Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Virus & Other Malware Removal Virus & Other Malware Removal
Search Search
Search for:
Tech Support Guy > > >

Solved: problems logging on when AVG is scanning


(!)

Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
12-Jul-2012, 02:42 PM #1
problems logging on when AVG is scanning
I'm having issues with my trusted little pc. Hopefully it's not because it's too old and need replacing. Lately it's extremely slow and I get tons of "low virtual memory" notices when I'm doing a search. The main problem I'm having is not being able to log in to my user profilewhen AVG is doing a scheduled scan. When AVG is running I automaticall get booted over to a "temporary user profile". Also, the last AVG scan found a hidden Rootkit warning. I've done some searches on it but I'm not knowledgeable enough in this area to now what any of it means but I'm smart enough to ask for help.
Object name: C:\ Windows|System 32\ drivers\ sdcplh.sys.
Detection name: IRP hook\driver\atapi IRP-MJ-device-control scdplh.sys+DX4A7C



Here is my pc info:
OS Name Microsoft Windows XP Home Edition
Version 5.1.2600 Service Pack 3 Build 2600
OS Manufacturer Microsoft Corporation
System Name
System Manufacturer INTEL_
System Model D845EBG2
System Type X86-based PC
Processor x86 Family 15 Model 1 Stepping 2 GenuineIntel ~1699 Mhz
BIOS Version/Date Intel Corp. PT84520A.86A.0009.P04.0205291548, 29/05/2002
SMBIOS Version 2.3
Windows Directory C:\WINDOWS
System Directory C:\WINDOWS\system32
Boot Device \Device\HarddiskVolume1
Locale United States
Hardware Abstraction Layer Version = "5.1.2600.5512 (xpsp.080413-2111)"
User Name
Time Zone Eastern Daylight Time
Total Physical Memory 512.00 MB
Available Physical Memory 195.40 MB
Total Virtual Memory 2.00 GB
Available Virtual Memory 1.96 GB
Page File Space 862.76 MB
Page File C:\pagefile.sys


The following is the Hijack this log.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:42:30 PM, on 12/07/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\spm\spmd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\lxczcoms.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\AVG\AVG2012\avgidsagent.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\P\My Documents\net downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: (no name) - {8CE4A052-D68C-408C-B56F-7196AB22B5EF} - C:\Program Files\MSN\metobC:\WINDOWS\System32\sa3\renamd83122.exe.dll (file missing)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.10\AVG Secure Search_toolbar.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.10\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
O4 - HKLM\..\Run: [MoneyStartUp10.0] "C:\Program Files\Microsoft Money\System\Activation.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/...nAxControl.CAB
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1341164704390
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/micr...?1341182786203
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.0.2\ViProtocol.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: mljhiif - mljhiif.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: lxcz_device - - C:\WINDOWS\System32\lxczcoms.exe
O23 - Service: RaySatxsi4_2 Server (RaySatxsi4_2Server) - Unknown owner - C:\Softimage\XSI_4.2\Application\bin\raysatxsi4_2server.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SPM License Server (spmd) - mental images GmbH & Co. KG - C:\WINDOWS\System32\spm\spmd.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Unknown owner - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: vToolbarUpdater11.0.2 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 10717 bytes

Last edited by Pat C; 13-Jul-2012 at 11:54 AM..
eddie5659's Avatar
Computer Specs
Moderator & Malware Removal Specialist with 28,323 posts.
 
Join Date: Mar 2001
Location: Bradford, England
12-Jul-2012, 05:44 PM #2
Hiya

The file you put up there isn't a rootkit file, but that doesn't mean to say you're not infected. So, can you do the following for me, and we'll go from there

Download Security Check from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.





Please download Malwarebytes' Anti-Malware from Here

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Full Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediatly.






Download and scan with SUPERAntiSpyware Free Edition for Home Users
  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download and unzip them from here.)
  • Under "Configuration and Preferences", click the Preferences button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Home" button to leave the control center screen.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click Scan your computer.
  • On the left, select all fixed drives.
  • Click "Start Complete Scan" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "Continue".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "Remove Threats" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • [i][color=green]Click View Scan Logs.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.

Please include the MBAM log, SUPERAntiSpyware Scan Log and checkup.txt in your next reply

eddie
__________________
Just go with the flow, like a twig on the shoulders of a mighty stream

MVP in Consumer Security
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
12-Jul-2012, 07:41 PM #3
Hey eddie, glad to see you're still here.
The truth is, I don't even know what a Rootkit is but AVG said.....Object: file and SDK Type: Rootkit. Was just repeating what I saw. Here is the first list. Will send the other as soon as it's done.



Results of screen317's Security Check version 0.99.42
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
AVG 2012
AVG2012 successfully updated!
`````````Anti-malware/Other Utilities Check:`````````
Spybot - Search & Destroy
Windows Defender
Cleaner 5 EZ
Java Web Start
Java 2 Runtime Environment, SE v1.4.1_01
Java(TM) 6 Update 15
Java(TM) SE Runtime Environment 6 Update 1
Java version out of Date!
Adobe Reader 7 Adobe Reader out of Date!
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
Windows Defender MSASCui.exe
AVG avgwdsvc.exe
AVG avgtray.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
Windows Defender MsMpEng.exe
Windows Defender MSASCui.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:: 3%
````````````````````End of Log``````````````````````
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
12-Jul-2012, 11:38 PM #4
Here is the Malwarebytes Anti-malware log:

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.12.12

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
[administrator]

12/07/2012 7:49:45 PM
mbam-log-2012-07-12 (19-49-45).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 401784
Time elapsed: 3 hour(s), 18 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCR\CLSID\{A051B1FF-8D7E-418B-AABE-4FF82F4280A2} (Trojan.Vundo) -> Quarantined and deleted successfully.

Registry Values Detected: 2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks|{ A051B1FF-8D7E-418B-AABE-4FF82F4280A2} (Trojan.Vundo) -> Data: -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{ A051B1FF-8D7E-418B-AABE-4FF82F4280A2} (Trojan.Vundo) -> Data: -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 1
C:\WINDOWS\system32\nGpxx01 (Trojan.Downloader) -> Quarantined and deleted successfully.

Files Detected: 1
C:\WINDOWS\system32\pac.txt (Malware.Trace) -> Quarantined and deleted successfully.

(end)
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
13-Jul-2012, 10:08 AM #5
SUPER AntiSpyware log:

UPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 07/13/2012 at 05:29 AM

Application Version : 5.5.1012

Core Rules Database Version : 8894
Trace Rules Database Version: 6706

Scan type : Complete Scan
Total Scan Time : 05:08:52

Operating System Information
Windows XP Home Edition 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 451
Memory threats detected : 0
Registry items scanned : 41556
Registry threats detected : 0
File items scanned : 143884
File threats detected : 87

Adware.Tracking Cookie
C:\DOCUMENTS AND SETTINGS\G\Cookies\23BQRJ6K.txt [ Cookie:g@sympatico.112.2o7.net/ ]
C:\DOCUMENTS AND SETTINGS\G\Cookies\27566IBR.txt [ Cookie:g@2o7.net/ ]
C:\DOCUMENTS AND SETTINGS\G\Cookies\CUKVH3U3.txt [ Cookie:g@serving-sys.com/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@bellcan.adbureau[2].txt [ Cookie:mdg@bellcan.adbureau.net/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@google[3].txt [ Cookie:mdg@google.com/accounts/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@msn[3].txt [ Cookie:mdg@msn.com/love-sex-relationships/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@accounts.google[2].txt [ Cookie:mdg@accounts.google.com/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@invitemedia[2].txt [ Cookie:mdg@invitemedia.com/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@in.getclicky[1].txt [ Cookie:mdg@in.getclicky.com/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@adcentriconline[1].txt [ Cookie:mdg@adcentriconline.com/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@sympatico.112.2o7[1].txt [ Cookie:mdg@sympatico.112.2o7.net/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@accounts.youtube[2].txt [ Cookie:mdg@accounts.youtube.com/accounts ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@www.google[2].txt [ Cookie:mdg@www.google.com/accounts ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@tribalfusion[2].txt [ Cookie:mdg@tribalfusion.com/ ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@www.google[3].txt [ Cookie:mdg@www.google.ca/accounts ]
C:\DOCUMENTS AND SETTINGS\MDG\Cookies\mdg@lifestyle.ca.msn[2].txt [ Cookie:mdg@lifestyle.ca.msn.com/love-sex-relationships/ ]
ia.media-imdb.com [ C:\DOCUMENTS AND SETTINGS\MDG\APPLICATION DATA\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\CD5QBQHP ]
m1.2mdn.net [ C:\DOCUMENTS AND SETTINGS\MDG\APPLICATION DATA\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\CD5QBQHP ]
uk.2mdn.net [ C:\DOCUMENTS AND SETTINGS\MDG\APPLICATION DATA\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\CD5QBQHP ]
worldlingomedia.com [ C:\DOCUMENTS AND SETTINGS\MDG\APPLICATION DATA\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\CD5QBQHP ]
C:\DOCUMENTS AND SETTINGS\MDG\COOKIES\MDG@AD.THETYEE[1].TXT [ /AD.THETYEE ]
C:\DOCUMENTS AND SETTINGS\MDG\COOKIES\MDG@AD.YIELDMANAGER[2].TXT [ /AD.YIELDMANAGER ]
C:\DOCUMENTS AND SETTINGS\MDG\COOKIES\MDG@LEGOLAS-MEDIA[1].TXT [ /LEGOLAS-MEDIA ]
C:\DOCUMENTS AND SETTINGS\MDG\COOKIES\MDG@MSNPORTAL.112.2O7[1].TXT [ /MSNPORTAL.112.2O7 ]
.c.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.traveladvertising.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.traveladvertising.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.vikingrivercruises.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.avgtechnologies.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adserver.adtechus.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c1.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c1.atdmt.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\P\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eddie5659's Avatar
Computer Specs
Moderator & Malware Removal Specialist with 28,323 posts.
 
Join Date: Mar 2001
Location: Bradford, England
15-Jul-2012, 12:30 PM #6
Okay, firstly your Java is out of date, so lets do that first:

Upgrade Java : (32 bits)
  • Download the latest version of Java SE Runtime Environment (JRE) JRE 7 Update 5 .
  • Under the JAVA Platform Standard Edition, click the "Download JRE" button to the right.
  • Accept License Agreement.[/b]".
  • Click on the link to download Windows Offline Installation 32 bit ( jre-7u5-windows-i586.exe) and save it to your desktop. Do NOT use the Sun Download Manager..
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel, double-click on Add/Remove programs and remove all older versions of Java.
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java version.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on the download to install the newest version.(Vista or Win 7 users, right click on the jre-7u5-windows-i586.exe and select "Run as an Administrator.")
  • Don't install any of the toolbars that are offered.


After doing the above, for the remains of the Java, can you do this:

Open Java in the Control Panel and under the General tab, under Temporary Internet Files, click the Settings button. Then click on Delete Files.

Make sure both of these options are checked:
  • Applications and Applets
  • Trace and Log Files
OK out of all the screens.


--------

Adobe Reader is also out of date, so go here to get the latest one. Don't install any toolbars that are offered:

http://get.adobe.com/uk/reader/

Can you run the following tools, and copy/paste the logs that they produce here. If its over a few posts, that's fine

----------------


Download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.


  • Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.


  • Click the Start Scan button.


  • If a suspicious object is detected, the default action will be Skip, click on Continue.


  • If malicious objects are found, they will show in the Scan results and offer three (3) options.
  • Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.


  • Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply


--------------------------

Download aswMBR.exe ( 511KB ) to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan


On completion of the scan click save log, save it to your desktop and post in your next reply


-------------------------

Delete any copies of Combofix that you have.

Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT !!! As you download it rename it to username123.exe and save it to your Desktop

  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

    • Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
    • Remember to re-enable the protection again afterwards before connecting to the Internet.
  • Double click on ComboFix.exe & follow the prompts.

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.




Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:




Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

eddie
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
16-Jul-2012, 01:22 AM #7
Eddie, Add/Remove has "Java web start". Haven't remove it yet but is that an entry I should remove. It doesn't have the "cup of coffee" icon like the other entries.
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
16-Jul-2012, 01:55 AM #8
By the way Eddie. AVG ran a scan today and the following is the results but I haven't had time to do all the other stuff you asked yet. Hope this isn't going to be another 30 page thread.


"";"C:\WINDOWS\System32\drivers\sdcplh.sys";"IRP hook, \Driver\atapi IRP_MJ_DEVICE_CONTROL -> sdcplh.sys +0x4A7C";"Object is hidden"

"";"C:\WINDOWS\System32\drivers\sdcplh.sys";"IRP hook, \Driver\atapi IRP_MJ_INTERNAL_DEVICE_CONTROL -> sdcplh.sys +0x46F8";"Object is hidden"
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
17-Jul-2012, 12:58 PM #9
Must have been a tough weekend Eddie.
Having a few problems.
I downloaded TDSSkiller but things didn't go the way you said they should.
I didn't get "The image has been resized...." stuff. I got an image that looked similiar but my 3 choices were "skip', copy to quarantine" and "delete". Have no idea what to do next.

Thanks Eddie.
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
17-Jul-2012, 05:05 PM #10
Sorry about all the reading I'm leaving here for you Eddie. I found theTDSSkiller folder that you mentioned ad here are the results. Btw, I ran the scan a few times just in case I was doing something wrong so I apologize if this is a bunch of redundant logs.
I know you'll forgive me. Also, I didn't skip anything so I have no idea why it says "skipped by user" in that log.

12:18:26.0109 3412 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
12:18:26.0406 3412 ============================================================
12:18:26.0406 3412 Current date / time: 2012/07/17 12:18:26.0406
12:18:26.0406 3412 SystemInfo:
12:18:26.0406 3412
12:18:26.0406 3412 OS Version: 5.1.2600 ServicePack: 3.0
12:18:26.0406 3412 Product type: Workstation
12:18:26.0406 3412 ComputerName: BASEMENT
12:18:26.0406 3412 UserName: Pat
12:18:26.0406 3412 Windows directory: C:\WINDOWS
12:18:26.0406 3412 System windows directory: C:\WINDOWS
12:18:26.0406 3412 Processor architecture: Intel x86
12:18:26.0406 3412 Number of processors: 1
12:18:26.0406 3412 Page size: 0x1000
12:18:26.0406 3412 Boot type: Normal boot
12:18:26.0406 3412 ============================================================
12:18:31.0078 3412 Drive \Device\Harddisk0\DR0 - Size: 0x12A3F92000 (74.56 Gb), SectorSize: 0x200, Cylinders: 0x2605, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:18:31.0125 3412 ============================================================
12:18:31.0125 3412 \Device\Harddisk0\DR0:
12:18:31.0140 3412 MBR partitions:
12:18:31.0140 3412 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x951DF86
12:18:31.0140 3412 ============================================================
12:18:31.0171 3412 C: <-> \Device\Harddisk0\DR0\Partition0
12:18:31.0187 3412 ============================================================
12:18:31.0187 3412 Initialize success
12:18:31.0187 3412 ============================================================
12:19:27.0296 0780 ============================================================
12:19:27.0296 0780 Scan started
12:19:27.0296 0780 Mode: Manual; SigCheck; TDLFS;
12:19:27.0296 0780 ============================================================
12:19:27.0562 0780 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
12:19:27.0937 0780 !SASCORE - ok
12:19:28.0140 0780 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
12:19:30.0828 0780 61883 - ok
12:19:30.0859 0780 8effc456-ef98-4b05-b868-5d87787bf223 - ok
12:19:30.0875 0780 Abiosdsk - ok
12:19:30.0906 0780 abp480n5 - ok
12:19:30.0968 0780 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:19:31.0281 0780 ACPI - ok
12:19:31.0328 0780 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
12:19:31.0609 0780 ACPIEC - ok
12:19:31.0625 0780 adpu160m - ok
12:19:31.0703 0780 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
12:19:32.0015 0780 aec - ok
12:19:32.0078 0780 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
12:19:32.0187 0780 AFD - ok
12:19:32.0250 0780 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
12:19:32.0562 0780 agp440 - ok
12:19:32.0578 0780 Aha154x - ok
12:19:32.0609 0780 aic78u2 - ok
12:19:32.0640 0780 aic78xx - ok
12:19:32.0671 0780 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
12:19:33.0015 0780 Alerter - ok
12:19:33.0062 0780 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
12:19:33.0265 0780 ALG - ok
12:19:33.0281 0780 AliIde - ok
12:19:33.0296 0780 amsint - ok
12:19:33.0375 0780 AN983 (116bff96077a4a724e0aab800525ceb5) C:\WINDOWS\system32\DRIVERS\AN983.sys
12:19:33.0687 0780 AN983 - ok
12:19:33.0781 0780 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:19:33.0875 0780 Apple Mobile Device - ok
12:19:33.0906 0780 AppMgmt - ok
12:19:33.0968 0780 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
12:19:34.0296 0780 Arp1394 - ok
12:19:34.0328 0780 asc - ok
12:19:34.0359 0780 asc3350p - ok
12:19:34.0390 0780 asc3550 - ok
12:19:34.0437 0780 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
12:19:34.0484 0780 ASCTRM ( UnsignedFile.Multi.Generic ) - warning
12:19:34.0484 0780 ASCTRM - detected UnsignedFile.Multi.Generic (1)
12:19:34.0593 0780 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
12:19:34.0765 0780 aspnet_state - ok
12:19:34.0812 0780 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:19:35.0140 0780 AsyncMac - ok
12:19:35.0203 0780 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
12:19:35.0531 0780 atapi - ok
12:19:35.0546 0780 Atdisk - ok
12:19:35.0656 0780 ati2mtag (9643c9aa768257a617a3085f378b14ec) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
12:19:35.0812 0780 ati2mtag - ok
12:19:35.0828 0780 atimtag - ok
12:19:35.0875 0780 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:19:36.0187 0780 Atmarpc - ok
12:19:36.0234 0780 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
12:19:36.0562 0780 AudioSrv - ok
12:19:36.0625 0780 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
12:19:36.0921 0780 audstub - ok
12:19:36.0984 0780 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
12:19:37.0343 0780 Avc - ok
12:19:37.0984 0780 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files\AVG\AVG2012\avgidsagent.exe
12:19:38.0734 0780 AVGIDSAgent - ok
12:19:38.0921 0780 AVGIDSDriver (1074f787080068c71303b61fae7e7ca4) C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
12:19:39.0015 0780 AVGIDSDriver - ok
12:19:39.0078 0780 AVGIDSFilter (61a7e0b02f82cff3db2445bbe50b3589) C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
12:19:39.0109 0780 AVGIDSFilter - ok
12:19:39.0187 0780 AVGIDSHX (d63d83659eedf60b3a3e620281a888e5) C:\WINDOWS\system32\DRIVERS\avgidshx.sys
12:19:39.0234 0780 AVGIDSHX - ok
12:19:39.0296 0780 AVGIDSShim (baf975b72062f53d327788e99d64197e) C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
12:19:39.0328 0780 AVGIDSShim - ok
12:19:39.0406 0780 Avgldx86 (dda6a2a18841e4c9172bb85958b8d948) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
12:19:39.0468 0780 Avgldx86 - ok
12:19:39.0546 0780 Avgmfx86 (ccdd61545aaea265977e4b1efdc74e8c) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
12:19:39.0578 0780 Avgmfx86 - ok
12:19:39.0625 0780 Avgrkx86 (1fd90b28d2c3100bf4500199c8ad6358) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
12:19:39.0671 0780 Avgrkx86 - ok
12:19:39.0750 0780 Avgtdix (1263f2554ace925c237a40b4c568d815) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
12:19:39.0812 0780 Avgtdix - ok
12:19:39.0953 0780 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
12:19:40.0562 0780 avgwd - ok
12:19:40.0625 0780 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
12:19:41.0375 0780 Beep - ok
12:19:41.0484 0780 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
12:19:41.0984 0780 BITS - ok
12:19:42.0281 0780 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files\Bonjour\mDNSResponder.exe
12:19:42.0343 0780 Bonjour Service - ok
12:19:42.0406 0780 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
12:19:42.0734 0780 Browser - ok
12:19:42.0765 0780 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
12:19:43.0093 0780 cbidf2k - ok
12:19:43.0125 0780 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
12:19:43.0468 0780 CCDECODE - ok
12:19:43.0484 0780 cd20xrnt - ok
12:19:43.0515 0780 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
12:19:43.0859 0780 Cdaudio - ok
12:19:43.0890 0780 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
12:19:44.0234 0780 Cdfs - ok
12:19:44.0296 0780 Cdr4_xp (991ff38609ecb64e876f1301d30e6e0b) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
12:19:44.0562 0780 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning
12:19:44.0562 0780 Cdr4_xp - detected UnsignedFile.Multi.Generic (1)
12:19:44.0593 0780 Cdralw2k (6123da1ec51f4f016554535b88befbf6) C:\WINDOWS\system32\drivers\Cdralw2k.sys
12:19:44.0890 0780 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning
12:19:44.0890 0780 Cdralw2k - detected UnsignedFile.Multi.Generic (1)
12:19:44.0937 0780 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:19:45.0312 0780 Cdrom - ok
12:19:45.0359 0780 cdudf_xp (8c7746acde6225a46b58ed7ae09ec166) C:\WINDOWS\system32\drivers\cdudf_xp.sys
12:19:45.0421 0780 cdudf_xp ( UnsignedFile.Multi.Generic ) - warning
12:19:45.0421 0780 cdudf_xp - detected UnsignedFile.Multi.Generic (1)
12:19:45.0437 0780 Changer - ok
12:19:45.0484 0780 cisvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\System32\cisvc.exe
12:19:45.0796 0780 cisvc - ok
12:19:45.0828 0780 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
12:19:46.0156 0780 ClipSrv - ok
12:19:46.0234 0780 clr_optimization_v2.0.50727_32 (7fa87325900183197bc9710d1ce4c9fa) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:19:46.0468 0780 clr_optimization_v2.0.50727_32 - ok
12:19:46.0468 0780 CmdIde - ok
12:19:46.0484 0780 COMSysApp - ok
12:19:46.0515 0780 Cpqarray - ok
12:19:46.0562 0780 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
12:19:46.0859 0780 CryptSvc - ok
12:19:46.0875 0780 dac2w2k - ok
12:19:46.0875 0780 dac960nt - ok
12:19:46.0921 0780 DCamUSBSQTECH (d6a3a8524d8c7e29f073c77d09539a74) C:\WINDOWS\system32\Drivers\SQcaptur.sys
12:19:47.0203 0780 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - warning
12:19:47.0203 0780 DCamUSBSQTECH - detected UnsignedFile.Multi.Generic (1)
12:19:47.0296 0780 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
12:19:47.0437 0780 DcomLaunch - ok
12:19:47.0500 0780 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
12:19:47.0843 0780 Dhcp - ok
12:19:47.0890 0780 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
12:19:48.0250 0780 Disk - ok
12:19:48.0250 0780 dmadmin - ok
12:19:48.0718 0780 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
12:19:49.0109 0780 dmboot - ok
12:19:49.0140 0780 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
12:19:49.0828 0780 dmio - ok
12:19:49.0859 0780 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
12:19:50.0343 0780 dmload - ok
12:19:50.0390 0780 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
12:19:50.0984 0780 dmserver - ok
12:19:51.0046 0780 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
12:19:51.0359 0780 DMusic - ok
12:19:51.0406 0780 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
12:19:51.0531 0780 Dnscache - ok
12:19:51.0609 0780 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
12:19:51.0937 0780 Dot3svc - ok
12:19:51.0937 0780 dpti2o - ok
12:19:51.0984 0780 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
12:19:52.0265 0780 drmkaud - ok
12:19:52.0296 0780 dvd_2K (800de2dfa19db3fd87aa95308ba0c17b) C:\WINDOWS\system32\drivers\dvd_2K.sys
12:19:52.0546 0780 dvd_2K ( UnsignedFile.Multi.Generic ) - warning
12:19:52.0546 0780 dvd_2K - detected UnsignedFile.Multi.Generic (1)
12:19:52.0578 0780 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
12:19:52.0890 0780 EapHost - ok
12:19:52.0953 0780 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
12:19:53.0328 0780 ERSvc - ok
12:19:53.0812 0780 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
12:19:53.0937 0780 Eventlog - ok
12:19:54.0031 0780 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll
12:19:54.0156 0780 EventSystem - ok
12:19:54.0218 0780 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
12:19:54.0515 0780 Fastfat - ok
12:19:54.0578 0780 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:19:54.0703 0780 FastUserSwitchingCompatibility - ok
12:19:54.0781 0780 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
12:19:55.0109 0780 Fax - ok
12:19:55.0156 0780 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
12:19:55.0500 0780 Fdc - ok
12:19:55.0531 0780 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
12:19:55.0843 0780 FETNDIS - ok
12:19:55.0890 0780 FETNDISB (95bc4d8493fe30312f5e1ab57ef36083) C:\WINDOWS\system32\DRIVERS\dlkfet5b.sys
12:19:56.0015 0780 FETNDISB - ok
12:19:56.0062 0780 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
12:19:56.0390 0780 Fips - ok
12:19:56.0437 0780 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
12:19:56.0750 0780 Flpydisk - ok
12:19:56.0828 0780 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
12:19:57.0140 0780 FltMgr - ok
12:19:57.0250 0780 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:19:57.0328 0780 FontCache3.0.0.0 - ok
12:19:57.0375 0780 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:19:57.0656 0780 Fs_Rec - ok
12:19:57.0703 0780 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:19:57.0984 0780 Ftdisk - ok
12:19:58.0046 0780 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
12:19:58.0109 0780 GEARAspiWDM - ok
12:19:58.0171 0780 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:19:58.0515 0780 Gpc - ok
12:19:58.0625 0780 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:19:58.0937 0780 helpsvc - ok
12:19:58.0984 0780 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
12:19:59.0296 0780 HidServ - ok
12:19:59.0343 0780 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:19:59.0671 0780 HidUsb - ok
12:19:59.0718 0780 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
12:20:00.0046 0780 hkmsvc - ok
12:20:00.0062 0780 hpn - ok
12:20:00.0062 0780 hpt3xx - ok
12:20:00.0140 0780 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
12:20:00.0250 0780 HTTP - ok
12:20:00.0296 0780 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
12:20:00.0609 0780 HTTPFilter - ok
12:20:00.0625 0780 i2omgmt - ok
12:20:00.0640 0780 i2omp - ok
12:20:00.0671 0780 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:20:00.0968 0780 i8042prt - ok
12:20:01.0062 0780 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
12:20:01.0406 0780 IDriverT ( UnsignedFile.Multi.Generic ) - warning
12:20:01.0406 0780 IDriverT - detected UnsignedFile.Multi.Generic (1)
12:20:01.0562 0780 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:20:01.0734 0780 idsvc - ok
12:20:01.0765 0780 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys
12:20:02.0078 0780 Imapi - ok
12:20:02.0125 0780 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\Imapi.exe
12:20:02.0437 0780 ImapiService - ok
12:20:02.0453 0780 ini910u - ok
12:20:02.0468 0780 IntelIde - ok
12:20:02.0500 0780 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:20:02.0796 0780 intelppm - ok
12:20:02.0890 0780 Intels51 (eb6d8e9cd813596b6d59d878337a4998) C:\WINDOWS\system32\DRIVERS\Intels51.sys
12:20:03.0031 0780 Intels51 - ok
12:20:03.0062 0780 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
12:20:03.0375 0780 ip6fw - ok
12:20:03.0406 0780 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:20:03.0703 0780 IpFilterDriver - ok
12:20:03.0734 0780 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:20:04.0031 0780 IpInIp - ok
12:20:04.0078 0780 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:20:04.0359 0780 IpNat - ok
12:20:04.0515 0780 iPod Service (8f610078437a459948480407f4db91ea) C:\Program Files\iPod\bin\iPodService.exe
12:20:04.0640 0780 iPod Service - ok
12:20:04.0703 0780 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:20:05.0015 0780 IPSec - ok
12:20:05.0062 0780 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
12:20:05.0203 0780 IRENUM - ok
12:20:05.0265 0780 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:20:05.0843 0780 isapnp - ok
12:20:05.0890 0780 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:20:06.0187 0780 Kbdclass - ok
12:20:06.0250 0780 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
12:20:06.0531 0780 kmixer - ok
12:20:06.0593 0780 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
12:20:06.0703 0780 KSecDD - ok
12:20:06.0765 0780 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
12:20:06.0875 0780 lanmanserver - ok
12:20:07.0187 0780 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
12:20:07.0281 0780 lanmanworkstation - ok
12:20:07.0296 0780 lbrtfdc - ok
12:20:07.0375 0780 LexBceS (2a125981bb23f0a023255d39b7e1c25e) C:\WINDOWS\system32\LEXBCES.EXE
12:20:07.0421 0780 LexBceS ( UnsignedFile.Multi.Generic ) - warning
12:20:07.0421 0780 LexBceS - detected UnsignedFile.Multi.Generic (1)
12:20:07.0484 0780 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
12:20:07.0812 0780 LmHosts - ok
12:20:07.0828 0780 LXARScan - ok
12:20:07.0843 0780 lxcz_device - ok
12:20:07.0859 0780 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
12:20:08.0171 0780 Messenger - ok
12:20:08.0312 0780 Microsoft SharePoint Workspace Audit Service - ok
12:20:08.0359 0780 mmc_2K (0a35ad036de912858a1c5e9637840724) C:\WINDOWS\system32\drivers\mmc_2K.sys
12:20:08.0593 0780 mmc_2K ( UnsignedFile.Multi.Generic ) - warning
12:20:08.0593 0780 mmc_2K - detected UnsignedFile.Multi.Generic (1)
12:20:08.0625 0780 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
12:20:08.0906 0780 mnmdd - ok
12:20:08.0953 0780 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe
12:20:09.0343 0780 mnmsrvc - ok
12:20:09.0406 0780 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
12:20:09.0703 0780 Modem - ok
12:20:09.0734 0780 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
12:20:10.0015 0780 MODEMCSA - ok
12:20:10.0062 0780 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:20:10.0359 0780 Mouclass - ok
12:20:10.0406 0780 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:20:10.0687 0780 mouhid - ok
12:20:10.0703 0780 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
12:20:11.0015 0780 MountMgr - ok
12:20:11.0078 0780 mr7910 (e3274b2b7bbd44391e84d244e8bcc555) C:\WINDOWS\system32\DRIVERS\mr7910.sys
12:20:11.0203 0780 mr7910 - ok
12:20:11.0218 0780 mraid35x - ok
12:20:11.0265 0780 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:20:11.0578 0780 MRxDAV - ok
12:20:11.0687 0780 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:20:11.0828 0780 MRxSmb - ok
12:20:11.0875 0780 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe
12:20:12.0156 0780 MSDTC - ok
12:20:12.0203 0780 MSDV (1477849772712bac69c144dcf2c9ce81) C:\WINDOWS\system32\DRIVERS\msdv.sys
12:20:12.0500 0780 MSDV - ok
12:20:12.0531 0780 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
12:20:12.0812 0780 Msfs - ok
12:20:12.0828 0780 MSIServer - ok
12:20:12.0843 0780 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:20:13.0140 0780 MSKSSRV - ok
12:20:13.0156 0780 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:20:13.0437 0780 MSPCLOCK - ok
12:20:13.0468 0780 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
12:20:13.0750 0780 MSPQM - ok
12:20:13.0796 0780 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:20:14.0078 0780 mssmbios - ok
12:20:14.0109 0780 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
12:20:14.0390 0780 MSTEE - ok
12:20:14.0437 0780 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
12:20:14.0500 0780 Mup - ok
12:20:14.0546 0780 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
12:20:14.0843 0780 NABTSFEC - ok
12:20:14.0921 0780 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
12:20:15.0234 0780 napagent - ok
12:20:15.0296 0780 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
12:20:15.0687 0780 NDIS - ok
12:20:15.0718 0780 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
12:20:16.0015 0780 NdisIP - ok
12:20:16.0078 0780 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:20:16.0171 0780 NdisTapi - ok
12:20:16.0218 0780 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:20:16.0484 0780 Ndisuio - ok
12:20:16.0546 0780 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:20:16.0843 0780 NdisWan - ok
12:20:16.0890 0780 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
12:20:16.0984 0780 NDProxy - ok
12:20:17.0031 0780 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
12:20:17.0312 0780 NetBIOS - ok
12:20:17.0390 0780 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
12:20:17.0687 0780 NetBT - ok
12:20:17.0734 0780 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
12:20:18.0015 0780 NetDDE - ok
12:20:18.0031 0780 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
12:20:18.0312 0780 NetDDEdsdm - ok
12:20:18.0359 0780 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:20:18.0640 0780 Netlogon - ok
12:20:18.0703 0780 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
12:20:19.0015 0780 Netman - ok
12:20:19.0062 0780 NETMDUSB (986acdece933131288f1957dc359865f) C:\WINDOWS\system32\Drivers\NETMDUSB.sys
12:20:19.0140 0780 NETMDUSB - ok
12:20:19.0250 0780 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:20:19.0296 0780 NetTcpPortSharing - ok
12:20:19.0343 0780 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
12:20:19.0625 0780 NIC1394 - ok
12:20:19.0687 0780 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
12:20:19.0765 0780 Nla - ok
12:20:19.0812 0780 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
12:20:20.0312 0780 Npfs - ok
12:20:20.0421 0780 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
12:20:20.0734 0780 Ntfs - ok
12:20:20.0796 0780 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:20:21.0078 0780 NtLmSsp - ok
12:20:21.0156 0780 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
12:20:21.0453 0780 NtmsSvc - ok
12:20:21.0500 0780 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
12:20:21.0781 0780 Null - ok
12:20:21.0828 0780 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:20:22.0109 0780 NwlnkFlt - ok
12:20:22.0140 0780 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:20:22.0437 0780 NwlnkFwd - ok
12:20:22.0484 0780 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
12:20:24.0203 0780 ohci1394 - ok
12:20:24.0312 0780 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:20:24.0375 0780 ose - ok
12:20:24.0937 0780 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:20:25.0531 0780 osppsvc - ok
12:20:25.0750 0780 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
12:20:26.0046 0780 Parport - ok
12:20:26.0093 0780 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
12:20:26.0390 0780 PartMgr - ok
12:20:26.0437 0780 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
12:20:26.0734 0780 ParVdm - ok
12:20:26.0765 0780 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
12:20:27.0031 0780 PCI - ok
12:20:27.0046 0780 PCIDump - ok
12:20:27.0093 0780 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
12:20:27.0375 0780 PCIIde - ok
12:20:27.0421 0780 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
12:20:27.0734 0780 Pcmcia - ok
12:20:27.0765 0780 PDCOMP - ok
12:20:27.0843 0780 PDFRAME - ok
12:20:27.0906 0780 PDRELI - ok
12:20:27.0921 0780 PDRFRAME - ok
12:20:27.0968 0780 perc2 - ok
12:20:27.0984 0780 perc2hib - ok
12:20:28.0140 0780 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
12:20:28.0343 0780 PlugPlay - ok
12:20:28.0437 0780 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:20:28.0750 0780 PolicyAgent - ok
12:20:28.0812 0780 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:20:29.0109 0780 PptpMiniport - ok
12:20:29.0312 0780 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
12:20:29.0703 0780 Processor - ok
12:20:29.0718 0780 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:20:29.0984 0780 ProtectedStorage - ok
12:20:30.0359 0780 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
12:20:30.0703 0780 PSched - ok
12:20:30.0796 0780 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:20:31.0156 0780 Ptilink - ok
12:20:31.0953 0780 pwd_2K (1840112f3f3b7ece84dbbd93a70c4135) C:\WINDOWS\system32\drivers\pwd_2K.sys
12:20:32.0875 0780 pwd_2K ( UnsignedFile.Multi.Generic ) - warning
12:20:32.0875 0780 pwd_2K - detected UnsignedFile.Multi.Generic (1)
12:20:32.0906 0780 ql1080 - ok
12:20:32.0937 0780 Ql10wnt - ok
12:20:32.0953 0780 ql12160 - ok
12:20:32.0984 0780 ql1240 - ok
12:20:33.0031 0780 ql1280 - ok
12:20:33.0109 0780 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:20:33.0359 0780 RasAcd - ok
12:20:33.0515 0780 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
12:20:33.0843 0780 RasAuto - ok
12:20:33.0890 0780 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:20:34.0156 0780 Rasl2tp - ok
12:20:34.0718 0780 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
12:20:35.0015 0780 RasMan - ok
12:20:35.0078 0780 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:20:35.0437 0780 RasPppoe - ok
12:20:35.0468 0780 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
12:20:35.0765 0780 Raspti - ok
12:20:35.0937 0780 RaySatxsi4_2Server - ok
12:20:36.0031 0780 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:20:36.0375 0780 Rdbss - ok
12:20:36.0421 0780 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:20:36.0781 0780 RDPCDD - ok
12:20:36.0875 0780 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
12:20:37.0046 0780 RDPWD - ok
12:20:37.0375 0780 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
12:20:37.0703 0780 RDSessMgr - ok
12:20:37.0765 0780 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
12:20:38.0093 0780 redbook - ok
12:20:38.0171 0780 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
12:20:38.0500 0780 RemoteAccess - ok
12:20:38.0750 0780 RichVideo (4d05898896ec49cf663dda61041ab096) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
12:20:38.0859 0780 RichVideo - ok
12:20:39.0375 0780 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\WINDOWS\system32\Drivers\RimUsb.sys
12:20:39.0578 0780 RimUsb - ok
12:20:39.0718 0780 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
12:20:39.0781 0780 RimVSerPort - ok
12:20:39.0984 0780 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
12:20:40.0281 0780 ROOTMODEM - ok
12:20:40.0375 0780 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe
12:20:40.0703 0780 RpcLocator - ok
12:20:40.0937 0780 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
12:20:41.0062 0780 RpcSs - ok
12:20:41.0171 0780 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe
12:20:41.0453 0780 RSVP - ok
12:20:41.0515 0780 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:20:41.0796 0780 SamSs - ok
12:20:41.0875 0780 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
12:20:41.0921 0780 SASDIFSV - ok
12:20:41.0968 0780 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
12:20:42.0015 0780 SASKUTIL - ok
12:20:42.0093 0780 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys
12:20:42.0375 0780 sbp2port - ok
12:20:42.0437 0780 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
12:20:42.0734 0780 SCardSvr - ok
12:20:42.0812 0780 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
12:20:43.0109 0780 Schedule - ok
12:20:43.0171 0780 sdcplh (b7ea2f12416693d2d9bffaaa5eff7037) C:\WINDOWS\system32\drivers\sdcplh.sys
12:20:43.0531 0780 sdcplh ( UnsignedFile.Multi.Generic ) - warning
12:20:43.0531 0780 sdcplh - detected UnsignedFile.Multi.Generic (1)
12:20:43.0593 0780 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:20:43.0765 0780 Secdrv - ok
12:20:43.0843 0780 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
12:20:44.0140 0780 seclogon - ok
12:20:44.0187 0780 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
12:20:44.0484 0780 SENS - ok
12:20:44.0546 0780 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
12:20:44.0843 0780 serenum - ok
12:20:44.0890 0780 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
12:20:45.0218 0780 Serial - ok
12:20:45.0343 0780 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
12:20:45.0984 0780 Sfloppy - ok
12:20:46.0203 0780 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
12:20:47.0031 0780 SharedAccess - ok
12:20:47.0125 0780 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:20:47.0359 0780 ShellHWDetection - ok
12:20:47.0406 0780 Simbad - ok
12:20:47.0468 0780 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
12:20:47.0828 0780 SLIP - ok
12:20:49.0328 0780 smwdm (b911c822922cf62df83ad36d5c9775cc) C:\WINDOWS\system32\drivers\smwdm.sys
12:20:49.0578 0780 smwdm - ok
12:20:49.0656 0780 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
12:20:49.0937 0780 SONYPVU1 - ok
12:20:49.0953 0780 Sparrow - ok
12:20:50.0031 0780 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
12:20:50.0359 0780 splitter - ok
12:20:50.0562 0780 spmd (2ae8ff8a36708452157ce101fd57ef3e) C:\WINDOWS\System32\spm\spmd.exe
12:20:50.0718 0780 spmd ( UnsignedFile.Multi.Generic ) - warning
12:20:50.0718 0780 spmd - detected UnsignedFile.Multi.Generic (1)
12:20:50.0812 0780 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
12:20:51.0015 0780 Spooler - ok
12:20:51.0125 0780 SPTISRV - ok
12:20:51.0234 0780 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
12:20:51.0406 0780 sr - ok
12:20:51.0468 0780 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll
12:20:51.0625 0780 srservice - ok
12:20:51.0718 0780 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
12:20:51.0843 0780 Srv - ok
12:20:51.0921 0780 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
12:20:52.0078 0780 SSDPSRV - ok
12:20:52.0187 0780 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
12:20:52.0484 0780 stisvc - ok
12:20:52.0531 0780 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
12:20:52.0828 0780 streamip - ok
12:20:52.0875 0780 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
12:20:53.0171 0780 swenum - ok
12:20:53.0234 0780 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
12:20:53.0500 0780 swmidi - ok
12:20:53.0531 0780 SwPrv - ok
12:20:53.0578 0780 symc810 - ok
12:20:53.0593 0780 symc8xx - ok
12:20:53.0625 0780 sym_hi - ok
12:20:53.0671 0780 sym_u3 - ok
12:20:53.0734 0780 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
12:20:54.0046 0780 sysaudio - ok
12:20:54.0125 0780 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
12:20:54.0406 0780 SysmonLog - ok
12:20:54.0484 0780 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
12:20:54.0796 0780 TapiSrv - ok
12:20:54.0890 0780 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:20:55.0000 0780 Tcpip - ok
12:20:55.0046 0780 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
12:20:55.0328 0780 TDPIPE - ok
12:20:55.0375 0780 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
12:20:55.0656 0780 TDTCP - ok
12:20:55.0718 0780 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
12:20:56.0000 0780 TermDD - ok
12:20:56.0093 0780 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
12:20:56.0375 0780 TermService - ok
12:20:56.0437 0780 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:20:56.0484 0780 Themes - ok
12:20:56.0656 0780 TomTomHOMEService (39bd95a9fe72aaf5c675ad146be456a9) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
12:20:56.0703 0780 TomTomHOMEService - ok
12:20:56.0718 0780 TosIde - ok
12:20:56.0765 0780 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
12:20:57.0031 0780 TrkWks - ok
12:20:57.0125 0780 UdfReadr_xp (e1b5bfba7f1cde1fc28934639e83b3cf) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys
12:20:57.0187 0780 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - warning
12:20:57.0187 0780 UdfReadr_xp - detected UnsignedFile.Multi.Generic (1)
12:20:57.0234 0780 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
12:20:57.0515 0780 Udfs - ok
12:20:57.0546 0780 ultra - ok
12:20:57.0609 0780 UMWdf (ab0a7ca90d9e3d6a193905dc1715ded0) C:\WINDOWS\System32\wdfmgr.exe
12:20:57.0703 0780 UMWdf - ok
12:20:57.0796 0780 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
12:20:58.0109 0780 Update - ok
12:20:58.0171 0780 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
12:20:58.0328 0780 upnphost - ok
12:20:58.0359 0780 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
12:20:58.0640 0780 UPS - ok
12:20:58.0703 0780 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
12:20:58.0859 0780 USBAAPL - ok
12:20:58.0890 0780 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
12:20:59.0171 0780 usbaudio - ok
12:20:59.0234 0780 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:20:59.0515 0780 usbccgp - ok
12:20:59.0578 0780 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:20:59.0859 0780 usbehci - ok
12:20:59.0906 0780 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:21:00.0171 0780 usbhub - ok
12:21:00.0234 0780 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:21:00.0515 0780 usbprint - ok
12:21:00.0562 0780 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:21:00.0828 0780 usbscan - ok
12:21:00.0875 0780 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:21:01.0140 0780 USBSTOR - ok
12:21:01.0218 0780 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:21:01.0484 0780 usbuhci - ok
12:21:01.0515 0780 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
12:21:01.0796 0780 VgaSave - ok
12:21:01.0812 0780 ViaIde - ok
12:21:01.0890 0780 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
12:21:02.0171 0780 VolSnap - ok
12:21:02.0265 0780 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
12:21:02.0437 0780 VSS - ok
12:21:02.0671 0780 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
12:21:02.0828 0780 vToolbarUpdater11.2.0 - ok
12:21:02.0906 0780 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\System32\w32time.dll
12:21:03.0203 0780 W32Time - ok
12:21:03.0296 0780 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:21:03.0578 0780 Wanarp - ok
12:21:03.0640 0780 wanatw (ba1d9278448cb26152a18b6a06b61ea3) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
12:21:03.0765 0780 wanatw - ok
12:21:03.0812 0780 WANMiniportService (4dc56a5f4614bf123251d5ae54f914fd) C:\WINDOWS\wanmpsvc.exe
12:21:04.0812 0780 WANMiniportService ( UnsignedFile.Multi.Generic ) - warning
12:21:04.0812 0780 WANMiniportService - detected UnsignedFile.Multi.Generic (1)
12:21:04.0859 0780 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\WINDOWS\system32\DRIVERS\wdcsam.sys
12:21:05.0015 0780 WDC_SAM - ok
12:21:05.0156 0780 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
12:21:05.0375 0780 Wdf01000 - ok
12:21:05.0390 0780 WDICA - ok
12:21:05.0437 0780 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
12:21:05.0734 0780 wdmaud - ok
12:21:05.0812 0780 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
12:21:06.0093 0780 WebClient - ok
12:21:06.0203 0780 WinDefend (f45dd1e1365d857dd08bc23563370d0e) C:\Program Files\Windows Defender\MsMpEng.exe
12:21:06.0250 0780 WinDefend - ok
12:21:06.0343 0780 WinDriver6 (097a8291df541f9b9af2c500797cdcaa) C:\WINDOWS\system32\drivers\windrvr6.sys
12:21:06.0484 0780 WinDriver6 - ok
12:21:06.0578 0780 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
12:21:06.0859 0780 winmgmt - ok
12:21:07.0078 0780 wlidsvc (d9250b31b353ee3322c1cad411997e38) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:21:07.0296 0780 wlidsvc - ok
12:21:07.0453 0780 WmdmPmSN (140ef97b64f560fd78643cae2cdad838) C:\WINDOWS\System32\mspmsnsv.dll
12:21:07.0578 0780 WmdmPmSN - ok
12:21:07.0703 0780 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe
12:21:07.0984 0780 WmiApSrv - ok
12:21:08.0031 0780 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
12:21:08.0296 0780 wscsvc - ok
12:21:08.0375 0780 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
12:21:08.0625 0780 WSTCODEC - ok
12:21:08.0687 0780 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
12:21:08.0984 0780 wuauserv - ok
12:21:09.0062 0780 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
12:21:09.0390 0780 WZCSVC - ok
12:21:09.0453 0780 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
12:21:09.0718 0780 xmlprov - ok
12:21:09.0781 0780 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
12:21:10.0625 0780 \Device\Harddisk0\DR0 - ok
12:21:10.0671 0780 Boot (0x1200) (0879db9c2d2ee0c2762b1b9cb813eec5) \Device\Harddisk0\DR0\Partition0
12:21:10.0671 0780 \Device\Harddisk0\DR0\Partition0 - ok
12:21:10.0687 0780 ============================================================
12:21:10.0687 0780 Scan finished
12:21:10.0687 0780 ============================================================
12:21:10.0828 2952 Detected object count: 14
12:21:10.0828 2952 Actual detected object count: 14
12:22:00.0718 2952 ASCTRM ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0718 2952 ASCTRM ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0718 2952 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0718 2952 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0718 2952 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0718 2952 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0718 2952 cdudf_xp ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0718 2952 cdudf_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0734 2952 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0734 2952 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0734 2952 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0734 2952 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0750 2952 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0750 2952 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0750 2952 LexBceS ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0750 2952 LexBceS ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0750 2952 mmc_2K ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0750 2952 mmc_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0750 2952 pwd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0750 2952 pwd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0765 2952 sdcplh ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0765 2952 sdcplh ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0765 2952 spmd ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0765 2952 spmd ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0765 2952 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0765 2952 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:22:00.0765 2952 WANMiniportService ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:00.0765 2952 WANMiniportService ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:25:50.0625 0668 ============================================================
12:25:50.0625 0668 Scan started
12:25:50.0625 0668 Mode: Manual; SigCheck; TDLFS;
12:25:50.0625 0668 ============================================================
12:25:51.0046 0668 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
12:25:51.0109 0668 !SASCORE - ok
12:25:51.0203 0668 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
12:25:51.0781 0668 61883 - ok
12:25:51.0796 0668 8effc456-ef98-4b05-b868-5d87787bf223 - ok
12:25:51.0812 0668 Abiosdsk - ok
12:25:51.0843 0668 abp480n5 - ok
12:25:51.0890 0668 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:25:52.0187 0668 ACPI - ok
12:25:52.0234 0668 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
12:25:52.0500 0668 ACPIEC - ok
12:25:52.0515 0668 adpu160m - ok
12:25:52.0593 0668 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
12:25:52.0890 0668 aec - ok
12:25:52.0953 0668 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
12:25:53.0031 0668 AFD - ok
12:25:53.0093 0668 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
12:25:53.0375 0668 agp440 - ok
12:25:53.0406 0668 Aha154x - ok
12:25:53.0437 0668 aic78u2 - ok
12:25:53.0468 0668 aic78xx - ok
12:25:53.0500 0668 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
12:25:53.0781 0668 Alerter - ok
12:25:53.0828 0668 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
12:25:53.0984 0668 ALG - ok
12:25:54.0015 0668 AliIde - ok
12:25:54.0046 0668 amsint - ok
12:25:54.0109 0668 AN983 (116bff96077a4a724e0aab800525ceb5) C:\WINDOWS\system32\DRIVERS\AN983.sys
12:25:54.0390 0668 AN983 - ok
12:25:54.0500 0668 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:25:54.0546 0668 Apple Mobile Device - ok
12:25:54.0562 0668 AppMgmt - ok
12:25:54.0625 0668 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
12:25:54.0906 0668 Arp1394 - ok
12:25:54.0937 0668 asc - ok
12:25:54.0968 0668 asc3350p - ok
12:25:55.0000 0668 asc3550 - ok
12:25:55.0046 0668 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
12:25:55.0093 0668 ASCTRM ( UnsignedFile.Multi.Generic ) - warning
12:25:55.0093 0668 ASCTRM - detected UnsignedFile.Multi.Generic (1)
12:25:55.0171 0668 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
12:25:55.0218 0668 aspnet_state - ok
12:25:55.0281 0668 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:25:55.0562 0668 AsyncMac - ok
12:25:55.0609 0668 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
12:25:55.0906 0668 atapi - ok
12:25:55.0921 0668 Atdisk - ok
12:25:56.0000 0668 ati2mtag (9643c9aa768257a617a3085f378b14ec) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
12:25:56.0078 0668 ati2mtag - ok
12:25:56.0109 0668 atimtag - ok
12:25:56.0171 0668 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:25:56.0453 0668 Atmarpc - ok
12:25:56.0515 0668 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
12:25:56.0812 0668 AudioSrv - ok
12:25:56.0875 0668 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
12:25:57.0140 0668 audstub - ok
12:25:57.0187 0668 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
12:25:57.0468 0668 Avc - ok
12:25:58.0140 0668 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files\AVG\AVG2012\avgidsagent.exe
12:25:58.0578 0668 AVGIDSAgent - ok
12:25:58.0781 0668 AVGIDSDriver (1074f787080068c71303b61fae7e7ca4) C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
12:25:58.0828 0668 AVGIDSDriver - ok
12:25:58.0890 0668 AVGIDSFilter (61a7e0b02f82cff3db2445bbe50b3589) C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
12:25:58.0921 0668 AVGIDSFilter - ok
12:25:58.0968 0668 AVGIDSHX (d63d83659eedf60b3a3e620281a888e5) C:\WINDOWS\system32\DRIVERS\avgidshx.sys
12:25:59.0015 0668 AVGIDSHX - ok
12:25:59.0046 0668 AVGIDSShim (baf975b72062f53d327788e99d64197e) C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
12:25:59.0093 0668 AVGIDSShim - ok
12:25:59.0140 0668 Avgldx86 (dda6a2a18841e4c9172bb85958b8d948) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
12:25:59.0203 0668 Avgldx86 - ok
12:25:59.0234 0668 Avgmfx86 (ccdd61545aaea265977e4b1efdc74e8c) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
12:25:59.0265 0668 Avgmfx86 - ok
12:25:59.0312 0668 Avgrkx86 (1fd90b28d2c3100bf4500199c8ad6358) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
12:25:59.0359 0668 Avgrkx86 - ok
12:25:59.0437 0668 Avgtdix (1263f2554ace925c237a40b4c568d815) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
12:25:59.0500 0668 Avgtdix - ok
12:25:59.0609 0668 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
12:25:59.0656 0668 avgwd - ok
12:25:59.0718 0668 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
12:25:59.0984 0668 Beep - ok
12:26:00.0062 0668 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
12:26:00.0359 0668 BITS - ok
12:26:00.0453 0668 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files\Bonjour\mDNSResponder.exe
12:26:00.0515 0668 Bonjour Service - ok
12:26:00.0593 0668 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
12:26:00.0859 0668 Browser - ok
12:26:00.0921 0668 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
12:26:01.0187 0668 cbidf2k - ok
12:26:01.0234 0668 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
12:26:01.0515 0668 CCDECODE - ok
12:26:01.0546 0668 cd20xrnt - ok
12:26:01.0609 0668 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
12:26:01.0890 0668 Cdaudio - ok
12:26:01.0937 0668 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
12:26:02.0218 0668 Cdfs - ok
12:26:02.0281 0668 Cdr4_xp (991ff38609ecb64e876f1301d30e6e0b) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
12:26:02.0312 0668 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning
12:26:02.0312 0668 Cdr4_xp - detected UnsignedFile.Multi.Generic (1)
12:26:02.0343 0668 Cdralw2k (6123da1ec51f4f016554535b88befbf6) C:\WINDOWS\system32\drivers\Cdralw2k.sys
12:26:02.0375 0668 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning
12:26:02.0375 0668 Cdralw2k - detected UnsignedFile.Multi.Generic (1)
12:26:02.0421 0668 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:26:02.0703 0668 Cdrom - ok
12:26:02.0765 0668 cdudf_xp (8c7746acde6225a46b58ed7ae09ec166) C:\WINDOWS\system32\drivers\cdudf_xp.sys
12:26:02.0812 0668 cdudf_xp ( UnsignedFile.Multi.Generic ) - warning
12:26:02.0812 0668 cdudf_xp - detected UnsignedFile.Multi.Generic (1)
12:26:02.0843 0668 Changer - ok
12:26:02.0906 0668 cisvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\System32\cisvc.exe
12:26:03.0171 0668 cisvc - ok
12:26:03.0203 0668 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
12:26:03.0484 0668 ClipSrv - ok
12:26:03.0546 0668 clr_optimization_v2.0.50727_32 (7fa87325900183197bc9710d1ce4c9fa) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:26:03.0593 0668 clr_optimization_v2.0.50727_32 - ok
12:26:03.0609 0668 CmdIde - ok
12:26:03.0640 0668 COMSysApp - ok
12:26:03.0687 0668 Cpqarray - ok
12:26:03.0750 0668 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
12:26:04.0000 0668 CryptSvc - ok
12:26:04.0015 0668 dac2w2k - ok
12:26:04.0031 0668 dac960nt - ok
12:26:04.0093 0668 DCamUSBSQTECH (d6a3a8524d8c7e29f073c77d09539a74) C:\WINDOWS\system32\Drivers\SQcaptur.sys
12:26:04.0125 0668 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - warning
12:26:04.0125 0668 DCamUSBSQTECH - detected UnsignedFile.Multi.Generic (1)
12:26:04.0203 0668 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
12:26:04.0296 0668 DcomLaunch - ok
12:26:04.0375 0668 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
12:26:04.0640 0668 Dhcp - ok
12:26:04.0703 0668 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
12:26:04.0968 0668 Disk - ok
12:26:04.0984 0668 dmadmin - ok
12:26:05.0093 0668 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
12:26:05.0406 0668 dmboot - ok
12:26:05.0453 0668 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
12:26:05.0718 0668 dmio - ok
12:26:05.0750 0668 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
12:26:06.0015 0668 dmload - ok
12:26:06.0062 0668 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
12:26:06.0359 0668 dmserver - ok
12:26:06.0437 0668 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
12:26:06.0703 0668 DMusic - ok
12:26:06.0765 0668 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
12:26:06.0828 0668 Dnscache - ok
12:26:06.0875 0668 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
12:26:07.0140 0668 Dot3svc - ok
12:26:07.0171 0668 dpti2o - ok
12:26:07.0234 0668 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
12:26:07.0500 0668 drmkaud - ok
12:26:07.0546 0668 dvd_2K (800de2dfa19db3fd87aa95308ba0c17b) C:\WINDOWS\system32\drivers\dvd_2K.sys
12:26:07.0593 0668 dvd_2K ( UnsignedFile.Multi.Generic ) - warning
12:26:07.0593 0668 dvd_2K - detected UnsignedFile.Multi.Generic (1)
12:26:07.0640 0668 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
12:26:07.0937 0668 EapHost - ok
12:26:08.0000 0668 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
12:26:08.0265 0668 ERSvc - ok
12:26:08.0328 0668 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
12:26:08.0406 0668 Eventlog - ok
12:26:08.0484 0668 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll
12:26:08.0562 0668 EventSystem - ok
12:26:08.0625 0668 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
12:26:08.0906 0668 Fastfat - ok
12:26:08.0968 0668 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:26:09.0046 0668 FastUserSwitchingCompatibility - ok
12:26:09.0140 0668 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
12:26:09.0406 0668 Fax - ok
12:26:09.0468 0668 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
12:26:09.0734 0668 Fdc - ok
12:26:09.0796 0668 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
12:26:10.0078 0668 FETNDIS - ok
12:26:10.0125 0668 FETNDISB (95bc4d8493fe30312f5e1ab57ef36083) C:\WINDOWS\system32\DRIVERS\dlkfet5b.sys
12:26:10.0187 0668 FETNDISB - ok
12:26:10.0265 0668 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
12:26:10.0531 0668 Fips - ok
12:26:10.0562 0668 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
12:26:10.0828 0668 Flpydisk - ok
12:26:10.0906 0668 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
12:26:11.0171 0668 FltMgr - ok
12:26:11.0281 0668 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:26:11.0328 0668 FontCache3.0.0.0 - ok
12:26:11.0390 0668 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:26:11.0671 0668 Fs_Rec - ok
12:26:11.0703 0668 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:26:11.0968 0668 Ftdisk - ok
12:26:12.0015 0668 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
12:26:12.0062 0668 GEARAspiWDM - ok
12:26:12.0109 0668 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:26:12.0390 0668 Gpc - ok
12:26:12.0484 0668 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:26:12.0765 0668 helpsvc - ok
12:26:12.0812 0668 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
12:26:13.0093 0668 HidServ - ok
12:26:13.0125 0668 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:26:13.0390 0668 HidUsb - ok
12:26:13.0453 0668 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
12:26:13.0718 0668 hkmsvc - ok
12:26:13.0750 0668 hpn - ok
12:26:13.0781 0668 hpt3xx - ok
12:26:13.0859 0668 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
12:26:13.0937 0668 HTTP - ok
12:26:13.0984 0668 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
12:26:14.0250 0668 HTTPFilter - ok
12:26:14.0265 0668 i2omgmt - ok
12:26:14.0296 0668 i2omp - ok
12:26:14.0328 0668 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:26:14.0609 0668 i8042prt - ok
12:26:14.0718 0668 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
12:26:14.0750 0668 IDriverT ( UnsignedFile.Multi.Generic ) - warning
12:26:14.0750 0668 IDriverT - detected UnsignedFile.Multi.Generic (1)
12:26:14.0921 0668 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:26:15.0015 0668 idsvc - ok
12:26:15.0062 0668 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys
12:26:15.0328 0668 Imapi - ok
12:26:15.0406 0668 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\Imapi.exe
12:26:15.0687 0668 ImapiService - ok
12:26:15.0718 0668 ini910u - ok
12:26:15.0765 0668 IntelIde - ok
12:26:15.0828 0668 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:26:16.0078 0668 intelppm - ok
12:26:16.0187 0668 Intels51 (eb6d8e9cd813596b6d59d878337a4998) C:\WINDOWS\system32\DRIVERS\Intels51.sys
12:26:16.0281 0668 Intels51 - ok
12:26:16.0343 0668 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
12:26:16.0609 0668 ip6fw - ok
12:26:16.0671 0668 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:26:16.0937 0668 IpFilterDriver - ok
12:26:16.0984 0668 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:26:17.0250 0668 IpInIp - ok
12:26:17.0296 0668 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:26:17.0578 0668 IpNat - ok
12:26:17.0703 0668 iPod Service (8f610078437a459948480407f4db91ea) C:\Program Files\iPod\bin\iPodService.exe
12:26:17.0765 0668 iPod Service - ok
12:26:17.0843 0668 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:26:18.0093 0668 IPSec - ok
12:26:18.0125 0668 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
12:26:18.0281 0668 IRENUM - ok
12:26:18.0312 0668 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:26:18.0578 0668 isapnp - ok
12:26:18.0640 0668 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:26:18.0906 0668 Kbdclass - ok
12:26:18.0968 0668 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
12:26:19.0234 0668 kmixer - ok
12:26:19.0312 0668 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
12:26:19.0375 0668 KSecDD - ok
12:26:19.0421 0668 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
12:26:19.0484 0668 lanmanserver - ok
12:26:19.0546 0668 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
12:26:19.0625 0668 lanmanworkstation - ok
12:26:19.0640 0668 lbrtfdc - ok
12:26:19.0734 0668 LexBceS (2a125981bb23f0a023255d39b7e1c25e) C:\WINDOWS\system32\LEXBCES.EXE
12:26:19.0781 0668 LexBceS ( UnsignedFile.Multi.Generic ) - warning
12:26:19.0781 0668 LexBceS - detected UnsignedFile.Multi.Generic (1)
12:26:19.0843 0668 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
12:26:20.0125 0668 LmHosts - ok
12:26:20.0156 0668 LXARScan - ok
12:26:20.0187 0668 lxcz_device - ok
12:26:20.0218 0668 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
12:26:20.0500 0668 Messenger - ok
12:26:20.0656 0668 Microsoft SharePoint Workspace Audit Service - ok
12:26:20.0718 0668 mmc_2K (0a35ad036de912858a1c5e9637840724) C:\WINDOWS\system32\drivers\mmc_2K.sys
12:26:20.0750 0668 mmc_2K ( UnsignedFile.Multi.Generic ) - warning
12:26:20.0750 0668 mmc_2K - detected UnsignedFile.Multi.Generic (1)
12:26:20.0812 0668 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
12:26:21.0078 0668 mnmdd - ok
12:26:21.0140 0668 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe
12:26:21.0421 0668 mnmsrvc - ok
12:26:21.0468 0668 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
12:26:21.0750 0668 Modem - ok
12:26:21.0812 0668 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
12:26:22.0078 0668 MODEMCSA - ok
12:26:22.0125 0668 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:26:22.0406 0668 Mouclass - ok
12:26:22.0453 0668 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:26:22.0718 0668 mouhid - ok
12:26:22.0765 0668 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
12:26:23.0046 0668 MountMgr - ok
12:26:23.0109 0668 mr7910 (e3274b2b7bbd44391e84d244e8bcc555) C:\WINDOWS\system32\DRIVERS\mr7910.sys
12:26:23.0187 0668 mr7910 - ok
12:26:23.0203 0668 mraid35x - ok
12:26:23.0281 0668 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:26:23.0562 0668 MRxDAV - ok
12:26:23.0656 0668 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:26:23.0750 0668 MRxSmb - ok
12:26:23.0796 0668 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe
12:26:24.0078 0668 MSDTC - ok
12:26:24.0156 0668 MSDV (1477849772712bac69c144dcf2c9ce81) C:\WINDOWS\system32\DRIVERS\msdv.sys
12:26:24.0421 0668 MSDV - ok
12:26:24.0468 0668 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
12:26:24.0734 0668 Msfs - ok
12:26:24.0765 0668 MSIServer - ok
12:26:24.0828 0668 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:26:25.0109 0668 MSKSSRV - ok
12:26:25.0156 0668 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:26:25.0421 0668 MSPCLOCK - ok
12:26:25.0468 0668 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
12:26:25.0750 0668 MSPQM - ok
12:26:25.0812 0668 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:26:26.0062 0668 mssmbios - ok
12:26:26.0109 0668 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
12:26:26.0390 0668 MSTEE - ok
12:26:26.0453 0668 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
12:26:26.0515 0668 Mup - ok
12:26:26.0578 0668 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
12:26:26.0843 0668 NABTSFEC - ok
12:26:26.0921 0668 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
12:26:27.0203 0668 napagent - ok
12:26:27.0265 0668 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
12:26:27.0546 0668 NDIS - ok
12:26:27.0578 0668 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
12:26:27.0843 0668 NdisIP - ok
12:26:27.0875 0668 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:26:27.0937 0668 NdisTapi - ok
12:26:28.0000 0668 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:26:28.0265 0668 Ndisuio - ok
12:26:28.0328 0668 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:26:28.0593 0668 NdisWan - ok
12:26:28.0656 0668 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
12:26:28.0718 0668 NDProxy - ok
12:26:28.0796 0668 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
12:26:29.0062 0668 NetBIOS - ok
12:26:29.0109 0668 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
12:26:29.0390 0668 NetBT - ok
12:26:29.0453 0668 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
12:26:29.0734 0668 NetDDE - ok
12:26:29.0750 0668 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
12:26:30.0031 0668 NetDDEdsdm - ok
12:26:30.0093 0668 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:26:30.0359 0668 Netlogon - ok
12:26:30.0437 0668 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
12:26:30.0718 0668 Netman - ok
12:26:30.0781 0668 NETMDUSB (986acdece933131288f1957dc359865f) C:\WINDOWS\system32\Drivers\NETMDUSB.sys
12:26:30.0843 0668 NETMDUSB - ok
12:26:30.0968 0668 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:26:31.0031 0668 NetTcpPortSharing - ok
12:26:31.0093 0668 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
12:26:31.0359 0668 NIC1394 - ok
12:26:31.0437 0668 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
12:26:31.0515 0668 Nla - ok
12:26:31.0562 0668 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
12:26:31.0843 0668 Npfs - ok
12:26:31.0953 0668 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
12:26:32.0234 0668 Ntfs - ok
12:26:32.0312 0668 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:26:32.0578 0668 NtLmSsp - ok
12:26:32.0656 0668 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
12:26:32.0953 0668 NtmsSvc - ok
12:26:33.0015 0668 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
12:26:33.0281 0668 Null - ok
12:26:33.0328 0668 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:26:33.0609 0668 NwlnkFlt - ok
12:26:33.0640 0668 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:26:33.0906 0668 NwlnkFwd - ok
12:26:33.0984 0668 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
12:26:34.0250 0668 ohci1394 - ok
12:26:34.0359 0668 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:26:34.0421 0668 ose - ok
12:26:34.0921 0668 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:26:35.0296 0668 osppsvc - ok
12:26:35.0484 0668 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
12:26:35.0765 0668 Parport - ok
12:26:35.0812 0668 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
12:26:36.0109 0668 PartMgr - ok
12:26:36.0156 0668 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
12:26:36.0421 0668 ParVdm - ok
12:26:36.0468 0668 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
12:26:36.0734 0668 PCI - ok
12:26:36.0765 0668 PCIDump - ok
12:26:36.0828 0668 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
12:26:37.0093 0668 PCIIde - ok
12:26:37.0156 0668 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
12:26:37.0421 0668 Pcmcia - ok
12:26:37.0453 0668 PDCOMP - ok
12:26:37.0484 0668 PDFRAME - ok
12:26:37.0515 0668 PDRELI - ok
12:26:37.0531 0668 PDRFRAME - ok
12:26:37.0562 0668 perc2 - ok
12:26:37.0593 0668 perc2hib - ok
12:26:37.0703 0668 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
12:26:37.0765 0668 PlugPlay - ok
12:26:37.0812 0668 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:26:38.0078 0668 PolicyAgent - ok
12:26:38.0140 0668 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:26:38.0406 0668 PptpMiniport - ok
12:26:38.0453 0668 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
12:26:38.0734 0668 Processor - ok
12:26:38.0750 0668 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:26:39.0015 0668 ProtectedStorage - ok
12:26:39.0062 0668 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
12:26:39.0328 0668 PSched - ok
12:26:39.0375 0668 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:26:39.0656 0668 Ptilink - ok
12:26:39.0734 0668 pwd_2K (1840112f3f3b7ece84dbbd93a70c4135) C:\WINDOWS\system32\drivers\pwd_2K.sys
12:26:39.0781 0668 pwd_2K ( UnsignedFile.Multi.Generic ) - warning
12:26:39.0781 0668 pwd_2K - detected UnsignedFile.Multi.Generic (1)
12:26:39.0812 0668 ql1080 - ok
12:26:39.0843 0668 Ql10wnt - ok
12:26:39.0875 0668 ql12160 - ok
12:26:39.0890 0668 ql1240 - ok
12:26:39.0937 0668 ql1280 - ok
12:26:39.0984 0668 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:26:40.0234 0668 RasAcd - ok
12:26:40.0296 0668 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
12:26:40.0578 0668 RasAuto - ok
12:26:40.0625 0668 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:26:40.0890 0668 Rasl2tp - ok
12:26:40.0937 0668 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
12:26:41.0203 0668 RasMan - ok
12:26:41.0265 0668 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:26:41.0531 0668 RasPppoe - ok
12:26:41.0562 0668 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
12:26:41.0828 0668 Raspti - ok
12:26:41.0937 0668 RaySatxsi4_2Server - ok
12:26:42.0015 0668 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:26:42.0281 0668 Rdbss - ok
12:26:42.0328 0668 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:26:42.0593 0668 RDPCDD - ok
12:26:42.0703 0668 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
12:26:42.0765 0668 RDPWD - ok
12:26:42.0843 0668 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
12:26:43.0109 0668 RDSessMgr - ok
12:26:43.0171 0668 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
12:26:43.0453 0668 redbook - ok
12:26:43.0515 0668 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
12:26:43.0781 0668 RemoteAccess - ok
12:26:43.0921 0668 RichVideo (4d05898896ec49cf663dda61041ab096) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
12:26:44.0000 0668 RichVideo - ok
12:26:44.0031 0668 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\WINDOWS\system32\Drivers\RimUsb.sys
12:26:44.0109 0668 RimUsb - ok
12:26:44.0171 0668 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
12:26:44.0250 0668 RimVSerPort - ok
12:26:44.0312 0668 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
12:26:44.0578 0668 ROOTMODEM - ok
12:26:44.0625 0668 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe
12:26:44.0875 0668 RpcLocator - ok
12:26:44.0953 0668 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
12:26:45.0046 0668 RpcSs - ok
12:26:45.0109 0668 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe
12:26:45.0375 0668 RSVP - ok
12:26:45.0421 0668 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:26:45.0687 0668 SamSs - ok
12:26:45.0781 0668 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
12:26:45.0828 0668 SASDIFSV - ok
12:26:45.0859 0668 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
12:26:45.0906 0668 SASKUTIL - ok
12:26:45.0968 0668 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys
12:26:46.0265 0668 sbp2port - ok
12:26:46.0328 0668 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
12:26:46.0593 0668 SCardSvr - ok
12:26:46.0671 0668 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
12:26:46.0937 0668 Schedule - ok
12:26:47.0031 0668 sdcplh (b7ea2f12416693d2d9bffaaa5eff7037) C:\WINDOWS\system32\drivers\sdcplh.sys
12:26:47.0078 0668 sdcplh ( UnsignedFile.Multi.Generic ) - warning
12:26:47.0078 0668 sdcplh - detected UnsignedFile.Multi.Generic (1)
12:26:47.0140 0668 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:26:47.0296 0668 Secdrv - ok
12:26:47.0359 0668 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
12:26:47.0625 0668 seclogon - ok
12:26:47.0656 0668 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
12:26:47.0937 0668 SENS - ok
12:26:48.0000 0668 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
12:26:48.0296 0668 serenum - ok
12:26:48.0343 0668 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
12:26:48.0609 0668 Serial - ok
12:26:48.0703 0668 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
12:26:48.0984 0668 Sfloppy - ok
12:26:49.0078 0668 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
12:26:49.0359 0668 SharedAccess - ok
12:26:49.0406 0668 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:26:49.0468 0668 ShellHWDetection - ok
12:26:49.0500 0668 Simbad - ok
12:26:49.0546 0668 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
12:26:49.0812 0668 SLIP - ok
12:26:49.0890 0668 smwdm (b911c822922cf62df83ad36d5c9775cc) C:\WINDOWS\system32\drivers\smwdm.sys
12:26:49.0968 0668 smwdm - ok
12:26:50.0015 0668 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
12:26:50.0296 0668 SONYPVU1 - ok
12:26:50.0328 0668 Sparrow - ok
12:26:50.0390 0668 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
12:26:50.0656 0668 splitter - ok
12:26:50.0781 0668 spmd (2ae8ff8a36708452157ce101fd57ef3e) C:\WINDOWS\System32\spm\spmd.exe
12:26:50.0828 0668 spmd ( UnsignedFile.Multi.Generic ) - warning
12:26:50.0828 0668 spmd - detected UnsignedFile.Multi.Generic (1)
12:26:50.0875 0668 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
12:26:50.0937 0668 Spooler - ok
12:26:51.0000 0668 SPTISRV - ok
12:26:51.0078 0668 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
12:26:51.0218 0668 sr - ok
12:26:51.0296 0668 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll
12:26:51.0453 0668 srservice - ok
12:26:51.0515 0668 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
12:26:51.0593 0668 Srv - ok
12:26:51.0656 0668 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
12:26:51.0828 0668 SSDPSRV - ok
12:26:51.0906 0668 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
12:26:52.0203 0668 stisvc - ok
12:26:52.0234 0668 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
12:26:52.0515 0668 streamip - ok
12:26:52.0562 0668 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
12:26:52.0843 0668 swenum - ok
12:26:52.0906 0668 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
12:26:53.0171 0668 swmidi - ok
12:26:53.0187 0668 SwPrv - ok
12:26:53.0234 0668 symc810 - ok
12:26:53.0265 0668 symc8xx - ok
12:26:53.0281 0668 sym_hi - ok
12:26:53.0312 0668 sym_u3 - ok
12:26:53.0359 0668 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
12:26:53.0656 0668 sysaudio - ok
12:26:53.0703 0668 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
12:26:53.0984 0668 SysmonLog - ok
12:26:54.0062 0668 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
12:26:54.0343 0668 TapiSrv - ok
12:26:54.0437 0668 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:26:54.0531 0668 Tcpip - ok
12:26:54.0578 0668 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
12:26:54.0859 0668 TDPIPE - ok
12:26:54.0890 0668 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
12:26:55.0171 0668 TDTCP - ok
12:26:55.0234 0668 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
12:26:55.0515 0668 TermDD - ok
12:26:55.0593 0668 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
12:26:55.0875 0668 TermService - ok
12:26:55.0937 0668 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:26:56.0000 0668 Themes - ok
12:26:56.0140 0668 TomTomHOMEService (39bd95a9fe72aaf5c675ad146be456a9) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
12:26:56.0203 0668 TomTomHOMEService - ok
12:26:56.0234 0668 TosIde - ok
12:26:56.0296 0668 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
12:26:56.0578 0668 TrkWks - ok
12:26:56.0656 0668 UdfReadr_xp (e1b5bfba7f1cde1fc28934639e83b3cf) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys
12:26:56.0718 0668 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - warning
12:26:56.0718 0668 UdfReadr_xp - detected UnsignedFile.Multi.Generic (1)
12:26:56.0781 0668 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
12:26:57.0062 0668 Udfs - ok
12:26:57.0078 0668 ultra - ok
12:26:57.0125 0668 UMWdf (ab0a7ca90d9e3d6a193905dc1715ded0) C:\WINDOWS\System32\wdfmgr.exe
12:26:57.0203 0668 UMWdf - ok
12:26:57.0296 0668 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
12:26:57.0593 0668 Update - ok
12:26:57.0656 0668 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
12:26:57.0828 0668 upnphost - ok
12:26:57.0875 0668 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
12:26:58.0156 0668 UPS - ok
12:26:58.0218 0668 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
12:26:58.0296 0668 USBAAPL - ok
12:26:58.0359 0668 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
12:26:58.0640 0668 usbaudio - ok
12:26:58.0687 0668 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:26:58.0953 0668 usbccgp - ok
12:26:59.0031 0668 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:26:59.0312 0668 usbehci - ok
12:26:59.0359 0668 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:26:59.0640 0668 usbhub - ok
12:26:59.0687 0668 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:26:59.0968 0668 usbprint - ok
12:27:00.0031 0668 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:27:00.0296 0668 usbscan - ok
12:27:00.0328 0668 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:27:00.0609 0668 USBSTOR - ok
12:27:00.0640 0668 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:27:00.0921 0668 usbuhci - ok
12:27:00.0953 0668 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
12:27:01.0218 0668 VgaSave - ok
12:27:01.0265 0668 ViaIde - ok
12:27:01.0328 0668 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
12:27:01.0609 0668 VolSnap - ok
12:27:01.0687 0668 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
12:27:01.0859 0668 VSS - ok
12:27:02.0093 0668 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
12:27:02.0187 0668 vToolbarUpdater11.2.0 - ok
12:27:02.0281 0668 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\System32\w32time.dll
12:27:02.0578 0668 W32Time - ok
12:27:02.0687 0668 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:27:02.0953 0668 Wanarp - ok
12:27:03.0015 0668 wanatw (ba1d9278448cb26152a18b6a06b61ea3) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
12:27:03.0093 0668 wanatw - ok
12:27:03.0156 0668 WANMiniportService (4dc56a5f4614bf123251d5ae54f914fd) C:\WINDOWS\wanmpsvc.exe
12:27:03.0187 0668 WANMiniportService ( UnsignedFile.Multi.Generic ) - warning
12:27:03.0187 0668 WANMiniportService - detected UnsignedFile.Multi.Generic (1)
12:27:03.0250 0668 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\WINDOWS\system32\DRIVERS\wdcsam.sys
12:27:03.0328 0668 WDC_SAM - ok
12:27:03.0437 0668 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
12:27:03.0500 0668 Wdf01000 - ok
12:27:03.0546 0668 WDICA - ok
12:27:03.0609 0668 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
12:27:03.0890 0668 wdmaud - ok
12:27:03.0953 0668 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
12:27:04.0234 0668 WebClient - ok
12:27:04.0328 0668 WinDefend (f45dd1e1365d857dd08bc23563370d0e) C:\Program Files\Windows Defender\MsMpEng.exe
12:27:04.0375 0668 WinDefend - ok
12:27:04.0453 0668 WinDriver6 (097a8291df541f9b9af2c500797cdcaa) C:\WINDOWS\system32\drivers\windrvr6.sys
12:27:04.0546 0668 WinDriver6 - ok
12:27:04.0671 0668 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
12:27:04.0921 0668 winmgmt - ok
12:27:05.0187 0668 wlidsvc (d9250b31b353ee3322c1cad411997e38) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:27:05.0343 0668 wlidsvc - ok
12:27:05.0484 0668 WmdmPmSN (140ef97b64f560fd78643cae2cdad838) C:\WINDOWS\System32\mspmsnsv.dll
12:27:05.0546 0668 WmdmPmSN - ok
12:27:05.0671 0668 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe
12:27:05.0953 0668 WmiApSrv - ok
12:27:06.0015 0668 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
12:27:06.0296 0668 wscsvc - ok
12:27:06.0359 0668 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
12:27:06.0625 0668 WSTCODEC - ok
12:27:06.0687 0668 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
12:27:06.0968 0668 wuauserv - ok
12:27:07.0093 0668 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
12:27:07.0390 0668 WZCSVC - ok
12:27:07.0453 0668 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
12:27:07.0718 0668 xmlprov - ok
12:27:07.0781 0668 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
12:27:08.0625 0668 \Device\Harddisk0\DR0 - ok
12:27:08.0671 0668 Boot (0x1200) (0879db9c2d2ee0c2762b1b9cb813eec5) \Device\Harddisk0\DR0\Partition0
12:27:08.0671 0668 \Device\Harddisk0\DR0\Partition0 - ok
12:27:08.0671 0668 ============================================================
12:27:08.0671 0668 Scan finished
12:27:08.0671 0668 ============================================================
12:27:08.0718 3528 Detected object count: 14
12:27:08.0718 3528 Actual detected object count: 14
12:30:00.0828 3528 ASCTRM ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0828 3528 ASCTRM ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0828 3528 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0828 3528 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0828 3528 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0828 3528 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0828 3528 cdudf_xp ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0828 3528 cdudf_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0843 3528 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0843 3528 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0843 3528 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0843 3528 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0859 3528 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0859 3528 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0859 3528 LexBceS ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0859 3528 LexBceS ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0859 3528 mmc_2K ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0859 3528 mmc_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0859 3528 pwd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0859 3528 pwd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0875 3528 sdcplh ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0875 3528 sdcplh ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0875 3528 spmd ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0875 3528 spmd ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0875 3528 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0875 3528 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:30:00.0890 3528 WANMiniportService ( UnsignedFile.Multi.Generic ) - skipped by user
12:30:00.0890 3528 WANMiniportService ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:33:50.0828 1324 ============================================================
12:33:50.0828 1324 Scan started
12:33:50.0828 1324 Mode: Manual; SigCheck; TDLFS;
12:33:50.0828 1324 ============================================================
12:33:51.0281 1324 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
12:33:51.0343 1324 !SASCORE - ok
12:33:51.0437 1324 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
12:33:52.0140 1324 61883 - ok
12:33:52.0171 1324 8effc456-ef98-4b05-b868-5d87787bf223 - ok
12:33:52.0203 1324 Abiosdsk - ok
12:33:52.0218 1324 abp480n5 - ok
12:33:52.0296 1324 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:33:52.0562 1324 ACPI - ok
12:33:52.0609 1324 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
12:33:52.0875 1324 ACPIEC - ok
12:33:52.0906 1324 adpu160m - ok
12:33:52.0984 1324 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
12:33:53.0281 1324 aec - ok
12:33:53.0359 1324 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
12:33:53.0453 1324 AFD - ok
12:33:53.0515 1324 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
12:33:53.0796 1324 agp440 - ok
12:33:53.0812 1324 Aha154x - ok
12:33:53.0843 1324 aic78u2 - ok
12:33:53.0859 1324 aic78xx - ok
12:33:53.0890 1324 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
12:33:54.0171 1324 Alerter - ok
12:33:54.0218 1324 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
12:33:54.0390 1324 ALG - ok
12:33:54.0406 1324 AliIde - ok
12:33:54.0437 1324 amsint - ok
12:33:54.0500 1324 AN983 (116bff96077a4a724e0aab800525ceb5) C:\WINDOWS\system32\DRIVERS\AN983.sys
12:33:54.0765 1324 AN983 - ok
12:33:54.0875 1324 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:33:54.0937 1324 Apple Mobile Device - ok
12:33:54.0953 1324 AppMgmt - ok
12:33:55.0031 1324 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
12:33:55.0312 1324 Arp1394 - ok
12:33:55.0328 1324 asc - ok
12:33:55.0359 1324 asc3350p - ok
12:33:55.0375 1324 asc3550 - ok
12:33:55.0437 1324 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
12:33:55.0484 1324 ASCTRM ( UnsignedFile.Multi.Generic ) - warning
12:33:55.0484 1324 ASCTRM - detected UnsignedFile.Multi.Generic (1)
12:33:55.0593 1324 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
12:33:55.0656 1324 aspnet_state - ok
12:33:55.0703 1324 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:33:56.0000 1324 AsyncMac - ok
12:33:56.0046 1324 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
12:33:56.0343 1324 atapi - ok
12:33:56.0375 1324 Atdisk - ok
12:33:56.0562 1324 ati2mtag (9643c9aa768257a617a3085f378b14ec) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
12:33:56.0765 1324 ati2mtag - ok
12:33:56.0796 1324 atimtag - ok
12:33:56.0921 1324 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:33:57.0531 1324 Atmarpc - ok
12:33:57.0593 1324 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
12:33:58.0078 1324 AudioSrv - ok
12:33:58.0125 1324 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
12:33:58.0406 1324 audstub - ok
12:33:58.0437 1324 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
12:33:58.0765 1324 Avc - ok
12:33:59.0437 1324 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files\AVG\AVG2012\avgidsagent.exe
12:33:59.0953 1324 AVGIDSAgent - ok
12:34:00.0156 1324 AVGIDSDriver (1074f787080068c71303b61fae7e7ca4) C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
12:34:00.0218 1324 AVGIDSDriver - ok
12:34:00.0265 1324 AVGIDSFilter (61a7e0b02f82cff3db2445bbe50b3589) C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
12:34:00.0328 1324 AVGIDSFilter - ok
12:34:00.0390 1324 AVGIDSHX (d63d83659eedf60b3a3e620281a888e5) C:\WINDOWS\system32\DRIVERS\avgidshx.sys
12:34:00.0453 1324 AVGIDSHX - ok
12:34:00.0500 1324 AVGIDSShim (baf975b72062f53d327788e99d64197e) C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
12:34:00.0562 1324 AVGIDSShim - ok
12:34:00.0625 1324 Avgldx86 (dda6a2a18841e4c9172bb85958b8d948) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
12:34:00.0687 1324 Avgldx86 - ok
12:34:00.0718 1324 Avgmfx86 (ccdd61545aaea265977e4b1efdc74e8c) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
12:34:00.0781 1324 Avgmfx86 - ok
12:34:00.0812 1324 Avgrkx86 (1fd90b28d2c3100bf4500199c8ad6358) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
12:34:00.0875 1324 Avgrkx86 - ok
12:34:00.0937 1324 Avgtdix (1263f2554ace925c237a40b4c568d815) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
12:34:01.0000 1324 Avgtdix - ok
12:34:01.0125 1324 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
12:34:01.0593 1324 avgwd - ok
12:34:01.0640 1324 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
12:34:01.0890 1324 Beep - ok
12:34:01.0968 1324 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
12:34:02.0468 1324 BITS - ok
12:34:02.0562 1324 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files\Bonjour\mDNSResponder.exe
12:34:02.0765 1324 Bonjour Service - ok
12:34:03.0156 1324 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
12:34:03.0406 1324 Browser - ok
12:34:03.0453 1324 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
12:34:03.0703 1324 cbidf2k - ok
12:34:03.0750 1324 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
12:34:03.0984 1324 CCDECODE - ok
12:34:04.0000 1324 cd20xrnt - ok
12:34:04.0046 1324 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
12:34:04.0562 1324 Cdaudio - ok
12:34:04.0593 1324 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
12:34:04.0843 1324 Cdfs - ok
12:34:04.0890 1324 Cdr4_xp (991ff38609ecb64e876f1301d30e6e0b) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
12:34:04.0921 1324 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning
12:34:04.0921 1324 Cdr4_xp - detected UnsignedFile.Multi.Generic (1)
12:34:04.0937 1324 Cdralw2k (6123da1ec51f4f016554535b88befbf6) C:\WINDOWS\system32\drivers\Cdralw2k.sys
12:34:04.0953 1324 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning
12:34:04.0953 1324 Cdralw2k - detected UnsignedFile.Multi.Generic (1)
12:34:05.0000 1324 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:34:05.0234 1324 Cdrom - ok
12:34:05.0296 1324 cdudf_xp (8c7746acde6225a46b58ed7ae09ec166) C:\WINDOWS\system32\drivers\cdudf_xp.sys
12:34:05.0328 1324 cdudf_xp ( UnsignedFile.Multi.Generic ) - warning
12:34:05.0328 1324 cdudf_xp - detected UnsignedFile.Multi.Generic (1)
12:34:05.0343 1324 Changer - ok
12:34:05.0500 1324 cisvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\System32\cisvc.exe
12:34:06.0203 1324 cisvc - ok
12:34:06.0250 1324 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
12:34:06.0484 1324 ClipSrv - ok
12:34:07.0734 1324 clr_optimization_v2.0.50727_32 (7fa87325900183197bc9710d1ce4c9fa) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:34:07.0765 1324 clr_optimization_v2.0.50727_32 - ok
12:34:07.0781 1324 CmdIde - ok
12:34:08.0015 1324 COMSysApp - ok
12:34:08.0109 1324 Cpqarray - ok
12:34:08.0421 1324 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
12:34:08.0890 1324 CryptSvc - ok
12:34:08.0906 1324 dac2w2k - ok
12:34:08.0921 1324 dac960nt - ok
12:34:08.0968 1324 DCamUSBSQTECH (d6a3a8524d8c7e29f073c77d09539a74) C:\WINDOWS\system32\Drivers\SQcaptur.sys
12:34:08.0984 1324 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - warning
12:34:08.0984 1324 DCamUSBSQTECH - detected UnsignedFile.Multi.Generic (1)
12:34:09.0062 1324 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
12:34:09.0125 1324 DcomLaunch - ok
12:34:09.0187 1324 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
12:34:09.0437 1324 Dhcp - ok
12:34:09.0484 1324 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
12:34:09.0953 1324 Disk - ok
12:34:09.0968 1324 dmadmin - ok
12:34:10.0375 1324 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
12:34:10.0687 1324 dmboot - ok
12:34:10.0734 1324 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
12:34:11.0015 1324 dmio - ok
12:34:11.0062 1324 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
12:34:11.0328 1324 dmload - ok
12:34:11.0359 1324 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
12:34:11.0875 1324 dmserver - ok
12:34:11.0937 1324 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
12:34:12.0234 1324 DMusic - ok
12:34:12.0281 1324 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
12:34:12.0359 1324 Dnscache - ok
12:34:12.0421 1324 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
12:34:12.0687 1324 Dot3svc - ok
12:34:12.0703 1324 dpti2o - ok
12:34:12.0734 1324 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
12:34:13.0046 1324 drmkaud - ok
12:34:13.0093 1324 dvd_2K (800de2dfa19db3fd87aa95308ba0c17b) C:\WINDOWS\system32\drivers\dvd_2K.sys
12:34:13.0156 1324 dvd_2K ( UnsignedFile.Multi.Generic ) - warning
12:34:13.0156 1324 dvd_2K - detected UnsignedFile.Multi.Generic (1)
12:34:13.0203 1324 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
12:34:13.0906 1324 EapHost - ok
12:34:13.0953 1324 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
12:34:14.0515 1324 ERSvc - ok
12:34:14.0562 1324 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
12:34:14.0609 1324 Eventlog - ok
12:34:14.0687 1324 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll
12:34:14.0750 1324 EventSystem - ok
12:34:14.0796 1324 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
12:34:15.0046 1324 Fastfat - ok
12:34:15.0093 1324 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:34:15.0140 1324 FastUserSwitchingCompatibility - ok
12:34:15.0218 1324 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
12:34:15.0468 1324 Fax - ok
12:34:15.0531 1324 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
12:34:15.0781 1324 Fdc - ok
12:34:15.0828 1324 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
12:34:16.0078 1324 FETNDIS - ok
12:34:16.0125 1324 FETNDISB (95bc4d8493fe30312f5e1ab57ef36083) C:\WINDOWS\system32\DRIVERS\dlkfet5b.sys
12:34:16.0171 1324 FETNDISB - ok
12:34:16.0218 1324 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
12:34:16.0468 1324 Fips - ok
12:34:16.0500 1324 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
12:34:16.0734 1324 Flpydisk - ok
12:34:16.0796 1324 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
12:34:17.0218 1324 FltMgr - ok
12:34:17.0328 1324 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:34:17.0359 1324 FontCache3.0.0.0 - ok
12:34:17.0421 1324 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:34:17.0671 1324 Fs_Rec - ok
12:34:17.0718 1324 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:34:18.0015 1324 Ftdisk - ok
12:34:18.0062 1324 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
12:34:18.0093 1324 GEARAspiWDM - ok
12:34:18.0156 1324 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:34:18.0453 1324 Gpc - ok
12:34:18.0546 1324 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:34:18.0812 1324 helpsvc - ok
12:34:18.0859 1324 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
12:34:19.0125 1324 HidServ - ok
12:34:19.0171 1324 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:34:19.0531 1324 HidUsb - ok
12:34:19.0578 1324 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
12:34:20.0000 1324 hkmsvc - ok
12:34:20.0015 1324 hpn - ok
12:34:20.0046 1324 hpt3xx - ok
12:34:20.0109 1324 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
12:34:20.0187 1324 HTTP - ok
12:34:20.0234 1324 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
12:34:20.0562 1324 HTTPFilter - ok
12:34:20.0578 1324 i2omgmt - ok
12:34:20.0593 1324 i2omp - ok
12:34:20.0671 1324 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:34:21.0265 1324 i8042prt - ok
12:34:21.0484 1324 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
12:34:21.0546 1324 IDriverT ( UnsignedFile.Multi.Generic ) - warning
12:34:21.0546 1324 IDriverT - detected UnsignedFile.Multi.Generic (1)
12:34:21.0937 1324 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:34:22.0390 1324 idsvc - ok
12:34:22.0421 1324 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys
12:34:22.0984 1324 Imapi - ok
12:34:23.0156 1324 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\Imapi.exe
12:34:23.0593 1324 ImapiService - ok
12:34:23.0609 1324 ini910u - ok
12:34:23.0718 1324 IntelIde - ok
12:34:23.0765 1324 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:34:24.0281 1324 intelppm - ok
12:34:24.0390 1324 Intels51 (eb6d8e9cd813596b6d59d878337a4998) C:\WINDOWS\system32\DRIVERS\Intels51.sys
12:34:24.0484 1324 Intels51 - ok
12:34:24.0515 1324 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
12:34:24.0781 1324 ip6fw - ok
12:34:24.0812 1324 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:34:25.0062 1324 IpFilterDriver - ok
12:34:25.0109 1324 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:34:25.0343 1324 IpInIp - ok
12:34:25.0390 1324 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:34:25.0640 1324 IpNat - ok
12:34:25.0765 1324 iPod Service (8f610078437a459948480407f4db91ea) C:\Program Files\iPod\bin\iPodService.exe
12:34:25.0812 1324 iPod Service - ok
12:34:25.0890 1324 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:34:26.0140 1324 IPSec - ok
12:34:26.0171 1324 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
12:34:26.0312 1324 IRENUM - ok
12:34:26.0359 1324 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:34:26.0609 1324 isapnp - ok
12:34:26.0671 1324 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:34:26.0921 1324 Kbdclass - ok
12:34:26.0953 1324 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
12:34:27.0218 1324 kmixer - ok
12:34:27.0265 1324 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
12:34:27.0312 1324 KSecDD - ok
12:34:27.0359 1324 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
12:34:27.0421 1324 lanmanserver - ok
12:34:27.0468 1324 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
12:34:27.0515 1324 lanmanworkstation - ok
12:34:27.0531 1324 lbrtfdc - ok
12:34:27.0609 1324 LexBceS (2a125981bb23f0a023255d39b7e1c25e) C:\WINDOWS\system32\LEXBCES.EXE
12:34:27.0625 1324 LexBceS ( UnsignedFile.Multi.Generic ) - warning
12:34:27.0625 1324 LexBceS - detected UnsignedFile.Multi.Generic (1)
12:34:27.0687 1324 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
12:34:28.0031 1324 LmHosts - ok
12:34:28.0046 1324 LXARScan - ok
12:34:28.0062 1324 lxcz_device - ok
12:34:28.0093 1324 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
12:34:28.0671 1324 Messenger - ok
12:34:28.0828 1324 Microsoft SharePoint Workspace Audit Service - ok
12:34:28.0890 1324 mmc_2K (0a35ad036de912858a1c5e9637840724) C:\WINDOWS\system32\drivers\mmc_2K.sys
12:34:28.0984 1324 mmc_2K ( UnsignedFile.Multi.Generic ) - warning
12:34:28.0984 1324 mmc_2K - detected UnsignedFile.Multi.Generic (1)
12:34:29.0031 1324 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
12:34:29.0515 1324 mnmdd - ok
12:34:29.0562 1324 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe
12:34:30.0078 1324 mnmsrvc - ok
12:34:30.0125 1324 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
12:34:30.0390 1324 Modem - ok
12:34:30.0437 1324 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
12:34:30.0781 1324 MODEMCSA - ok
12:34:30.0843 1324 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:34:31.0125 1324 Mouclass - ok
12:34:31.0171 1324 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:34:31.0453 1324 mouhid - ok
12:34:31.0484 1324 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
12:34:31.0765 1324 MountMgr - ok
12:34:31.0812 1324 mr7910 (e3274b2b7bbd44391e84d244e8bcc555) C:\WINDOWS\system32\DRIVERS\mr7910.sys
12:34:31.0890 1324 mr7910 - ok
12:34:31.0906 1324 mraid35x - ok
12:34:31.0968 1324 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:34:32.0250 1324 MRxDAV - ok
12:34:32.0343 1324 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:34:32.0453 1324 MRxSmb - ok
12:34:32.0500 1324 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe
12:34:32.0765 1324 MSDTC - ok
12:34:32.0812 1324 MSDV (1477849772712bac69c144dcf2c9ce81) C:\WINDOWS\system32\DRIVERS\msdv.sys
12:34:33.0093 1324 MSDV - ok
12:34:33.0125 1324 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
12:34:33.0406 1324 Msfs - ok
12:34:33.0421 1324 MSIServer - ok
12:34:33.0453 1324 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:34:33.0734 1324 MSKSSRV - ok
12:34:33.0765 1324 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:34:34.0046 1324 MSPCLOCK - ok
12:34:34.0078 1324 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
12:34:34.0343 1324 MSPQM - ok
12:34:34.0390 1324 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:34:34.0656 1324 mssmbios - ok
12:34:34.0718 1324 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
12:34:35.0000 1324 MSTEE - ok
12:34:35.0046 1324 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
12:34:35.0109 1324 Mup - ok
12:34:35.0156 1324 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
12:34:35.0437 1324 NABTSFEC - ok
12:34:35.0515 1324 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
12:34:35.0812 1324 napagent - ok
12:34:35.0890 1324 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
12:34:36.0171 1324 NDIS - ok
12:34:36.0203 1324 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
12:34:36.0484 1324 NdisIP - ok
12:34:36.0531 1324 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:34:36.0609 1324 NdisTapi - ok
12:34:36.0656 1324 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:34:36.0937 1324 Ndisuio - ok
12:34:36.0968 1324 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:34:37.0250 1324 NdisWan - ok
12:34:37.0296 1324 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
12:34:37.0359 1324 NDProxy - ok
12:34:37.0421 1324 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
12:34:37.0703 1324 NetBIOS - ok
12:34:37.0734 1324 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
12:34:38.0031 1324 NetBT - ok
12:34:38.0078 1324 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
12:34:38.0359 1324 NetDDE - ok
12:34:38.0359 1324 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
12:34:38.0640 1324 NetDDEdsdm - ok
12:34:38.0687 1324 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:34:39.0031 1324 Netlogon - ok
12:34:39.0109 1324 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
12:34:39.0390 1324 Netman - ok
12:34:39.0437 1324 NETMDUSB (986acdece933131288f1957dc359865f) C:\WINDOWS\system32\Drivers\NETMDUSB.sys
12:34:39.0531 1324 NETMDUSB - ok
12:34:39.0640 1324 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:34:39.0703 1324 NetTcpPortSharing - ok
12:34:39.0750 1324 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
12:34:40.0031 1324 NIC1394 - ok
12:34:40.0093 1324 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
12:34:40.0187 1324 Nla - ok
12:34:40.0234 1324 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
12:34:40.0515 1324 Npfs - ok
12:34:40.0609 1324 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
12:34:40.0906 1324 Ntfs - ok
12:34:40.0953 1324 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:34:41.0312 1324 NtLmSsp - ok
12:34:41.0406 1324 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
12:34:42.0046 1324 NtmsSvc - ok
12:34:42.0125 1324 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
12:34:42.0421 1324 Null - ok
12:34:42.0453 1324 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:34:42.0734 1324 NwlnkFlt - ok
12:34:42.0765 1324 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:34:43.0062 1324 NwlnkFwd - ok
12:34:43.0109 1324 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
12:34:43.0390 1324 ohci1394 - ok
12:34:43.0500 1324 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:34:43.0578 1324 ose - ok
12:34:44.0109 1324 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:34:44.0578 1324 osppsvc - ok
12:34:44.0765 1324 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
12:34:45.0046 1324 Parport - ok
12:34:45.0078 1324 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
12:34:45.0375 1324 PartMgr - ok
12:34:45.0421 1324 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
12:34:45.0703 1324 ParVdm - ok
12:34:45.0734 1324 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
12:34:46.0062 1324 PCI - ok
12:34:46.0203 1324 PCIDump - ok
12:34:46.0296 1324 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
12:34:46.0593 1324 PCIIde - ok
12:34:46.0640 1324 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
12:34:46.0921 1324 Pcmcia - ok
12:34:46.0937 1324 PDCOMP - ok
12:34:46.0953 1324 PDFRAME - ok
12:34:46.0984 1324 PDRELI - ok
12:34:47.0015 1324 PDRFRAME - ok
12:34:47.0046 1324 perc2 - ok
12:34:47.0062 1324 perc2hib - ok
12:34:47.0156 1324 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
12:34:47.0250 1324 PlugPlay - ok
12:34:47.0296 1324 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
12:34:47.0562 1324 PolicyAgent - ok
12:34:47.0640 1324 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:34:47.0921 1324 PptpMiniport - ok
12:34:47.0953 1324 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
12:34:48.0250 1324 Processor - ok
12:34:48.0531 1324 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:34:48.0890 1324 ProtectedStorage - ok
12:34:48.0921 1324 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
12:34:49.0343 1324 PSched - ok
12:34:49.0375 1324 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:34:49.0640 1324 Ptilink - ok
12:34:49.0703 1324 pwd_2K (1840112f3f3b7ece84dbbd93a70c4135) C:\WINDOWS\system32\drivers\pwd_2K.sys
12:34:49.0765 1324 pwd_2K ( UnsignedFile.Multi.Generic ) - warning
12:34:49.0765 1324 pwd_2K - detected UnsignedFile.Multi.Generic (1)
12:34:49.0781 1324 ql1080 - ok
12:34:49.0796 1324 Ql10wnt - ok
12:34:49.0812 1324 ql12160 - ok
12:34:49.0828 1324 ql1240 - ok
12:34:49.0843 1324 ql1280 - ok
12:34:49.0890 1324 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:34:50.0156 1324 RasAcd - ok
12:34:50.0203 1324 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
12:34:50.0484 1324 RasAuto - ok
12:34:50.0531 1324 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:34:50.0781 1324 Rasl2tp - ok
12:34:50.0843 1324 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
12:34:51.0125 1324 RasMan - ok
12:34:52.0046 1324 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:34:53.0343 1324 RasPppoe - ok
12:34:53.0359 1324 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
12:34:54.0312 1324 Raspti - ok
12:34:54.0406 1324 RaySatxsi4_2Server - ok
12:34:54.0468 1324 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:34:54.0734 1324 Rdbss - ok
12:34:54.0890 1324 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:34:55.0500 1324 RDPCDD - ok
12:34:55.0546 1324 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
12:34:55.0640 1324 RDPWD - ok
12:34:55.0703 1324 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
12:34:55.0968 1324 RDSessMgr - ok
12:34:56.0093 1324 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
12:34:56.0421 1324 redbook - ok
12:34:56.0468 1324 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
12:34:56.0781 1324 RemoteAccess - ok
12:34:56.0921 1324 RichVideo (4d05898896ec49cf663dda61041ab096) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
12:34:57.0093 1324 RichVideo - ok
12:34:57.0156 1324 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\WINDOWS\system32\Drivers\RimUsb.sys
12:34:57.0250 1324 RimUsb - ok
12:34:57.0296 1324 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
12:34:57.0375 1324 RimVSerPort - ok
12:34:57.0437 1324 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
12:34:57.0703 1324 ROOTMODEM - ok
12:34:57.0765 1324 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe
12:34:58.0031 1324 RpcLocator - ok
12:34:58.0109 1324 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
12:34:58.0203 1324 RpcSs - ok
12:34:58.0265 1324 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe
12:34:58.0531 1324 RSVP - ok
12:34:58.0593 1324 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:34:58.0875 1324 SamSs - ok
12:34:58.0953 1324 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
12:34:59.0015 1324 SASDIFSV - ok
12:34:59.0046 1324 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
12:34:59.0109 1324 SASKUTIL - ok
12:34:59.0171 1324 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys
12:34:59.0484 1324 sbp2port - ok
12:34:59.0531 1324 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
12:34:59.0843 1324 SCardSvr - ok
12:34:59.0906 1324 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
12:35:00.0203 1324 Schedule - ok
12:35:00.0265 1324 sdcplh (b7ea2f12416693d2d9bffaaa5eff7037) C:\WINDOWS\system32\drivers\sdcplh.sys
12:35:00.0328 1324 sdcplh ( UnsignedFile.Multi.Generic ) - warning
12:35:00.0328 1324 sdcplh - detected UnsignedFile.Multi.Generic (1)
12:35:00.0359 1324 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:35:00.0531 1324 Secdrv - ok
12:35:00.0593 1324 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
12:35:00.0890 1324 seclogon - ok
12:35:00.0921 1324 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
12:35:01.0218 1324 SENS - ok
12:35:01.0265 1324 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
12:35:01.0562 1324 serenum - ok
12:35:01.0609 1324 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
12:35:01.0890 1324 Serial - ok
12:35:01.0953 1324 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
12:35:02.0250 1324 Sfloppy - ok
12:35:02.0375 1324 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
12:35:02.0687 1324 SharedAccess - ok
12:35:02.0812 1324 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:35:02.0890 1324 ShellHWDetection - ok
12:35:02.0906 1324 Simbad - ok
12:35:02.0937 1324 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
12:35:03.0218 1324 SLIP - ok
12:35:03.0312 1324 smwdm (b911c822922cf62df83ad36d5c9775cc) C:\WINDOWS\system32\drivers\smwdm.sys
12:35:03.0421 1324 smwdm - ok
12:35:03.0453 1324 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
12:35:03.0734 1324 SONYPVU1 - ok
12:35:03.0750 1324 Sparrow - ok
12:35:03.0781 1324 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
12:35:04.0062 1324 splitter - ok
12:35:04.0171 1324 spmd (2ae8ff8a36708452157ce101fd57ef3e) C:\WINDOWS\System32\spm\spmd.exe
12:35:04.0218 1324 spmd ( UnsignedFile.Multi.Generic ) - warning
12:35:04.0218 1324 spmd - detected UnsignedFile.Multi.Generic (1)
12:35:04.0265 1324 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
12:35:04.0343 1324 Spooler - ok
12:35:04.0421 1324 SPTISRV - ok
12:35:04.0468 1324 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
12:35:04.0640 1324 sr - ok
12:35:04.0718 1324 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll
12:35:04.0875 1324 srservice - ok
12:35:04.0953 1324 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
12:35:05.0046 1324 Srv - ok
12:35:05.0109 1324 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
12:35:05.0296 1324 SSDPSRV - ok
12:35:05.0375 1324 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
12:35:05.0703 1324 stisvc - ok
12:35:05.0734 1324 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
12:35:06.0046 1324 streamip - ok
12:35:06.0062 1324 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
12:35:06.0375 1324 swenum - ok
12:35:06.0453 1324 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
12:35:06.0734 1324 swmidi - ok
12:35:06.0750 1324 SwPrv - ok
12:35:06.0765 1324 symc810 - ok
12:35:06.0781 1324 symc8xx - ok
12:35:06.0796 1324 sym_hi - ok
12:35:06.0812 1324 sym_u3 - ok
12:35:06.0859 1324 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
12:35:07.0171 1324 sysaudio - ok
12:35:07.0234 1324 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
12:35:07.0546 1324 SysmonLog - ok
12:35:07.0609 1324 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
12:35:07.0890 1324 TapiSrv - ok
12:35:07.0968 1324 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:35:08.0078 1324 Tcpip - ok
12:35:08.0125 1324 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
12:35:08.0406 1324 TDPIPE - ok
12:35:08.0453 1324 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
12:35:08.0734 1324 TDTCP - ok
12:35:08.0765 1324 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
12:35:09.0062 1324 TermDD - ok
12:35:09.0140 1324 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
12:35:09.0437 1324 TermService - ok
12:35:09.0500 1324 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:35:09.0578 1324 Themes - ok
12:35:09.0718 1324 TomTomHOMEService (39bd95a9fe72aaf5c675ad146be456a9) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
12:35:09.0781 1324 TomTomHOMEService - ok
12:35:09.0796 1324 TosIde - ok
12:35:09.0859 1324 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
12:35:10.0156 1324 TrkWks - ok
12:35:10.0234 1324 UdfReadr_xp (e1b5bfba7f1cde1fc28934639e83b3cf) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys
12:35:10.0296 1324 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - warning
12:35:10.0296 1324 UdfReadr_xp - detected UnsignedFile.Multi.Generic (1)
12:35:10.0343 1324 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
12:35:10.0640 1324 Udfs - ok
12:35:10.0656 1324 ultra - ok
12:35:10.0703 1324 UMWdf (ab0a7ca90d9e3d6a193905dc1715ded0) C:\WINDOWS\System32\wdfmgr.exe
12:35:10.0796 1324 UMWdf - ok
12:35:10.0875 1324 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
12:35:11.0187 1324 Update - ok
12:35:11.0250 1324 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
12:35:11.0421 1324 upnphost - ok
12:35:11.0468 1324 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
12:35:11.0765 1324 UPS - ok
12:35:11.0796 1324 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
12:35:11.0875 1324 USBAAPL - ok
12:35:11.0921 1324 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
12:35:12.0234 1324 usbaudio - ok
12:35:12.0250 1324 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:35:12.0546 1324 usbccgp - ok
12:35:12.0609 1324 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:35:12.0937 1324 usbehci - ok
12:35:12.0953 1324 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:35:13.0250 1324 usbhub - ok
12:35:13.0296 1324 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:35:13.0578 1324 usbprint - ok
12:35:13.0609 1324 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:35:13.0906 1324 usbscan - ok
12:35:13.0921 1324 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:35:14.0203 1324 USBSTOR - ok
12:35:14.0234 1324 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:35:14.0515 1324 usbuhci - ok
12:35:14.0546 1324 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
12:35:14.0812 1324 VgaSave - ok
12:35:14.0828 1324 ViaIde - ok
12:35:14.0890 1324 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
12:35:15.0171 1324 VolSnap - ok
12:35:15.0250 1324 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
12:35:15.0421 1324 VSS - ok
12:35:15.0640 1324 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
12:35:15.0765 1324 vToolbarUpdater11.2.0 - ok
12:35:15.0828 1324 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\System32\w32time.dll
12:35:16.0109 1324 W32Time - ok
12:35:16.0203 1324 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:35:16.0484 1324 Wanarp - ok
12:35:16.0531 1324 wanatw (ba1d9278448cb26152a18b6a06b61ea3) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
12:35:16.0609 1324 wanatw - ok
12:35:16.0671 1324 WANMiniportService (4dc56a5f4614bf123251d5ae54f914fd) C:\WINDOWS\wanmpsvc.exe
12:35:16.0718 1324 WANMiniportService ( UnsignedFile.Multi.Generic ) - warning
12:35:16.0718 1324 WANMiniportService - detected UnsignedFile.Multi.Generic (1)
12:35:16.0765 1324 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\WINDOWS\system32\DRIVERS\wdcsam.sys
12:35:16.0843 1324 WDC_SAM - ok
12:35:16.0937 1324 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
12:35:17.0015 1324 Wdf01000 - ok
12:35:17.0031 1324 WDICA - ok
12:35:17.0062 1324 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
12:35:17.0343 1324 wdmaud - ok
12:35:17.0390 1324 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
12:35:17.0687 1324 WebClient - ok
12:35:17.0796 1324 WinDefend (f45dd1e1365d857dd08bc23563370d0e) C:\Program Files\Windows Defender\MsMpEng.exe
12:35:17.0859 1324 WinDefend - ok
12:35:17.0921 1324 WinDriver6 (097a8291df541f9b9af2c500797cdcaa) C:\WINDOWS\system32\drivers\windrvr6.sys
12:35:18.0015 1324 WinDriver6 - ok
12:35:18.0125 1324 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
12:35:18.0390 1324 winmgmt - ok
12:35:18.0593 1324 wlidsvc (d9250b31b353ee3322c1cad411997e38) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:35:18.0765 1324 wlidsvc - ok
12:35:18.0890 1324 WmdmPmSN (140ef97b64f560fd78643cae2cdad838) C:\WINDOWS\System32\mspmsnsv.dll
12:35:18.0968 1324 WmdmPmSN - ok
12:35:19.0062 1324 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe
12:35:19.0343 1324 WmiApSrv - ok
12:35:19.0406 1324 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
12:35:19.0671 1324 wscsvc - ok
12:35:19.0734 1324 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
12:35:20.0015 1324 WSTCODEC - ok
12:35:20.0046 1324 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
12:35:20.0343 1324 wuauserv - ok
12:35:20.0421 1324 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
12:35:20.0734 1324 WZCSVC - ok
12:35:20.0781 1324 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
12:35:21.0062 1324 xmlprov - ok
12:35:21.0109 1324 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
12:35:21.0953 1324 \Device\Harddisk0\DR0 - ok
12:35:21.0968 1324 Boot (0x1200) (0879db9c2d2ee0c2762b1b9cb813eec5) \Device\Harddisk0\DR0\Partition0
12:35:21.0968 1324 \Device\Harddisk0\DR0\Partition0 - ok
12:35:21.0984 1324 ============================================================
12:35:21.0984 1324 Scan finished
12:35:21.0984 1324 ============================================================
12:35:22.0000 2276 Detected object count: 14
12:35:22.0000 2276 Actual detected object count: 14
13:01:51.0531 2276 ASCTRM ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0531 2276 ASCTRM ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0531 2276 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 cdudf_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 cdudf_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 LexBceS ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 LexBceS ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 mmc_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 mmc_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 pwd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 pwd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 sdcplh ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 sdcplh ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 spmd ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 spmd ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:01:51.0546 2276 WANMiniportService ( UnsignedFile.Multi.Generic ) - skipped by user
13:01:51.0546 2276 WANMiniportService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:02:55.0656 3584 ============================================================
13:02:55.0656 3584 Scan started
13:02:55.0656 3584 Mode: Manual; SigCheck; TDLFS;
13:02:55.0656 3584 ============================================================
13:02:55.0953 3584 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
13:02:56.0015 3584 !SASCORE - ok
13:02:56.0125 3584 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
13:02:56.0781 3584 61883 - ok
13:02:56.0796 3584 8effc456-ef98-4b05-b868-5d87787bf223 - ok
13:02:56.0828 3584 Abiosdsk - ok
13:02:56.0843 3584 abp480n5 - ok
13:02:56.0921 3584 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:02:57.0234 3584 ACPI - ok
13:02:57.0281 3584 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
13:02:57.0562 3584 ACPIEC - ok
13:02:57.0578 3584 adpu160m - ok
13:02:57.0671 3584 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
13:02:57.0953 3584 aec - ok
13:02:58.0031 3584 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
13:02:58.0109 3584 AFD - ok
13:02:58.0187 3584 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
13:02:58.0468 3584 agp440 - ok
13:02:58.0484 3584 Aha154x - ok
13:02:58.0515 3584 aic78u2 - ok
13:02:58.0531 3584 aic78xx - ok
13:02:58.0578 3584 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
13:02:58.0859 3584 Alerter - ok
13:02:58.0906 3584 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
13:02:59.0093 3584 ALG - ok
13:02:59.0109 3584 AliIde - ok
13:02:59.0140 3584 amsint - ok
13:02:59.0187 3584 AN983 (116bff96077a4a724e0aab800525ceb5) C:\WINDOWS\system32\DRIVERS\AN983.sys
13:02:59.0484 3584 AN983 - ok
13:02:59.0593 3584 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:02:59.0656 3584 Apple Mobile Device - ok
13:02:59.0671 3584 AppMgmt - ok
13:02:59.0734 3584 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
13:03:00.0031 3584 Arp1394 - ok
13:03:00.0046 3584 asc - ok
13:03:00.0062 3584 asc3350p - ok
13:03:00.0093 3584 asc3550 - ok
13:03:00.0140 3584 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
13:03:00.0218 3584 ASCTRM ( UnsignedFile.Multi.Generic ) - warning
13:03:00.0218 3584 ASCTRM - detected UnsignedFile.Multi.Generic (1)
13:03:00.0296 3584 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:03:00.0343 3584 aspnet_state - ok
13:03:00.0421 3584 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:03:00.0718 3584 AsyncMac - ok
13:03:00.0796 3584 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
13:03:01.0078 3584 atapi - ok
13:03:01.0109 3584 Atdisk - ok
13:03:01.0203 3584 ati2mtag (9643c9aa768257a617a3085f378b14ec) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
13:03:01.0296 3584 ati2mtag - ok
13:03:01.0312 3584 atimtag - ok
13:03:01.0359 3584 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:03:01.0640 3584 Atmarpc - ok
13:03:01.0687 3584 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
13:03:01.0984 3584 AudioSrv - ok
13:03:02.0031 3584 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
13:03:02.0343 3584 audstub - ok
13:03:02.0390 3584 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
13:03:02.0671 3584 Avc - ok
13:03:03.0250 3584 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files\AVG\AVG2012\avgidsagent.exe
13:03:03.0765 3584 AVGIDSAgent - ok
13:03:03.0953 3584 AVGIDSDriver (1074f787080068c71303b61fae7e7ca4) C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
13:03:04.0031 3584 AVGIDSDriver - ok
13:03:04.0078 3584 AVGIDSFilter (61a7e0b02f82cff3db2445bbe50b3589) C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
13:03:04.0140 3584 AVGIDSFilter - ok
13:03:04.0187 3584 AVGIDSHX (d63d83659eedf60b3a3e620281a888e5) C:\WINDOWS\system32\DRIVERS\avgidshx.sys
13:03:04.0265 3584 AVGIDSHX - ok
13:03:04.0312 3584 AVGIDSShim (baf975b72062f53d327788e99d64197e) C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
13:03:04.0375 3584 AVGIDSShim - ok
13:03:04.0437 3584 Avgldx86 (dda6a2a18841e4c9172bb85958b8d948) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
13:03:04.0468 3584 Avgldx86 - ok
13:03:04.0500 3584 Avgmfx86 (ccdd61545aaea265977e4b1efdc74e8c) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
13:03:04.0531 3584 Avgmfx86 - ok
13:03:04.0578 3584 Avgrkx86 (1fd90b28d2c3100bf4500199c8ad6358) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
13:03:04.0609 3584 Avgrkx86 - ok
13:03:04.0687 3584 Avgtdix (1263f2554ace925c237a40b4c568d815) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
13:03:04.0734 3584 Avgtdix - ok
13:03:04.0859 3584 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
13:03:04.0890 3584 avgwd - ok
13:03:04.0953 3584 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
13:03:05.0203 3584 Beep - ok
13:03:05.0312 3584 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
13:03:05.0578 3584 BITS - ok
13:03:05.0718 3584 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files\Bonjour\mDNSResponder.exe
13:03:05.0765 3584 Bonjour Service - ok
13:03:05.0843 3584 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
13:03:06.0093 3584 Browser - ok
13:03:06.0140 3584 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
13:03:06.0406 3584 cbidf2k - ok
13:03:06.0453 3584 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
13:03:06.0703 3584 CCDECODE - ok
13:03:06.0718 3584 cd20xrnt - ok
13:03:06.0765 3584 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
13:03:07.0015 3584 Cdaudio - ok
13:03:07.0062 3584 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
13:03:07.0312 3584 Cdfs - ok
13:03:07.0375 3584 Cdr4_xp (991ff38609ecb64e876f1301d30e6e0b) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
13:03:07.0390 3584 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning
13:03:07.0390 3584 Cdr4_xp - detected UnsignedFile.Multi.Generic (1)
13:03:07.0421 3584 Cdralw2k (6123da1ec51f4f016554535b88befbf6) C:\WINDOWS\system32\drivers\Cdralw2k.sys
13:03:07.0453 3584 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning
13:03:07.0453 3584 Cdralw2k - detected UnsignedFile.Multi.Generic (1)
13:03:07.0500 3584 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:03:07.0750 3584 Cdrom - ok
13:03:07.0812 3584 cdudf_xp (8c7746acde6225a46b58ed7ae09ec166) C:\WINDOWS\system32\drivers\cdudf_xp.sys
13:03:07.0843 3584 cdudf_xp ( UnsignedFile.Multi.Generic ) - warning
13:03:07.0843 3584 cdudf_xp - detected UnsignedFile.Multi.Generic (1)
13:03:07.0875 3584 Changer - ok
13:03:07.0937 3584 cisvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\System32\cisvc.exe
13:03:08.0187 3584 cisvc - ok
13:03:08.0218 3584 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
13:03:08.0484 3584 ClipSrv - ok
13:03:08.0546 3584 clr_optimization_v2.0.50727_32 (7fa87325900183197bc9710d1ce4c9fa) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:03:08.0578 3584 clr_optimization_v2.0.50727_32 - ok
13:03:08.0609 3584 CmdIde - ok
13:03:08.0640 3584 COMSysApp - ok
13:03:08.0687 3584 Cpqarray - ok
13:03:08.0750 3584 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
13:03:09.0000 3584 CryptSvc - ok
13:03:09.0031 3584 dac2w2k - ok
13:03:09.0062 3584 dac960nt - ok
13:03:09.0125 3584 DCamUSBSQTECH (d6a3a8524d8c7e29f073c77d09539a74) C:\WINDOWS\system32\Drivers\SQcaptur.sys
13:03:09.0140 3584 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - warning
13:03:09.0140 3584 DCamUSBSQTECH - detected UnsignedFile.Multi.Generic (1)
13:03:09.0234 3584 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
13:03:09.0312 3584 DcomLaunch - ok
13:03:09.0375 3584 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
13:03:09.0625 3584 Dhcp - ok
13:03:09.0687 3584 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
13:03:09.0921 3584 Disk - ok
13:03:09.0953 3584 dmadmin - ok
13:03:10.0078 3584 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
13:03:10.0375 3584 dmboot - ok
13:03:10.0421 3584 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
13:03:10.0671 3584 dmio - ok
13:03:10.0734 3584 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
13:03:10.0984 3584 dmload - ok
13:03:11.0046 3584 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
13:03:11.0281 3584 dmserver - ok
13:03:11.0343 3584 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
13:03:11.0609 3584 DMusic - ok
13:03:11.0671 3584 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
13:03:11.0734 3584 Dnscache - ok
13:03:11.0781 3584 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
13:03:12.0031 3584 Dot3svc - ok
13:03:12.0046 3584 dpti2o - ok
13:03:12.0093 3584 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
13:03:12.0328 3584 drmkaud - ok
13:03:12.0375 3584 dvd_2K (800de2dfa19db3fd87aa95308ba0c17b) C:\WINDOWS\system32\drivers\dvd_2K.sys
13:03:12.0468 3584 dvd_2K ( UnsignedFile.Multi.Generic ) - warning
13:03:12.0468 3584 dvd_2K - detected UnsignedFile.Multi.Generic (1)
13:03:12.0515 3584 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
13:03:12.0796 3584 EapHost - ok
13:03:12.0859 3584 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
13:03:13.0156 3584 ERSvc - ok
13:03:13.0203 3584 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
13:03:13.0296 3584 Eventlog - ok
13:03:13.0390 3584 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll
13:03:13.0484 3584 EventSystem - ok
13:03:13.0531 3584 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
13:03:13.0828 3584 Fastfat - ok
13:03:13.0906 3584 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
13:03:14.0000 3584 FastUserSwitchingCompatibility - ok
13:03:14.0078 3584 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
13:03:14.0359 3584 Fax - ok
13:03:14.0421 3584 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
13:03:14.0718 3584 Fdc - ok
13:03:14.0765 3584 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
13:03:15.0046 3584 FETNDIS - ok
13:03:15.0093 3584 FETNDISB (95bc4d8493fe30312f5e1ab57ef36083) C:\WINDOWS\system32\DRIVERS\dlkfet5b.sys
13:03:15.0187 3584 FETNDISB - ok
13:03:15.0250 3584 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
13:03:15.0531 3584 Fips - ok
13:03:15.0578 3584 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
13:03:15.0875 3584 Flpydisk - ok
13:03:15.0921 3584 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
13:03:16.0218 3584 FltMgr - ok
13:03:16.0312 3584 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
13:03:16.0359 3584 FontCache3.0.0.0 - ok
13:03:16.0421 3584 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:03:16.0718 3584 Fs_Rec - ok
13:03:16.0781 3584 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:03:17.0015 3584 Ftdisk - ok
13:03:17.0062 3584 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
13:03:17.0093 3584 GEARAspiWDM - ok
13:03:17.0156 3584 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:03:17.0406 3584 Gpc - ok
13:03:17.0515 3584 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:03:17.0765 3584 helpsvc - ok
13:03:17.0828 3584 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
13:03:18.0078 3584 HidServ - ok
13:03:18.0125 3584 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
13:03:18.0375 3584 HidUsb - ok
13:03:18.0437 3584 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
13:03:18.0687 3584 hkmsvc - ok
13:03:18.0718 3584 hpn - ok
13:03:18.0750 3584 hpt3xx - ok
13:03:18.0828 3584 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
13:03:18.0890 3584 HTTP - ok
13:03:18.0937 3584 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
13:03:19.0187 3584 HTTPFilter - ok
13:03:19.0203 3584 i2omgmt - ok
13:03:19.0234 3584 i2omp - ok
13:03:19.0281 3584 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
13:03:19.0515 3584 i8042prt - ok
13:03:19.0609 3584 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:03:19.0640 3584 IDriverT ( UnsignedFile.Multi.Generic ) - warning
13:03:19.0640 3584 IDriverT - detected UnsignedFile.Multi.Generic (1)
13:03:19.0843 3584 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:03:19.0921 3584 idsvc - ok
13:03:19.0984 3584 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys
13:03:20.0234 3584 Imapi - ok
13:03:20.0296 3584 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\Imapi.exe
13:03:20.0546 3584 ImapiService - ok
13:03:20.0593 3584 ini910u - ok
13:03:20.0625 3584 IntelIde - ok
13:03:20.0687 3584 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
13:03:20.0921 3584 intelppm - ok
13:03:21.0015 3584 Intels51 (eb6d8e9cd813596b6d59d878337a4998) C:\WINDOWS\system32\DRIVERS\Intels51.sys
13:03:21.0093 3584 Intels51 - ok
13:03:21.0125 3584 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
13:03:21.0375 3584 ip6fw - ok
13:03:21.0437 3584 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:03:21.0671 3584 IpFilterDriver - ok
13:03:21.0734 3584 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:03:21.0968 3584 IpInIp - ok
13:03:22.0015 3584 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:03:22.0265 3584 IpNat - ok
13:03:22.0406 3584 iPod Service (8f610078437a459948480407f4db91ea) C:\Program Files\iPod\bin\iPodService.exe
13:03:22.0453 3584 iPod Service - ok
13:03:22.0531 3584 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:03:22.0828 3584 IPSec - ok
13:03:22.0875 3584 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
13:03:23.0062 3584 IRENUM - ok
13:03:23.0109 3584 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:03:23.0390 3584 isapnp - ok
13:03:23.0453 3584 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:03:23.0750 3584 Kbdclass - ok
13:03:23.0812 3584 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
13:03:24.0109 3584 kmixer - ok
13:03:24.0171 3584 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
13:03:24.0265 3584 KSecDD - ok
13:03:24.0328 3584 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
13:03:24.0421 3584 lanmanserver - ok
13:03:24.0484 3584 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
13:03:24.0562 3584 lanmanworkstation - ok
13:03:24.0593 3584 lbrtfdc - ok
13:03:24.0703 3584 LexBceS (2a125981bb23f0a023255d39b7e1c25e) C:\WINDOWS\system32\LEXBCES.EXE
13:03:24.0765 3584 LexBceS ( UnsignedFile.Multi.Generic ) - warning
13:03:24.0765 3584 LexBceS - detected UnsignedFile.Multi.Generic (1)
13:03:24.0843 3584 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
13:03:25.0156 3584 LmHosts - ok
13:03:25.0187 3584 LXARScan - ok
13:03:25.0203 3584 lxcz_device - ok
13:03:25.0250 3584 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
13:03:25.0546 3584 Messenger - ok
13:03:25.0890 3584 Microsoft SharePoint Workspace Audit Service - ok
13:03:25.0968 3584 mmc_2K (0a35ad036de912858a1c5e9637840724) C:\WINDOWS\system32\drivers\mmc_2K.sys
13:03:26.0031 3584 mmc_2K ( UnsignedFile.Multi.Generic ) - warning
13:03:26.0031 3584 mmc_2K - detected UnsignedFile.Multi.Generic (1)
13:03:26.0093 3584 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
13:03:26.0390 3584 mnmdd - ok
13:03:26.0453 3584 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe
13:03:26.0734 3584 mnmsrvc - ok
13:03:26.0796 3584 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
13:03:27.0078 3584 Modem - ok
13:03:27.0156 3584 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
13:03:27.0453 3584 MODEMCSA - ok
13:03:27.0515 3584 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:03:27.0828 3584 Mouclass - ok
13:03:27.0875 3584 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
13:03:28.0171 3584 mouhid - ok
13:03:28.0218 3584 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
13:03:28.0531 3584 MountMgr - ok
13:03:28.0593 3584 mr7910 (e3274b2b7bbd44391e84d244e8bcc555) C:\WINDOWS\system32\DRIVERS\mr7910.sys
13:03:28.0718 3584 mr7910 - ok
13:03:28.0734 3584 mraid35x - ok
13:03:28.0843 3584 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:03:29.0140 3584 MRxDAV - ok
13:03:29.0234 3584 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
13:03:29.0343 3584 MRxSmb - ok
13:03:29.0390 3584 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe
13:03:29.0703 3584 MSDTC - ok
13:03:29.0750 3584 MSDV (1477849772712bac69c144dcf2c9ce81) C:\WINDOWS\system32\DRIVERS\msdv.sys
13:03:30.0000 3584 MSDV - ok
13:03:30.0031 3584 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
13:03:30.0281 3584 Msfs - ok
13:03:30.0296 3584 MSIServer - ok
13:03:30.0343 3584 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:03:30.0593 3584 MSKSSRV - ok
13:03:30.0625 3584 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:03:30.0875 3584 MSPCLOCK - ok
13:03:30.0921 3584 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
13:03:31.0171 3584 MSPQM - ok
13:03:31.0218 3584 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:03:31.0453 3584 mssmbios - ok
13:03:31.0500 3584 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
13:03:31.0750 3584 MSTEE - ok
13:03:31.0796 3584 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
13:03:31.0828 3584 Mup - ok
13:03:31.0890 3584 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
13:03:32.0140 3584 NABTSFEC - ok
13:03:32.0218 3584 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
13:03:32.0468 3584 napagent - ok
13:03:32.0578 3584 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
13:03:32.0875 3584 NDIS - ok
13:03:32.0906 3584 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
13:03:33.0218 3584 NdisIP - ok
13:03:33.0265 3584 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:03:33.0359 3584 NdisTapi - ok
13:03:33.0421 3584 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:03:33.0718 3584 Ndisuio - ok
13:03:33.0765 3584 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:03:34.0062 3584 NdisWan - ok
13:03:34.0109 3584 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
13:03:34.0203 3584 NDProxy - ok
13:03:34.0265 3584 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
13:03:34.0562 3584 NetBIOS - ok
13:03:34.0625 3584 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
13:03:34.0921 3584 NetBT - ok
13:03:34.0968 3584 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
13:03:35.0281 3584 NetDDE - ok
13:03:35.0296 3584 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
13:03:35.0593 3584 NetDDEdsdm - ok
13:03:35.0656 3584 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
13:03:35.0953 3584 Netlogon - ok
13:03:36.0031 3584 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
13:03:36.0328 3584 Netman - ok
13:03:36.0375 3584 NETMDUSB (986acdece933131288f1957dc359865f) C:\WINDOWS\system32\Drivers\NETMDUSB.sys
13:03:36.0468 3584 NETMDUSB - ok
13:03:36.0578 3584 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:03:36.0671 3584 NetTcpPortSharing - ok
13:03:36.0718 3584 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
13:03:37.0000 3584 NIC1394 - ok
13:03:37.0062 3584 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
13:03:37.0171 3584 Nla - ok
13:03:37.0234 3584 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
13:03:37.0531 3584 Npfs - ok
13:03:37.0640 3584 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
13:03:37.0968 3584 Ntfs - ok
13:03:38.0015 3584 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
13:03:38.0296 3584 NtLmSsp - ok
13:03:38.0390 3584 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
13:03:38.0687 3584 NtmsSvc - ok
13:03:38.0734 3584 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
13:03:39.0015 3584 Null - ok
13:03:39.0062 3584 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:03:39.0343 3584 NwlnkFlt - ok
13:03:39.0375 3584 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:03:39.0671 3584 NwlnkFwd - ok
13:03:39.0734 3584 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
13:03:40.0031 3584 ohci1394 - ok
13:03:40.0140 3584 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:03:40.0234 3584 ose - ok
13:03:40.0781 3584 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:03:41.0187 3584 osppsvc - ok
13:03:41.0359 3584 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
13:03:41.0656 3584 Parport - ok
13:03:41.0703 3584 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
13:03:41.0984 3584 PartMgr - ok
13:03:42.0046 3584 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
13:03:42.0328 3584 ParVdm - ok
13:03:42.0359 3584 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
13:03:42.0656 3584 PCI - ok
13:03:42.0671 3584 PCIDump - ok
13:03:42.0718 3584 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
13:03:43.0046 3584 PCIIde - ok
13:03:43.0109 3584 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
13:03:43.0390 3584 Pcmcia - ok
13:03:43.0421 3584 PDCOMP - ok
13:03:43.0437 3584 PDFRAME - ok
13:03:43.0468 3584 PDRELI - ok
13:03:43.0484 3584 PDRFRAME - ok
13:03:43.0500 3584 perc2 - ok
13:03:43.0531 3584 perc2hib - ok
13:03:43.0625 3584 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
13:03:43.0718 3584 PlugPlay - ok
13:03:43.0781 3584 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
13:03:44.0062 3584 PolicyAgent - ok
13:03:44.0109 3584 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:03:44.0406 3584 PptpMiniport - ok
13:03:44.0453 3584 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
13:03:44.0750 3584 Processor - ok
13:03:44.0765 3584 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
13:03:45.0046 3584 ProtectedStorage - ok
13:03:45.0093 3584 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
13:03:45.0390 3584 PSched - ok
13:03:45.0437 3584 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:03:45.0718 3584 Ptilink - ok
13:03:45.0781 3584 pwd_2K (1840112f3f3b7ece84dbbd93a70c4135) C:\WINDOWS\system32\drivers\pwd_2K.sys
13:03:45.0859 3584 pwd_2K ( UnsignedFile.Multi.Generic ) - warning
13:03:45.0859 3584 pwd_2K - detected UnsignedFile.Multi.Generic (1)
13:03:45.0875 3584 ql1080 - ok
13:03:45.0906 3584 Ql10wnt - ok
13:03:45.0921 3584 ql12160 - ok
13:03:45.0953 3584 ql1240 - ok
13:03:45.0984 3584 ql1280 - ok
13:03:46.0031 3584 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:03:46.0296 3584 RasAcd - ok
13:03:46.0359 3584 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
13:03:46.0656 3584 RasAuto - ok
13:03:46.0687 3584 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:03:46.0968 3584 Rasl2tp - ok
13:03:47.0046 3584 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
13:03:47.0328 3584 RasMan - ok
13:03:47.0390 3584 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:03:47.0687 3584 RasPppoe - ok
13:03:47.0718 3584 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
13:03:48.0000 3584 Raspti - ok
13:03:48.0109 3584 RaySatxsi4_2Server - ok
13:03:48.0171 3584 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:03:48.0468 3584 Rdbss - ok
13:03:48.0484 3584 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:03:48.0781 3584 RDPCDD - ok
13:03:48.0859 3584 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
13:03:48.0953 3584 RDPWD - ok
13:03:49.0015 3584 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
13:03:49.0296 3584 RDSessMgr - ok
13:03:49.0359 3584 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
13:03:49.0656 3584 redbook - ok
13:03:49.0703 3584 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
13:03:50.0000 3584 RemoteAccess - ok
13:03:50.0125 3584 RichVideo (4d05898896ec49cf663dda61041ab096) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
13:03:50.0203 3584 RichVideo - ok
13:03:50.0265 3584 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\WINDOWS\system32\Drivers\RimUsb.sys
13:03:50.0359 3584 RimUsb - ok
13:03:50.0421 3584 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
13:03:50.0515 3584 RimVSerPort - ok
13:03:50.0562 3584 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
13:03:50.0843 3584 ROOTMODEM - ok
13:03:50.0906 3584 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe
13:03:51.0187 3584 RpcLocator - ok
13:03:51.0281 3584 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
13:03:51.0390 3584 RpcSs - ok
13:03:51.0453 3584 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe
13:03:51.0734 3584 RSVP - ok
13:03:51.0781 3584 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
13:03:52.0062 3584 SamSs - ok
13:03:52.0156 3584 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
13:03:52.0234 3584 SASDIFSV - ok
13:03:52.0265 3584 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
13:03:52.0343 3584 SASKUTIL - ok
13:03:52.0406 3584 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys
13:03:52.0703 3584 sbp2port - ok
13:03:52.0765 3584 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
13:03:53.0093 3584 SCardSvr - ok
13:03:53.0187 3584 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
13:03:53.0484 3584 Schedule - ok
13:03:53.0546 3584 sdcplh (b7ea2f12416693d2d9bffaaa5eff7037) C:\WINDOWS\system32\drivers\sdcplh.sys
13:03:53.0609 3584 sdcplh ( UnsignedFile.Multi.Generic ) - warning
13:03:53.0609 3584 sdcplh - detected UnsignedFile.Multi.Generic (1)
13:03:53.0656 3584 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:03:53.0843 3584 Secdrv - ok
13:03:53.0906 3584 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
13:03:54.0203 3584 seclogon - ok
13:03:54.0250 3584 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
13:03:54.0546 3584 SENS - ok
13:03:54.0593 3584 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
13:03:54.0843 3584 serenum - ok
13:03:54.0890 3584 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
13:03:55.0140 3584 Serial - ok
13:03:55.0218 3584 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
13:03:55.0484 3584 Sfloppy - ok
13:03:55.0562 3584 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
13:03:55.0828 3584 SharedAccess - ok
13:03:55.0890 3584 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
13:03:55.0921 3584 ShellHWDetection - ok
13:03:55.0953 3584 Simbad - ok
13:03:56.0000 3584 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
13:03:56.0234 3584 SLIP - ok
13:03:56.0343 3584 smwdm (b911c822922cf62df83ad36d5c9775cc) C:\WINDOWS\system32\drivers\smwdm.sys
13:03:56.0390 3584 smwdm - ok
13:03:56.0437 3584 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
13:03:56.0687 3584 SONYPVU1 - ok
13:03:56.0718 3584 Sparrow - ok
13:03:56.0765 3584 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
13:03:57.0000 3584 splitter - ok
13:03:57.0125 3584 spmd (2ae8ff8a36708452157ce101fd57ef3e) C:\WINDOWS\System32\spm\spmd.exe
13:03:57.0140 3584 spmd ( UnsignedFile.Multi.Generic ) - warning
13:03:57.0140 3584 spmd - detected UnsignedFile.Multi.Generic (1)
13:03:57.0187 3584 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
13:03:57.0218 3584 Spooler - ok
13:03:57.0296 3584 SPTISRV - ok
13:03:57.0343 3584 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
13:03:57.0484 3584 sr - ok
13:03:57.0546 3584 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll
13:03:57.0687 3584 srservice - ok
13:03:57.0765 3584 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
13:03:57.0843 3584 Srv - ok
13:03:57.0906 3584 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
13:03:58.0046 3584 SSDPSRV - ok
13:03:58.0125 3584 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
13:03:58.0390 3584 stisvc - ok
13:03:58.0421 3584 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
13:03:58.0671 3584 streamip - ok
13:03:58.0718 3584 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
13:03:58.0953 3584 swenum - ok
13:03:59.0015 3584 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
13:03:59.0265 3584 swmidi - ok
13:03:59.0296 3584 SwPrv - ok
13:03:59.0328 3584 symc810 - ok
13:03:59.0359 3584 symc8xx - ok
13:03:59.0375 3584 sym_hi - ok
13:03:59.0390 3584 sym_u3 - ok
13:03:59.0453 3584 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
13:03:59.0703 3584 sysaudio - ok
13:03:59.0765 3584 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
13:04:00.0031 3584 SysmonLog - ok
13:04:00.0093 3584 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
13:04:00.0343 3584 TapiSrv - ok
13:04:00.0437 3584 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:04:00.0500 3584 Tcpip - ok
13:04:00.0546 3584 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
13:04:00.0781 3584 TDPIPE - ok
13:04:00.0812 3584 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
13:04:01.0062 3584 TDTCP - ok
13:04:01.0125 3584 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
13:04:01.0359 3584 TermDD - ok
13:04:01.0437 3584 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
13:04:01.0687 3584 TermService - ok
13:04:01.0750 3584 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
13:04:01.0781 3584 Themes - ok
13:04:01.0921 3584 TomTomHOMEService (39bd95a9fe72aaf5c675ad146be456a9) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
13:04:01.0953 3584 TomTomHOMEService - ok
13:04:01.0968 3584 TosIde - ok
13:04:02.0031 3584 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
13:04:02.0281 3584 TrkWks - ok
13:04:02.0359 3584 UdfReadr_xp (e1b5bfba7f1cde1fc28934639e83b3cf) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys
13:04:02.0390 3584 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - warning
13:04:02.0390 3584 UdfReadr_xp - detected UnsignedFile.Multi.Generic (1)
13:04:02.0453 3584 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
13:04:02.0703 3584 Udfs - ok
13:04:02.0718 3584 ultra - ok
13:04:02.0765 3584 UMWdf (ab0a7ca90d9e3d6a193905dc1715ded0) C:\WINDOWS\System32\wdfmgr.exe
13:04:02.0812 3584 UMWdf - ok
13:04:02.0906 3584 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
13:04:03.0171 3584 Update - ok
13:04:03.0421 3584 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
13:04:03.0625 3584 upnphost - ok
13:04:03.0671 3584 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
13:04:04.0000 3584 UPS - ok
13:04:04.0140 3584 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
13:04:04.0250 3584 USBAAPL - ok
13:04:04.0515 3584 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
13:04:04.0828 3584 usbaudio - ok
13:04:04.0859 3584 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
13:04:05.0171 3584 usbccgp - ok
13:04:05.0234 3584 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
13:04:05.0531 3584 usbehci - ok
13:04:05.0578 3584 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:04:05.0875 3584 usbhub - ok
13:04:05.0921 3584 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
13:04:06.0218 3584 usbprint - ok
13:04:06.0265 3584 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
13:04:06.0578 3584 usbscan - ok
13:04:06.0609 3584 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:04:06.0906 3584 USBSTOR - ok
13:04:06.0953 3584 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
13:04:07.0250 3584 usbuhci - ok
13:04:07.0281 3584 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
13:04:07.0578 3584 VgaSave - ok
13:04:07.0593 3584 ViaIde - ok
13:04:07.0656 3584 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
13:04:07.0953 3584 VolSnap - ok
13:04:08.0046 3584 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
13:04:08.0234 3584 VSS - ok
13:04:08.0468 3584 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
13:04:08.0562 3584 vToolbarUpdater11.2.0 - ok
13:04:08.0640 3584 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\System32\w32time.dll
13:04:08.0890 3584 W32Time - ok
13:04:08.0984 3584 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:04:09.0234 3584 Wanarp - ok
13:04:09.0296 3584 wanatw (ba1d9278448cb26152a18b6a06b61ea3) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
13:04:09.0328 3584 wanatw - ok
13:04:09.0390 3584 WANMiniportService (4dc56a5f4614bf123251d5ae54f914fd) C:\WINDOWS\wanmpsvc.exe
13:04:09.0421 3584 WANMiniportService ( UnsignedFile.Multi.Generic ) - warning
13:04:09.0421 3584 WANMiniportService - detected UnsignedFile.Multi.Generic (1)
13:04:09.0453 3584 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\WINDOWS\system32\DRIVERS\wdcsam.sys
13:04:09.0500 3584 WDC_SAM - ok
13:04:09.0593 3584 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
13:04:09.0640 3584 Wdf01000 - ok
13:04:09.0671 3584 WDICA - ok
13:04:09.0718 3584 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
13:04:09.0968 3584 wdmaud - ok
13:04:10.0015 3584 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
13:04:10.0281 3584 WebClient - ok
13:04:10.0375 3584 WinDefend (f45dd1e1365d857dd08bc23563370d0e) C:\Program Files\Windows Defender\MsMpEng.exe
13:04:10.0406 3584 WinDefend - ok
13:04:10.0500 3584 WinDriver6 (097a8291df541f9b9af2c500797cdcaa) C:\WINDOWS\system32\drivers\windrvr6.sys
13:04:10.0546 3584 WinDriver6 - ok
13:04:10.0656 3584 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
13:04:10.0890 3584 winmgmt - ok
13:04:11.0125 3584 wlidsvc (d9250b31b353ee3322c1cad411997e38) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:04:11.0250 3584 wlidsvc - ok
13:04:11.0390 3584 WmdmPmSN (140ef97b64f560fd78643cae2cdad838) C:\WINDOWS\System32\mspmsnsv.dll
13:04:11.0421 3584 WmdmPmSN - ok
13:04:11.0562 3584 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe
13:04:11.0812 3584 WmiApSrv - ok
13:04:11.0859 3584 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
13:04:12.0109 3584 wscsvc - ok
13:04:12.0187 3584 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
13:04:12.0421 3584 WSTCODEC - ok
13:04:12.0468 3584 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
13:04:12.0718 3584 wuauserv - ok
13:04:12.0828 3584 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
13:04:13.0093 3584 WZCSVC - ok
13:04:13.0156 3584 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
13:04:13.0390 3584 xmlprov - ok
13:04:13.0468 3584 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
13:04:14.0328 3584 \Device\Harddisk0\DR0 - ok
13:04:14.0359 3584 Boot (0x1200) (0879db9c2d2ee0c2762b1b9cb813eec5) \Device\Harddisk0\DR0\Partition0
13:04:14.0359 3584 \Device\Harddisk0\DR0\Partition0 - ok
13:04:14.0375 3584 ============================================================
13:04:14.0375 3584 Scan finished
13:04:14.0375 3584 ============================================================
13:04:14.0406 2956 Detected object count: 14
13:04:14.0406 2956 Actual detected object count: 14
13:04:25.0578 2956 ASCTRM ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0578 2956 ASCTRM ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0578 2956 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0578 2956 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0578 2956 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0578 2956 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0578 2956 cdudf_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0578 2956 cdudf_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0593 2956 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0593 2956 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0593 2956 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0593 2956 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0593 2956 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0593 2956 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0593 2956 LexBceS ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0593 2956 LexBceS ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0609 2956 mmc_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0609 2956 mmc_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0609 2956 pwd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0609 2956 pwd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0625 2956 sdcplh ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0625 2956 sdcplh ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0625 2956 spmd ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0625 2956 spmd ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0625 2956 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0625 2956 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:25.0625 2956 WANMiniportService ( UnsignedFile.Multi.Generic ) - skipped by user
13:04:25.0625 2956 WANMiniportService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:04:43.0015 3200 ============================================================
13:04:43.0015 3200 Scan started
13:04:43.0015 3200 Mode: Manual; SigCheck; TDLFS;
13:04:43.0015 3200 ============================================================
13:04:48.0406 3200 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
13:04:48.0453 3200 !SASCORE - ok
13:04:49.0171 3200 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
13:04:49.0484 3200 61883 - ok
13:04:49.0500 3200 8effc456-ef98-4b05-b868-5d87787bf223 - ok
13:04:49.0531 3200 Abiosdsk - ok
13:04:49.0562 3200 abp480n5 - ok
13:04:50.0609 3200 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:04:51.0031 3200 ACPI - ok
13:04:51.0093 3200 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
13:04:51.0312 3200 ACPIEC - ok
13:04:51.0343 3200 adpu160m - ok
13:04:51.0468 3200 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
13:04:51.0718 3200 aec - ok
13:04:51.0812 3200 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
13:04:51.0843 3200 AFD - ok
13:04:51.0953 3200 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
13:04:52.0203 3200 agp440 - ok
13:04:52.0234 3200 Aha154x - ok
13:04:52.0250 3200 aic78u2 - ok
13:04:52.0296 3200 aic78xx - ok
13:04:52.0343 3200 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
13:04:52.0593 3200 Alerter - ok
13:04:52.0671 3200 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
13:04:52.0796 3200 ALG - ok
13:04:52.0812 3200 AliIde - ok
13:04:52.0843 3200 amsint - ok
13:04:52.0906 3200 AN983 (116bff96077a4a724e0aab800525ceb5) C:\WINDOWS\system32\DRIVERS\AN983.sys
13:04:53.0156 3200 AN983 - ok
13:04:53.0312 3200 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:04:53.0343 3200 Apple Mobile Device - ok
13:04:53.0359 3200 AppMgmt - ok
13:04:53.0437 3200 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
13:04:53.0687 3200 Arp1394 - ok
13:04:53.0703 3200 asc - ok
13:04:53.0734 3200 asc3350p - ok
13:04:53.0765 3200 asc3550 - ok
13:04:53.0875 3200 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
13:04:53.0937 3200 ASCTRM ( UnsignedFile.Multi.Generic ) - warning
13:04:53.0937 3200 ASCTRM - detected UnsignedFile.Multi.Generic (1)
13:04:54.0046 3200 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:04:54.0078 3200 aspnet_state - ok
13:04:54.0140 3200 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:04:54.0468 3200 AsyncMac - ok
13:04:54.0546 3200 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
13:04:54.0859 3200 atapi - ok
13:04:54.0890 3200 Atdisk - ok
13:04:55.0687 3200 ati2mtag (9643c9aa768257a617a3085f378b14ec) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
13:04:55.0796 3200 ati2mtag - ok
13:04:55.0828 3200 atimtag - ok
13:04:56.0140 3200 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:04:56.0375 3200 Atmarpc - ok
13:04:56.0546 3200 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
13:04:56.0781 3200 AudioSrv - ok
13:04:56.0921 3200 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
13:04:57.0156 3200 audstub - ok
13:04:57.0187 3200 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
13:04:57.0421 3200 Avc - ok
13:05:06.0875 3200 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files\AVG\AVG2012\avgidsagent.exe
13:05:08.0609 3200 AVGIDSAgent - ok
13:05:09.0375 3200 AVGIDSDriver (1074f787080068c71303b61fae7e7ca4) C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
13:05:09.0406 3200 AVGIDSDriver - ok
13:05:09.0500 3200 AVGIDSFilter (61a7e0b02f82cff3db2445bbe50b3589) C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
13:05:09.0531 3200 AVGIDSFilter - ok
13:05:09.0703 3200 AVGIDSHX (d63d83659eedf60b3a3e620281a888e5) C:\WINDOWS\system32\DRIVERS\avgidshx.sys
13:05:09.0734 3200 AVGIDSHX - ok
13:05:09.0843 3200 AVGIDSShim (baf975b72062f53d327788e99d64197e) C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
13:05:09.0875 3200 AVGIDSShim - ok
13:05:10.0187 3200 Avgldx86 (dda6a2a18841e4c9172bb85958b8d948) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
13:05:10.0218 3200 Avgldx86 - ok
13:05:10.0406 3200 Avgmfx86 (ccdd61545aaea265977e4b1efdc74e8c) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
13:05:10.0437 3200 Avgmfx86 - ok
13:05:10.0546 3200 Avgrkx86 (1fd90b28d2c3100bf4500199c8ad6358) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
13:05:10.0562 3200 Avgrkx86 - ok
13:05:13.0250 3200 Avgtdix (1263f2554ace925c237a40b4c568d815) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
13:05:13.0296 3200 Avgtdix - ok
13:05:14.0015 3200 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
13:05:14.0046 3200 avgwd - ok
13:05:14.0093 3200 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
13:05:14.0609 3200 Beep - ok
13:05:14.0718 3200 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
13:05:14.0968 3200 BITS - ok
13:05:15.0078 3200 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files\Bonjour\mDNSResponder.exe
13:05:15.0109 3200 Bonjour Service - ok
13:05:15.0187 3200 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
13:05:15.0406 3200 Browser - ok
13:05:15.0453 3200 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
13:05:15.0671 3200 cbidf2k - ok
13:05:15.0703 3200 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
13:05:15.0937 3200 CCDECODE - ok
13:05:15.0953 3200 cd20xrnt - ok
13:05:16.0062 3200 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
13:05:16.0281 3200 Cdaudio - ok
13:05:16.0328 3200 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
13:05:16.0562 3200 Cdfs - ok
13:05:16.0625 3200 Cdr4_xp (991ff38609ecb64e876f1301d30e6e0b) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
13:05:16.0625 3200 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning
13:05:16.0625 3200 Cdr4_xp - detected UnsignedFile.Multi.Generic (1)
13:05:16.0656 3200 Cdralw2k (6123da1ec51f4f016554535b88befbf6) C:\WINDOWS\system32\drivers\Cdralw2k.sys
13:05:16.0671 3200 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning
13:05:16.0671 3200 Cdralw2k - detected UnsignedFile.Multi.Generic (1)
13:05:16.0718 3200 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:05:16.0937 3200 Cdrom - ok
13:05:17.0000 3200 cdudf_xp (8c7746acde6225a46b58ed7ae09ec166) C:\WINDOWS\system32\drivers\cdudf_xp.sys
13:05:17.0015 3200 cdudf_xp ( UnsignedFile.Multi.Generic ) - warning
13:05:17.0015 3200 cdudf_xp - detected UnsignedFile.Multi.Generic (1)
13:05:17.0031 3200 Changer - ok
13:05:17.0078 3200 cisvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\System32\cisvc.exe
13:05:17.0296 3200 cisvc - ok
13:05:17.0343 3200 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
13:05:17.0578 3200 ClipSrv - ok
13:05:17.0656 3200 clr_optimization_v2.0.50727_32 (7fa87325900183197bc9710d1ce4c9fa) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:05:17.0687 3200 clr_optimization_v2.0.50727_32 - ok
13:05:17.0703 3200 CmdIde - ok
13:05:17.0734 3200 COMSysApp - ok
13:05:17.0781 3200 Cpqarray - ok
13:05:17.0843 3200 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
13:05:18.0078 3200 CryptSvc - ok
13:05:18.0093 3200 dac2w2k - ok
13:05:18.0125 3200 dac960nt - ok
13:05:18.0171 3200 DCamUSBSQTECH (d6a3a8524d8c7e29f073c77d09539a74) C:\WINDOWS\system32\Drivers\SQcaptur.sys
13:05:18.0171 3200 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - warning
13:05:18.0171 3200 DCamUSBSQTECH - detected UnsignedFile.Multi.Generic (1)
13:05:18.0265 3200 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
13:05:18.0312 3200 DcomLaunch - ok
13:05:18.0375 3200 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
13:05:18.0593 3200 Dhcp - ok
13:05:18.0656 3200 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
13:05:18.0890 3200 Disk - ok
13:05:18.0906 3200 dmadmin - ok
13:05:19.0015 3200 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
13:05:19.0281 3200 dmboot - ok
13:05:19.0328 3200 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
13:05:19.0562 3200 dmio - ok
13:05:19.0609 3200 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
13:05:19.0843 3200 dmload - ok
13:05:19.0890 3200 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
13:05:20.0109 3200 dmserver - ok
13:05:20.0156 3200 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
13:05:20.0375 3200 DMusic - ok
13:05:20.0453 3200 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
13:05:20.0484 3200 Dnscache - ok
13:05:20.0531 3200 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
13:05:20.0765 3200 Dot3svc - ok
13:05:20.0781 3200 dpti2o - ok
13:05:20.0843 3200 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
13:05:21.0062 3200 drmkaud - ok
13:05:21.0125 3200 dvd_2K (800de2dfa19db3fd87aa95308ba0c17b) C:\WINDOWS\system32\drivers\dvd_2K.sys
13:05:21.0125 3200 dvd_2K ( UnsignedFile.Multi.Generic ) - warning
13:05:21.0125 3200 dvd_2K - detected UnsignedFile.Multi.Generic (1)
13:05:21.0187 3200 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
13:05:21.0421 3200 EapHost - ok
13:05:21.0468 3200 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
13:05:21.0687 3200 ERSvc - ok
13:05:21.0734 3200 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
13:05:21.0765 3200 Eventlog - ok
13:05:21.0843 3200 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll
13:05:21.0875 3200 EventSystem - ok
13:05:21.0953 3200 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
13:05:22.0187 3200 Fastfat - ok
13:05:22.0250 3200 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
13:05:22.0281 3200 FastUserSwitchingCompatibility - ok
13:05:22.0343 3200 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
13:05:22.0593 3200 Fax - ok
13:05:22.0640 3200 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
13:05:22.0859 3200 Fdc - ok
13:05:22.0890 3200 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
13:05:23.0125 3200 FETNDIS - ok
13:05:23.0156 3200 FETNDISB (95bc4d8493fe30312f5e1ab57ef36083) C:\WINDOWS\system32\DRIVERS\dlkfet5b.sys
13:05:23.0187 3200 FETNDISB - ok
13:05:23.0250 3200 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
13:05:23.0468 3200 Fips - ok
13:05:23.0515 3200 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
13:05:23.0734 3200 Flpydisk - ok
13:05:23.0781 3200 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
13:05:24.0015 3200 FltMgr - ok
13:05:24.0125 3200 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
13:05:24.0140 3200 FontCache3.0.0.0 - ok
13:05:24.0203 3200 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:05:24.0421 3200 Fs_Rec - ok
13:05:24.0468 3200 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:05:24.0687 3200 Ftdisk - ok
13:05:24.0734 3200 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
13:05:24.0765 3200 GEARAspiWDM - ok
13:05:24.0828 3200 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:05:25.0046 3200 Gpc - ok
13:05:25.0156 3200 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:05:25.0390 3200 helpsvc - ok
13:05:25.0453 3200 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
13:05:25.0687 3200 HidServ - ok
13:05:25.0734 3200 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
13:05:25.0953 3200 HidUsb - ok
13:05:26.0000 3200 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
13:05:26.0234 3200 hkmsvc - ok
13:05:26.0250 3200 hpn - ok
13:05:26.0281 3200 hpt3xx - ok
13:05:26.0359 3200 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
13:05:26.0390 3200 HTTP - ok
13:05:26.0453 3200 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
13:05:26.0671 3200 HTTPFilter - ok
13:05:26.0703 3200 i2omgmt - ok
13:05:26.0734 3200 i2omp - ok
13:05:26.0781 3200 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
13:05:27.0015 3200 i8042prt - ok
13:05:27.0140 3200 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:05:27.0140 3200 IDriverT ( UnsignedFile.Multi.Generic ) - warning
13:05:27.0140 3200 IDriverT - detected UnsignedFile.Multi.Generic (1)
13:05:27.0312 3200 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:05:27.0406 3200 idsvc - ok
13:05:27.0453 3200 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys
13:05:27.0671 3200 Imapi - ok
13:05:27.0750 3200 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\Imapi.exe
13:05:27.0984 3200 ImapiService - ok
13:05:28.0015 3200 ini910u - ok
13:05:28.0062 3200 IntelIde - ok
13:05:28.0125 3200 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
13:05:28.0328 3200 intelppm - ok
13:05:28.0453 3200 Intels51 (eb6d8e9cd813596b6d59d878337a4998) C:\WINDOWS\system32\DRIVERS\Intels51.sys
13:05:28.0515 3200 Intels51 - ok
13:05:28.0546 3200 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
13:05:28.0765 3200 ip6fw - ok
13:05:29.0109 3200 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:05:29.0328 3200 IpFilterDriver - ok
13:05:29.0390 3200 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:05:29.0609 3200 IpInIp - ok
13:05:29.0687 3200 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:05:30.0078 3200 IpNat - ok
13:05:30.0500 3200 iPod Service (8f610078437a459948480407f4db91ea) C:\Program Files\iPod\bin\iPodService.exe
13:05:30.0546 3200 iPod Service - ok
13:05:30.0625 3200 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:05:30.0843 3200 IPSec - ok
13:05:30.0875 3200 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
13:05:31.0000 3200 IRENUM - ok
13:05:31.0062 3200 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:05:31.0281 3200 isapnp - ok
13:05:31.0328 3200 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:05:31.0546 3200 Kbdclass - ok
13:05:31.0609 3200 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
13:05:31.0843 3200 kmixer - ok
13:05:31.0906 3200 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
13:05:31.0937 3200 KSecDD - ok
13:05:32.0000 3200 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
13:05:32.0031 3200 lanmanserver - ok
13:05:32.0093 3200 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
13:05:32.0125 3200 lanmanworkstation - ok
13:05:32.0140 3200 lbrtfdc - ok
13:05:32.0250 3200 LexBceS (2a125981bb23f0a023255d39b7e1c25e) C:\WINDOWS\system32\LEXBCES.EXE
13:05:32.0265 3200 LexBceS ( UnsignedFile.Multi.Generic ) - warning
13:05:32.0265 3200 LexBceS - detected UnsignedFile.Multi.Generic (1)
13:05:32.0343 3200 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
13:05:32.0578 3200 LmHosts - ok
13:05:32.0609 3200 LXARScan - ok
13:05:32.0625 3200 lxcz_device - ok
13:05:32.0671 3200 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
13:05:32.0906 3200 Messenger - ok
13:05:33.0062 3200 Microsoft SharePoint Workspace Audit Service - ok
13:05:33.0125 3200 mmc_2K (0a35ad036de912858a1c5e9637840724) C:\WINDOWS\system32\drivers\mmc_2K.sys
13:05:33.0125 3200 mmc_2K ( UnsignedFile.Multi.Generic ) - warning
13:05:33.0125 3200 mmc_2K - detected UnsignedFile.Multi.Generic (1)
13:05:33.0187 3200 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
13:05:33.0421 3200 mnmdd - ok
13:05:33.0484 3200 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe
13:05:33.0703 3200 mnmsrvc - ok
13:05:33.0750 3200 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
13:05:33.0968 3200 Modem - ok
13:05:34.0031 3200 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
13:05:34.0234 3200 MODEMCSA - ok
13:05:34.0296 3200 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:05:34.0531 3200 Mouclass - ok
13:05:34.0578 3200 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
13:05:34.0796 3200 mouhid - ok
13:05:34.0843 3200 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
13:05:35.0062 3200 MountMgr - ok
13:05:35.0140 3200 mr7910 (e3274b2b7bbd44391e84d244e8bcc555) C:\WINDOWS\system32\DRIVERS\mr7910.sys
13:05:35.0156 3200 mr7910 - ok
13:05:35.0171 3200 mraid35x - ok
13:05:35.0234 3200 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:05:35.0484 3200 MRxDAV - ok
13:05:35.0593 3200 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
13:05:35.0640 3200 MRxSmb - ok
13:05:35.0687 3200 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe
13:05:35.0921 3200 MSDTC - ok
13:05:35.0984 3200 MSDV (1477849772712bac69c144dcf2c9ce81) C:\WINDOWS\system32\DRIVERS\msdv.sys
13:05:36.0218 3200 MSDV - ok
13:05:36.0265 3200 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
13:05:36.0500 3200 Msfs - ok
13:05:36.0515 3200 MSIServer - ok
13:05:36.0578 3200 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:05:36.0796 3200 MSKSSRV - ok
13:05:36.0828 3200 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:05:37.0062 3200 MSPCLOCK - ok
13:05:37.0078 3200 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
13:05:37.0312 3200 MSPQM - ok
13:05:37.0343 3200 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:05:37.0578 3200 mssmbios - ok
13:05:37.0625 3200 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
13:05:37.0859 3200 MSTEE - ok
13:05:37.0906 3200 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
13:05:37.0937 3200 Mup - ok
13:05:37.0984 3200 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
13:05:38.0218 3200 NABTSFEC - ok
13:05:38.0296 3200 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
13:05:38.0531 3200 napagent - ok
13:05:38.0609 3200 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
13:05:38.0828 3200 NDIS - ok
13:05:38.0875 3200 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
13:05:39.0109 3200 NdisIP - ok
13:05:39.0156 3200 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:05:39.0171 3200 NdisTapi - ok
13:05:39.0218 3200 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:05:39.0437 3200 Ndisuio - ok
13:05:39.0500 3200 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:05:39.0734 3200 NdisWan - ok
13:05:39.0796 3200 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
13:05:39.0812 3200 NDProxy - ok
13:05:39.0875 3200 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
13:05:40.0093 3200 NetBIOS - ok
13:05:40.0140 3200 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
13:05:40.0375 3200 NetBT - ok
13:05:40.0421 3200 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
13:05:40.0656 3200 NetDDE - ok
13:05:40.0671 3200 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
13:05:40.0906 3200 NetDDEdsdm - ok
13:05:40.0968 3200 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
13:05:41.0203 3200 Netlogon - ok
13:05:41.0265 3200 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
13:05:41.0500 3200 Netman - ok
13:05:41.0546 3200 NETMDUSB (986acdece933131288f1957dc359865f) C:\WINDOWS\system32\Drivers\NETMDUSB.sys
13:05:41.0562 3200 NETMDUSB - ok
13:05:41.0687 3200 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:05:41.0718 3200 NetTcpPortSharing - ok
13:05:41.0765 3200 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
13:05:42.0000 3200 NIC1394 - ok
13:05:42.0062 3200 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
13:05:42.0093 3200 Nla - ok
13:05:42.0140 3200 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
13:05:42.0375 3200 Npfs - ok
13:05:42.0500 3200 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
13:05:42.0750 3200 Ntfs - ok
13:05:42.0796 3200 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
13:05:43.0031 3200 NtLmSsp - ok
13:05:43.0125 3200 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
13:05:43.0359 3200 NtmsSvc - ok
13:05:43.0421 3200 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
13:05:43.0640 3200 Null - ok
13:05:43.0671 3200 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:05:43.0890 3200 NwlnkFlt - ok
13:05:43.0921 3200 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:05:44.0156 3200 NwlnkFwd - ok
13:05:44.0218 3200 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
13:05:44.0437 3200 ohci1394 - ok
13:05:44.0562 3200 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:05:44.0593 3200 ose - ok
13:05:45.0140 3200 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:05:45.0531 3200 osppsvc - ok
13:05:45.0703 3200 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
13:05:45.0937 3200 Parport - ok
13:05:46.0000 3200 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
13:05:46.0234 3200 PartMgr - ok
13:05:46.0265 3200 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
13:05:46.0500 3200 ParVdm - ok
13:05:46.0531 3200 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
13:05:46.0765 3200 PCI - ok
13:05:46.0781 3200 PCIDump - ok
13:05:46.0843 3200 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
13:05:47.0062 3200 PCIIde - ok
13:05:47.0109 3200 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
13:05:47.0343 3200 Pcmcia - ok
13:05:47.0375 3200 PDCOMP - ok
13:05:47.0390 3200 PDFRAME - ok
13:05:47.0421 3200 PDRELI - ok
13:05:47.0453 3200 PDRFRAME - ok
13:05:47.0468 3200 perc2 - ok
13:05:47.0515 3200 perc2hib - ok
13:05:47.0625 3200 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
13:05:47.0656 3200 PlugPlay - ok
13:05:47.0703 3200 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
13:05:47.0937 3200 PolicyAgent - ok
13:05:48.0000 3200 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:05:48.0234 3200 PptpMiniport - ok
13:05:48.0265 3200 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
13:05:48.0500 3200 Processor - ok
13:05:48.0515 3200 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
13:05:48.0750 3200 ProtectedStorage - ok
13:05:48.0796 3200 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
13:05:49.0015 3200 PSched - ok
13:05:49.0046 3200 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:05:49.0265 3200 Ptilink - ok
13:05:49.0328 3200 pwd_2K (1840112f3f3b7ece84dbbd93a70c4135) C:\WINDOWS\system32\drivers\pwd_2K.sys
13:05:49.0343 3200 pwd_2K ( UnsignedFile.Multi.Generic ) - warning
13:05:49.0343 3200 pwd_2K - detected UnsignedFile.Multi.Generic (1)
13:05:49.0359 3200 ql1080 - ok
13:05:49.0390 3200 Ql10wnt - ok
13:05:49.0421 3200 ql12160 - ok
13:05:49.0437 3200 ql1240 - ok
13:05:49.0468 3200 ql1280 - ok
13:05:49.0531 3200 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:05:49.0750 3200 RasAcd - ok
13:05:49.0781 3200 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
13:05:50.0015 3200 RasAuto - ok
13:05:50.0062 3200 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:05:50.0281 3200 Rasl2tp - ok
13:05:50.0359 3200 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
13:05:50.0593 3200 RasMan - ok
13:05:50.0640 3200 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:05:50.0875 3200 RasPppoe - ok
13:05:50.0906 3200 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
13:05:51.0125 3200 Raspti - ok
13:05:51.0234 3200 RaySatxsi4_2Server - ok
13:05:51.0328 3200 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:05:51.0546 3200 Rdbss - ok
13:05:51.0578 3200 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:05:51.0796 3200 RDPCDD - ok
13:05:51.0890 3200 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
13:05:51.0921 3200 RDPWD - ok
13:05:51.0984 3200 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
13:05:52.0203 3200 RDSessMgr - ok
13:05:52.0281 3200 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
13:05:52.0515 3200 redbook - ok
13:05:52.0562 3200 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
13:05:52.0796 3200 RemoteAccess - ok
13:05:52.0937 3200 RichVideo (4d05898896ec49cf663dda61041ab096) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
13:05:52.0968 3200 RichVideo - ok
13:05:53.0031 3200 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\WINDOWS\system32\Drivers\RimUsb.sys
13:05:53.0046 3200 RimUsb - ok
13:05:53.0109 3200 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
13:05:53.0140 3200 RimVSerPort - ok
13:05:53.0203 3200 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
13:05:53.0421 3200 ROOTMODEM - ok
13:05:53.0484 3200 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe
13:05:53.0718 3200 RpcLocator - ok
13:05:53.0781 3200 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
13:05:53.0828 3200 RpcSs - ok
13:05:53.0906 3200 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe
13:05:54.0125 3200 RSVP - ok
13:05:54.0187 3200 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
13:05:54.0421 3200 SamSs - ok
13:05:54.0515 3200 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
13:05:54.0531 3200 SASDIFSV - ok
13:05:54.0562 3200 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
13:05:54.0578 3200 SASKUTIL - ok
13:05:54.0671 3200 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys
13:05:54.0890 3200 sbp2port - ok
13:05:54.0953 3200 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
13:05:55.0187 3200 SCardSvr - ok
13:05:55.0265 3200 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
13:05:55.0500 3200 Schedule - ok
13:05:55.0546 3200 sdcplh (b7ea2f12416693d2d9bffaaa5eff7037) C:\WINDOWS\system32\drivers\sdcplh.sys
13:05:55.0546 3200 sdcplh ( UnsignedFile.Multi.Generic ) - warning
13:05:55.0562 3200 sdcplh - detected UnsignedFile.Multi.Generic (1)
13:05:55.0609 3200 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:05:55.0734 3200 Secdrv - ok
13:05:55.0765 3200 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
13:05:56.0000 3200 seclogon - ok
13:05:56.0031 3200 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
13:05:56.0265 3200 SENS - ok
13:05:56.0312 3200 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
13:05:56.0546 3200 serenum - ok
13:05:56.0593 3200 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
13:05:56.0828 3200 Serial - ok
13:05:56.0906 3200 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
13:05:57.0125 3200 Sfloppy - ok
13:05:57.0218 3200 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
13:05:57.0468 3200 SharedAccess - ok
13:05:57.0515 3200 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
13:05:57.0546 3200 ShellHWDetection - ok
13:05:57.0562 3200 Simbad - ok
13:05:57.0609 3200 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
13:05:57.0843 3200 SLIP - ok
13:05:57.0921 3200 smwdm (b911c822922cf62df83ad36d5c9775cc) C:\WINDOWS\system32\drivers\smwdm.sys
13:05:57.0984 3200 smwdm - ok
13:05:58.0046 3200 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
13:05:58.0265 3200 SONYPVU1 - ok
13:05:58.0281 3200 Sparrow - ok
13:05:58.0328 3200 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
13:05:58.0562 3200 splitter - ok
13:05:58.0656 3200 spmd (2ae8ff8a36708452157ce101fd57ef3e) C:\WINDOWS\System32\spm\spmd.exe
13:05:58.0671 3200 spmd ( UnsignedFile.Multi.Generic ) - warning
13:05:58.0671 3200 spmd - detected UnsignedFile.Multi.Generic (1)
13:05:58.0718 3200 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
13:05:58.0765 3200 Spooler - ok
13:05:58.0843 3200 SPTISRV - ok
13:05:58.0921 3200 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
13:05:59.0031 3200 sr - ok
13:05:59.0093 3200 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll
13:05:59.0203 3200 srservice - ok
13:05:59.0281 3200 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
13:05:59.0312 3200 Srv - ok
13:05:59.0390 3200 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
13:05:59.0515 3200 SSDPSRV - ok
13:05:59.0593 3200 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
13:05:59.0843 3200 stisvc - ok
13:05:59.0875 3200 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
13:06:00.0109 3200 streamip - ok
13:06:00.0140 3200 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
13:06:00.0375 3200 swenum - ok
13:06:00.0421 3200 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
13:06:00.0656 3200 swmidi - ok
13:06:00.0671 3200 SwPrv - ok
13:06:00.0718 3200 symc810 - ok
13:06:00.0734 3200 symc8xx - ok
13:06:00.0765 3200 sym_hi - ok
13:06:00.0781 3200 sym_u3 - ok
13:06:00.0843 3200 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
13:06:01.0078 3200 sysaudio - ok
13:06:01.0140 3200 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
13:06:01.0359 3200 SysmonLog - ok
13:06:01.0421 3200 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
13:06:01.0656 3200 TapiSrv - ok
13:06:01.0734 3200 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:06:01.0781 3200 Tcpip - ok
13:06:01.0828 3200 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
13:06:02.0062 3200 TDPIPE - ok
13:06:02.0093 3200 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
13:06:02.0312 3200 TDTCP - ok
13:06:02.0343 3200 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
13:06:02.0578 3200 TermDD - ok
13:06:02.0656 3200 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
13:06:02.0890 3200 TermService - ok
13:06:02.0937 3200 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
13:06:02.0968 3200 Themes - ok
13:06:03.0109 3200 TomTomHOMEService (39bd95a9fe72aaf5c675ad146be456a9) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
13:06:03.0125 3200 TomTomHOMEService - ok
13:06:03.0140 3200 TosIde - ok
13:06:03.0218 3200 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
13:06:03.0453 3200 TrkWks - ok
13:06:03.0531 3200 UdfReadr_xp (e1b5bfba7f1cde1fc28934639e83b3cf) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys
13:06:03.0546 3200 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - warning
13:06:03.0546 3200 UdfReadr_xp - detected UnsignedFile.Multi.Generic (1)
13:06:03.0625 3200 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
13:06:03.0859 3200 Udfs - ok
13:06:03.0875 3200 ultra - ok
13:06:03.0937 3200 UMWdf (ab0a7ca90d9e3d6a193905dc1715ded0) C:\WINDOWS\System32\wdfmgr.exe
13:06:03.0968 3200 UMWdf - ok
13:06:04.0046 3200 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
13:06:04.0296 3200 Update - ok
13:06:04.0343 3200 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
13:06:04.0468 3200 upnphost - ok
13:06:04.0515 3200 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
13:06:04.0750 3200 UPS - ok
13:06:04.0812 3200 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
13:06:04.0843 3200 USBAAPL - ok
13:06:04.0875 3200 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
13:06:05.0093 3200 usbaudio - ok
13:06:05.0125 3200 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
13:06:05.0359 3200 usbccgp - ok
13:06:05.0406 3200 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
13:06:05.0625 3200 usbehci - ok
13:06:05.0656 3200 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:06:05.0875 3200 usbhub - ok
13:06:05.0937 3200 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
13:06:06.0171 3200 usbprint - ok
13:06:06.0218 3200 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
13:06:06.0437 3200 usbscan - ok
13:06:06.0468 3200 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:06:06.0703 3200 USBSTOR - ok
13:06:06.0750 3200 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
13:06:06.0968 3200 usbuhci - ok
13:06:07.0015 3200 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
13:06:07.0250 3200 VgaSave - ok
13:06:07.0265 3200 ViaIde - ok
13:06:07.0312 3200 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
13:06:07.0546 3200 VolSnap - ok
13:06:07.0640 3200 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
13:06:07.0765 3200 VSS - ok
13:06:07.0968 3200 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
13:06:08.0046 3200 vToolbarUpdater11.2.0 - ok
13:06:08.0140 3200 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\System32\w32time.dll
13:06:08.0375 3200 W32Time - ok
13:06:08.0468 3200 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:06:08.0671 3200 Wanarp - ok
13:06:08.0718 3200 wanatw (ba1d9278448cb26152a18b6a06b61ea3) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
13:06:08.0750 3200 wanatw - ok
13:06:08.0812 3200 WANMiniportService (4dc56a5f4614bf123251d5ae54f914fd) C:\WINDOWS\wanmpsvc.exe
13:06:08.0828 3200 WANMiniportService ( UnsignedFile.Multi.Generic ) - warning
13:06:08.0828 3200 WANMiniportService - detected UnsignedFile.Multi.Generic (1)
13:06:08.0875 3200 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\WINDOWS\system32\DRIVERS\wdcsam.sys
13:06:08.0906 3200 WDC_SAM - ok
13:06:09.0015 3200 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
13:06:09.0062 3200 Wdf01000 - ok
13:06:09.0078 3200 WDICA - ok
13:06:09.0109 3200 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
13:06:09.0343 3200 wdmaud - ok
13:06:09.0406 3200 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
13:06:09.0640 3200 WebClient - ok
13:06:09.0750 3200 WinDefend (f45dd1e1365d857dd08bc23563370d0e) C:\Program Files\Windows Defender\MsMpEng.exe
13:06:09.0781 3200 WinDefend - ok
13:06:09.0859 3200 WinDriver6 (097a8291df541f9b9af2c500797cdcaa) C:\WINDOWS\system32\drivers\windrvr6.sys
13:06:09.0890 3200 WinDriver6 - ok
13:06:10.0000 3200 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
13:06:10.0218 3200 winmgmt - ok
13:06:10.0437 3200 wlidsvc (d9250b31b353ee3322c1cad411997e38) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:06:10.0609 3200 wlidsvc - ok
13:06:10.0765 3200 WmdmPmSN (140ef97b64f560fd78643cae2cdad838) C:\WINDOWS\System32\mspmsnsv.dll
13:06:10.0781 3200 WmdmPmSN - ok
13:06:10.0921 3200 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe
13:06:11.0156 3200 WmiApSrv - ok
13:06:11.0203 3200 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
13:06:11.0437 3200 wscsvc - ok
13:06:11.0531 3200 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
13:06:11.0750 3200 WSTCODEC - ok
13:06:11.0796 3200 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
13:06:12.0031 3200 wuauserv - ok
13:06:12.0125 3200 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
13:06:12.0375 3200 WZCSVC - ok
13:06:12.0437 3200 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
13:06:12.0671 3200 xmlprov - ok
13:06:12.0765 3200 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
13:06:13.0734 3200 \Device\Harddisk0\DR0 - ok
13:06:13.0765 3200 Boot (0x1200) (0879db9c2d2ee0c2762b1b9cb813eec5) \Device\Harddisk0\DR0\Partition0
13:06:13.0765 3200 \Device\Harddisk0\DR0\Partition0 - ok
13:06:13.0781 3200 ============================================================
13:06:13.0781 3200 Scan finished
13:06:13.0781 3200 ============================================================
13:06:13.0828 1564 Detected object count: 14
13:06:13.0828 1564 Actual detected object count: 14
13:06:49.0171 1564 ASCTRM ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0171 1564 ASCTRM ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0171 1564 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0171 1564 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0187 1564 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0187 1564 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0187 1564 cdudf_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0187 1564 cdudf_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0203 1564 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0203 1564 DCamUSBSQTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0203 1564 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0203 1564 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0203 1564 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0203 1564 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0203 1564 LexBceS ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0203 1564 LexBceS ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0218 1564 mmc_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0218 1564 mmc_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0218 1564 pwd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0218 1564 pwd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0218 1564 sdcplh ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0218 1564 sdcplh ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0218 1564 spmd ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0218 1564 spmd ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0234 1564 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0234 1564 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:06:49.0234 1564 WANMiniportService ( UnsignedFile.Multi.Generic ) - skipped by user
13:06:49.0234 1564 WANMiniportService ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:08:45.0796 1956 Deinitialize success

Last edited by Pat C; 17-Jul-2012 at 05:16 PM..
eddie5659's Avatar
Computer Specs
Moderator & Malware Removal Specialist with 28,323 posts.
 
Join Date: Mar 2001
Location: Bradford, England
18-Jul-2012, 12:32 PM #11
Quote:
Eddie, Add/Remove has "Java web start". Haven't remove it yet but is that an entry I should remove. It doesn't have the "cup of coffee" icon like the other entries.
Leave that for now, its related to Java for the internet

As for the files that AVG picked up, we can look at that soon, as it may be an infection that may be removed with the tools we use. As for 30 pages, the longest in this type of forum is 12 pages for me

With TDSSKiller, its safer if they haven't been removed by you, as sometimes it can point to a file been bad, when its not. That's why we get the logs first

They're fine

Okay, can you run these now:

Download aswMBR.exe ( 511KB ) to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan


On completion of the scan click save log, save it to your desktop and post in your next reply


-------------------------

Delete any copies of Combofix that you have.

Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT !!! As you download it rename it to username123.exe and save it to your Desktop

  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

    • Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
    • Remember to re-enable the protection again afterwards before connecting to the Internet.
  • Double click on ComboFix.exe & follow the prompts.

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.




Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:




Click on Yes, to continue scanning for malware.
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
19-Jul-2012, 12:07 AM #12
Glad you decided to resurface Eddie. Rough weekend huh?
First, a few questions:
You told that after I installed Java to make sure I delete both "Applications and Applets, and "Trace and log files".
Well there are 2 Trace and Log files: Cached Applications and Applets and Installed applications and Applets. Should I delete both?
Also, under the General Tab there is a check mark for "Keep temp files on computer". Should I uncheck that? Just curious.

Now here is the log from aswMBR:


aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-07-18 23:49:20
-----------------------------
23:49:20.281 OS Version: Windows 5.1.2600 Service Pack 3
23:49:20.281 Number of processors: 1 586 0x102
23:49:20.281 ComputerName: BASEMENT UserName:
23:49:23.781 Initialize success
23:51:03.906 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
23:51:03.906 Disk 0 Vendor: SAMSUNG_SP8004H QW100-60 Size: 76351MB BusType: 3
23:51:03.937 Disk 0 MBR read successfully
23:51:03.937 Disk 0 MBR scan
23:51:03.937 Disk 0 Windows XP default MBR code
23:51:03.937 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 76347 MB offset 63
23:51:03.937 Disk 0 scanning sectors +156360645
23:51:04.000 Disk 0 scanning C:\WINDOWS\system32\drivers
23:51:22.578 Service scanning
23:51:23.421 Service 8effc456-ef98-4b05-b868-5d87787bf223 E:\CDS300\cds300.dll **LOCKED** 21
23:51:54.343 Modules scanning
23:52:19.750 Disk 0 trace - called modules:
23:52:19.781 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll sdcplh.sys atapi.sys pciide.sys PCIIDEX.SYS
23:52:19.781 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x83376ab8]
23:52:20.125 3 CLASSPNP.SYS[f8837fd7] -> nt!IofCallDriver -> \Device\00000062[0x83389138]
23:52:20.125 5 ACPI.sys[f87ae620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8333ad98]
23:52:20.140 \Driver\atapi[0x83389d20] -> IRP_MJ_DEVICE_CONTROL -> sdcplh.sys[0xf8a1ba7c]
23:52:20.140 \Driver\atapi[0x83389d20] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> sdcplh.sys[0xf8a1b6f8]
23:52:20.140 Scan finished successfully
23:53:14.109 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Pat \My Documents\MBR.dat"
23:53:14.125 The log file has been saved successfully to "C:\Documents and Settings\Pat \My Documents\aswMBR.txt"
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
19-Jul-2012, 01:44 AM #13
ComboFix Log:

ComboFix 12-07-18.04 - Pat 19/07/2012 0:50.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.511.145 [GMT -4:00]
Running from: c:\documents and settings\Pat\Desktop\username123.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\DirectCDUserNameD.txt
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\G\WINDOWS
c:\documents and settings\Pat\Application Data\AdobeDLM.log
c:\documents and settings\Pat\WINDOWS
C:\install.exe
c:\program files\INSTALL.LOG
c:\windows\BackUp
c:\windows\patch.exe
c:\windows\system32\Cache
c:\windows\system32\Cache\272512937d9e61a4.fb
c:\windows\system32\Cache\287204568329e189.fb
c:\windows\system32\Cache\28bc8f716fd76a47.fb
c:\windows\system32\Cache\2c53092c95605355.fb
c:\windows\system32\Cache\31a0997e9a5b5eb3.fb
c:\windows\system32\Cache\32c84fe32bb74d60.fb
c:\windows\system32\Cache\3917078cb68ec657.fb
c:\windows\system32\Cache\590ba23ce359fd0c.fb
c:\windows\system32\Cache\610289e025a3ee9a.fb
c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb
c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
c:\windows\system32\Cache\6d03dad1035885d3.fb
c:\windows\system32\Cache\88fb406fc8ae7d77.fb
c:\windows\system32\Cache\a8556537add6dfc5.fb
c:\windows\system32\Cache\ad10a52aff5e038d.fb
c:\windows\system32\Cache\c1fa887b03019701.fb
c:\windows\system32\Cache\c4d28dca2e7648be.fb
c:\windows\system32\Cache\d201ef9910cd39de.fb
c:\windows\system32\Cache\d2e94710a5708128.fb
c:\windows\system32\Cache\d79b9dfe81484ec4.fb
c:\windows\system32\Cache\f998975c9cc711ee.fb
c:\windows\system32\dllcache\wmpvis.dll
c:\windows\system32\msssc.dll
c:\windows\system32\setb1.tmp
c:\windows\system32\setb2.tmp
c:\windows\winhelp.ini
.
.
((((((((((((((((((((((((( Files Created from 2012-06-19 to 2012-07-19 )))))))))))))))))))))))))))))))
.
.
2100-02-08 20:03 . 2001-05-11 15:39 53248 ----a-w- c:\program files\ACMonitor_X73.exe
2012-07-19 03:22 . 2012-07-19 03:22 -------- d-----w- c:\documents and settings\Pat\Local Settings\Application Data\Sun
2012-07-19 03:16 . 2012-07-19 03:16 -------- d-----w- c:\program files\Common Files\Java
2012-07-19 03:13 . 2012-07-19 03:12 143872 ----a-w- c:\windows\system32\javacpl.cpl
2012-07-19 03:13 . 2012-07-19 03:12 687600 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-19 03:13 . 2012-07-19 03:12 772592 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-07-13 06:29 . 2012-06-18 07:14 6762896 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{799F4359-0E98-4683-A56A-CAB85790CC27}\mpengine.dll
2012-07-13 04:04 . 2012-07-13 04:04 -------- d-----w- c:\documents and settings\Pat\Application Data\SUPERAntiSpyware.com
2012-07-13 04:02 . 2012-07-13 04:04 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-07-13 04:02 . 2012-07-13 04:02 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2012-07-12 23:46 . 2012-07-12 23:46 -------- d-----w- c:\documents and settings\Pat\Application Data\Malwarebytes
2012-07-12 23:46 . 2012-07-12 23:46 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2012-07-12 23:46 . 2012-07-12 23:46 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-07-12 23:46 . 2012-07-03 17:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-12 19:18 . 2012-07-12 19:18 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2012-07-11 18:50 . 2012-07-11 18:50 -------- d-----w- c:\documents and settings\Pat\Application Data\AVG2012
2012-07-11 18:47 . 2012-07-11 18:47 -------- d-----w- c:\documents and settings\Pat\Local Settings\Application Data\AVG Secure Search
2012-07-11 18:47 . 2012-07-11 18:47 -------- d-----w- c:\documents and settings\Pat\Application Data\AVG Secure Search
2012-07-11 18:47 . 2012-07-13 14:24 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Secure Search
2012-07-11 18:47 . 2012-07-11 18:47 -------- d-----w- c:\program files\Common Files\AVG Secure Search
2012-07-11 18:47 . 2012-07-12 19:18 -------- d-----w- c:\program files\AVG Secure Search
2012-07-11 18:45 . 2012-07-11 18:45 -------- d-----w- C:\$AVG
2012-07-02 17:06 . 2012-06-18 07:14 6762896 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-07-02 17:06 . 2012-02-23 14:18 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-07-01 23:12 . 2012-07-01 23:12 -------- d-----w- c:\documents and settings\Pat\Local Settings\Application Data\Microsoft Help
2012-07-01 23:02 . 2012-05-11 14:42 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2012-07-01 18:46 . 2012-07-01 18:46 -------- d-----w- c:\program files\Windows Defender
2012-07-01 18:34 . 2012-07-01 18:39 -------- d-----w- c:\documents and settings\Pat\Application Data\ElevatedDiagnostics
2012-07-01 17:45 . 2012-06-02 19:19 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-20 03:47 . 2012-06-20 03:47 -------- d-----w- C:\My Pictures
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-22 16:28 . 2012-05-16 18:25 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-06-22 16:28 . 2011-12-07 04:22 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-13 13:19 . 2001-08-18 12:00 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-06-05 15:50 . 2009-02-02 01:09 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:50 . 2002-02-15 20:59 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 21:35 . 2007-07-30 23:19 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-04 21:35 . 2007-07-30 23:18 222448 ----a-w- c:\windows\system32\muweb.dll
2012-06-04 04:32 . 2001-08-18 12:00 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 19:19 . 2007-07-06 04:24 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 19:19 . 2007-07-06 04:24 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 19:19 . 2004-08-11 13:18 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 19:19 . 2004-08-11 13:18 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 19:19 . 2005-07-21 20:36 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 19:19 . 2004-08-11 13:18 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 19:19 . 2002-06-25 15:56 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 19:19 . 2001-08-18 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 19:19 . 2007-07-06 04:24 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 19:19 . 2004-08-11 13:18 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 19:19 . 2002-06-25 15:56 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 19:18 . 2008-05-31 18:31 17136 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 19:18 . 2005-07-21 20:43 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-05-31 13:22 . 2002-09-23 20:10 599040 ----a-w- c:\windows\system32\crypt32.dll
2012-05-16 15:08 . 2004-01-08 19:23 916992 ----a-w- c:\windows\system32\wininet.dll
2012-05-11 14:42 . 2001-08-18 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-05-11 14:42 . 2001-08-18 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-05-11 11:38 . 2004-08-04 05:59 385024 ----a-w- c:\windows\system32\html.iec
2012-05-04 13:12 . 2001-08-18 12:00 2192640 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-04 12:32 . 2001-08-17 13:48 2069120 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-02 13:46 . 2002-06-25 15:56 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2005-01-29 19:13 . 2005-01-29 19:13 7741336 ----a-w- c:\program files\DivX521XP2K.exe
2001-05-08 20:36 . 2000-12-05 19:56 114688 ----a-w- c:\program files\lxarscan.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-07-12 19:17 2074208 ----a-w- c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll" [2012-07-12 2074208]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Smapp"="c:\program files\Analog Devices\SoundMAX\Smtray.exe" [2002-01-30 81920]
"MoneyStartUp10.0"="c:\program files\Microsoft Money\System\Activation.exe" [2001-07-25 241714]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-03-19 421888]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-07-12 1107552]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-04-04 843712]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\Shell ExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCO RE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDef end]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^AOL 7.0 Tray Icon.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\AOL 7.0 Tray Icon.lnk
backup=c:\windows\pss\AOL 7.0 Tray Icon.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Corel Desktop Application Director 8.LNK]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Corel Desktop Application Director 8.LNK
backup=c:\windows\pss\Corel Desktop Application Director 8.LNKCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^MarkBook 2004.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\MarkBook 2004.lnk
backup=c:\windows\pss\MarkBook 2004.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Works Calendar Reminders.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Microsoft Works Calendar Reminders.lnk
backup=c:\windows\pss\Microsoft Works Calendar Reminders.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^G^Start Menu^Programs^Startup^HOTLLAMA Update Check.lnk]
path=c:\documents and settings\G\Start Menu\Programs\Startup\HOTLLAMA Update Check.lnk
backup=c:\windows\pss\HOTLLAMA Update Check.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdaptecDirectCD]
2006-11-21 23:45 684032 ----a-w- c:\program files\Adaptec\Easy CD Creator 5\DirectCD\Directcd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EverioService]
2007-10-17 06:35 151552 ------w- c:\program files\CyberLink\PCM4Everio\EverioService.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer]
2007-02-08 22:56 295856 ----a-w- c:\program files\Lexmark Fax Solutions\fm3032.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2012-05-25 00:11 116648 ----atw- c:\documents and settings\Pat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2010-06-15 20:33 141624 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxczbmgr.exe]
2007-02-08 22:52 74672 ----a-w- c:\program files\Lexmark 1200 Series\LXCZbmgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Works Portfolio]
2001-08-23 21:52 331830 ----a-w- c:\program files\Microsoft Works\wkssb.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MoneyAgent]
2001-07-25 14:00 184376 ----a-w- c:\program files\Microsoft Money\System\Money Express.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2001-07-09 14:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSyncProcess]
2011-07-22 03:07 718720 ----a-w- c:\program files\Microsoft Office\Office14\MSOSYNC.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-03-19 02:16 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RealTray]
2002-06-25 16:27 26112 ----a-w- c:\program files\Real\RealPlayer\realplay.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RIMBBLaunchAgent.exe]
2011-09-01 21:47 90448 ----a-w- c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
2009-01-26 19:31 2144088 --sha-r- c:\program files\Spybot - Search & Destroy\TeaTimer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2012-07-09 23:38 4777856 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
2007-03-14 20:52 3770024 ----a-w- c:\program files\TomTom HOME\TomTomHOME.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WorksFUD]
2001-10-06 00:34 24576 ----a-w- c:\program files\Microsoft Works\wkfud.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Auth orizedApplications\List]
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\CyberLink\\PCM4Everio\\PCM4Everio.exe"=
"c:\\Program Files\\CyberLink\\PCM4Everio\\EverioService.exe"=
"c:\\Program Files\\CyberLink\\PowerDirector Express\\PDX.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\Research In Motion\\BlackBerry Desktop\\Rim.Desktop.exe"=
"c:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [19/04/2012 4:50 AM 24896]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [31/01/2012 4:46 AM 31952]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [22/02/2012 5:25 AM 235216]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [19/03/2012 5:17 AM 301248]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22/07/2011 12:27 PM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12/07/2011 5:55 PM 67664]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [23/12/2011 1:32 PM 139856]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [23/12/2011 1:32 PM 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [23/12/2011 1:32 PM 17232]
S3 8effc456-ef98-4b05-b868-5d87787bf223;8effc456-ef98-4b05-b868-5d87787bf223;\??\e:\cds300\cds300.dll --> e:\cds300\cds300.dll [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - ASWMBR
*NewlyCreated* - JAVAQUICKSTARTERSERVICE
*Deregistered* - aswMBR
.
Contents of the 'Scheduled Tasks' folder
.
2012-07-11 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34]
.
2012-07-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1161744426-568186159-1426590395-1007Core.job
- c:\documents and settings\Pat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2012-05-25 00:11]
.
2012-07-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1161744426-568186159-1426590395-1007UA.job
- c:\documents and settings\Pat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2012-05-25 00:11]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://sympatico.msn.ca/
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~4\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/2.9.3.0/GarminAxControl.CAB
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{8CE4A052-D68C-408C-B56F-7196AB22B5EF} - c:\program files\MSN\metobc:\windows\System32\sa3\renamd83122.exe.dll
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
HKCU-Run-Microsoft Works Update Detection - c:\program files\Microsoft Works\WkDetect.exe
HKU-Default-Run-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Notify-mljhiif - mljhiif.dll
SafeBoot-Wdf01000.sys
MSConfigStartUp-Lexmark X73 Button Manager - c:\progra~1\LEXMAR~1\AcBtnMgr_X73.exe
MSConfigStartUp-Lexmark X73 Button Monitor - c:\progra~1\LEXMAR~1\ACMonitor_X73.exe
MSConfigStartUp-Microsoft Works Update Detection - c:\program files\Microsoft Works\WkDetect.exe
MSConfigStartUp-MsnMsgr - c:\program files\MSN Messenger\MsnMsgr.Exe
MSConfigStartUp-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
MSConfigStartUp-updateMgr - c:\program files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe
MSConfigStartUp-Yahoo! Pager - c:\progra~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
AddRemove-MarkBook 2002 - c:\mkbk2002\DeIsL1.isu
AddRemove-MarkBook 2003 - c:\mkbk2003\DeIsL1.isu
AddRemove-MarkBook 2005 - c:\mkbk2005\DeIsL1.isu
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-07-19 01:09
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(888)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\WININET.dll
.
Completion time: 2012-07-19 01:16:49
ComboFix-quarantined-files.txt 2012-07-19 05:16
.
Pre-Run: 31,113,723,904 bytes free
Post-Run: 32,657,960,960 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn
.
- - End Of File - - DD0D5F13C9177D3CC1377494CBF4BCE7

Hope you have a GREAT DAY Eddie!

Last edited by Pat C; 19-Jul-2012 at 01:58 AM..
eddie5659's Avatar
Computer Specs
Moderator & Malware Removal Specialist with 28,323 posts.
 
Join Date: Mar 2001
Location: Bradford, England
22-Jul-2012, 11:36 AM #14
Weekends I tend to be all over the place, but try and reply when I can. Fridays after 7pm are a no-no, as I like to game up till 2am on Battlefield 3

Quote:
You told that after I installed Java to make sure I delete both "Applications and Applets, and "Trace and log files".
Well there are 2 Trace and Log files: Cached Applications and Applets and Installed applications and Applets. Should I delete both?
Also, under the General Tab there is a check mark for "Keep temp files on computer". Should I uncheck that? Just curious.
Just delete the Cached Applications and Applets option, As for the Keep temp files on computer, I tend to leave that checked, as some programs need them to run them.

--

Okay, not much jumping out there, so can you run this for me

Download OTL to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Select All Users
  • Please copy the text in the code box below and paste it in the Custom Scans/Fixes box in OTL:

    Code:
    netsvcs
    activex
    msconfig
    %SYSTEMDRIVE%\*.
    %PROGRAMFILES%\*.exe
    %LOCALAPPDATA%\*.exe
    %windir%\Installer\*.*
    %windir%\system32\tasks\*.*
    %systemroot%\Fonts\*.exe
    %systemroot%\*. /mp /s
    /md5start
    scdplh.sys
    consrv.dll
    explorer.exe
    winlogon.exe
    regedit.exe
    Userinit.exe
    svchost.exe
    /md5stop
    C:\Windows\assembly\tmp\U\*.* /s
    %Temp%\smtmp\1\*.*
    %Temp%\smtmp\2\*.*
    %Temp%\smtmp\3\*.*
    %Temp%\smtmp\4\*.*
    >C:\commands.txt echo list vol /raw /hide /c
    /wait
    >C:\DiskReport.txt diskpart /s C:\commands.txt /raw /hide /c
    /wait
    type c:\diskreport.txt /c
    /wait
    erase c:\commands.txt /hide /c
    /wait
    erase c:\diskreport.txt /hide /c
    CREATERESTOREPOINT
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic

Hope you're having a nice weekend as well

eddie
Pat C's Avatar
Member with 2,892 posts.
THREAD STARTER
 
Join Date: Oct 2001
22-Jul-2012, 06:18 PM #15
Hey Eddie, I guess your weekend wasn't as hectic as the last one huh.
Here is the list you requested. AVG is still reporting that silly Warning.
Thanks again for your help.


OTL logfile created on: 22/07/2012 5:26:47 PM - Run 1
OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\Pat\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

510.80 Mb Total Physical Memory | 261.49 Mb Available Physical Memory | 51.19% Memory free
862.76 Mb Paging File | 475.87 Mb Available in Paging File | 55.16% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74.56 Gb Total Space | 30.38 Gb Free Space | 40.75% Space Free | Partition Type: NTFS

Computer Name: BASEMENT | User Name: Pat | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/07/22 17:25:10 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Pat\My Documents\Downloads\OTL.exe
PRC - [2012/07/18 23:12:30 | 000,161,776 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012/07/12 15:17:59 | 000,935,008 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
PRC - [2012/07/12 15:17:49 | 001,107,552 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012/07/04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe
PRC - [2012/06/13 03:48:26 | 000,758,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe
PRC - [2012/06/13 03:48:24 | 001,255,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2012/04/05 05:12:34 | 002,587,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe
PRC - [2012/03/19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe
PRC - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
PRC - [2012/02/14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
PRC - [2011/08/11 19:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2011/03/09 08:30:08 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/02/08 18:50:33 | 000,537,520 | ---- | M] ( ) -- C:\WINDOWS\system32\lxczcoms.exe
PRC - [2004/06/07 21:04:00 | 000,197,632 | ---- | M] (mental images GmbH & Co. KG) -- C:\WINDOWS\system32\spm\spmd.exe
PRC - [2002/01/30 18:01:54 | 000,081,920 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
PRC - [2001/11/26 19:54:02 | 000,065,536 | ---- | M] (America Online, Inc.) -- C:\WINDOWS\wanmpsvc.exe


========== Modules (No Company Name) ==========

MOD - [2012/07/12 15:18:02 | 000,132,704 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\SiteSafety.dll
MOD - [2012/07/12 15:17:59 | 000,935,008 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
MOD - [2012/07/12 15:17:49 | 001,107,552 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
MOD - [2011/03/17 01:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/10/20 16:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2006/11/22 10:05:12 | 000,012,288 | ---- | M] () -- C:\Program Files\Lexmark Fax Solutions\fxctrstr.dll
MOD - [2006/11/22 09:51:26 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\LXPRMON.DLL
MOD - [2006/11/22 09:49:18 | 000,032,768 | ---- | M] () -- C:\Program Files\Lexmark Fax Solutions\ipcmt.dll
MOD - [2006/01/10 18:11:05 | 000,061,440 | ---- | M] () -- C:\WINDOWS\system32\lxczcnv4.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe -- (SPTISRV)
SRV - File not found [Auto | Stopped] -- C:\Softimage\XSI_4.2\Application\bin\raysatxsi4_2server.exe -- (RaySatxsi4_2Server)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012/07/18 23:12:30 | 000,161,776 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012/07/12 15:17:59 | 000,935,008 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe -- (vToolbarUpdater11.2.0)
SRV - [2012/07/04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011/08/11 19:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2011/06/12 11:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2011/03/09 08:30:08 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2007/02/08 18:50:33 | 000,537,520 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\system32\lxczcoms.exe -- (lxcz_device)
SRV - [2006/11/03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2004/06/07 21:04:00 | 000,197,632 | ---- | M] (mental images GmbH & Co. KG) [Auto | Running] -- C:\WINDOWS\system32\spm\spmd.exe -- (spmd)
SRV - [2001/11/26 19:54:02 | 000,065,536 | ---- | M] (America Online, Inc.) [Auto | Running] -- C:\WINDOWS\wanmpsvc.exe -- (WANMiniportService) WAN Miniport (ATW)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | Auto | Stopped] -- System32\Drivers\Lxarscan.sys -- (LXARScan)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\PATCHA~1\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\DRIVERS\atimtag.sys -- (atimtag)
DRV - File not found [Kernel | On_Demand | Stopped] -- E:\CDS300\cds300.dll -- (8effc456-ef98-4b05-b868-5d87787bf223)
DRV - [2012/04/19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2012/03/19 05:17:28 | 000,301,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012/02/22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012/01/31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/12/23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/12/23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2011/12/23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsfilterx.sys -- (AVGIDSFilter)
DRV - [2011/12/23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2011/07/22 12:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 17:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2009/06/18 21:49:38 | 000,194,362 | ---- | M] (Jungo) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\windrvr6.sys -- (WinDriver6)
DRV - [2009/02/13 13:02:52 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2007/05/16 12:20:32 | 000,043,008 | ---- | M] (D-Link ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dlkfet5b.sys -- (FETNDISB)
DRV - [2006/11/21 19:52:05 | 000,044,288 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2006/11/21 19:45:20 | 000,206,464 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\udfreadr_xp.sys -- (UdfReadr_xp)
DRV - [2006/11/21 19:45:20 | 000,144,250 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\pwd_2K.sys -- (pwd_2K)
DRV - [2006/11/21 19:45:19 | 000,241,280 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\cdudf_xp.sys -- (cdudf_xp)
DRV - [2006/11/21 19:45:19 | 000,030,662 | ---- | M] (Roxio) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\Mmc_2k.sys -- (mmc_2K)
DRV - [2006/11/21 19:45:19 | 000,025,930 | ---- | M] (Roxio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\Dvd_2k.sys -- (dvd_2K)
DRV - [2006/11/21 19:45:17 | 000,023,436 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2005/09/15 14:24:01 | 000,040,576 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sdcplh.sys -- (sdcplh)
DRV - [2005/06/28 12:32:14 | 000,113,664 | ---- | M] (Mars Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mr7910.sys -- (mr7910)
DRV - [2004/08/04 01:31:18 | 000,036,224 | ---- | M] (ADMtek Incorporated.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\an983.sys -- (AN983)
DRV - [2002/08/15 22:30:06 | 000,486,528 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2002/08/08 16:51:32 | 000,038,951 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NETMDUSB.sys -- (NETMDUSB)
DRV - [2002/06/25 12:27:38 | 000,008,552 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2002/05/10 06:31:48 | 000,633,220 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Intels51.sys -- (Intels51) Intel(R)
DRV - [2002/05/06 15:00:10 | 000,024,511 | ---- | M] (Service & Quality Technology.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sqcaptur.sys -- (DCamUSBSQTECH) Dual-Mode DSC(2770)
DRV - [2001/09/27 10:58:20 | 000,028,396 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/
IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={C2CE0C38-40EC-40EF-97A6-A1D7BB889B84}&mid=6d53eacd049afa8585c247097c4567c0-46b9cccb305347ff996b983c622d11899585c662&lang=en&ds=AVG&pr=fr&d=2012-07-11 14:47:38&v=11.0.0.10&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\..\SearchScopes\{B2E07171-13E8-4076-9D95-14F96C100DC7}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://search.avg.com/?d=4de3f8d5&i=23&tp=chrome&q={searchTerms}&lng={language}&nt=1
IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: MapShare-status@tomtom.com:1.7.1
FF - prefs.js..extensions.enabledItems: baseTheme@tomtom.com:1.0.2
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.0: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/Acrobat,version=5.1: C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ [2012/07/11 14:45:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\Documents and Settings\All Users\Application Data\AVG Secure Search\11.1.0.12\ [2012/07/12 15:18:36 | 000,000,000 | ---D | M]

[2011/04/21 14:53:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Pat\Application Data\Mozilla\Extensions
[2011/04/21 14:53:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Pat\Application Data\Mozilla\Extensions\home2@tomtom.com
[2011/04/21 14:52:00 | 000,000,000 | ---D | M] (Map status indicator) -- C:\PROGRAM FILES\TOMTOM HOME 2\XUL\EXTENSIONS\MAPSHARE-STATUS@TOMTOM.COM

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{googlerigi nalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie= {inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chro me&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Chrome\Application\20.0.1132.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2161_0\plug ins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java(TM) Platform SE 6 U13 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll
CHR - plugin: Java(TM) Platform SE 6 U15 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL
CHR - plugin: RIM Handheld Application Loader (Enabled) = C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Pat Charrette\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: AVG Do Not Track = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\12.0.0.2166_0\
CHR - Extension: Gmail = C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/07/19 01:08:42 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Reg Error: Value error.) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll ()
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [MoneyStartUp10.0] C:\Program Files\Microsoft Money\System\Activation.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1161744426-568186159-1426590395-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://www.apple.com/qtactivex/qtplugin.cab (QuickTime Object)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/wind...?1341164704390 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/micr...?1341182786203 (MUWebControl Class)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupdate.microsoft.co...596.3702893518 (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA} Reg Error: Key error. (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/get/f...nt/swflash.cab (Shockwave Flash Object)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/...nAxControl.CAB (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C49D2E71-4ABB-4689-999A-6C5B6E9F5982}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Documents and Settings\Pat\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Pat\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2002/06/25 12:01:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {057997dd-71e4-43cc-b161-3f8180691a9e} - Q824145
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 8.5
ActiveX: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - Viewpoint Media Player
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {2298d453-bcae-4519-bf33-1cbf3faf1524} - Q867801
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {2757B1D6-0367-4663-877C-93ECC5C01BF6} - Q324929
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 8.5
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2cc9d512-6db6-4f1c-8979-9a41fae88de0} - Q837009
ActiveX: {2eac6a2d-57a8-44d4-96f7-e32bab40ca5f} - Windows Update
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {377483c2-e4b4-4ee8-b577-9aed264c8735} - Q822925
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {3e7bb08a-a7a3-4692-8eac-ac5e7895755b} - KB834707
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5f3c70b3-ac2f-432c-8f9c-1624df61f54f} - Microsoft Data Access Components KB870669
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {61E6EAE5-7821-4AC1-9BBD-AED032A8E273} - Q323759
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - Fax Provider
ActiveX: {96543d59-497a-4801-a1f3-5936aacaf7b1} - Q828750
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C3C986D6-06B1-43BF-90DD-BE30756C00DE} - RevokedRootsUpdate
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CAAFB8F9-F8D1-3D27-9AAA-6301A4429440} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {DBB3C81D-3C91-4a1e-BDDF-905B61C7CEDF} - Security Update for the Microsoft VM
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {eddbec60-89cb-44ef-8291-0850fd28ff6a} - Q832894
ActiveX: {f5173cf0-1dfb-4978-8e50-a90169ee7ca9} - Q823353
ActiveX: {F5776D81-AE53-4935-8E84-B0B283D8BCEF} - Q330994
ActiveX: {F9C174E3-3E87-40bc-AA94-B8974F2B9222} - Q813489
ActiveX: {FF4DD9CD-F25E-425a-8B5C-A2D062781FBB} - Q328970
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe - (Adobe Systems, Inc.)
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk - - File not found
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^AOL 7.0 Tray Icon.lnk - C:\Program Files\AOL 7.0\aoltray.exe - (America Online, Inc.)
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Corel Desktop Application Director 8.LNK - C:\Corel\Suite8\Programs\DAD8.EXE - (Corel Corporation Limited)
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^MarkBook 2004.lnk - - File not found
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE - (Microsoft Corporation)
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Works Calendar Reminders.lnk - C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkCalRem.exe - (Microsoft® Corporation)
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK.EXE - (WinZip Computing, Inc.)
MsConfig - StartUpFolder: C:^Documents and Settings^Gerard^Start Menu^Programs^Startup^HOTLLAMA Update Check.lnk - C:\Program Files\HOTLLAMA MEDIA\Player\WiseUpdt.exe - ()
MsConfig - StartUpReg: AdaptecDirectCD - hkey= - key= - C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\Directcd.exe (Roxio)
MsConfig - StartUpReg: EverioService - hkey= - key= - C:\Program Files\CyberLink\PCM4Everio\EverioService.exe (CyberLink Corp.)
MsConfig - StartUpReg: FaxCenterServer - hkey= - key= - C:\Program Files\Lexmark Fax Solutions\fm3032.exe ()
MsConfig - StartUpReg: Google Update - hkey= - key= - C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe (Google Inc.)
MsConfig - StartUpReg: iTunesHelper - hkey= - key= - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
MsConfig - StartUpReg: lxczbmgr.exe - hkey= - key= - C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe (Lexmark International, Inc.)
MsConfig - StartUpReg: Microsoft Works Portfolio - hkey= - key= - C:\Program Files\Microsoft Works\WksSb.exe (Microsoft® Corporation)
MsConfig - StartUpReg: MoneyAgent - hkey= - key= - C:\Program Files\Microsoft Money\System\Money Express.exe (Microsoft Corporation)
MsConfig - StartUpReg: NeroFilterCheck - hkey= - key= - File not found
MsConfig - StartUpReg: OfficeSyncProcess - hkey= - key= - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation)
MsConfig - StartUpReg: QuickTime Task - hkey= - key= - C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
MsConfig - StartUpReg: RealTray - hkey= - key= - C:\Program Files\Real\RealPlayer\RealPlay.exe (RealNetworks, Inc.)
MsConfig - StartUpReg: RIMBBLaunchAgent.exe - hkey= - key= - C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
MsConfig - StartUpReg: SpybotSD TeaTimer - hkey= - key= - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
MsConfig - StartUpReg: SUPERAntiSpyware - hkey= - key= - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
MsConfig - StartUpReg: TomTomHOME.exe - hkey= - key= - C:\Program Files\TomTom HOME\TomTomHOME.exe (TomTom)
MsConfig - StartUpReg: WorksFUD - hkey= - key= - C:\Program Files\Microsoft Works\wkfud.exe (Microsoft® Corporation)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2100/02/08 16:03:54 | 000,053,248 | ---- | C] (Silitek Corp.) -- C:\Program Files\ACMonitor_X73.exe
[2012/07/20 13:33:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\Local Settings\Application Data\Temp
[2012/07/19 00:42:03 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012/07/19 00:34:13 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012/07/19 00:34:13 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012/07/19 00:34:13 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012/07/19 00:34:13 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012/07/19 00:33:50 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/07/19 00:33:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Pat\Start Menu\Programs\Administrative Tools
[2012/07/19 00:32:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2012/07/19 00:31:44 | 004,582,182 | R--- | C] (Swearware) -- C:\Documents and Settings\Pat\Desktop\username123.exe
[2012/07/18 23:36:04 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2012/07/18 23:22:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\Local Settings\Application Data\Sun
[2012/07/18 23:16:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2012/07/18 23:16:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/07/17 10:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG
[2012/07/13 00:04:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\Application Data\SUPERAntiSpyware.com
[2012/07/13 00:03:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
[2012/07/13 00:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2012/07/13 00:02:52 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2012/07/12 19:46:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat Charrette\Application Data\Malwarebytes
[2012/07/12 19:46:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/07/12 19:46:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012/07/12 19:46:04 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012/07/12 19:46:04 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/07/12 13:43:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\My Documents\system info
[2012/07/11 14:50:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\Application Data\AVG2012
[2012/07/11 14:47:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\Local Settings\Application Data\AVG Secure Search
[2012/07/11 14:47:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\Application Data\AVG Secure Search
[2012/07/11 14:47:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG Secure Search
[2012/07/11 14:47:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2012/07/11 14:47:26 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2012/07/11 14:45:03 | 000,000,000 | ---D | C] -- C:\$AVG
[2012/07/01 19:12:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\Local Settings\Application Data\Microsoft Help
[2012/07/01 14:46:50 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender
[2012/07/01 14:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat\Application Data\ElevatedDiagnostics
[2012/07/01 14:31:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows PowerShell 1.0
[2012/07/01 14:30:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/07/22 17:28:15 | 000,001,010 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1161744426-568186159-1426590395-1007UA.job
[2012/07/22 09:54:04 | 101,968,570 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2012/07/21 22:28:00 | 000,000,958 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1161744426-568186159-1426590395-1007Core.job
[2012/07/21 17:21:41 | 000,049,988 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavichjg.avm
[2012/07/21 13:54:04 | 000,001,158 | ---- | M] () -- C:\WINDOWS\LEXSTAT.INI
[2012/07/21 10:27:20 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/07/21 10:27:14 | 535,678,976 | -HS- | M] () -- C:\hiberfil.sys
[2012/07/20 09:43:55 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012/07/19 01:08:42 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012/07/19 00:42:11 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012/07/19 00:31:50 | 004,582,182 | R--- | M] (Swearware) -- C:\Documents and Settings\Pat\Desktop\username123.exe
[2012/07/18 23:53:14 | 000,000,512 | ---- | M] () -- C:\Documents and Settings\Pat\My Documents\MBR.dat
[2012/07/18 23:42:31 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2012/07/18 22:21:10 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2012/07/17 10:03:35 | 000,000,702 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 2012.lnk
[2012/07/13 00:03:30 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/07/12 19:46:07 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012/07/12 13:41:30 | 000,001,374 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/07/11 13:51:31 | 000,386,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/07/11 13:44:31 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/07/11 07:20:06 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/07/03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012/07/01 20:16:57 | 000,437,406 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/07/01 20:16:56 | 000,069,506 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/06/28 11:48:12 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2100/02/23 14:35:34 | 000,000,768 | ---- | C] () -- C:\Program Files\x73_lut.dat
[2100/02/08 15:53:34 | 000,001,437 | ---- | C] () -- C:\Program Files\gtx73.ini
[2012/07/19 00:42:11 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012/07/19 00:42:06 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2012/07/19 00:34:13 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012/07/19 00:34:13 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012/07/19 00:34:13 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012/07/19 00:34:13 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012/07/19 00:34:13 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012/07/18 23:53:14 | 000,000,512 | ---- | C] () -- C:\Documents and Settings\Pat\My Documents\MBR.dat
[2012/07/18 23:42:30 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2012/07/18 23:42:29 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2012/07/13 00:03:30 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/07/12 19:46:07 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012/07/11 14:48:00 | 000,000,702 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 2012.lnk
[2012/07/01 14:47:17 | 000,000,955 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Defender.lnk
[2012/05/16 14:28:21 | 000,034,814 | ---- | C] () -- C:\Documents and Settings\Pat\Local Settings\Application Data\dt.dat
[2012/03/17 15:28:28 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/07/22 14:51:49 | 000,056,656 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/09/17 13:37:35 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/06/17 13:22:47 | 000,000,074 | ---- | C] () -- C:\Documents and Settings\Pat\default.pls
[2007/12/26 00:38:30 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007/01/05 22:11:07 | 000,000,032 | R--- | C] () -- C:\Documents and Settings\All Users\hash.dat
[2005/01/29 15:13:53 | 007,741,336 | ---- | C] () -- C:\Program Files\DivX521XP2K.exe
[2002/12/02 16:18:34 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Pat\Application Data\dm.ini
[2002/10/29 18:45:14 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\Pat\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2002/10/25 11:20:05 | 000,000,700 | ---- | C] () -- C:\Documents and Settings\Pat\.plugin141_01.trace
[2001/07/20 10:48:06 | 000,008,116 | ---- | C] () -- C:\Program Files\OSLO3071b2.USB
[2000/12/05 15:56:34 | 000,114,688 | ---- | C] () -- C:\Program Files\lxarscan.dll
[2000/01/11 12:50:48 | 000,000,047 | ---- | C] () -- C:\Program Files\ACMonitor_X73.ini

========== LOP Check ==========

[2012/07/13 10:24:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Secure Search
[2012/07/11 14:58:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG2012
[2010/10/18 15:30:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2010/10/18 16:14:11 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2012/07/22 17:22:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2007/06/09 00:09:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2011/09/14 01:03:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Research In Motion
[2011/04/21 14:53:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2005/12/05 21:11:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2010/07/15 14:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/07/11 22:18:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\G\Application Data\AVG Secure Search
[2012/07/11 22:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\G\Application Data\AVG2012
[2010/07/17 13:59:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\G\Application Data\Cakewalk
[2010/09/17 12:57:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\G\Application Data\GARMIN
[2007/12/25 17:17:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\G\Application Data\LimeWire
[2008/12/15 01:51:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MDG\Application Data\InfraRecorder
[2007/01/06 01:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MDG\Application Data\yoclient
[2012/07/11 14:47:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\AVG Secure Search
[2012/07/11 14:50:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\AVG2012
[2012/07/01 14:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\ElevatedDiagnostics
[2011/06/04 23:50:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\GARMIN
[2002/12/02 16:29:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\InterTrust
[2012/06/01 00:49:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\OverDrive
[2011/09/14 01:18:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\Research In Motion
[2011/04/21 14:52:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\TomTom
[2007/05/28 00:14:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\Viewpoint
[2007/06/27 21:39:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Pat\Application Data\yoclient

========== Purity Check ==========



========== Custom Scans ==========

< %SYSTEMDRIVE%\*. >
[2012/07/11 14:45:03 | 000,000,000 | ---D | M] -- C:\$AVG
[2010/09/17 12:45:42 | 000,000,000 | R--D | M] -- C:\AHCache
[2005/01/19 21:08:10 | 000,000,000 | ---D | M] -- C:\animations
[2010/09/13 16:25:25 | 000,000,000 | ---D | M] -- C:\Audio Creator Music Library
[2005/03/01 03:02:14 | 000,000,000 | ---D | M] -- C:\Avid MediaFiles
[2005/03/01 03:02:14 | 000,000,000 | ---D | M] -- C:\Avid3D OutGoing
[2010/11/26 14:48:27 | 000,000,000 | ---D | M] -- C:\c6f6751e817def2b46745f24ca0eb1
[2012/07/19 00:42:10 | 000,000,000 | RHSD | M] -- C:\cmdcons
[2012/07/19 11:21:04 | 000,000,000 | ---D | M] -- C:\Config.Msi
[2002/10/26 09:45:02 | 000,000,000 | ---D | M] -- C:\Corel
[2012/07/13 22:24:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings
[2002/11/03 01:42:35 | 000,000,000 | ---D | M] -- C:\host-news
[2008/12/22 01:04:03 | 000,000,000 | ---D | M] -- C:\Masks
[2012/02/14 16:56:35 | 000,000,000 | R--D | M] -- C:\MSOCache
[2006/03/11 14:25:34 | 000,000,000 | ---D | M] -- C:\My Music
[2012/06/19 23:47:52 | 000,000,000 | ---D | M] -- C:\My Pictures
[2003/02/17 22:48:06 | 000,000,000 | ---D | M] -- C:\MyFiles
[2010/09/17 15:10:13 | 000,000,000 | ---D | M] -- C:\MyWorks
[2009/09/13 15:24:14 | 000,000,000 | ---D | M] -- C:\nick
[2003/11/09 17:57:08 | 000,000,000 | ---D | M] -- C:\pcivideo
[2012/07/19 01:06:53 | 000,000,000 | R--D | M] -- C:\Program Files
[2012/07/19 01:16:56 | 000,000,000 | ---D | M] -- C:\Qoobox
[2005/03/04 23:49:55 | 000,000,000 | ---D | M] -- C:\Softimage
[2009/02/26 07:46:24 | 000,000,000 | ---D | M] -- C:\spoolerlogs
[2008/05/21 14:33:31 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2012/06/04 12:36:52 | 000,000,000 | ---D | M] -- C:\Temp
[2010/09/17 15:12:42 | 000,000,000 | ---D | M] -- C:\tony
[2005/03/08 11:27:00 | 000,000,000 | ---D | M] -- C:\usbkeysoftimage
[2005/01/19 19:23:49 | 000,000,000 | ---D | M] -- C:\users
[2012/07/19 01:09:11 | 000,000,000 | ---D | M] -- C:\WINDOWS
[2002/12/06 13:00:54 | 000,000,000 | ---D | M] -- C:\WUTemp

< %PROGRAMFILES%\*.exe >
[2001/05/11 11:39:16 | 000,053,248 | ---- | M] (Silitek Corp.) -- C:\Program Files\ACMonitor_X73.exe
[2005/01/29 15:13:53 | 007,741,336 | ---- | M] () -- C:\Program Files\DivX521XP2K.exe
Invalid Environment Variable: LOCALAPPDATA

< %windir%\Installer\*.* >
[2011/03/23 19:29:16 | 020,308,992 | R--- | M] () -- C:\WINDOWS\Installer\10b31c4.msp
[2002/11/04 17:16:56 | 002,915,840 | ---- | M] () -- C:\WINDOWS\Installer\121b8b5.msi
[2010/12/26 13:46:15 | 000,686,080 | ---- | M] () -- C:\WINDOWS\Installer\12df03.msi
[2007/07/10 00:17:39 | 000,081,920 | ---- | M] () -- C:\WINDOWS\Installer\13096ef4.msi
[2010/09/17 08:14:25 | 020,242,432 | R--- | M] () -- C:\WINDOWS\Installer\1315abf5.msp
[2006/05/16 23:24:54 | 009,299,456 | ---- | M] () -- C:\WINDOWS\Installer\15597.msp
[2010/07/15 14:29:01 | 000,807,424 | ---- | M] () -- C:\WINDOWS\Installer\15926a8.msi
[2010/07/15 14:29:54 | 001,984,000 | ---- | M] () -- C:\WINDOWS\Installer\15926b5.msi
[2010/07/15 14:30:52 | 003,089,408 | ---- | M] () -- C:\WINDOWS\Installer\15926e5.msi
[2010/07/15 14:35:13 | 009,472,000 | ---- | M] () -- C:\WINDOWS\Installer\1592df9.msi
[2010/07/15 14:42:45 | 004,820,480 | ---- | M] () -- C:\WINDOWS\Installer\1593116.msi
[2012/02/09 07:27:42 | 000,206,848 | R--- | M] () -- C:\WINDOWS\Installer\174ad8.msp
[2012/03/21 05:57:52 | 001,591,808 | R--- | M] () -- C:\WINDOWS\Installer\174aef.msp
[2012/03/21 05:58:06 | 000,133,120 | R--- | M] () -- C:\WINDOWS\Installer\174af5.msp
[2012/03/07 15:03:14 | 023,710,208 | R--- | M] () -- C:\WINDOWS\Installer\174b11.msp
[2012/03/07 15:01:28 | 001,907,712 | R--- | M] () -- C:\WINDOWS\Installer\174b19.msp
[2012/02/17 03:50:50 | 001,236,480 | R--- | M] () -- C:\WINDOWS\Installer\174b2f.msp
[2012/03/15 13:09:50 | 017,165,312 | R--- | M] () -- C:\WINDOWS\Installer\174b4d.msp
[2011/12/22 16:50:54 | 000,256,000 | R--- | M] () -- C:\WINDOWS\Installer\174b54.msp
[2008/12/26 16:20:22 | 000,381,440 | ---- | M] () -- C:\WINDOWS\Installer\1943f84e.msi
[2012/07/18 23:43:25 | 002,295,808 | ---- | M] () -- C:\WINDOWS\Installer\1a4151.msi
[2012/04/04 07:17:36 | 016,613,376 | R--- | M] () -- C:\WINDOWS\Installer\1a4152.msp
[2008/12/13 10:57:24 | 008,397,824 | R--- | M] () -- C:\WINDOWS\Installer\1af6cec3.msp
[2008/12/13 11:21:36 | 010,473,472 | R--- | M] () -- C:\WINDOWS\Installer\1af6cecd.msp
[2008/12/13 10:58:22 | 000,754,688 | R--- | M] () -- C:\WINDOWS\Installer\1af6ced8.msp
[2009/03/20 12:48:56 | 000,183,808 | R--- | M] () -- C:\WINDOWS\Installer\1b14ac7f.msp
[2010/04/11 23:17:10 | 004,210,688 | R--- | M] () -- C:\WINDOWS\Installer\1b14ac8a.msp
[2010/04/11 23:17:08 | 002,607,104 | R--- | M] () -- C:\WINDOWS\Installer\1b14ac8b.msp
[2010/04/11 23:17:12 | 014,599,680 | R--- | M] () -- C:\WINDOWS\Installer\1b14ac99.msp
[2010/02/25 01:14:38 | 000,543,232 | R--- | M] () -- C:\WINDOWS\Installer\1b14aca0.msp
[2009/11/09 01:25:26 | 001,935,360 | R--- | M] () -- C:\WINDOWS\Installer\1b14acba.msp
[2010/03/31 02:23:04 | 015,638,528 | R--- | M] () -- C:\WINDOWS\Installer\1b14acc6.msp
[2010/05/19 14:08:52 | 011,408,896 | R--- | M] () -- C:\WINDOWS\Installer\1b14acd0.msp
[2010/09/23 08:39:44 | 004,265,472 | R--- | M] () -- C:\WINDOWS\Installer\1b14acda.msp
[2010/09/23 22:02:28 | 000,798,208 | R--- | M] () -- C:\WINDOWS\Installer\1b14ace1.msp
[2011/01/28 18:16:31 | 020,304,384 | R--- | M] () -- C:\WINDOWS\Installer\1b14acfb.msp
[2005/01/18 22:21:10 | 000,390,656 | ---- | M] () -- C:\WINDOWS\Installer\1bff40.msi
[2011/01/28 19:20:32 | 002,351,104 | ---- | M] () -- C:\WINDOWS\Installer\1fd529.msi
[2009/11/23 20:33:21 | 002,317,312 | ---- | M] () -- C:\WINDOWS\Installer\253658.msi
[2009/11/23 20:33:39 | 000,051,712 | ---- | M] () -- C:\WINDOWS\Installer\25365d.msi
[2009/01/15 04:35:20 | 004,830,720 | R--- | M] () -- C:\WINDOWS\Installer\253663.msp
[2009/11/23 20:39:41 | 015,709,696 | R--- | M] () -- C:\WINDOWS\Installer\253669.msp
[2006/07/18 08:09:21 | 000,378,368 | ---- | M] () -- C:\WINDOWS\Installer\29105.msi
[2012/07/01 19:31:25 | 020,343,808 | R--- | M] () -- C:\WINDOWS\Installer\2ecfad.msp
[2012/03/15 13:12:04 | 004,968,960 | R--- | M] () -- C:\WINDOWS\Installer\2ecfc3.msp
[2012/03/15 13:11:30 | 066,812,928 | R--- | M] () -- C:\WINDOWS\Installer\2ecfda.msp
[2012/03/15 13:11:26 | 001,989,632 | R--- | M] () -- C:\WINDOWS\Installer\2ecff0.msp
[2012/03/07 14:50:56 | 001,904,128 | R--- | M] () -- C:\WINDOWS\Installer\2ed006.msp
[2012/04/21 21:55:38 | 000,980,480 | R--- | M] () -- C:\WINDOWS\Installer\2ed00d.msp
[2012/01/04 02:25:14 | 017,751,552 | R--- | M] () -- C:\WINDOWS\Installer\2ed01a.msp
[2012/04/06 02:12:34 | 015,709,696 | R--- | M] () -- C:\WINDOWS\Installer\2ed025.msp
[2012/04/06 03:13:32 | 016,527,872 | R--- | M] () -- C:\WINDOWS\Installer\2ed02d.msp
[2012/03/20 23:57:14 | 006,188,544 | R--- | M] () -- C:\WINDOWS\Installer\2ed035.msp
[2012/05/17 02:58:50 | 003,462,144 | R--- | M] () -- C:\WINDOWS\Installer\2ed04b.msp
[2012/06/01 00:47:07 | 000,503,808 | ---- | M] () -- C:\WINDOWS\Installer\3119ac2.msi
[2008/11/18 11:51:01 | 001,549,312 | ---- | M] () -- C:\WINDOWS\Installer\36ebc13.msi
[2008/12/11 02:22:38 | 001,247,744 | ---- | M] () -- C:\WINDOWS\Installer\38462db.msi
[2011/07/21 12:36:40 | 066,808,320 | R--- | M] () -- C:\WINDOWS\Installer\3bcf47d.msp
[2011/07/21 12:34:34 | 003,456,000 | R--- | M] () -- C:\WINDOWS\Installer\3bcf495.msp
[2011/06/19 23:28:52 | 018,457,088 | R--- | M] () -- C:\WINDOWS\Installer\3bcf4ac.msp
[2011/07/21 12:51:52 | 009,623,040 | R--- | M] () -- C:\WINDOWS\Installer\3bcf4c2.msp
[2011/07/21 12:45:00 | 003,809,792 | R--- | M] () -- C:\WINDOWS\Installer\3bcf4d8.msp
[2011/07/21 12:41:08 | 008,413,696 | R--- | M] () -- C:\WINDOWS\Installer\3bcf4ee.msp
[2011/08/21 23:18:54 | 001,585,152 | R--- | M] () -- C:\WINDOWS\Installer\3bcf504.msp
[2011/08/21 23:19:26 | 000,133,120 | R--- | M] () -- C:\WINDOWS\Installer\3bcf50a.msp
[2011/07/21 12:43:06 | 000,027,648 | R--- | M] () -- C:\WINDOWS\Installer\3bcf51f.msp
[2011/06/19 23:33:20 | 000,407,552 | R--- | M] () -- C:\WINDOWS\Installer\3bcf535.msp
[2011/10/26 22:46:00 | 011,580,928 | R--- | M] () -- C:\WINDOWS\Installer\3bcf54b.msp
[2011/10/26 22:51:34 | 016,885,760 | R--- | M] () -- C:\WINDOWS\Installer\3bcf568.msp
[2011/10/26 22:51:46 | 000,592,896 | R--- | M] () -- C:\WINDOWS\Installer\3bcf56f.msp
[2011/10/22 15:21:04 | 021,515,264 | R--- | M] () -- C:\WINDOWS\Installer\3bcf58f.msp
[2011/10/26 23:23:36 | 000,925,696 | R--- | M] () -- C:\WINDOWS\Installer\3bcf597.msp
[2011/10/26 23:23:32 | 008,821,760 | R--- | M] () -- C:\WINDOWS\Installer\3bcf5ad.msp
[2011/10/26 22:46:54 | 001,833,472 | R--- | M] () -- C:\WINDOWS\Installer\3bcf5c3.msp
[2011/10/16 14:38:36 | 100,966,912 | R--- | M] () -- C:\WINDOWS\Installer\3bcf5d9.msp
[2011/10/26 22:45:40 | 066,426,368 | R--- | M] () -- C:\WINDOWS\Installer\3bcf5f0.msp
[2011/10/26 22:46:12 | 000,794,112 | R--- | M] () -- C:\WINDOWS\Installer\3bcf606.msp
[2011/10/16 14:28:16 | 001,138,688 | R--- | M] () -- C:\WINDOWS\Installer\3bcf61c.msp
[2011/10/26 22:49:42 | 010,427,392 | R--- | M] () -- C:\WINDOWS\Installer\3bcf623.msp
[2011/10/26 22:49:36 | 016,245,760 | R--- | M] () -- C:\WINDOWS\Installer\3bcf62a.msp
[2011/10/26 22:47:50 | 010,328,064 | R--- | M] () -- C:\WINDOWS\Installer\3bcf633.msp
[2012/01/05 06:21:26 | 004,964,864 | R--- | M] () -- C:\WINDOWS\Installer\3bcf649.msp
[2011/11/18 18:52:34 | 009,183,232 | R--- | M] () -- C:\WINDOWS\Installer\3bcf661.msp
[2011/10/30 22:54:38 | 002,748,416 | R--- | M] () -- C:\WINDOWS\Installer\3bcf668.msp
[2012/03/17 16:21:32 | 020,333,056 | R--- | M] () -- C:\WINDOWS\Installer\3bcf673.msp
[2012/02/29 23:55:44 | 003,462,656 | R--- | M] () -- C:\WINDOWS\Installer\3f84fcc.msp
[2002/06/25 12:43:42 | 000,877,568 | ---- | M] () -- C:\WINDOWS\Installer\3ff54.msi
[2002/06/25 12:45:02 | 003,062,272 | ---- | M] () -- C:\WINDOWS\Installer\3ff58.msi
[2002/06/25 12:45:32 | 000,942,080 | ---- | M] () -- C:\WINDOWS\Installer\3ff5e.msi
[2002/06/25 12:47:23 | 000,858,624 | ---- | M] () -- C:\WINDOWS\Installer\3ff9b.msi
[2002/06/25 12:48:25 | 000,387,584 | ---- | M] () -- C:\WINDOWS\Installer\3ffa0.msi
[2002/06/25 12:49:40 | 001,389,568 | ---- | M] () -- C:\WINDOWS\Installer\3ffa3.msi
[2002/06/25 12:51:07 | 001,475,072 | ---- | M] () -- C:\WINDOWS\Installer\3ffac.msi
[2002/06/25 12:55:11 | 005,038,592 | ---- | M] () -- C:\WINDOWS\Installer\3ffdf.msi
[2002/06/25 12:56:55 | 001,528,832 | ---- | M] () -- C:\WINDOWS\Installer\3ffe6.msi
[2009/01/14 12:51:52 | 000,432,640 | ---- | M] () -- C:\WINDOWS\Installer\41f1db.msi
[2012/05/24 10:23:29 | 000,228,352 | ---- | M] () -- C:\WINDOWS\Installer\4338c3.msi
[2010/04/08 16:57:09 | 000,429,568 | ---- | M] () -- C:\WINDOWS\Installer\48dfadd.msi
[2012/07/17 10:03:40 | 005,164,032 | ---- | M] () -- C:\WINDOWS\Installer\4a01e6b.msi
[2007/08/07 18:31:30 | 001,795,584 | ---- | M] () -- C:\WINDOWS\Installer\4d9e7f.msi
[2012/07/18 23:12:24 | 000,863,744 | ---- | M] () -- C:\WINDOWS\Installer\4e936.msi
[2012/07/18 23:16:39 | 000,176,128 | ---- | M] () -- C:\WINDOWS\Installer\4e93b.msi
[2012/06/20 02:06:38 | 001,839,104 | R--- | M] () -- C:\WINDOWS\Installer\5beee0f.msp
[2012/04/05 01:54:48 | 008,301,056 | R--- | M] () -- C:\WINDOWS\Installer\5beee27.msp
[2012/04/05 01:56:02 | 002,820,096 | R--- | M] () -- C:\WINDOWS\Installer\5beee3d.msp
[2012/06/20 02:00:10 | 003,461,120 | R--- | M] () -- C:\WINDOWS\Installer\5beee53.msp
[2012/06/20 01:29:46 | 005,262,848 | R--- | M] () -- C:\WINDOWS\Installer\5beee6c.msp
[2006/01/30 14:10:26 | 013,048,832 | ---- | M] () -- C:\WINDOWS\Installer\5d6a19.msp
[2010/10/18 15:11:38 | 020,303,872 | R--- | M] () -- C:\WINDOWS\Installer\63bbd.msp
[2010/10/18 15:26:55 | 000,219,648 | ---- | M] () -- C:\WINDOWS\Installer\63bc1.msi
[2012/07/11 14:43:27 | 002,208,768 | ---- | M] () -- C:\WINDOWS\Installer\65b45.msi
[2011/07/11 21:43:20 | 011,641,344 | R--- | M] () -- C:\WINDOWS\Installer\671698.msp
[2011/12/26 10:59:58 | 004,368,896 | R--- | M] () -- C:\WINDOWS\Installer\6716a2.msp
[2011/05/02 01:06:16 | 002,705,920 | R--- | M] () -- C:\WINDOWS\Installer\69df6be.msp
[2012/01/03 16:30:30 | 020,333,568 | R--- | M] () -- C:\WINDOWS\Installer\69df6c9.msp
[2011/03/28 04:27:52 | 015,456,256 | R--- | M] () -- C:\WINDOWS\Installer\69df6d4.msp
[2011/12/25 06:40:46 | 000,819,200 | R--- | M] () -- C:\WINDOWS\Installer\6c38965.msp
[2012/02/14 16:59:49 | 002,859,520 | ---- | M] () -- C:\WINDOWS\Installer\6c4f73e.msi
[2012/02/14 16:59:58 | 000,647,168 | ---- | M] () -- C:\WINDOWS\Installer\6c4f743.msi
[2012/02/14 17:00:23 | 001,797,120 | ---- | M] () -- C:\WINDOWS\Installer\6c4f748.msi
[2012/02/14 17:00:37 | 001,798,656 | ---- | M] () -- C:\WINDOWS\Installer\6c4f74d.msi
[2012/02/14 17:00:49 | 001,801,728 | ---- | M] () -- C:\WINDOWS\Installer\6c4f752.msi
[2012/02/14 17:01:10 | 002,112,000 | ---- | M] () -- C:\WINDOWS\Installer\6c4f757.msi
[2012/02/14 17:01:23 | 000,659,456 | ---- | M] () -- C:\WINDOWS\Installer\6c4f75c.msi
[2012/02/14 17:01:37 | 000,664,064 | ---- | M] () -- C:\WINDOWS\Installer\6c4f761.msi
[2012/02/14 17:01:47 | 000,653,312 | ---- | M] () -- C:\WINDOWS\Installer\6c4f766.msi
[2012/02/14 17:01:50 | 000,647,168 | ---- | M] () -- C:\WINDOWS\Installer\6c4f76b.msi
[2012/02/14 17:02:01 | 001,797,120 | ---- | M] () -- C:\WINDOWS\Installer\6c4f770.msi
[2012/02/14 17:02:17 | 002,410,496 | ---- | M] () -- C:\WINDOWS\Installer\6c4f775.msi
[2012/02/14 17:02:37 | 001,809,920 | ---- | M] () -- C:\WINDOWS\Installer\6c4f77b.msi
[2012/02/14 17:02:42 | 000,647,168 | ---- | M] () -- C:\WINDOWS\Installer\6c4f780.msi
[2012/02/14 17:02:49 | 000,047,616 | ---- | M] () -- C:\WINDOWS\Installer\6c4f789.msi
[2012/02/14 17:03:02 | 001,807,872 | ---- | M] () -- C:\WINDOWS\Installer\6c4f78e.msi
[2012/02/14 17:03:24 | 001,816,064 | ---- | M] () -- C:\WINDOWS\Installer\6c4f793.msi
[2012/02/14 17:27:53 | 025,142,784 | ---- | M] () -- C:\WINDOWS\Installer\6c4fa6e.msi
[2011/08/16 13:29:08 | 003,994,624 | R--- | M] () -- C:\WINDOWS\Installer\6c4ff1e.msp
[2011/08/16 13:29:08 | 014,467,072 | R--- | M] () -- C:\WINDOWS\Installer\6c4ff28.msp
[2011/08/16 13:29:08 | 011,155,456 | R--- | M] () -- C:\WINDOWS\Installer\6c4ff60.msp
[2011/08/16 13:29:08 | 016,972,800 | R--- | M] () -- C:\WINDOWS\Installer\6c4ff74.msp
[2011/08/16 13:29:08 | 011,056,128 | R--- | M] () -- C:\WINDOWS\Installer\6c4ff86.msp
[2011/08/16 13:29:08 | 000,608,768 | R--- | M] () -- C:\WINDOWS\Installer\6c4ff8c.msp
[2011/08/16 13:29:08 | 425,345,024 | R--- | M] () -- C:\WINDOWS\Installer\6c500e1.msp
[2008/05/31 13:31:51 | 000,431,104 | ---- | M] () -- C:\WINDOWS\Installer\6d7756.msi
[2007/08/26 22:00:16 | 007,640,576 | ---- | M] () -- C:\WINDOWS\Installer\7b8a204.msi
[2010/02/12 17:57:26 | 015,710,720 | R--- | M] () -- C:\WINDOWS\Installer\894976cb.msp
[2012/07/01 14:47:57 | 001,155,072 | ---- | M] () -- C:\WINDOWS\Installer\94006ac.msi
[2011/04/21 14:52:27 | 000,146,944 | ---- | M] () -- C:\WINDOWS\Installer\949ea5.msi
[2012/06/05 09:48:02 | 002,208,768 | ---- | M] () -- C:\WINDOWS\Installer\997a624.msi
[2010/11/26 14:31:07 | 000,228,352 | ---- | M] () -- C:\WINDOWS\Installer\9ef1d6e.msi
[2010/11/26 14:43:02 | 000,088,576 | ---- | M] () -- C:\WINDOWS\Installer\9f4d26d.msi
[2008/07/29 20:31:05 | 006,083,072 | R--- | M] () -- C:\WINDOWS\Installer\9f4d26e.msp
[2008/07/29 20:37:10 | 000,911,360 | R--- | M] () -- C:\WINDOWS\Installer\9f4d26f.msp
[2008/07/29 20:33:06 | 000,506,368 | R--- | M] () -- C:\WINDOWS\Installer\9f4d270.msp
[2008/07/29 20:43:20 | 001,013,248 | R--- | M] () -- C:\WINDOWS\Installer\9f4d271.msp
[2008/07/29 20:35:08 | 000,553,472 | R--- | M] () -- C:\WINDOWS\Installer\9f4d272.msp
[2008/07/29 20:39:12 | 003,403,264 | R--- | M] () -- C:\WINDOWS\Installer\9f4d273.msp
[2008/07/29 20:41:15 | 006,487,040 | R--- | M] () -- C:\WINDOWS\Installer\9f4d274.msp
[2008/07/29 20:29:02 | 002,926,080 | R--- | M] () -- C:\WINDOWS\Installer\9f4d275.msp
[2008/07/29 20:45:26 | 002,543,616 | R--- | M] () -- C:\WINDOWS\Installer\9f4d276.msp
[2010/11/26 14:49:54 | 000,137,728 | ---- | M] () -- C:\WINDOWS\Installer\9ff6581.msi
[2008/07/30 00:07:18 | 000,023,040 | R--- | M] () -- C:\WINDOWS\Installer\9ff6582.msp
[2008/07/29 22:18:47 | 003,376,640 | R--- | M] () -- C:\WINDOWS\Installer\9ff6583.msp
[2008/07/29 23:22:41 | 004,137,984 | R--- | M] () -- C:\WINDOWS\Installer\9ff6584.msp
[2008/07/29 22:34:27 | 001,448,448 | R--- | M] () -- C:\WINDOWS\Installer\9ff6585.msp
[2008/07/30 00:15:12 | 003,697,664 | R--- | M] () -- C:\WINDOWS\Installer\9ff6586.msp
[2008/07/29 22:40:37 | 000,291,840 | R--- | M] () -- C:\WINDOWS\Installer\9ff6587.msp
[2008/07/29 23:37:55 | 002,679,808 | R--- | M] () -- C:\WINDOWS\Installer\9ff6588.msp
[2008/07/30 00:28:09 | 000,278,016 | R--- | M] () -- C:\WINDOWS\Installer\9ff6589.msp
[2008/07/29 22:26:24 | 001,043,456 | R--- | M] () -- C:\WINDOWS\Installer\9ff658a.msp
[2008/07/30 00:23:11 | 000,250,880 | R--- | M] () -- C:\WINDOWS\Installer\9ff658b.msp
[2010/11/26 14:51:39 | 000,648,192 | ---- | M] () -- C:\WINDOWS\Installer\a0173e8.msi
[2012/03/27 20:36:37 | 022,176,768 | ---- | M] () -- C:\WINDOWS\Installer\aaa985.msi
[2011/05/01 18:23:29 | 020,314,624 | R--- | M] () -- C:\WINDOWS\Installer\c6be85e.msp
[2011/09/14 01:35:28 | 001,942,016 | ---- | M] () -- C:\WINDOWS\Installer\d80c863.msi
[2002/06/25 12:18:59 | 000,264,704 | ---- | M] () -- C:\WINDOWS\Installer\d8513.msi
[2009/09/15 12:07:41 | 000,248,832 | ---- | M] () -- C:\WINDOWS\Installer\e9f639f.msi
[2011/02/11 20:47:00 | 012,028,928 | R--- | M] () -- C:\WINDOWS\Installer\f69fac0.msp
[2011/01/18 23:36:00 | 002,687,488 | R--- | M] () -- C:\WINDOWS\Installer\f69fad6.msp
[2011/07/17 13:40:41 | 000,467,456 | ---- | M] () -- C:\WINDOWS\Installer\f69fae3.msi
[2011/07/17 13:41:11 | 000,223,744 | ---- | M] () -- C:\WINDOWS\Installer\f69fae9.msi
[2011/07/17 13:41:26 | 020,333,056 | R--- | M] () -- C:\WINDOWS\Installer\f69faf3.msp
[2010/09/17 12:51:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Installer\wix{1185566F-12ED-3EF0-89CC-38866DCE1EEE}.SchedServiceConfig.rmi
[2010/07/15 14:30:51 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Installer\wix{85991ED2-010C-4930-96FA-52F43C2CE98A}.SchedServiceConfig.rmi
[2010/11/26 14:49:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Installer\wix{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}.SchedServiceConfig.rmi
[26 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]

< %windir%\system32\tasks\*.* >

< %systemroot%\Fonts\*.exe >

< %systemroot%\*. /mp /s >

< MD5 for: EXPLORER.EXE >
[2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\erdnt\cache\explorer.exe
[2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2007/06/13 07:26:03 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: REGEDIT.EXE >
[2008/04/13 20:12:32 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=058710B720282CA82B909912D3EF28DB -- C:\WINDOWS\erdnt\cache\regedit.exe
[2008/04/13 20:12:32 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=058710B720282CA82B909912D3EF28DB -- C:\WINDOWS\regedit.exe
[2008/04/13 20:12:32 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=058710B720282CA82B909912D3EF28DB -- C:\WINDOWS\ServicePackFiles\i386\regedit.exe
[2004/08/04 03:56:55 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=783AFC80383C176B22DBF8333343992D -- C:\WINDOWS\$NtServicePackUninstall$\regedit.exe

< MD5 for: SVCHOST.EXE >
[2008/04/13 20:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\erdnt\cache\svchost.exe
[2008/04/13 20:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008/04/13 20:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\svchost.exe
[2012/07/03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2004/08/04 03:56:57 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: USERINIT.EXE >
[2004/08/04 03:56:57 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/13 20:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\erdnt\cache\userinit.exe
[2008/04/13 20:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/13 20:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004/08/04 03:56:57 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2012/07/03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2004/05/26 21:38:46 | 000,483,328 | ---- | M] (Microsoft Corporation) MD5=E7F9D2E4E4A94A6F58014E5FFA16A65E -- C:\WINDOWS\$hf_mig$\KB840987\SP1QFE\winlogon.exe
[2004/05/26 21:38:46 | 000,483,328 | ---- | M] (Microsoft Corporation) MD5=E7F9D2E4E4A94A6F58014E5FFA16A65E -- C:\WINDOWS\$hf_mig$\KB841533\SP1QFE\winlogon.exe
[2008/04/13 20:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\erdnt\cache\winlogon.exe
[2008/04/13 20:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 20:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe

< C:\Windows\assembly\tmp\U\*.* /s >

< %Temp%\smtmp\1\*.* >

< %Temp%\smtmp\2\*.* >

< %Temp%\smtmp\3\*.* >

< %Temp%\smtmp\4\*.* >

< type c:\diskreport.txt /c >
Microsoft DiskPart version 5.1.3565
Copyright (C) 1999-2003 Microsoft Corporation.
On computer: BASEMENT
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
Volume 0 D CD-ROM 0 B
Volume 1 E DVD-ROM 0 B
Volume 2 C NTFS Partition 75 GB Healthy System

< End of report >
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.


(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


WELCOME
You Are Using: Server ID
Trusted Website Back to the Top ↑