.1.0 (Version: 1.0.1.0)
QuickTime (Version: 7.74.80.86)
RAPID Mode (Version: 1.0.1.42)
Razer DeathAdder™ Mouse (Version: 3.03)
Razer Synapse 2.0 (Version: 1.11.3)
Realtek Ethernet Controller Driver (Version: 7.72.410.2013)
Realtek High Definition Audio Driver (Version: 6.0.1.6959)
Rename It 3.0
Rename-It! (Version: 3.32)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.39.0)
RivaTuner Statistics Server 5.4.1 (Version: 5.4.1)
RoboForm 7-9-2-5 (All Users) (Version: 7-9-2-5)
Rockstar Games Social Club (Version: 1.0.9.5)
Safari (Version: 5.34.57.2)
Samsung Magician (Version: 4.3.0)
Screenshot Captor 4.03.00
SDK Debuggers (Version: 8.59.29746)
SFV Checker
SHIELD Streaming (Version: 1.7.306)
Skype Click to Call (Version: 6.9.12585)
Skype™ 6.11 (Version: 6.11.102)
SmartSound Common Data (Version: 1.1.0)
SmartSound Quicktracks 5 (Version: 5.1.6)
Snagit 10 (Version: 10.0.0)
Software Updater (Version: 4.1.7)
Spec Ops: The Line
Splashtop Streamer (Version: 2.4.5.2)
Spotify (Version: 0.5.2)
Stamps.com (Version: 10.1.1.2456)
StarCraft II (Version: 2.0.7.25293)
Steam (Version: 1.0.0.0)
Subtitle Workshop 2.51
Super Meat Boy v1.5
SUPER STREET FIGHTER IV: ARCADE EDITION (Version: 1.0.0001.129)
SUPER STREET FIGHTER IV: ARCADE EDITION (Version: 1.0.0002.129)
SUPER STREET FIGHTER IV: ARCADE EDITION (Version: 1.0.0004.129)
SureThing Disc Labeler Gold (Version: 6.0.34.0)
System Requirements Lab Detection (Version: 1.0.5.0)
System Requirements Lab for Intel (Version: 4.5.13.0)
Team Fortress 2
Tencent QQ (Version: 1.75.2548.0)
The Darkness II
The KMPlayer (remove only) (Version: 3.6.0.87)
TMPGEnc Authoring Works 4 (Version: 4.0.11.39)
TMPGEnc Plus 2.5 (Version: 2.524.63.181)
TMPGEnc Video Mastering Works 5 (Version: 5.0.5.32)
Tom Clancy's Splinter Cell® Blacklist™ (Version: 1.03)
Tomb Raider
Torchlight II
Trine 2
Ubisoft Game Launcher (Version: 1.0.0.0)
UltraISO Premium V9.6
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition
Update for Microsoft Access 2013 (KB2827233) 64-Bit Edition
Update for Microsoft InfoPath 2013 (KB2837648) 64-Bit Edition
Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition
Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition
Update for Microsoft Office 2013 (KB2826004) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827239) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837626) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837637) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837638) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition
Update for Microsoft Office 2013 (KB2850066) 64-Bit Edition
Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition
Update for Microsoft Outlook 2013 (KB2850061) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2767850) 64-Bit Edition
Update for Microsoft Project 2013 (KB2727085) 64-Bit Edition
Update for Microsoft Publisher 2013 (KB2837635) 64-Bit Edition
Update for Microsoft SkyDrive Pro (KB2817495) 64-Bit Edition
Update for Microsoft SkyDrive Pro (KB2837652) 64-Bit Edition
Update for Microsoft Visio 2013 (KB2817306) 64-Bit Edition
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition
Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition
Uplay (Version: 3.0)
URL Helper
URL Snooper v2.32.01
Vegas Pro 12.0 (64-bit) (Version: 12.0.367)
Virtual Account Numbers (Version: 1.0.1.0)
Virtual Account Numbers (Version: 1.0.6.0)
Virtual Account Numbers (Version: 4.0.0.2248)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.1.2 (Version: 2.1.2)
VSO Video Converter 1 (Version: 1.1.0.1)
WeatherBug (Version: 7.0.0.7)
WicReset version 3.0.60.50 (Version: 3.0.60.50)
WinDFT (Version: 1.0.0)
Windows App Certification Kit Native Components (Version: 8.59.29736)
Windows App Certification Kit x64 (Version: 8.59.29750)
Windows Driver Package - Dvico (CX88VID) Media  (06/30/2008 6.2.00.3) (Version: 06/30/2008 6.2.00.3)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
Windows Software Development Kit (Version: 8.59.29750)
Windows Software Development Kit DirectX x64 Remote (Version: 8.59.25584)
Windows Software Development Kit DirectX x86 Remote (Version: 8.59.25584)
Windows Software Development Kit EULA (Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps (Version: 8.59.29750)
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.29699)
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (Version: 8.59.29699)
Windows Software Development Kit Redistributables (Version: 8.59.29750)
WinPcap 4.1.3 (Version: 4.1.0.2980)
WinRAR 5.00 (64-bit) (Version: 5.00.0)
WinSCP 5.1.2 (Version: 5.1.2)
WinZip 15.0 (Version: 15.0.9411)
WPF Toolkit February 2010 (Version 3.5.50211.1) (Version: 3.5.50211.1)
WPT Redistributables (Version: 8.59.29750)
WPTx64 (Version: 8.59.29722)
Xilisoft DVD Ripper Ultimate (Version: 7.5.0.20120822)
Xvid Video Codec (Version: 1.3.2)
YAMB

========================= Devices: ================================

Name: Sentinel64
Description: Sentinel64
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Sentinel64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


========================= Memory info: ===================================

Percentage of memory in use: 25%
Total physical RAM: 16351.13 MB
Available physical RAM: 12201.13 MB
Total Pagefile: 32700.44 MB
Available Pagefile: 28144.73 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.32 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:238.38 GB) (Free:81.8 GB) NTFS
2 Drive d: (New Volume) (Fixed) (Total:931.51 GB) (Free:305.16 GB) NTFS
3 Drive e: (Local Disk) (Fixed) (Total:931.51 GB) (Free:266.45 GB) NTFS
4 Drive f: (New Volume) (Fixed) (Total:1863.01 GB) (Free:1862.87 GB) NTFS

========================= Users: ========================================

User accounts for \\ROBERT-2011-PC

Administrator            Guest                    robert                   
Robert1                  


**** End of log ****

 


Edited by rsuryase, 08 February 2014 - 01:20 PM.


#7 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 01:25 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.1 (02.04.2014:1)
OS: Windows 7 Ultimate x64
Ran by robert on Sat 02/08/2014 at 10:14:15.38
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] splashtopremoteservice
Successfully deleted: [Service] splashtopremoteservice



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-792439163-464366848-1032909528-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askchecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askchecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\robotaskbaricon_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\robotaskbaricon_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\askchecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\askchecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\robotaskbaricon_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\robotaskbaricon_RASMANCS



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"



~~~ FireFox

Successfully deleted the following from C:\Users\robert\AppData\Roaming\mozilla\firefox\profiles\6lnfkvkp.default\prefs.js

user_pref("SothinkWebVideoDownloaderWebVideoDownloader.DownloadedArray_0.url", "hxxp://v10.lscache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.DownloadedArray_1.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1267.url", "hxxp://fs976dm.fileserve.com/file/cMXZCWr/5CnV9SRX59c8B2nT8HcWr5p3uPwJI7mGhDl-fmrR1uZMWrZCfBcrc
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1466.url", "hxxp://o-o.preferred.sjc07s15.v11.lscache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1467.url", "hxxp://o-o.preferred.sjc07s15.v3.lscache8.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1468.url", "hxxp://o-o.preferred.sjc07s15.v18.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1469.url", "hxxp://o-o.preferred.sjc07s15.v3.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1470.url", "hxxp://o-o.preferred.sjc07s15.v12.lscache1.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1474.url", "hxxp://v7.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1476.url", "hxxp://fs786dm.fileserve.com/file/4qQUqyW/7TIHWf5MzM30t8HQAbPQhZ3o1zP1QQNbOqnipPkrq0BV9VEV9CAYr
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1745.url", "hxxp://fs694dm.fileserve.com/file/8QEaUG8/yx5_0gWNcqIV9qC99bXbZbbK1PNj7EPPZsSYkarVgXCZhM0lWx4EG
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1757.url", "hxxp://o-o.preferred.sjc07s15.v1.lscache6.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_1770.url", "hxxp://fs532dm.fileserve.com/file/m66tQku/fEug03o4x9wz5-nGD931n1B5B6k5cCfm3lzQMS3Hdhh75Zq5FgwJc
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2165.url", "hxxp://o-o.preferred.sjc07s15.v19.lscache8.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2387.url", "hxxp://fs295dm.fileserve.com/file/puEebFH/K-PCFFF5--DfezP1LuGTtHMF5BjV99rcU_YG2DJwDg3tJ3whv3NGl
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2390.url", "hxxp://fs865dm.fileserve.com/file/2YGWtDN/UdCFMv9Ww-oyAqRcUG1HwWnV-zVBt97rDRG0Z1AjSoJG4BrnCmI1v
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2568.url", "hxxp://fs190dm.fileserve.com/file/AQmbxZB/v9K-Bayb_PQTaD9PqaDXciKw91KqmYOtL4ZMZLlLMzMY9reb5KK72
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2570.url", "hxxp://v11.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2574.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2575.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2576.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2577.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2578.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2579.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2580.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2581.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2582.url", "hxxp://tc.v21.cache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calg
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2584.url", "hxxp://v24.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2594.url", "hxxp://v12.lscache6.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2595.url", "hxxp://v12.lscache6.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2596.url", "hxxp://v12.lscache6.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2597.url", "hxxp://v12.lscache6.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2598.url", "hxxp://v17.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2599.url", "hxxp://v17.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2600.url", "hxxp://v5.lscache6.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2602.url", "hxxp://v10.lscache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2603.url", "hxxp://v18.lscache1.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2604.url", "hxxp://v18.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2605.url", "hxxp://v1.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2607.url", "hxxp://v17.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2609.url", "hxxp://v13.lscache8.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2610.url", "hxxp://v11.lscache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2611.url", "hxxp://v13.lscache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2612.url", "hxxp://v11.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2613.url", "hxxp://v23.lscache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2614.url", "hxxp://v19.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2615.url", "hxxp://v19.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2616.url", "hxxp://v19.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2617.url", "hxxp://v19.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2618.url", "hxxp://v5.lscache8.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2619.url", "hxxp://v16.lscache6.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2620.url", "hxxp://v14.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2621.url", "hxxp://v17.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2622.url", "hxxp://v6.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2623.url", "hxxp://v23.lscache1.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2627.url", "hxxp://v19.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_2628.url", "hxxp://v6.nonxt7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgorit
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_310.url", "hxxp://o-o.preferred.sjc07s15.v23.lscache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3123.url", "hxxp://v17.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Crate
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3124.url", "hxxp://v16.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3125.url", "hxxp://v15.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_325.url", "hxxp://tc.v20.cache8.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Csour
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3281.url", "hxxp://v15.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3308.url", "hxxp://release.theplatform.com/content.select?pid=CY_S7hXtNqQeV90IBjwHRCCd1FTCXCvK&UserName=Unk
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3322.url", "hxxp://fs961dm.fileserve.com/file/CSzeCGj/ezGNi6Uj80MW2mUjKyHsiAO-bhwDM06cIJp-S_zMCe3QKasXb8Wcl
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3351.url", "hxxp://v3.lscache6.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3391.url", "hxxp://v1.lscache1.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Crateb
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3392.url", "hxxp://v14.lscache1.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3405.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3406.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3407.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3408.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3409.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3410.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3411.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3412.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3413.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3414.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3415.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3416.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3417.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3418.url", "hxxp://v2.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3425.url", "hxxp://v22.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3664.url", "hxxp://release.theplatform.com/content.select?pid=_yCW6bzhktc1_GhrdXYGgJqsRyRW9CV9&UserName=Unk
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3694.url", "hxxp://v3.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3713.url", "hxxp://v3.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3723.url", "hxxp://v21.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3831.url", "hxxp://v10.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3844.url", "hxxp://v12.lscache4.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3906.url", "hxxp://v6.cache7.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgorit
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3907.url", "hxxp://v16.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3908.url", "hxxp://tc.v6.cache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3909.url", "hxxp://v7.lscache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgor
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_3910.url", "hxxp://v12.lscache1.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Calgo
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_46.url", "hxxp://o-o.preferred.sjc07s15.v7.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2C
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_47.url", "hxxp://o-o.preferred.sjc07s15.v9.lscache5.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2C
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_48.url", "hxxp://o-o.preferred.sjc07s15.v16.lscache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_49.url", "hxxp://tc.v20.cache8.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Csourc
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_57.url", "hxxp://tc.v9.cache2.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Csource
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_59.url", "hxxp://tc.v13.cache3.c.youtube.com/videoplayback?sparams=id%2Cexpire%2Cip%2Cipbits%2Citag%2Csourc
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_647.name", "streetdick_WMV_V9");
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_647.url", "hxxp://www.iloveinterracial.com/albums/uservids/615300/db379/streetdick_WMV_V9.flv?start=5922487
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_648.name", "streetdick_WMV_V9");
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_648.url", "hxxp://www.iloveinterracial.com/albums/uservids/615300/db379/streetdick_WMV_V9.flv?start=5511909
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_649.name", "streetdick_WMV_V9");
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_649.url", "hxxp://www.iloveinterracial.com/albums/uservids/615300/db379/streetdick_WMV_V9.flv?start=5254606
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_650.name", "streetdick_WMV_V9");
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_650.url", "hxxp://www.iloveinterracial.com/albums/uservids/615300/db379/streetdick_WMV_V9.flv?start=4633235
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_651.name", "streetdick_WMV_V9");
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_651.url", "hxxp://www.iloveinterracial.com/albums/uservids/615300/db379/streetdick_WMV_V9.flv?start=3849408
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_652.name", "streetdick_WMV_V9");
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_652.url", "hxxp://www.iloveinterracial.com/albums/uservids/615300/db379/streetdick_WMV_V9.flv?start=2986356
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_653.name", "streetdick_WMV_V9");
user_pref("SothinkWebVideoDownloaderWebVideoDownloader.HistoryArray_653.url", "hxxp://www.iloveinterracial.com/albums/uservids/615300/db379/streetdick_WMV_V9.flv");
Emptied folder: C:\Users\robert\AppData\Roaming\mozilla\firefox\profiles\6lnfkvkp.default\minidumps [9 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 02/08/2014 at 10:21:28.28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#8 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 01:28 PM

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""    "12/11/2013 5:34 AM"
+ "Acronis Scheduler2 Service"    "Acronis Scheduler Helper"    "Acronis"    "c:\program files (x86)\common files\acronis\schedule2\schedhlp.exe"    "7/17/2013 11:57 PM"
+ "AdobeAAMUpdater-1.0"    "Adobe Updater Startup Utility"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"    "5/30/2013 7:15 AM"
+ "egui"    "ESET Main GUI"    "ESET"    "c:\program files\eset\eset smart security\egui.exe"    "11/26/2012 4:21 AM"
+ "LogMeIn GUI"    "LogMeIn Desktop Application"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x64\logmeinsystray.exe"    "4/12/2007 9:56 AM"
+ "NvBackend"    "NVIDIA GeForce Experience Backend"    "NVIDIA Corporation"    "c:\program files (x86)\nvidia corporation\update core\nvbackend.exe"    "1/20/2014 4:32 PM"
+ "RtHDVBg_DTS"    "HD Audio Background Process"    "Realtek Semiconductor"    "c:\program files\realtek\audio\hda\ravbg64.exe"    "6/27/2013 9:51 PM"
+ "RTHDVCPL"    "Realtek HD Audio Manager"    "Realtek Semiconductor"    "c:\program files\realtek\audio\hda\rtkngui64.exe"    "6/27/2013 2:20 AM"
+ "SamsungRapidApp"    "Samsung RAPID Mode Notification Utility"    "Samsung Electronics Co., Ltd."    "c:\program files (x86)\rapid\cachefilter\samsungrapidapp.exe"    "7/29/2013 10:56 AM"
+ "ShadowPlay"    "NVIDIA Capture Server Proxy"    "NVIDIA Corporation"    "c:\windows\system32\nvspcap64.dll"    "1/20/2014 6:45 PM"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""    "2/8/2014 10:09 AM"
+ "adm_tray.exe"    "ADM System Tray Application"    "Acronis"    "c:\program files (x86)\acronis\drivemonitor\adm_tray.exe"    "2/24/2011 7:49 AM"
+ "AppleSyncNotifier"    "AppleSyncNotifier"    "Apple Inc."    "c:\program files (x86)\common files\apple\mobile device support\applesyncnotifier.exe"    "9/27/2011 12:45 PM"
+ "APSDaemon"    "Apple Push"    "Apple Inc."    "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"    "4/16/2013 7:13 PM"
+ "DU Meter"    "DU Meter"    "Hagel Technologies"    "c:\program files (x86)\du meter\dumeter.exe"    "6/19/1992 2:22 PM"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""    "4/12/2011 9:21 AM"
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"    "7/13/2009 3:58 PM"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"    ""    ""    ""    "2/7/2014 5:35 PM"
+ "Internet Explorer"    ""    ""    "File not found: C:\Windows\system32\ie4uinit.exe"    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files (x86)\windows mail\winmail.exe"    "7/13/2009 3:42 PM"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""    "2/8/2014 9:18 AM"
+ "Aim"    "AOL Instant Messenger"    "AOL Inc."    "c:\program files (x86)\aim\aim.exe"    "5/30/2012 9:15 AM"
+ "AirVideoServerHD"    "Air Video Server HD"    "inMethod"    "c:\program files (x86)\airvideoserver hd\airvideoserverstarter.exe"    "10/4/2013 2:21 PM"
+ "Amazon Cloud Player"    ""    ""    "c:\users\robert\appdata\local\amazon cloud player\amazon music helper.exe"    "1/14/2014 11:46 AM"
+ "ApplePhotoStreams"    "Apple Photostreams Uploader Executable"    "Apple Inc."    "c:\program files (x86)\common files\apple\internet services\applephotostreams.exe"    "4/16/2013 7:13 PM"
+ "CachemanTray"    "Cacheman Tray Icons"    "Outertech"    "c:\program files (x86)\cacheman\cachemantray.exe"    "6/19/1992 2:22 PM"
+ "EPLTarget\P0000000000000001"    "EPSON Status Monitor 3"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\spool\drivers\x64\3\e_iatijae.exe"    "2/28/2012 11:26 PM"
+ "FusionTrayAgent"    ""    ""    "c:\program files (x86)\dvico\fusionhdtv\fusionhdtvtray.exe"    "5/26/2009 1:22 AM"
+ "iCloudServices"    "iCloud"    "Apple Inc."    "c:\program files (x86)\common files\apple\internet services\icloudservices.exe"    "4/16/2013 7:13 PM"
+ "RoboForm"    "RoboForm TaskBar Icon"    "Siber Systems"    "c:\program files (x86)\siber systems\ai roboform\robotaskbaricon.exe"    "9/27/2013 10:26 AM"
+ "Skype"    "Skype "    "Skype Technologies S.A."    "c:\program files (x86)\skype\phone\skype.exe"    "11/14/2013 8:33 AM"
+ "uTorrent"    "µTorrent"    "BitTorrent Inc."    "c:\users\robert\appdata\roaming\utorrent\utorrent.exe"    "8/23/2013 11:05 AM"
+ "Weather"    ""    "AWS Convergence Technologies, Inc."    "c:\program files (x86)\aws\weatherbug\weather.exe"    "4/29/2010 5:35 AM"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services\AutoStartOnConnect"    ""    ""    ""    "12/17/2012 5:54 AM"
+ "NeroMobileAd"    "Nero Mobile Advertisment"    "Nero AG"    "c:\program files (x86)\nero\nero 7\nero mobile\neromobilead.exe"    "8/28/2006 1:12 AM"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""    "7/13/2009 8:53 PM"
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office15\msoxmlmf.dll"    "9/29/2012 10:44 AM"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""    "7/13/2009 8:53 PM"
+ "ms-help"    "Microsoft® Help Data Services Module"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\help\hxds.dll"    "9/29/2012 10:49 AM"
+ "osf"    "Microsoft Office 2013 component"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\msosb.dll"    "9/29/2012 10:35 AM"
+ "skype-ie-addon-data"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"    "5/14/2013 5:18 AM"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""    "2/8/2014 12:29 AM"
+ "Groove GFS Stub Execution Hook"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"    "1/21/2010 6:10 PM"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""    "2/8/2014 10:25 AM"
+ "Groove GFS Stub Execution Hook"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"    "1/21/2010 5:48 PM"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "AccExt"    "Core Sync"    ""    "c:\program files (x86)\adobe\adobe creative cloud\coresync\coresync_v_1_1_0_x64.dll"    "6/19/2013 3:21 PM"
+ "Adobe.Acrobat.ContextMenu"    "Adobe Acrobat Context Menu"    "Adobe Systems Inc."    "c:\program files (x86)\adobe\acrobat 9.0\acrobat elements\contextmenu64.dll"    "4/3/2010 3:59 PM"
+ "Atheros"    "Bluetooth Application Extension"    "Atheros Commnucations"    "c:\program files (x86)\bluetooth suite\btvappext.dll"    "10/27/2010 3:01 PM"
+ "ESET Smart Security - Context Menu Shell Extension"    "ESET Shell Extension"    "ESET"    "c:\program files\eset\eset smart security\shellext.dll"    "11/26/2012 4:29 AM"
+ "GDContextMenu"    "Google Drive shell extension"    "Google"    "c:\program files (x86)\google\drive\contextmenu64.dll"    "9/25/2013 4:35 PM"
+ "Glary Utilities"    "Context Menu Handler"    "Glarysoft Ltd"    "c:\program files (x86)\glary utilities 4\x64\contexthandler.dll"    "11/17/2013 7:32 PM"
+ "MagicISO"    "MagicISO Shell Extension Module"    "MagicISO, Inc."    "c:\program files (x86)\magiciso\misosh64.dll"    "5/22/2008 7:25 AM"
+ "WinRAR"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext.dll"    "8/22/2013 5:01 AM"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "Adobe.Acrobat.ContextMenu"    "Adobe Acrobat Context Menu"    "Adobe Systems Inc."    "c:\program files (x86)\adobe\acrobat 9.0\acrobat elements\contextmenu.dll"    "6/11/2008 10:33 PM"
+ "CuteFTP 8 Professional"    "CuteFTP Shell Integration Module"    "GlobalSCAPE, Inc."    "c:\program files (x86)\globalscape\cuteftp 8 professional\cuteshell.dll"    "5/19/2010 12:16 PM"
+ "ESET Smart Security - Context Menu Shell Extension"    "ESET Shell Extension"    "ESET"    "c:\program files\eset\eset smart security\x86\shellext.dll"    "11/26/2012 4:29 AM"
+ "Glary Utilities"    "Context Menu Handler"    "Glarysoft Ltd"    "c:\program files (x86)\glary utilities 4\contexthandler.dll"    "11/17/2013 7:29 PM"
+ "WinRAR32"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext32.dll"    "8/22/2013 5:01 AM"
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "AlcoholShellEx64"    "AxShlEx64 Module"    "Alcohol Soft Development Team"    "c:\program files (x86)\alcohol soft\alcohol 120\axshlex64.dll"    "3/25/2010 12:29 AM"
+ "ESET Smart Security - Context Menu Shell Extension"    "ESET Shell Extension"    "ESET"    "c:\program files\eset\eset smart security\shellext.dll"    "11/26/2012 4:29 AM"
+ "Glary Utilities"    "Context Menu Handler"    "Glarysoft Ltd"    "c:\program files (x86)\glary utilities 4\x64\contexthandler.dll"    "11/17/2013 7:32 PM"
+ "UltraISO"    "ISOShell"    "EZB Systems, Inc."    "c:\program files (x86)\ultraiso\isoshl64.dll"    "10/21/2009 11:53 PM"
"HKLM\Software\Wow6432Node\Classes\Drive\ShellEx\ContextMenuHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "CuteFTP 8 Professional"    "CuteFTP Shell Integration Module"    "GlobalSCAPE, Inc."    "c:\program files (x86)\globalscape\cuteftp 8 professional\cuteshell.dll"    "5/19/2010 12:16 PM"
+ "ESET Smart Security - Context Menu Shell Extension"    "ESET Shell Extension"    "ESET"    "c:\program files\eset\eset smart security\x86\shellext.dll"    "11/26/2012 4:29 AM"
+ "Glary Utilities"    "Context Menu Handler"    "Glarysoft Ltd"    "c:\program files (x86)\glary utilities 4\contexthandler.dll"    "11/17/2013 7:29 PM"
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "VersionsPageShellExt Class"    "Versions Page"    "Acronis"    "c:\program files (x86)\acronis\trueimagehome\x64\versions_page.dll"    "9/30/2013 10:26 PM"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\PropertySheetHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "VersionsPageShellExt Class"    "Versions Page"    "Acronis"    "c:\program files (x86)\acronis\trueimagehome\versions_page.dll"    "9/30/2013 10:26 PM"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""    "7/13/2009 8:53 PM"
+ "FTShellContext"    "ShellContextExt Module"    "Atheros Commnucations"    "c:\program files (x86)\bluetooth suite\shellcontextext.dll"    "10/27/2010 2:58 PM"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"    "12/14/2012 12:52 PM"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""    "4/11/2011 7:50 PM"
+ "GDContextMenu"    "Google Drive shell extension"    "Google"    "c:\program files (x86)\google\drive\contextmenu64.dll"    "9/25/2013 4:35 PM"
+ "MagicISO"    "MagicISO Shell Extension Module"    "MagicISO, Inc."    "c:\program files (x86)\magiciso\misosh64.dll"    "5/22/2008 7:25 AM"
+ "UltraISO"    "ISOShell"    "EZB Systems, Inc."    "c:\program files (x86)\ultraiso\isoshl64.dll"    "10/21/2009 11:53 PM"
+ "WinRAR"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext.dll"    "8/22/2013 5:01 AM"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""    "4/11/2011 7:50 PM"
+ "CuteFTP 8 Professional"    "CuteFTP Shell Integration Module"    "GlobalSCAPE, Inc."    "c:\program files (x86)\globalscape\cuteftp 8 professional\cuteshell.dll"    "5/19/2010 12:16 PM"
+ "WinRAR32"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext32.dll"    "8/22/2013 5:01 AM"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""    "4/11/2011 7:50 PM"
+ "WinRAR"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext.dll"    "8/22/2013 5:01 AM"
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files (x86)\winzip\wzshls64.dll"    "2/7/2011 4:30 PM"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""    "4/11/2011 7:50 PM"
+ "WinRAR32"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext32.dll"    "8/22/2013 5:01 AM"
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files (x86)\winzip\wzshlstb.dll"    "2/7/2011 4:17 PM"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers"    ""    ""    ""    "4/11/2011 7:50 PM"
+ "Ath_CopyHook"    "AthCopyHook Dynamic Link Library"    "Atheros Commnucations"    "c:\program files (x86)\bluetooth suite\athcopyhook.dll"    "10/27/2010 3:00 PM"
+ "FileZilla3CopyHook"    "fzshellext Dynamic Link Library"    ""    "c:\program files (x86)\filezilla ftp client\fzshellext_64.dll"    "8/1/2009 2:34 AM"
+ "WinSCPCopyHook"    "Drag&Drop shell extension for WinSCP (64-bit)"    "Martin Prikryl"    "c:\program files (x86)\winscp\dragext64.dll"    "12/2/2012 1:22 PM"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\CopyHookHandlers"    ""    ""    ""    "4/11/2011 7:50 PM"
+ "FileZilla3CopyHook"    "fzshellext Dynamic Link Library"    ""    "c:\program files (x86)\filezilla ftp client\fzshellext.dll"    "8/7/2013 11:25 AM"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""    "7/13/2009 8:53 PM"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"    "7/13/2009 5:32 PM"
+ "NvCplDesktopContext"    "NVIDIA Display Shell Extension"    "NVIDIA Corporation"    "c:\windows\system32\nvshext.dll"    "12/19/2013 10:38 AM"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""    "7/13/2009 8:53 PM"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sbdrop.dll"    "7/13/2009 5:09 PM"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "Haali Column Provider"    ""    ""    "c:\program files (x86)\haali\matroskasplitter\mmfinfo.dll"    "1/10/2009 2:15 PM"
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"    "5/11/2013 1:34 AM"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "AccExt"    "Core Sync"    ""    "c:\program files (x86)\adobe\adobe creative cloud\coresync\coresync_v_1_1_0_x64.dll"    "6/19/2013 3:21 PM"
+ "Adobe.Acrobat.ContextMenu"    "Adobe Acrobat Context Menu"    "Adobe Systems Inc."    "c:\program files (x86)\adobe\acrobat 9.0\acrobat elements\contextmenu64.dll"    "4/3/2010 3:59 PM"
+ "ESET Smart Security - Context Menu Shell Extension"    "ESET Shell Extension"    "ESET"    "c:\program files\eset\eset smart security\shellext.dll"    "11/26/2012 4:29 AM"
+ "Glary Utilities"    "Context Menu Handler"    "Glarysoft Ltd"    "c:\program files (x86)\glary utilities 4\x64\contexthandler.dll"    "11/17/2013 7:32 PM"
+ "MagicISO"    "MagicISO Shell Extension Module"    "MagicISO, Inc."    "c:\program files (x86)\magiciso\misosh64.dll"    "5/22/2008 7:25 AM"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"    "12/14/2012 12:52 PM"
+ "UltraISO"    "ISOShell"    "EZB Systems, Inc."    "c:\program files (x86)\ultraiso\isoshl64.dll"    "10/21/2009 11:53 PM"
+ "WinRAR"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext.dll"    "8/22/2013 5:01 AM"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "Adobe.Acrobat.ContextMenu"    "Adobe Acrobat Context Menu"    "Adobe Systems Inc."    "c:\program files (x86)\adobe\acrobat 9.0\acrobat elements\contextmenu.dll"    "6/11/2008 10:33 PM"
+ "ESET Smart Security - Context Menu Shell Extension"    "ESET Shell Extension"    "ESET"    "c:\program files\eset\eset smart security\x86\shellext.dll"    "11/26/2012 4:29 AM"
+ "Glary Utilities"    "Context Menu Handler"    "Glarysoft Ltd"    "c:\program files (x86)\glary utilities 4\contexthandler.dll"    "11/17/2013 7:29 PM"
+ "WinRAR32"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext32.dll"    "8/22/2013 5:01 AM"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "WinRAR"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext.dll"    "8/22/2013 5:01 AM"
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files (x86)\winzip\wzshls64.dll"    "2/7/2011 4:30 PM"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "NBShellHook"    "Nero BackItUp"    "Nero AG"    "c:\program files (x86)\nero\nero 7\nero backitup\nbshell.dll"    "6/29/2007 8:40 AM"
+ "WinRAR32"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext32.dll"    "8/22/2013 5:01 AM"
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files (x86)\winzip\wzshlstb.dll"    "2/7/2011 4:17 PM"
"HKLM\Software\Classes\Folder\ShellEx\PropertySheetHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "VersionsPageShellExt Class"    "Versions Page"    "Acronis"    "c:\program files (x86)\acronis\trueimagehome\x64\versions_page.dll"    "9/30/2013 10:26 PM"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\PropertySheetHandlers"    ""    ""    ""    "12/25/2013 1:25 AM"
+ "VersionsPageShellExt Class"    "Versions Page"    "Acronis"    "c:\program files (x86)\acronis\trueimagehome\versions_page.dll"    "9/30/2013 10:26 PM"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""    "2/8/2014 12:29 AM"
+ " AccExtIco1"    "Core Sync"    ""    "c:\program files (x86)\adobe\adobe creative cloud\coresync\coresync_v_1_1_0_x64.dll"    "6/19/2013 3:21 PM"
+ " AccExtIco2"    "Core Sync"    ""    "c:\program files (x86)\adobe\adobe creative cloud\coresync\coresync_v_1_1_0_x64.dll"    "6/19/2013 3:21 PM"
+ " AccExtIco3"    "Core Sync"    ""    "c:\program files (x86)\adobe\adobe creative cloud\coresync\coresync_v_1_1_0_x64.dll"    "6/19/2013 3:21 PM"
+ " SkyDrivePro1 (ErrorConflict)"    "Microsoft SkyDrive Pro Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\grooveex.dll"    "10/30/2013 10:15 AM"
+ " SkyDrivePro2 (SyncInProgress)"    "Microsoft SkyDrive Pro Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\grooveex.dll"    "10/30/2013 10:15 AM"
+ " SkyDrivePro3 (InSync)"    "Microsoft SkyDrive Pro Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\grooveex.dll"    "10/30/2013 10:15 AM"
+ "GDriveBlacklistedOverlay"    "Google Drive shell extension"    "Google"    "c:\program files (x86)\google\drive\googledrivesync64.dll"    "12/6/2013 3:45 PM"
+ "GDriveSharedEditOverlay"    "Google Drive shell extension"    "Google"    "c:\program files (x86)\google\drive\googledrivesync64.dll"    "12/6/2013 3:45 PM"
+ "GDriveSharedViewOverlay"    "Google Drive shell extension"    "Google"    "c:\program files (x86)\google\drive\googledrivesync64.dll"    "12/6/2013 3:45 PM"
+ "GDriveSyncedOverlay"    "Google Drive shell extension"    "Google"    "c:\program files (x86)\google\drive\googledrivesync64.dll"    "12/6/2013 3:45 PM"
+ "GDriveSyncingOverlay"    "Google Drive shell extension"    "Google"    "c:\program files (x86)\google\drive\googledrivesync64.dll"    "12/6/2013 3:45 PM"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"    "1/21/2010 6:10 PM"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"    "1/21/2010 6:10 PM"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"    "1/21/2010 6:10 PM"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"    "1/21/2010 6:10 PM"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"    "1/21/2010 6:10 PM"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""    "2/8/2014 10:25 AM"
+ " SkyDrivePro1 (ErrorConflict)"    "Microsoft SkyDrive Pro Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\grooveex.dll"    "10/30/2013 9:39 AM"
+ " SkyDrivePro2 (SyncInProgress)"    "Microsoft SkyDrive Pro Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\grooveex.dll"    "10/30/2013 9:39 AM"
+ " SkyDrivePro3 (InSync)"    "Microsoft SkyDrive Pro Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\grooveex.dll"    "10/30/2013 9:39 AM"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"    "1/21/2010 5:48 PM"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"    "1/21/2010 5:48 PM"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"    "1/21/2010 5:48 PM"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"    "1/21/2010 5:48 PM"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"    "1/21/2010 5:48 PM"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""    "2/8/2014 12:29 AM"
+ "Bing Bar Helper"    "Bing Client Extensions"    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.3.124.0\amd64\bingext.dll"    "12/16/2013 7:27 PM"
+ "Groove GFS Browser Helper"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"    "1/21/2010 6:10 PM"
+ "Logitech SetPoint"    "Logitech SetPoint"    "Logitech, Inc."    "c:\program files\logitech\setpointp\setpointsmooth.dll"    "2/20/2013 5:58 PM"
+ "Lync Browser Helper"    "Microsoft Lync"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\ochelper.dll"    "10/30/2013 10:11 AM"
+ "Microsoft SkyDrive Pro Browser Helper"    "Microsoft SkyDrive Pro Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\grooveex.dll"    "10/30/2013 10:15 AM"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\urlredir.dll"    "8/13/2013 3:20 AM"
+ "RoboForm Toolbar Helper"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"    "9/27/2013 10:31 AM"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"    "9/21/2010 1:47 PM"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""    "2/8/2014 10:25 AM"
+ "Adobe PDF Conversion Toolbar Helper"    "Adobe PDF Toolbar for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"    "6/11/2008 9:42 PM"
+ "Bing Bar Helper"    "Bing Client Extensions"    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.3.124.0\bingext.dll"    "12/16/2013 7:11 PM"
+ "CIESpeechBHO Class"    "Bluetooth IE PlugIn"    "Atheros Commnucations"    "c:\program files (x86)\bluetooth suite\ieplugin.dll"    "10/27/2010 2:51 PM"
+ "FlashGet GetFlash Class"    "Flashget GetFlash Module"    "www.flashget.com"    "c:\program files (x86)\flashget\getflash.dll"    "5/15/2007 8:10 PM"
+ "Groove GFS Browser Helper"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"    "1/21/2010 5:48 PM"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"    "12/18/2013 9:01 PM"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\ssv.dll"    "12/18/2013 9:00 PM"
+ "Logitech SetPoint"    "Logitech SetPoint"    "Logitech, Inc."    "c:\program files\logitech\setpointp\32-bit\setpointsmooth.dll"    "2/20/2013 5:57 PM"
+ "Lync Browser Helper"    "Microsoft Lync"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\ochelper.dll"    "8/20/2013 6:33 PM"
+ "Microsoft SkyDrive Pro Browser Helper"    "Microsoft SkyDrive Pro Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\grooveex.dll"    "10/30/2013 9:39 AM"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\urlredir.dll"    "8/13/2013 2:28 AM"
+ "RoboForm Toolbar Helper"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform.dll"    "9/27/2013 10:26 AM"
+ "SmartSelect Class"    "Adobe PDF Toolbar for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"    "6/11/2008 9:42 PM"
+ "Virtual Account Numbers Helper"    "CitiUSToolbar Helper Module"    "Orbiscom Ltd. All rights reserved."    "c:\program files (x86)\virtual account numbers\citivanhelper.dll"    "10/7/2013 3:44 AM"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"    "9/21/2010 1:01 PM"
+ "Windows Live Messenger Companion Helper"    "Windows Live Messenger Companion Core"    "Microsoft Corporation"    "c:\program files (x86)\windows live\companion\companioncore.dll"    "11/10/2010 2:02 AM"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""    "2/7/2014 11:22 AM"
+ "&RoboForm Toolbar"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"    "9/27/2013 10:31 AM"
+ "Bing"    "Bing Client Extensions"    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.3.124.0\amd64\bingext.dll"    "12/16/2013 7:27 PM"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""    "2/7/2014 11:22 AM"
+ "&RoboForm Toolbar"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform.dll"    "9/27/2013 10:26 AM"
+ "Adobe PDF"    "Adobe PDF Toolbar for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"    "6/11/2008 9:42 PM"
+ "Bing"    "Bing Client Extensions"    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.3.124.0\bingext.dll"    "12/16/2013 7:11 PM"
+ "FlashGet Bar"    "FlashGet IE Bar"    "Amaze Soft"    "c:\program files (x86)\flashget\fgiebar.dll"    "6/6/2005 7:06 PM"
+ "Virtual Account Numbers"    "CitiUSToolbar Module"    "Orbiscom Ltd. All rights reserved."    "c:\program files (x86)\virtual account numbers\citivantoolbar.dll"    "10/7/2013 3:51 AM"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""    "2/7/2014 11:22 AM"
+ "Fill Forms"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"    "9/27/2013 10:31 AM"
+ "Lync Click to Call"    "Microsoft Lync"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\ochelper.dll"    "10/30/2013 10:11 AM"
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\onbttnielinkednotes.dll"    "9/29/2012 10:45 AM"
+ "Save Forms"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"    "9/27/2013 10:31 AM"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office15\onbttnie.dll"    "10/30/2013 10:08 AM"
+ "Show RoboForm Toolbar"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"    "9/27/2013 10:31 AM"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions"    ""    ""    ""    "2/7/2014 11:22 AM"
+ "&Blog This in Windows Live Writer"    "Windows Live Writer Blog This Extension"    "Microsoft Corporation"    "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"    "11/10/2010 2:03 AM"
+ "Fill Forms"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform.dll"    "9/27/2013 10:26 AM"
+ "FlashGet"    "FlashGet"    "FlashGet.com"    "c:\program files (x86)\flashget\flashget.exe"    "9/25/2007 12:06 AM"
+ "Lync Click to Call"    "Microsoft Lync"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\ochelper.dll"    "8/20/2013 6:33 PM"
+ "Messenger Companion (Ctrl+Shift+C)"    "Windows Live Messenger Companion Core"    "Microsoft Corporation"    "c:\program files (x86)\windows live\companion\companioncore.dll"    "11/10/2010 2:02 AM"
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\onbttnielinkednotes.dll"    "9/29/2012 9:41 AM"
+ "Save Forms"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform.dll"    "9/27/2013 10:26 AM"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office15\onbttnie.dll"    "10/30/2013 9:52 AM"
+ "Send by Bluetooth to"    "Bluetooth IE PlugIn"    "Atheros Commnucations"    "c:\program files (x86)\bluetooth suite\ieplugin.dll"    "10/27/2010 2:51 PM"
+ "Show RoboForm Toolbar"    "RoboForm Main Module"    "Siber Systems Inc."    "c:\program files (x86)\siber systems\ai roboform\roboform.dll"    "9/27/2013 10:26 AM"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""    "2/8/2014 12:14 AM"
+ "ABBYY.Licensing.FineReader.Sprint.9.0"    "This service is required for the operation of the ABBYY FineReader 9.0 Express Edition licensing mechanism."    "ABBYY"    "c:\program files (x86)\common files\abbyy\finereadersprint\9.00\licensing\networklicenseserver.exe"    "5/14/2009 6:07 AM"
+ "AcrSch2Svc"    "Provides scheduling for Acronis components' tasks."    "Acronis"    "c:\program files (x86)\common files\acronis\schedule2\schedul2.exe"    "7/17/2013 11:51 PM"
+ "AdobeARMservice"    "Adobe Acrobat Updater keeps your Adobe software up to date."    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"    "4/4/2013 1:05 PM"
+ "afcdpsrv"    "Provides nonstop backup for partitions of the computer."    "Acronis"    "c:\program files (x86)\common files\acronis\cdp\afcdpsrv.exe"    "10/8/2013 7:49 AM"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"    "5/17/2012 7:06 PM"
+ "asComSvc"    ""    ""    "c:\program files (x86)\asus\axsp\1.00.13\atkexcomsvc.exe"    "11/3/2010 1:30 AM"
+ "asHmComSvc"    ""    ""    "c:\program files (x86)\asus\aahm\1.00.13\aahmsvc.exe"    "12/1/2010 6:15 PM"
+ "AsSysCtrlService"    ""    ""    "c:\program files (x86)\asus\assysctrlservice\1.00.11\assysctrlservice.exe"    "10/21/2010 1:52 AM"
+ "AtherosSvc"    "Atheros BT Stack Service Agent"    "Atheros Commnucations"    "c:\program files (x86)\bluetooth suite\adminservice.exe"    "10/27/2010 3:04 PM"
+ "AxAutoMntSrv"    "Alcohol Virtual Drive Auto-mount Service, this service automatically mounts your image files following a reboot. This service is self starting after a reboot. It is set as Automatic by default and the startup type should not be altered."    "Alcohol Soft Development Team"    "c:\program files (x86)\alcohol soft\alcohol 120\axautomntsrv.exe"    "1/5/2012 7:42 AM"
+ "BBSvc"    "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar."    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.3.124.0\bbsvc.exe"    "12/16/2013 7:33 PM"
+ "BBUpdate"    "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar."    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.3.124.0\seaport.exe"    "12/16/2013 7:11 PM"
+ "bgsvcgen"    "Provides CD/DVD writing  interface for B's Recorder"    "SOURCENEXT"    "c:\windows\syswow64\bgsvcgen.exe"    "3/16/2009 7:46 PM"
+ "Bonjour Service"    "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"    "8/30/2011 9:52 PM"
+ "CachemanService"    "Cacheman Memory and Cache Control Driver."    "Outertech"    "c:\program files (x86)\cacheman\cachemanserv.exe"    "6/19/1992 2:22 PM"
+ "CyberLink PowerDVD 13 Media Server Monitor Service"    "CyberLink PowerDVD 13 Media Server Monitor Service."    "CyberLink"    "c:\program files (x86)\cyberlink\powerdvd13\kernel\dms\clmsmonitorservicepdvd13.exe"    "6/5/2013 10:17 PM"
+ "CyberLink PowerDVD 13 Media Server Service"    "CyberLink PowerDVD 13 Media Server Service."    "CyberLink"    "c:\program files (x86)\cyberlink\powerdvd13\kernel\dms\clmsserverpdvd13.exe"    "6/5/2013 10:17 PM"
+ "DTSAudioService"    "DTS Audio Service"    "DTS"    "c:\program files\realtek\audio\hda\dtsaudioservice64.exe"    "5/20/2011 4:55 AM"
+ "EaseUS Agent"    "Provides service to backup files and image disks."    "CHENGDU YIWO Tech Development Co., Ltd"    "c:\program files (x86)\easeus\todo backup\bin\agent.exe"    "4/22/2011 1:49 AM"
+ "ekrn"    "ESET Service"    "ESET"    "c:\program files\eset\eset smart security\x86\ekrn.exe"    "11/26/2012 4:18 AM"
+ "EPSON_EB_RPCV4_01"    "EPSON Status Monitor 3"    "SEIKO EPSON CORPORATION"    "c:\programdata\epson\epw!3 ssrp\e_s40stb.exe"    "12/16/2007 10:20 PM"
+ "EPSON_PM_RPCV4_01"    "EPSON Status Monitor 3"    "SEIKO EPSON CORPORATION"    "c:\programdata\epson\epw!3 ssrp\e_s40rpb.exe"    "1/10/2007 9:33 PM"
+ "EpsonBidirectionalService"    "eEBAPI Core Process module"    "SEIKO EPSON CORPORATION"    "c:\program files (x86)\common files\epson\ebapi\eebsvc.exe"    "12/19/2006 4:53 AM"
+ "EpsonCustomerParticipation"    "Epson Customer Participation"    "SEIKO EPSON CORPORATION"    "c:\program files\epson\epsoncustomerparticipation\epcp.exe"    "5/8/2012 10:45 PM"
+ "EpsonScanSvc"    "Epson Scanner Service (64bit)"    "Seiko Epson Corporation"    "c:\windows\system32\escsvc64.exe"    "12/11/2011 6:27 PM"
+ "FLEXnet Licensing Service"    "This service performs licensing functions on behalf of FLEXnet enabled products."    "Macrovision Europe Ltd."    "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"    "11/27/2007 11:30 AM"
+ "fsssvc"    "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work."    "Microsoft Corporation"    "c:\program files (x86)\windows live\family safety\fsssvc.exe"    "9/22/2010 11:16 PM"
+ "fussvc"    "Fast User Switching Utility Service"    "Microsoft Corporation"    "c:\program files (x86)\windows kits\8.0\app certification kit\fussvc.exe"    "7/25/2012 5:13 PM"
+ "gupdate"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"    "3/8/2010 10:10 PM"
+ "gupdatem"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"    "3/8/2010 10:10 PM"
+ "hptsvr"    ""    ""    "c:\program files (x86)\highpoint technologies, inc.\highpoint raid management software\service\hptsvr.exe"    "9/12/2006 5:36 PM"
+ "IAStorDataMgrSvc"    "Provides storage event notification and manages communication between the storage driver and user space applications."    "Intel Corporation"    "c:\program files\intel\intel® rapid storage technology\iastordatamgrsvc.exe"    "3/18/2013 3:36 PM"
+ "Intel® Capability Licensing Service Interface"    "Version: 1.28.487.1"    "Intel® Corporation"    "c:\program files\intel\icls client\heciserver.exe"    "5/11/2013 7:45 AM"
+ "Intel® Capability Licensing Service TCP IP Interface"    "Version: 1.28.487.1"    "Intel® Corporation"    "c:\program files\intel\icls client\socketheciserver.exe"    "5/11/2013 7:45 AM"
+ "Intel® PROSet Monitoring Service"    "The Intel® PROSet Monitoring Service actively monitors changes to the system and updates affected network devices to keep them running in optimal condition.  Stopping this service may negatively affect the performance of the network devices on the system."    "Intel Corporation"    "c:\windows\system32\iprosetmonitor.exe"    "4/5/2013 2:51 AM"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"    "11/1/2013 10:57 PM"
+ "jhi_service"    "Intel® Dynamic Application Loader Host Interface Service - Allows applications to access the local Intel ® DAL"    "Intel Corporation"    "c:\program files (x86)\intel\intel® management engine components\dal\jhi_service.exe"    "3/15/2013 9:56 AM"
+ "LBTServ"    "Logitech Bluetooth Service"    "Logitech, Inc."    "c:\program files\common files\logishrd\bluetooth\lbtserv.exe"    "2/8/2013 10:24 AM"
+ "LMIGuardianSvc"    "Support LogMeIn processes with quality assurance feedback"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x64\lmiguardiansvc.exe"    "11/30/2012 12:15 AM"
+ "LMIMaint"    "LogMeIn Maintenance Service"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x64\ramaint.exe"    "1/20/2014 4:30 AM"
+ "LogMeIn"    "LogMeIn"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x64\logmein.exe"    "11/8/2010 2:58 AM"
+ "MBAMScheduler"    "Malwarebytes Anti-Malware scheduler"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"    "2/28/2013 12:38 PM"
+ "MBAMService"    "Malwarebytes Anti-Malware service"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"    "2/28/2013 12:38 PM"
+ "McxSvc"    "Allows Media Center Extenders to locate and connect to the computer."    ""    "c:\windows\syswow64\wbem\msds.exe"    "11/13/2012 2:09 AM"
+ "Microsoft SharePoint Workspace Audit Service"    "Microsoft SharePoint Workspace"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\groove.exe"    "1/21/2010 5:40 PM"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"    "12/5/2013 9:09 AM"
+ "NAUpdate"    "Provides access to Nero application updates and manages Nero applications."    "Nero AG"    "c:\program files (x86)\nero\update\nasvc.exe"    "7/18/2013 6:08 AM"
+ "NBService"    "Nero BackItUp Service is responsible to control all jobs created using Nero BackItUp. These jobs can create backups of selected files/folders/partitions or complete hard disk to hard disk, network drive, disc or FTP."    "Nero AG"    "c:\program files (x86)\nero\nero 7\nero backitup\nbservice.exe"    "6/29/2007 8:40 AM"
+ "NisSrv"    "@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-242"    ""    "File not found: C:\Program Files\Microsoft Security Client\NisSrv.exe"    ""
+ "NMIndexingService"    "Nero Home"    "Nero AG"    "c:\program files (x86)\common files\ahead\lib\nmindexingservice.exe"    "6/27/2007 4:50 AM"
+ "NvNetworkService"    "NVIDIA Network Service"    "NVIDIA Corporation"    "c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe"    "1/13/2014 9:16 AM"
+ "NvStreamSvc"    "Service for SHIELD Streaming"    "NVIDIA Corporation"    "c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe"    "1/20/2014 7:01 AM"
+ "nvsvc"    "Provides system and desktop level support to the NVIDIA display driver"    "NVIDIA Corporation"    "c:\windows\system32\nvvsvc.exe"    "12/19/2013 10:38 AM"
+ "ose64"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\source engine\ose.exe"    "9/29/2012 10:56 AM"
+ "osppsvc"    "Enables the download, installation, and enforcement of digital licenses for Microsoft Office applications. These applications require this service for proper operation. It is strongly recommended that you keep this service enabled."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"    "7/5/2012 4:13 PM"
+ "PnkBstrA"    "PunkBuster Service Component [v1036] http://www.evenbalance.com"    ""    "c:\windows\syswow64\pnkbstra.exe"    "1/16/2012 8:16 AM"
+ "rpcapd"    "Allows to capture traffic on this machine from a remote machine."    "Riverbed Technology, Inc."    "c:\program files (x86)\winpcap\rpcapd.exe"    "2/28/2013 5:28 PM"
+ "SamsungRapidSvc"    "RAPID Mode increases the overall performance of your computer by pairing the industry's fastest SSD with the most advanced storage management techniques to deliver the fastest and most reliable user experience. If this service is disabled RAPID Mode will not operate properly."    "Samsung Electronics Co., Ltd."    "c:\windows\system32\rapid\samsungrapidsvc.exe"    "7/29/2013 10:56 AM"
+ "SkypeUpdate"    "Enables the detection, download and installation of updates for Skype."    "Skype Technologies"    "c:\program files (x86)\skype\updater\updater.exe"    "9/5/2013 1:31 AM"
+ "StarWindServiceAE"    "Enables network access to local burners via iSCSI protocol."    "StarWind Software"    "c:\program files (x86)\alcohol soft\alcohol 120\starwind\starwindserviceae.exe"    "12/23/2009 8:57 AM"
+ "Steam Client Service"    "Steam Client Service monitors and updates Steam content"    "Valve Corporation"    "c:\program files (x86)\common files\steam\steamservice.exe"    "12/11/2013 10:57 AM"
+ "Stereo Service"    "Provides system support for NVIDIA Stereoscopic 3D driver"    "NVIDIA Corporation"    "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"    "12/19/2013 10:05 AM"
+ "syncagentsrv"    "Acronis Sync Agent Service"    "Acronis"    "c:\program files (x86)\common files\acronis\syncagent\syncagentsrv.exe"    "10/22/2013 8:24 AM"
+ "Te.Service"    "Wex.Services [v2.9.3k]"    "Microsoft Corporation"    "c:\program files (x86)\windows kits\8.0\testing\runtimes\taef\wex.services.exe"    "7/25/2012 5:58 PM"
+ "UMVPFSrv"    "UMVPF is a user mode Logitech driver"    "Logitech Inc."    "c:\program files (x86)\common files\logishrd\lvmvfm\umvpfsrv.exe"    "1/17/2012 10:35 PM"
+ "UxTuneUp"    "Allows to use visual styles without Microsoft signature."    "AVG"    "c:\windows\system32\uxtuneup.dll"    "10/30/2013 2:24 AM"
+ "WinDefend"    "Protection against spyware and potentially unwanted software"    "Microsoft Corporation"    "c:\program files\windows defender\mpsvc.dll"    "5/26/2013 9:51 PM"
+ "wlidsvc"    "Enables Windows Live ID authentication."    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"    "9/21/2010 1:46 PM"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"    "11/20/2010 3:18 AM"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""    "2/8/2014 12:14 AM"
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"    "12/5/2008 3:54 PM"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"    "5/1/2007 9:30 AM"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver (X64)"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"    "2/27/2007 4:04 PM"
+ "afcdp"    "Acronis File Level CDP Helper"    "Acronis"    "c:\windows\system32\drivers\afcdp.sys"    "7/20/2011 6:46 AM"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"    "7/13/2009 3:19 PM"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"    "3/18/2010 4:45 PM"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"    "3/20/2009 10:36 AM"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"    "3/19/2010 8:18 AM"
+ "ampa"    ""    ""    "c:\windows\system32\ampa.sys"    "1/17/2011 9:42 PM"
+ "AnyDVD"    "AnyDVD Filter Driver"    "SlySoft, Inc."    "c:\windows\system32\drivers\anydvd.sys"    "8/19/2011 7:01 AM"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"    "5/24/2007 1:27 PM"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"    "1/14/2009 11:27 AM"
+ "AsIO"    ""    ""    "c:\windows\syswow64\drivers\asio.sys"    "8/23/2010 5:53 PM"
+ "AsUpIO"    ""    ""    "c:\windows\syswow64\drivers\asupio.sys"    "8/2/2010 6:47 PM"
+ "AthBTPort"    "Atheros FILTER driver"    "Atheros"    "c:\windows\system32\drivers\btath_flt.sys"    "6/23/2010 10:17 PM"
+ "ATHDFU"    "BulkUsb Driver"    "Windows ® Win 7 DDK provider"    "c:\windows\system32\drivers\athdfu.sys"    "3/21/2010 10:43 PM"
+ "atikmdag"    "ATI Radeon Kernel Mode Driver"    "ATI Technologies Inc."    "c:\windows\system32\drivers\atikmdag.sys"    "4/24/2009 2:51 AM"
+ "ATITool"    "Low-Level Driver"    ""    "c:\windows\system32\drivers\atitool64.sys"    "11/10/2006 5:08 AM"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbda.sys"    "2/13/2009 2:18 PM"
+ "b57nd60a"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60a.sys"    "4/26/2009 3:14 AM"
+ "BootDefragDriver"    "Boot Defrag Driver"    "Glarysoft Ltd"    "c:\windows\system32\drivers\bootdefragdriver.sys"    "11/10/2013 7:01 PM"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"    "8/6/2006 5:51 PM"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"    "8/6/2006 5:51 PM"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"    "8/6/2006 5:51 PM"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"    "8/6/2006 5:51 PM"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"    "8/6/2006 5:51 PM"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"    "8/9/2006 4:11 AM"
+ "BTATH_A2DP"    "Atheros A2DP driver"    "Atheros"    "c:\windows\system32\drivers\btath_a2dp.sys"    "9/16/2010 3:34 AM"
+ "BTATH_BUS"    "Atheros BUS driver"    "Atheros"    "c:\windows\system32\drivers\btath_bus.sys"    "6/23/2010 10:17 PM"
+ "BTATH_HCRP"    "Atheros HCRP driver"    "Atheros"    "c:\windows\system32\drivers\btath_hcrp.sys"    "6/29/2010 1:30 AM"
+ "BTATH_LWFLT"    "Atheros FILTER driver"    "Atheros"    "c:\windows\system32\drivers\btath_lwflt.sys"    "9/13/2010 12:26 AM"
+ "BTATH_RCP"    "Atheros AVRCP driver"    "Atheros"    "c:\windows\system32\drivers\btath_rcp.sys"    "6/23/2010 10:17 PM"
+ "BtFilter"    "BtFilter Driver"    "Atheros"    "c:\windows\system32\drivers\btfilter.sys"    "10/21/2010 10:40 PM"
+ "cdrbsdrv"    "CD-ROM Filter Driver for WindowsXP x64Edition"    "B.H.A Corporation"    "c:\windows\system32\drivers\cdrbsdrv.sys"    "6/16/2009 7:37 PM"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"    "7/13/2009 3:19 PM"
+ "cpudrv64"    ""    ""    "c:\program files (x86)\systemrequirementslab\cpudrv64.sys"    "8/11/2009 8:39 AM"
+ "CX88VID"    "zl88avs, Unified Capture Driver"    "Dvico, Inc."    "c:\windows\system32\drivers\zl88avs64.sys"    "11/26/2007 9:23 PM"
+ "danewFltr"    "Razer DeathAdder USB Optical Mouse Driver"    "Razer (Asia-Pacific) Pte Ltd"    "c:\windows\system32\drivers\danew.sys"    "3/23/2010 12:37 AM"
+ "e1cexpress"    "Intel® Gigabit Adapter NDIS 6.x driver"    "Intel Corporation"    "c:\windows\system32\drivers\e1c62x64.sys"    "8/21/2013 1:27 AM"
+ "eamonm"    "Eset file on-access scanner"    "ESET"    "c:\windows\system32\drivers\eamonm.sys"    "9/25/2012 8:11 AM"
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbda.sys"    "12/31/2008 8:29 AM"
+ "ehdrv"    "Eset Helper driver"    "ESET"    "c:\windows\system32\drivers\ehdrv.sys"    "9/25/2012 8:12 AM"
+ "ElbyCDIO"    "ElbyCD Windows x64 I/O driver"    "Elaborate Bytes AG"    "c:\windows\system32\drivers\elbycdio.sys"    "12/16/2010 2:58 PM"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"    "2/3/2009 2:52 PM"
+ "epfw"    "EPFW Filter Driver"    "ESET"    "c:\windows\system32\drivers\epfw.sys"    "9/25/2012 8:09 AM"
+ "EpfwLWF"    "Epfw NDIS LightWeight Filter"    "ESET"    "c:\windows\system32\drivers\epfwlwf.sys"    "9/25/2012 8:08 AM"
+ "epfwwfp"    "EPFW Filter Driver"    "ESET"    "c:\windows\system32\drivers\epfwwfp.sys"    "11/23/2012 5:38 AM"
+ "EUBAKUP"    "Disk Backup Driver"    "CHENGDU YIWO Tech Development Co., Ltd"    "c:\windows\system32\drivers\eubakup.sys"    "4/22/2011 2:22 AM"
+ "EUBKMON"    ""    ""    "c:\windows\system32\drivers\eubkmon.sys"    "4/22/2011 2:23 AM"
+ "EUDISK"    "EuDisk Bus Enumerator"    "CHENGDU YIWO Tech Development Co., Ltd"    "c:\windows\system32\drivers\eudisk.sys"    "4/22/2011 2:23 AM"
+ "EUDSKACS"    "Disk Access Driver"    "CHENGDU YIWO Tech Development Co., Ltd"    "c:\windows\system32\drivers\eudskacs.sys"    "4/22/2011 2:22 AM"
+ "EUFS"    "File System Filter Driver"    "CHENGDU YIWO Tech Development Co., Ltd"    "c:\windows\system32\drivers\eufs.sys"    "4/22/2011 2:22 AM"
+ "fltsrv"    "Acronis Storage Filter Management Driver"    "Acronis International GmbH"    "c:\windows\system32\drivers\fltsrv.sys"    "5/13/2013 1:40 AM"
+ "FTDIBUS"    "FTDIBUS USB Driver"    "FTDI Ltd."    "c:\windows\system32\drivers\ftdibus.sys"    "6/27/2007 5:05 AM"
+ "FTSER2K"    "FTDIBUS Serial Device Driver"    "FTDI Ltd."    "c:\windows\system32\drivers\ftser2k.sys"    "6/27/2007 5:03 AM"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"    "5/3/2012 11:56 AM"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"    "5/11/2009 12:26 AM"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"    "4/20/2010 10:32 AM"
+ "iaStor"    "Intel Rapid Storage Technology driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastor.sys"    "4/26/2011 10:06 AM"
+ "iaStorA"    "Intel Rapid Storage Technology driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastora.sys"    "3/18/2013 3:36 PM"
+ "iaStorF"    "Intel Rapid Storage Technology Filter driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorf.sys"    "3/18/2013 3:36 PM"
+ "iaStorV"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"    "6/10/2010 4:46 PM"
+ "ICCWDT"    "Intel® Watchdog Timer Driver (Intel® WDT)"    "Intel Corporation"    "c:\windows\system32\drivers\iccwdt.sys"    "8/18/2010 12:27 AM"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"    "12/13/2005 1:47 PM"
+ "IntcAzAudAddService"    "Realtek® High Definition Audio Function Driver"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtkvhd64.sys"    "7/2/2013 6:07 AM"
+ "JRAID"    "JMicron JMB36X RAID Driver"    "JMicron Technology Corp."    "c:\windows\system32\drivers\jraid.sys"    "9/16/2012 10:50 PM"
+ "LEqdUsb"    "Logitech Equad USB Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\leqdusb.sys"    "1/3/2013 12:12 AM"
+ "LHidEqd"    "Logitech HID Filter Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\lhideqd.sys"    "1/3/2013 12:12 AM"
+ "LHidFilt"    "Logitech HID Filter Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\lhidfilt.sys"    "1/3/2013 12:13 AM"
+ "LMIInfo"    "RemotelyAnywhere Kernel Information Provider"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x64\rainfo.sys"    "1/11/2013 4:19 AM"
+ "lmimirr"    "LogMeIn Mirror Miniport Driver"    "LogMeIn, Inc."    "c:\windows\system32\drivers\lmimirr.sys"    "4/10/2007 2:32 PM"
+ "LMIRfsDriver"    "LogMeIn Rfs Drivemap Driver"    "LogMeIn, Inc."    "c:\windows\system32\drivers\lmirfsdriver.sys"    "7/14/2008 8:26 AM"
+ "LMouFilt"    "Logitech Mouse Filter Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\lmoufilt.sys"    "1/3/2013 12:13 AM"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"    "12/9/2008 2:46 PM"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"    "5/18/2009 4:20 PM"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"    "5/18/2009 4:31 PM"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"    "4/16/2009 2:13 PM"
+ "LUsbFilt"    "Logitech USB Filter Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\lusbfilt.sys"    "1/3/2013 12:13 AM"
+ "LVRS64"    "Logitech Kernel Audio Improvement Filter Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvrs64.sys"    "1/17/2012 10:40 PM"
+ "LVUVC64"    "Logitech USB Video Class Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvuvc64.sys"    "1/17/2012 10:41 PM"
+ "MBAMProtector"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\windows\system32\drivers\mbam.sys"    "2/28/2013 12:33 PM"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"    "5/18/2009 5:09 PM"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"    "5/18/2009 5:25 PM"
+ "MEIx64"    "Intel® Management Engine Interface"    "Intel Corporation"    "c:\windows\system32\drivers\teedriverx64.sys"    "4/23/2013 9:36 AM"
+ "mv91cons"    "Marvell 91xx Confige Device Driver"    "Marvell Semiconductor Inc."    "c:\windows\system32\drivers\mv91cons.sys"    "10/9/2012 12:48 AM"
+ "mv91xx"    "Marvell magni Windows Driver"    "Marvell Semiconductor, Inc."    "c:\windows\system32\drivers\mv91xx.sys"    "11/21/2010 11:00 PM"
+ "mvs91xx"    "Marvell magni Windows Driver"    "Marvell Semiconductor, Inc."    "c:\windows\system32\drivers\mvs91xx.sys"    "1/23/2013 11:44 PM"
+ "nfrd960"    "IBM ServeRAID Controller Driver"    "IBM Corporation"    "c:\windows\system32\drivers\nfrd960.sys"    "6/6/2006 1:11 PM"
+ "NLNdisMP"    ""    ""    "File not found: system32\DRIVERS\nlndis.sys"    ""
+ "NLNdisPT"    ""    ""    "File not found: system32\DRIVERS\nlndis.sys"    ""
+ "NPF"    "npf.sys (NT5/6 AMD64) Kernel Driver"    "Riverbed Technology, Inc."    "c:\windows\system32\drivers\npf.sys"    "2/28/2013 5:31 PM"
+ "nusb3hub"    "USB 3.0 Hub Driver"    "Renesas Electronics Corporation"    "c:\windows\system32\drivers\nusb3hub.sys"    "8/20/2012 8:12 PM"
+ "nusb3xhc"    "USB 3.0 Host Controller Driver"    "Renesas Electronics Corporation"    "c:\windows\system32\drivers\nusb3xhc.sys"    "8/20/2012 8:12 PM"
+ "NVHDA"    "NVIDIA HDMI Audio Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvhda64v.sys"    "11/28/2013 5:38 AM"
+ "nvlddmkm"    "NVIDIA Windows Kernel Mode Driver, Version 332.21 "    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvlddmkm.sys"    "12/19/2013 9:02 AM"
+ "nvraid"    "NVIDIA® nForce™ RAID Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvraid.sys"    "3/19/2010 12:59 PM"
+ "nvstor"    "NVIDIA® nForce™ Sata Performance Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstor.sys"    "3/19/2010 12:45 PM"
+ "NvStUSB"    "Stereoscopic 3D USB controller driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstusb.sys"    "12/19/2013 10:14 AM"
+ "nvvad_WaveExtensible"    "NVIDIA Virtual Audio Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvvad64v.sys"    "12/27/2013 8:41 AM"
+ "Pnp680"    "DMA capable ATA miniport driver"    "Silicon Image, Inc"    "c:\windows\system32\drivers\pnp680.sys"    "11/13/2007 11:26 AM"
+ "ql2300"    "QLogic Fibre Channel Stor Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql2300.sys"    "1/22/2009 3:05 PM"
+ "ql40xx"    "QLogic iSCSI Storport Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql40xx.sys"    "5/18/2009 5:18 PM"
+ "radpms"    "RemotelyAnywhereDpmsSecure Device Driver"    "LogMeIn, Inc."    "c:\windows\system32\drivers\radpms.sys"    "5/17/2010 6:41 AM"
+ "rr232x"    "RR232x Miniport Driver"    "HighPoint Technologies, Inc."    "c:\windows\system32\drivers\rr232x.sys"    "5/5/2008 12:41 AM"
+ "RTL8167"    "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                "    "Realtek                                            "    "c:\windows\system32\drivers\rt64win7.sys"    "4/9/2013 7:00 PM"
+ "rzdaendpt"    "Razer RzEndPt"    "Razer Inc"    "c:\windows\system32\drivers\rzdaendpt.sys"    "6/6/2013 7:30 PM"
+ "rzjoystk"    "Razer JoyStick Device"    "Razer USA Ltd"    "c:\windows\system32\drivers\rzjoystk.sys"    "3/23/2011 10:25 PM"
+ "rzjstk"    "Razer JoyStick Device"    "Razer Inc"    "c:\windows\system32\drivers\rzjstk.sys"    "6/6/2013 7:30 PM"
+ "rzkeypadendpt"    "Razer RzEndPt"    "Razer Inc"    "c:\windows\system32\drivers\rzkeypadendpt.sys"    "6/6/2013 7:30 PM"
+ "RzSynapse"    "Razer Synapse Engine"    "Razer USA Ltd"    "c:\windows\system32\drivers\rzsynapse.sys"    "7/14/2011 1:10 AM"
+ "rzudd"    "Razer Rzudd Engine"    "Razer Inc"    "c:\windows\system32\drivers\rzudd.sys"    "6/6/2013 7:29 PM"
+ "rzvkeyboard"    "Razer Keyboard Device"    "Razer Inc"    "c:\windows\system32\drivers\rzvkeyboard.sys"    "6/6/2013 7:30 PM"
+ "SamsungRapidDiskFltr"    "Samsung RAPID Mode Disk Filter Driver"    "Samsung Electronics Co., Ltd."    "c:\windows\system32\drivers\samsungrapiddiskfltr.sys"    "7/29/2013 10:55 AM"
+ "SamsungRapidFSFltr"    "SAMSUNG RAPID Mode File Mini-Filter Driver"    "Samsung Electronics Co., Ltd."    "c:\windows\system32\drivers\samsungrapidfsfltr.sys"    "7/29/2013 10:55 AM"
+ "secdrv"    "Macrovision SECURITY Driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"    "9/13/2006 5:18 AM"
+ "Sentinel64"    "Sentinel System Driver (NT Parallel x64 driver)"    "SafeNet, Inc."    "c:\windows\system32\drivers\sentinel64.sys"    "6/1/2008 10:14 PM"
+ "Ser2pl"    "USB-to-Serial Cable Driver"    "Prolific Technology Inc."    "c:\windows\system32\drivers\ser2pl64.sys"    "7/17/2009 1:14 AM"
+ "Serial"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\serial.sys"    "7/13/2009 4:00 PM"
+ "Si3132r5"    "SATA SoftRAID 5 miniport driver"    "Silicon Image, Inc"    "c:\windows\system32\drivers\si3132r5.sys"    "9/16/2008 4:51 PM"
+ "SiFilter"    "Windows Accelerator Driver"    "Silicon Image, Inc."    "c:\windows\system32\drivers\siwinacc.sys"    "11/1/2004 11:23 AM"
+ "SiRemFil"    "Filter driver for Silicon Image SATALink controllers."    "Silicon Image, Inc."    "c:\windows\system32\drivers\siremfil.sys"    "10/18/2006 2:20 PM"
+ "SiSRaid2"    "SiS RAID Stor Miniport Driver"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisraid2.sys"    "9/24/2008 10:28 AM"
+ "SiSRaid4"    "SiS AHCI Stor-Miniport Driver"    "Silicon Integrated Systems"    "c:\windows\system32\drivers\sisraid4.sys"    "10/1/2008 1:56 PM"
+ "snapman"    "Acronis Snapshot API"    "Acronis International GmbH"    "c:\windows\system32\drivers\snapman.sys"    "8/14/2013 4:17 AM"
+ "stexstor"    "Promise  SuperTrak EX Series Driver for Windows "    "Promise Technology"    "c:\windows\system32\drivers\stexstor.sys"    "2/17/2009 3:03 PM"
+ "Synth3dVsc"    ""    ""    "File not found: System32\drivers\synth3dvsc.sys"    ""
+ "tbwkern"    ""    ""    "c:\windows\system32\drivers\tbwkern.sys"    "6/13/2011 10:01 AM"
+ "tdrpman"    "Acronis Try&Decide Volume Filter Driver"    "Acronis International GmbH"    "c:\windows\system32\drivers\tdrpman.sys"    "7/18/2013 7:36 AM"
+ "tib"    "Acronis Backup Archive Explorer"    "Acronis International GmbH"    "c:\windows\system32\drivers\tib.sys"    "3/20/2013 1:00 AM"
+ "tib_mounter"    "Acronis TIB Mounter Driver"    "Acronis International GmbH"    "c:\windows\system32\drivers\tib_mounter.sys"    "9/30/2013 5:04 AM"
+ "tsusbhub"    "@%SystemRoot%\system32\drivers\tsusbhub.sys,-2"    ""    "File not found: system32\drivers\tsusbhub.sys"    ""
+ "USBAAPL64"    "Apple Mobile Device USB Driver"    "Apple, Inc."    "c:\windows\system32\drivers\usbaapl64.sys"    "11/27/2012 3:38 PM"
+ "uti1ntaw"    ""    ""    "File not found: C:\Windows\system32\Drivers\uti1ntaw.sys"    ""
+ "VGPU"    ""    ""    "File not found: System32\drivers\rdvgkmd.sys"    ""
+ "viaide"    "VIA Generic PCI IDE Bus Driver"    "VIA Technologies, Inc."    "c:\windows\system32\drivers\viaide.sys"    "7/13/2009 3:19 PM"
+ "vididr"    "Virtual Disk Driver Service"    "Acronis International GmbH"    "c:\windows\system32\drivers\vididr.sys"    "2/13/2013 10:47 PM"
+ "vidsflt"    "Acronis Virtual Disk Storage Filter"    "Acronis International GmbH"    "c:\windows\system32\drivers\vidsflt.sys"    "2/13/2013 11:04 PM"
+ "VKbms"    "HID mini driver for USB Fx2 Device"    "Windows ® Win 7 DDK provider"    "c:\windows\system32\drivers\vkbms.sys"    "9/30/2010 8:16 AM"
+ "vmci"    ""    ""    "File not found: C:\Windows\system32\DRIVERS\vmci.sys"    ""
+ "VMnetAdapter"    "Driver for VMware's Virtual Ethernet Adapters Ver. 2"    ""    "File not found: system32\DRIVERS\vmnetadapter.sys"    ""
+ "vsmraid"    "VIA RAID DRIVER FOR AMD-X86-64"    "VIA Technologies Inc.,Ltd"    "c:\windows\system32\drivers\vsmraid.sys"    "1/30/2009 5:18 PM"
+ "WinI2C-DDC"    "WINI2C-DDC Kernel Mode Driver"    "Nicomsoft Ltd."    "c:\windows\system32\drivers\ddcdrv.sys"    "4/7/2008 11:50 PM"
+ "{09F57980-3432-4AFC-957D-27AC45FAE1F5}"    ""    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd13\common\navfilter\000.fcl"    "11/23/2012 1:17 AM"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""    "2/7/2014 8:04 AM"
+ "msacm.ac3acm"    "AC-3 ACM Codec"    "fccHandler"    "c:\windows\system32\ac3acm.acm"    "3/19/2011 5:00 PM"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"    "7/13/2009 5:28 PM"
+ "msacm.lameacm"    "Lame MP3 codec engine"    "http://www.mp3dev.org/"    "c:\windows\system32\lameacm.acm"    "9/24/2008 11:41 AM"
+ "vidc.i420"    "Video Codec"    "Logitech Inc."    "c:\windows\system32\lvcod64.dll"    "1/17/2012 10:40 PM"
+ "VIDC.RTV1"    ""    ""    "c:\windows\system32\rtvcvfw64.dll"    "9/28/2012 11:45 AM"
+ "vidc.tscc"    "TechSmith Screen Capture Codec"    "TechSmith Corporation"    "c:\windows\syswow64\tsccvid64.dll"    "7/19/2010 11:34 AM"
+ "vidc.XVID"    ""    ""    "c:\windows\system32\xvidvfw.dll"    "5/30/2011 5:42 AM"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""    "2/8/2014 10:09 AM"
+ "msacm.ac3acm"    "AC-3 ACM Codec"    "fccHandler"    "c:\windows\syswow64\ac3acm.acm"    "3/19/2011 5:00 PM"
+ "msacm.l3acm"    "MPEG Audio Layer-3 Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codecp.acm"    "7/13/2009 5:06 PM"
+ "msacm.l3codecp"    "MPEG Audio Layer-3 Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codecp.acm"    "7/13/2009 5:06 PM"
+ "msacm.lameacm"    "Lame MP3 codec engine"    "http://www.mp3dev.org/"    "c:\windows\syswow64\lameacm.acm"    "3/23/2010 3:52 AM"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\syswow64\iccvid.dll"    "11/20/2010 3:59 AM"
+ "vidc.i420"    "Video Codec"    "Logitech Inc."    "c:\windows\syswow64\lvcodec2.dll"    "1/17/2012 10:36 PM"
+ "VIDC.RTV1"    ""    ""    "c:\windows\syswow64\rtvcvfw32.dll"    "9/28/2012 11:45 AM"
+ "vidc.tscc"    "TechSmith Screen Capture Codec"    "TechSmith Corporation"    "c:\windows\syswow64\tsccvid.dll"    "7/19/2010 11:33 AM"
+ "vidc.VP60"    "VP6 VIDEO FOR WINDOWS CODEC "    "On2.com"    "c:\windows\syswow64\vp6vfw.dll"    "10/2/2003 12:38 PM"
+ "vidc.VP61"    "VP6 VIDEO FOR WINDOWS CODEC "    "On2.com"    "c:\windows\syswow64\vp6vfw.dll"    "10/2/2003 12:38 PM"
+ "vidc.XVID"    ""    ""    "c:\windows\syswow64\xvidvfw.dll"    "5/30/2011 5:42 AM"
+ "vidc.yv12"    "Helix YV12 YUV Codec"    "www.helixcommunity.org"    "c:\windows\syswow64\yv12vfw.dll"    "1/25/2004 8:18 AM"
"HKLM\Software\Classes\Filter"    ""    ""    ""    "2/8/2014 10:20 AM"
+ "Sony Amplitude Modulation"    "Sony XFX 3 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Chorus"    "Sony XFX 1 Plug-In Pack "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Distortion"    "Sony XFX 3 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Dither"    "Sony TrackFX 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sftrkfx1_x64.dll"    "9/6/2012 8:28 AM"
+ "Sony ExpressFX Amplitude Modulation"    "Sony ExpressFX 2 "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Audio Restoration"    "Sony ExpressFX Audio Restoration"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\xpvinyl_x64.dll"    "9/6/2012 8:28 AM"
+ "Sony ExpressFX Chorus"    "Sony ExpressFX 2 "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Delay"    "Sony ExpressFX 2 "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Distortion"    "Sony ExpressFX 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Dynamics"    "Sony ExpressFX 3 "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Equalization"    "Sony ExpressFX 2 "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Flange/Wah-Wah"    "Sony ExpressFX 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Graphic EQ"    "Sony ExpressFX 3 "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Noise Gate"    "Sony ExpressFX 3 "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Reverb"    "Sony ExpressFX 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Stutter"    "Sony ExpressFX 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony ExpressFX Time Stretch"    "Sony ExpressFX 3 "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfxpfx3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Flange/Wah-wah"    "Sony XFX 3 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Gapper/Snipper"    "Sony XFX 3 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Graphic Dynamics"    "Sony XFX 2 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Graphic EQ"    "Sony XFX 2 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Multi-Band Dynamics"    "Sony XFX 2 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Multi-Tap Delay"    "Sony XFX 1 Plug-In Pack "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Noise Gate"    "Sony XFX 2 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Pan"    "Sound Forge Pro Pan and Volume 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sffrgpnv_x64.dll"    "9/6/2012 8:28 AM"
+ "Sony Paragraphic EQ"    "Sony XFX 2 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Parametric EQ"    "Sony XFX 2 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack2_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Pitch Shift"    "Sony XFX 1 Plug-In Pack "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Resonant Filter"    "Sony Resonant Filter"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfresfilter_x64.dll"    "9/6/2012 8:28 AM"
+ "Sony Reverb"    "Sony XFX 1 Plug-In Pack "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Simple Delay"    "Sony XFX 1 Plug-In Pack "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Smooth/Enhance"    "Sony XFX 3 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Time Stretch"    "Sony XFX 1 Plug-In Pack "    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack1_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Track Compressor"    "Sony TrackFX 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sftrkfx1_x64.dll"    "9/6/2012 8:28 AM"
+ "Sony Track EQ"    "Sony TrackFX 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sftrkfx1_x64.dll"    "9/6/2012 8:28 AM"
+ "Sony Track Noise Gate"    "Sony TrackFX 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sftrkfx1_x64.dll"    "9/6/2012 8:28 AM"
+ "Sony Vibrato"    "Sony XFX 3 Plug-In Pack"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sfppack3_x64.dll"    "9/6/2012 8:27 AM"
+ "Sony Volume"    "Sound Forge Pro Pan and Volume 1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\sffrgpnv_x64.dll"    "9/6/2012 8:28 AM"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""    "7/13/2009 8:53 PM"
+ "CoreAVC Video Decoder"    "CoreAVC DirectShow Video Decoder"    "CoreCodec"    "c:\program files (x86)\corecodec\coreavc professional edition\coreavcdecoder64.ax"    "12/18/2009 10:26 AM"
+ "LogMeIn Video Decoder"    "LogMeIn Video Codec"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x64\racodec.ax"    "1/20/2014 4:29 AM"
+ "LogMeIn Video Encoder"    "LogMeIn Video Codec"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x64\racodec.ax"    "1/20/2014 4:29 AM"
+ "Sony Wave Hammer Surround"    "Sony Wave Hammer 5.1"    "Sony Creative Software Inc."    "c:\program files (x86)\sony\shared plug-ins\audio_x64\mchammer_x64.dll"    "9/6/2012 8:28 AM"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""    "7/13/2009 8:53 PM"
+ "Adaptive Streaming Filter"    "Expression Encoder"    "Microsoft Corporation"    "c:\program files (x86)\microsoft expression\encoder 4\microsoft.expression.encoder.utilities2.dll"    "5/24/2010 11:28 PM"
+ "ArcSoft Audio Decoder HD"    "ArcSoft Audio Decoder"    "ArcSoft Inc."    "c:\windows\syswow64\asaudiohd.ax"    "3/26/2009 5:33 AM"
+ "ArcSoft COPP Source"    "ASCOPPSource"    "ArcSoft Inc."    "c:\program files (x86)\common files\arcsoft\mpeg engine\ascoppsource.ax"    "5/4/2008 1:06 AM"
+ "ArcSoft DTS encoder"    "dtsencoder"    "ArcSoft"    "c:\program files (x86)\common files\arcsoft\mpeg engine\dtsencoder.ax"    "8/17/2008 5:38 PM"
+ "ArcSoft DVD Navigator"    "ArcSoft DVD Navigator Filter"    "ArcSoft, Inc."    "c:\program files (x86)\common files\arcsoft\mpeg engine\dvdnavfilter.ax"    "6/15/2008 9:20 PM"
+ "Arcsoft Matroska Muxer"    "Arcsoft Matroska Muxer"    "Gabest"    "c:\program files (x86)\common files\arcsoft\mpeg engine\asmatroskamuxer.ax"    "3/26/2008 5:08 PM"
+ "ATI MPEG Audio Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\atimpenc.dll"    "5/27/2010 8:54 AM"
+ "ATI MPEG File Writer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\atimpenc.dll"    "5/27/2010 8:54 AM"
+ "ATI MPEG Multiplexer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\atimpenc.dll"    "5/27/2010 8:54 AM"
+ "ATI MPEG Video Decoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\atimpenc.dll"    "5/27/2010 8:54 AM"
+ "ATI MPEG Video Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\atimpenc.dll"    "5/27/2010 8:54 AM"
+ "ATI Video Rotation Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\atimpenc.dll"    "5/27/2010 8:54 AM"
+ "ATI Video Scaler Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\atimpenc.dll"    "5/27/2010 8:54 AM"
+ "Audio Destination"    "WAVDest Filter (Sample)"    "Microsoft Corporation"    "c:\program files (x86)\google\google earth\client\wavdest.ax"    "10/7/2013 11:33 AM"
+ "Audio Source"    "Windows Media Preview Object"    "Microsoft Corporation"    "c:\program files (x86)\windows media components\encoder\wmprevu.dll"    "12/11/2002 5:34 PM"
+ "Capture File Writer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 2:21 AM"
+ "CoreAAC Audio Decoder"    "CoreAAC"    ""    "c:\windows\syswow64\coreaac.ax"    "8/12/2005 12:04 AM"
+ "CoreAVC Video Decoder"    "CoreAVC DirectShow Video Decoder"    "CoreCodec"    "c:\program files (x86)\corecodec\coreavc professional edition\coreavcdecoder.ax"    "12/18/2009 10:26 AM"
+ "D&M MP2 Encoder(48KHz)"    "D&M MP2 Encoder"    "MyCompanyName"    "c:\program files (x86)\dvico\fusionhdtv\zulu_aud2.ax"    "9/9/2001 9:56 PM"
+ "DirectVobSub"    "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth"    "xy-VSFilter Team"    "c:\program files (x86)\combined community codec pack\filters\vsfilter.dll"    "10/7/2013 12:10 AM"
+ "DirectVobSub (auto-loading version)"    "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth"    "xy-VSFilter Team"    "c:\program files (x86)\combined community codec pack\filters\vsfilter.dll"    "10/7/2013 12:10 AM"
+ "DV Scenes"    "DV-Timecode based Scenechange Detection"    "Nero AG"    "c:\program files (x86)\nero\nero 7\nero vision\nvdv.dll"    "11/2/2006 5:59 AM"
+ "DV Source Filter"    "DV-Timecode based Scenechange Detection"    "Nero AG"    "c:\program files (x86)\nero\nero 7\nero vision\nvdv.dll"    "11/2/2006 5:59 AM"
+ "Dvico AC3 Decoder"    "HDTV Audio Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_ac3dec_4th.ax"    "6/19/2006 6:08 PM"
+ "Dvico AC3 Decoder"    "HDTV Audio Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_ac3dec_2nd.ax"    "6/19/2006 6:08 PM"
+ "Dvico AC3 Decoder"    "HDTV Audio Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_ac3dec_3th.ax"    "6/19/2006 6:08 PM"
+ "Dvico AC3 Decoder"    "HDTV Audio Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_ac3dec.ax"    "5/24/2006 10:55 PM"
+ "Dvico AC3 Decoder2"    "HDTV Audio Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_ac3dec2.ax"    "12/1/2003 12:32 AM"
+ "Dvico Audio Infomation"    "HDTV Audio Information Filter"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_audio_info.ax"    "4/7/2004 10:04 PM"
+ "Dvico Deinterlace Filter"    "DVICO Deinterlace Filter"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_deinterlace.ax"    "7/24/2007 5:48 PM"
+ "Dvico DivX Video Decoder"    "DivX Video Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_divxdec.ax"    "1/1/2004 9:16 PM"
+ "Dvico DivX Video Encoder"    "DVICO DivX 4.0 Encoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_divxenc.ax"    "2/25/2004 6:04 PM"
+ "Dvico DMB Audio"    "Dvico DMB Audio Decoder Filter"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_dmb_audio.ax"    "3/22/2006 6:40 PM"
+ "Dvico DMB System Parser"    "Dvico DMB System Parser Filter"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_dmb_parser.ax"    "12/22/2006 12:53 AM"
+ "Dvico DMB Video"    "Dvico DMB Video Deocder Filter"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_dmb_video.ax"    "3/22/2006 6:37 PM"
+ "Dvico FastMode HD Decoder"    "HDTV Video Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_fastdec.ax"    "12/1/2004 12:11 AM"
+ "Dvico HD-MPEG2 Decoder"    "HD-MPEG2 Video Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_mpeg2decore.ax"    "6/29/2006 12:08 AM"
+ "Dvico HDTV-DVD Video Decoder"    "HDTV Video-DVD Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_hdtvdvd_dec.ax"    "10/12/2004 6:43 PM"
+ "Dvico MP2 Audio Decoder"    "DVICO MPEG Audio decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_mp2dec.ax"    "1/25/2005 10:52 PM"
+ "Dvico MP3 Encoder"    "MP3 Audio Encoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_mp3enc.ax"    "6/23/2004 3:51 AM"
+ "Dvico MPEG-2 Video Encoder"    "HDTV-DVD MPEG-2 Encoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_mpeg2enc.ax"    "3/10/2004 6:48 PM"
+ "Dvico MPEG2 Video Decoder"    "DVICO MPEG-2 Video Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_mpeg2vdec.ax"    "1/25/2005 11:03 PM"
+ "Dvico Musicam Decoder Filter"    "Dvico Musicam Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_musicam_decoder.ax"    "4/23/2006 9:24 PM"
+ "Dvico Progress"    "FusionHDTV DLL"    "Dvico, Inc."    "c:\program files (x86)\dvico\fusionhdtv\zuludvhs2ts.ax"    "1/14/2008 8:28 PM"
+ "Dvico PS Dump"    ""    ""    "c:\program files (x86)\dvico\fusionhdtv\zulupsdump.ax"    "10/28/2005 12:41 AM"
+ "Dvico PSI Parser2"    "ZuluPsiParse2 DLL"    "Dvico, Inc."    "c:\program files (x86)\dvico\fusionhdtv\zulupsiparse2.ax"    "5/31/2010 11:59 PM"
+ "DViCO Remocon Capture"    "RMC Capture File Filter"    "DViCO Co.,Ltd"    "c:\program files (x86)\dvico\fusionhdtv\dxrmcap.ax"    "6/20/2007 8:03 PM"
+ "Dvico TimeShift Filter"    "COMLogic PVR Filter"    "COMLogic"    "c:\program files (x86)\dvico\fusionhdtv\zulutimeshift.ax"    "1/14/2008 8:28 PM"
+ "Dvico TS2PS Filter"    "MP3 Audio Encoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zuluts2ps.ax"    "11/2/2005 1:42 AM"
+ "Dvico UYVY Color Format Converter"    "Dvico UYVY Color Converter"    "Dvico"    "c:\program files (x86)\dvico\fusionhdtv\uyvycnvt.ax"    "10/7/2007 6:34 PM"
+ "Dvico ZuluPump"    "FusionHDTV DLL"    "Dvico, Inc."    "c:\program files (x86)\dvico\fusionhdtv\zulupump.ax"    "1/14/2008 8:28 PM"
+ "Expression Encoder Screen Codec 2"    "Expression Encoder Screen Capture"    "Microsoft Corporation"    "c:\program files (x86)\microsoft expression\encoder 4\microsoft.expression.encoder.eescreen.codec.dll"    "5/24/2010 10:47 PM"
+ "ffdshow Audio Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files (x86)\ffdshow\ffdshow.ax"    "4/8/2012 2:40 PM"
+ "ffdshow Audio Processor"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files (x86)\ffdshow\ffdshow.ax"    "4/8/2012 2:40 PM"
+ "ffdshow raw video filter"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files (x86)\ffdshow\ffdshow.ax"    "4/8/2012 2:40 PM"
+ "ffdshow subtitles filter"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files (x86)\ffdshow\ffdshow.ax"    "4/8/2012 2:40 PM"
+ "ffdshow Video Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files (x86)\ffdshow\ffdshow.ax"    "4/8/2012 2:40 PM"
+ "FLAC Audio Decoder"    "FLAC Audio Filter"    "-"    "c:\program files (x86)\common files\common share\codecs\flac.ax"    "7/7/2006 1:07 AM"
+ "FLAC Audio Filter"    "FLAC Audio Filter"    "-"    "c:\program files (x86)\common files\common share\codecs\flac.ax"    "7/7/2006 1:07 AM"
+ "FLV Source"    "FLV Splitter"    "Gabest"    "c:\program files (x86)\common files\common share\filters\flvsplitter.ax"    "11/15/2008 8:57 AM"
+ "FLV Splitter"    "FLV Splitter"    "Gabest"    "c:\program files (x86)\common files\common share\filters\flvsplitter.ax"    "11/15/2008 8:57 AM"
+ "FLV4 Video Decoder"    "FLV Splitter"    "Gabest"    "c:\program files (x86)\common files\common share\filters\flvsplitter.ax"    "11/15/2008 8:57 AM"
+ "Haali Matroska Muxer"    "Haali Media Splitter"    ""    "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"    "11/15/2013 10:49 AM"
+ "Haali Media Splitter"    "Haali Media Splitter"    ""    "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"    "11/15/2013 10:49 AM"
+ "Haali Media Splitter (AR)"    "Haali Media Splitter"    ""    "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"    "11/15/2013 10:49 AM"
+ "Haali Simple Media Splitter"    "Haali Media Splitter"    ""    "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"    "11/15/2013 10:49 AM"
+ "Haali Video Renderer"    ""    ""    "c:\program files (x86)\combined community codec pack\filters\haali\dxr.dll"    "11/15/2013 10:49 AM"
+ "Haali Video Sink"    "Haali Media Splitter"    ""    "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"    "11/15/2013 10:49 AM"
+ "HighMAT and MPV Navigator Filter"    "MPV Playback Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\hmnavigator.ax"    "11/30/2006 7:57 AM"
+ "HighMAT/MPV Navigation Client Filter"    "MPV Playback Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\hmnavigator.ax"    "11/30/2006 7:57 AM"
+ "Infinite Pin Tee"    ""    ""    "c:\program files (x86)\dvico\fusionhdtv\zulutee.ax"    "1/30/2008 7:09 PM"
+ "LAV Audio Decoder"    "LAV Audio Decoder - DirectShow Audio Decoder"    "1f0.de - Hendrik Leppkes"    "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavaudio.ax"    "1/14/2014 12:03 PM"
+ "LAV Splitter"    "LAV Splitter - DirectShow Media Splitter"    "1f0.de - Hendrik Leppkes"    "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavsplitter.ax"    "1/14/2014 12:03 PM"
+ "LAV Splitter Source"    "LAV Splitter - DirectShow Media Splitter"    "1f0.de - Hendrik Leppkes"    "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavsplitter.ax"    "1/14/2014 12:03 PM"
+ "LAV Video Decoder"    "LAV Video Decoder - DirectShow Video Decoder"    "1f0.de - Hendrik Leppkes"    "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavvideo.ax"    "1/14/2014 12:04 PM"
+ "LogMeIn Video Decoder"    "LogMeIn Video Codec"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x86\racodec.ax"    "1/20/2014 4:25 AM"
+ "LogMeIn Video Encoder"    "LogMeIn Video Codec"    "LogMeIn, Inc."    "c:\program files (x86)\logmein\x86\racodec.ax"    "1/20/2014 4:25 AM"
+ "madFlac Decoder"    "DirectShow FLAC Decoder"    "www.madshi.net"    "c:\windows\syswow64\madflac.ax"    "6/19/1992 2:22 PM"
+ "madFlac Source"    "DirectShow FLAC Decoder"    "www.madshi.net"    "c:\windows\syswow64\madflac.ax"    "6/19/1992 2:22 PM"
+ "madVR"    "madshi's D3D9 based video renderer"    "madshi.net"    "c:\users\robert\desktop\madvr08611\madvr.ax"    "8/1/2013 2:30 PM"
+ "MPC - MPEG-2 Video Decoder (Gabest)"    "MPEG-2 Decoder Filter for DirectShow"    "Gabest"    "c:\program files (x86)\common files\common share\filters\mpeg2decfilter.ax"    "9/17/2008 10:26 PM"
+ "MPEG-2 PSI Reader Filter"    "Mpeg2PsiReader"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\mpeg2psireader.ax"    "4/27/2007 3:05 AM"
+ "MPEG-2 Stream Reader Filter"    "Mpeg2StreamReader"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\mpeg2streamreader.ax"    "1/30/2007 5:23 AM"
+ "Nero Audible Decoder"    "Nero Audible Decoder"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neaudible.ax"    "6/25/2007 5:15 AM"
+ "Nero Audio CD Filter"    "Nero Audio CD Source Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neaudcd.ax"    "4/2/2007 6:25 AM"
+ "Nero Audio CD Navigator"    "Nero Audio CD Source Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neaudcd.ax"    "4/2/2007 6:25 AM"
+ "Nero Audio Source"    "Nero Library"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nerender.ax"    "6/25/2007 4:12 AM"
+ "Nero Audio Stream Renderer"    "Nero Library"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nerender.ax"    "6/25/2007 4:12 AM"
+ "Nero Audio Stream Renderer"    "Nero Library"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nerender.ax"    "6/25/2007 4:12 AM"
+ "Nero AV Synchronizer"    "Audio/Video Synchronizer"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neavsync.ax"    "6/25/2007 4:19 AM"
+ "Nero Deinterlace"    "Deinterlacing Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nedeinterlace.ax"    "6/25/2007 4:30 AM"
+ "Nero Digital AVC Audio Encoder"    "AAC LC/HE Audio Encoder"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nendaud.ax"    "6/25/2007 4:32 AM"
+ "Nero Digital AVC File Writer"    "NeroDigital File Format Muxer"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nendmux.ax"    "6/25/2007 4:32 AM"
+ "Nero Digital AVC Muxer"    "NeroDigital File Format Muxer"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nendmux.ax"    "6/25/2007 4:32 AM"
+ "Nero Digital AVC Null Renderer"    "NeroDigital File Format Muxer"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nendmux.ax"    "6/25/2007 4:32 AM"
+ "Nero Digital AVC Subpicture Enc"    "NeroDigital File Format Muxer"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nendmux.ax"    "6/25/2007 4:32 AM"
+ "Nero Digital AVC Video Enc"    "MPEG4 and H.264 (AVC) Video Encoder"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nendvid.ax"    "6/25/2007 4:32 AM"
+ "Nero Digital Parser"    "NeroDigital / mp4 / avi / mov parser"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\ndparser.ax"    "6/25/2007 4:23 AM"
+ "Nero DV Splitter"    "DV Splitter Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nedvsplitter.ax"    "6/25/2007 4:58 AM"
+ "Nero ES Video Reader"    "NeroDigital / mp4 / avi / mov parser"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\ndparser.ax"    "6/25/2007 4:23 AM"
+ "Nero File Source"    "Nero SVCD source filter"    "Nero AG "    "c:\program files (x86)\common files\ahead\dsfilter\nefilesrc.ax"    "6/25/2007 4:10 AM"
+ "Nero File Source (Async.)"    "Nero Home"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nefilesourceasync.ax"    "5/30/2007 1:50 AM"
+ "Nero File Source / Splitter"    "Push Mode VOB Source Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nefsource.ax"    "6/25/2007 4:58 AM"
+ "Nero FLV Splitter"    "Nero FLV Splitter Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neflvsplitter.ax"    "6/25/2007 4:31 AM"
+ "Nero Format Converter"    "Frame rate / Color space converter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neroformatconv.ax"    "6/25/2007 4:24 AM"
+ "Nero Frame Capture"    "Direct Show frame grabber filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\necapture.ax"    "6/25/2007 4:23 AM"
+ "Nero FTC"    "Frame Time Corrector Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neftc.ax"    "3/24/2006 7:28 AM"
+ "Nero InteractiveGraphics Decoder"    "Graphics Decoder Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nebdgraphic.ax"    "6/25/2007 5:00 AM"
+ "Nero MP3 Encoder"    "MP3 Encoding Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nemp3encoder.ax"    "6/25/2007 5:18 AM"
+ "Nero MP4 Splitter"    "MP4 Splitter Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nemp4splitter.ax"    "6/25/2007 5:01 AM"
+ "Nero Mpeg2 Encoder"    "MPEG 1/2 encoder filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nevcr.ax"    "6/25/2007 4:11 AM"
+ "Nero Ogg Splitter"    "Ogg Splitter Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neoggsplitter.ax"    "6/25/2007 5:01 AM"
+ "Nero Overlay Mixer"    "Overlay Mixer Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neoverlaymixer.ax"    "6/25/2007 4:59 AM"
+ "Nero Photo Source"    "Nero Home"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nephotosource.ax"    "5/30/2007 1:48 AM"
+ "Nero PresentationGraphics Decoder"    "Graphics Decoder Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nebdgraphic.ax"    "6/25/2007 5:00 AM"
+ "Nero PS Muxer"    ""    ""    "c:\program files (x86)\common files\ahead\dsfilter\nepsmuxer.ax"    "6/25/2007 4:58 AM"
+ "Nero QuickTime™ Audio Decoder"    "QuickTime™ Decoder Wrapper"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neqtdec.ax"    "6/25/2007 4:29 AM"
+ "Nero QuickTime™ Video Decoder"    "QuickTime™ Decoder Wrapper"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neqtdec.ax"    "6/25/2007 4:29 AM"
+ "Nero Resize"    "Resizing Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\neresize.ax"    "6/25/2007 4:30 AM"
+ "Nero Sample Queue"    "Sample Queue Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nesamplequeue.ax"    "5/5/2006 6:10 AM"
+ "Nero Scene Change Detector"    "Scene Change Detector"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nescenedetector.ax"    "6/25/2007 4:10 AM"
+ "Nero Scene Change Detector"    "Scene Change Detector"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nescenedetector.ax"    "6/25/2007 4:10 AM"
+ "Nero Smart3D Text Effect Filter"    "Nero 3D DirectShow Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\lib\nsg_dxfilter.dll"    "11/30/2006 4:48 AM"
+ "Nero Smart3D Transition Effect Filter"    "Nero 3D DirectShow Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\lib\nsg_dxfilter.dll"    "11/30/2006 4:48 AM"
+ "Nero Smart3D Video Effect Filter"    "Nero 3D DirectShow Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\lib\nsg_dxfilter.dll"    "11/30/2006 4:48 AM"
+ "Nero Sound Processor"    "Nero Sound Processor"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nesoundproc.ax"    "6/25/2007 5:16 AM"
+ "Nero Splitter"    "Splitter Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nesplitter.ax"    "6/25/2007 4:58 AM"
+ "Nero Stream Buffer Sink"    "Nero Stream Buffer Engine"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nesbe.ax"    "6/25/2007 5:00 AM"
+ "Nero Stream Buffer Source"    "Nero Stream Buffer Engine"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nesbe.ax"    "6/25/2007 5:00 AM"
+ "Nero Stream Control"    "Transport Stream Controller Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nestreamcontrol.ax"    "2/24/2006 2:09 AM"
+ "Nero Subpicture Decoder"    "Nero Subpicture Decoder"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nesubpicture.ax"    "6/25/2007 4:29 AM"
+ "Nero Subtitle"    "Subtitle Mixer"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nesubtitle.ax"    "6/25/2007 4:31 AM"
+ "Nero Thumbnail Decoder"    "Thumbnail Decoder Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nebdthumbnail.ax"    "6/25/2007 5:01 AM"
+ "Nero Vcd Navigator"    "Nero Vcd Navigator Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nevcd.ax"    "6/25/2007 4:59 AM"
+ "Nero Video Analyzer"    "Nero Video Analyzer"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nevideoanalyzer.ax"    "6/25/2007 4:30 AM"
+ "Nero Video Processor"    "Resize / Deinterlace / Color Correction / Film Effect / Frame Capture Filter"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nerovideoproc.ax"    "6/25/2007 4:24 AM"
+ "Nero Video Renderer"    "Nero Video Renderer"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nevideorenderer.ax"    "6/25/2007 4:28 AM"
+ "Nero Video Source"    "Nero Library"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nerender.ax"    "6/25/2007 4:12 AM"
+ "NeSoundSwitch"    "Nero Sound Switcher"    "Nero AG"    "c:\program files (x86)\common files\ahead\dsfilter\nesoundswitch.ax"    "6/25/2007 4:22 AM"
+ "Record Queue"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 2:21 AM"
+ "Record Queue"    "WME Record Queue"    "Microsoft Corporation"    "c:\program files (x86)\windows media components\encoder\wmedque.dll"    "12/11/2002 5:34 PM"
+ "SendVideo"    ""    ""    "File not found: C:\Program Files (x86)\Tencent\QQIntl\Plugin\Com.Tencent.HDVideo\bin\SendVideo.dll"    ""
+ "TS to DVHS Transform Filter"    "FusionHDTV DLL"    "Dvico, Inc."    "c:\program files (x86)\dvico\fusionhdtv\zuluts2dvhs.ax"    "1/14/2008 8:30 PM"
+ "Video Source"    "Windows Media Preview Object"    "Microsoft Corporation"    "c:\program files (x86)\windows media components\encoder\wmprevu.dll"    "12/11/2002 5:34 PM"
+ "WavPack Audio Decoder"    "WavPack Audio DirectShow Decoder"    "-"    "c:\windows\syswow64\wavpackdsdecoder.ax"    "3/4/2007 1:50 AM"
+ "WavPack Audio Splitter"    "WavPack Audio DirectShow Splitter"    "-"    "c:\windows\syswow64\wavpackdssplitter.ax"    "9/4/2007 11:08 AM"
+ "WM VIH2 Fix"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 2:21 AM"
+ "WMEnc Screen Capture Filter"    "WMESrcWp Module"    "Microsoft Corporation"    "c:\program files (x86)\windows media components\encoder\wmesrcwp.dll"    "12/11/2002 5:34 PM"
+ "WMT DV Extract Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 2:21 AM"
+ "WMT Sample Info Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 2:21 AM"
+ "WMT Switch Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 2:21 AM"
+ "WMT Virtual Renderer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 2:21 AM"
+ "WMT Virtual Source"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "11/10/2010 2:21 AM"
+ "Zulu DMB Audio"    "Zulu DMB Audio Decoder Filter"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\dmb_audio.ax"    "3/22/2006 6:39 PM"
+ "Zulu DMB System Parser"    "Dvico DMB System Parser Filter"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\dmb_parser.ax"    "12/26/2006 6:33 PM"
+ "Zulu DMB Video"    "Zulu DMB Video Deocder Filter"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\dmb_video.ax"    "3/22/2006 6:36 PM"
+ "Zulu DTV Video Decoder"    ""    ""    "c:\program files (x86)\dvico\fusionhdtv\zulu_dtv_vdec.ax"    "7/24/2008 9:27 PM"
+ "Zulu HDTV DxVA Decoder(BDA)"    "HDTV DxVA Video Decoder (BDA)"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_vista_dxva.ax"    "2/7/2007 8:58 PM"
+ "Zulu HDTV DxVA Decoder(BDA)"    "HDTV DxVA Video Decoder (BDA)"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_hdtv_dxva.ax"    "6/13/2006 7:00 PM"
+ "Zulu HDTV Video Decoder(BDA)"    "Dvico HDTV Video Decoder(BDA)"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_hdtv_video_2.ax"    "7/11/2005 10:53 PM"
+ "Zulu HDTV Video Decoder(BDA)"    "Dvico HDTV Video Decoder(BDA)"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_hdtv_video.ax"    "7/6/2005 6:49 PM"
+ "Zulu HDTV Video Decoder(BDA)"    "Dvico HDTV Video Decoder(BDA)"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_hdtv_video_3.ax"    "7/11/2005 11:01 PM"
+ "Zulu HDTV Video Decoder(BDA)"    "Dvico HDTV Video Decoder(BDA)"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\zulu_hdtv_video_4.ax"    "7/11/2005 11:03 PM"
+ "Zulu Musicam Decoder Filter"    "Zulu Musicam Decoder"    "DVICO"    "c:\program files (x86)\dvico\fusionhdtv\musicam_decoder.ax"    "4/23/2006 9:25 PM"
+ "Zulu Pump Filter"    "FusionHDTV DLL"    "Dvico, Inc."    "c:\program files (x86)\dvico\fusionhdtv\gompump.ax"    "4/26/2006 11:45 PM"
+ "Zulu Stream Analyzer"    ""    ""    "c:\program files (x86)\dvico\fusionhdtv\zulustreamanalyzer.ax"    "1/14/2008 8:27 PM"
+ "Zulu SubtitleDecoder"    "FusionHDTV Filter"    "Dvico, Inc."    "c:\program files (x86)\dvico\fusionhdtv\zulusubtitle.ax"    "5/12/2008 6:27 PM"
+ "Zulu TeletextDecoder"    "FusionHDTV Filter"    "Dvico, Inc."    "c:\program files (x86)\dvico\fusionhdtv\zuluteletext.ax"    "4/11/2006 8:17 PM"
+ "Zulu TimeShift Filter"    "COMLogic PVR Filter"    "COMLogic"    "c:\program files (x86)\dvico\fusionhdtv\gomtimeshift.ax"    "4/25/2006 10:19 PM"
+ "ZuluDump"    "FusionHDTV DLL"    "Dvico, Inc."    "c:\program files (x86)\dvico\fusionhdtv\zuludump.ax"    "1/14/2008 8:29 PM"
"HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance"    ""    ""    ""    "4/17/2011 1:11 PM"
+ "Photoshop Codec"    "PSDCodec"    "Microsoft Corporation"    "c:\program files (x86)\microsoft expression\common\imaging\4.0.360.0\psdcodec.dll"    "5/11/2010 3:55 PM"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers"    ""    ""    ""    "7/13/2009 8:53 PM"
+ "LogMeInCredProv"    "LogMeIn Remote Control Helper"    "LogMeIn, Inc."    "c:\windows\system32\lmiinit.dll"    "1/20/2014 4:29 AM"
+ "WLIDCredentialProvider"    "Microsoft® Windows Live ID Credential Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"    "9/21/2010 1:47 PM"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify"    ""    ""    ""    "2/8/2014 10:09 AM"
+ "LBTWlgn"    "Logitech Bluetooth Service"    "Logitech, Inc."    "c:\program files\common files\logishrd\bluetooth\lbtwlgn.dll"    "2/8/2013 10:24 AM"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""    "7/12/2013 9:42 AM"
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files (x86)\bonjour\mdnsnsp.dll"    "8/30/2011 9:44 PM"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"    "9/21/2010 1:00 PM"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"    "9/21/2010 1:00 PM"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"    ""    ""    ""    "7/12/2013 9:42 AM"
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"    "8/30/2011 9:53 PM"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"    "9/21/2010 1:45 PM"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"    "9/21/2010 1:45 PM"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""    "2/8/2014 10:09 AM"
+ "Adobe PDF Port Monitor"    "Adobe PDF Port  Monitor DLL"    "Adobe Systems Inc"    "c:\windows\system32\adobepdf.dll"    "4/6/2008 9:38 PM"
+ "Canon BJ Language Monitor MP130"    "IJ Language Monitor"    "CANON INC."    "c:\windows\system32\cnmlm6s.dll"    "9/12/2006 12:36 PM"
+ "EPSON Artisan 50 Series 64MonitorBA"    "EPSON Bi-directional Monitor AMD64"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\e_ilmffa.dll"    "8/7/2008 11:55 PM"
+ "EPSON XP-800 Series 64MonitorBE"    "EPSON Bi-directional Monitor AMD64"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\e_ilmjae.dll"    "4/18/2011 8:13 PM"
+ "EpsonNet Print Port"    "EpsonNet Print Port Monitor DLL"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\enppmon.dll"    "8/29/2011 8:38 PM"
+ "LogMeIn Printer Port Monitor"    "RemotelyAnywhere Printer Port Monitor"    "LogMeIn, Inc."    "c:\windows\system32\lmiport.dll"    "4/26/2013 6:14 AM"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order"    ""    ""    ""    "7/13/2009 8:49 PM"
+ "LMIRfsClientNP"    "LogMeIn Virtual Disk Network"    "LogMeIn, Inc."    "c:\windows\system32\lmirfsclientnp.dll"    "1/20/2014 4:29 AM"
 



#9 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 01:33 PM

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Database version: v2014.02.06.04

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 11.0.9600.16476
robert :: ROBERT-2011-PC [administrator]

Protection: Disabled

2/6/2014 11:07:30 PM
mbam-log-2014-02-06 (23-07-30).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 686327
Time elapsed: 25 minute(s), 53 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\DVD making\AC3.Splitter.v1.0.WinALL.Incl.Keygen-ViRiLiTY.ZIP (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
C:\Program Files\Sony\Vegas Pro 12.0\vegas.pro.12.-patch.exe (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\Program Files (x86)\VSO\VSO Video Converter\1\patch.exe (PUP.Riskware.Patcher) -> Quarantined and deleted successfully.
C:\Users\robert\Desktop\Software\Windows_Loader_v2.2.1\Windows Loader\Windows Loader.exe (Hacktool.Agent) -> Quarantined and deleted successfully.

(end)
 



#10 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 02:17 PM

Still can't update windows, may have to do clean install.



#11 rsuryase

rsuryase
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 09 February 2014 - 07:20 PM

reinstalled windows and installed eset. eset much better than kaspersky.


Edited by rsuryase, 09 February 2014 - 07:20 PM.


#12 oneof4

oneof4

  • Malware Response Team
  • 3,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Collective
  • Local time:04:28 PM

Posted 12 February 2014 - 06:09 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

Best Regards,
oneof4.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users