" security certificate not trusted "

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
Hello,
I have ATT.NET. I use google chrome as my browser. For the last few weeks, when I go to ATT.NET and go to my mail,,,, a red screen appears and says " security sertificate not trusted, dont proceed. I proceed anyway to get to my email,, but I cant tell if im secure or not. Happens on some other sites as well. Someone said to check my time and date on my computer. I is up to date. Can anyone help me ???
Thanks
 

eddie5659

Moderator
Malware Specialist
Joined
Mar 19, 2001
Messages
37,270

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
Hello....I ran the " hijack this " report. Should I post it in here ?? or can I sent to you in a private email.
Some of the things on it have my name in it...... or should I just delete my name on those spots ??
Thanks
 

eddie5659

Moderator
Malware Specialist
Joined
Mar 19, 2001
Messages
37,270
Hi Frank

If you can post it here, that is the preferred choice. However, if you do edit your name out, can you send me a message with what it was before you deleted it. The reason is that some of the fixes will involve the logs, and your name is needed or the fixes won't work.

What we can do is, as soon as I've posted the fix, as soon as you've replied, I'll edit out your name in the fixes straight after ;)
 

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:27:16 PM, on 4/13/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxdfserv.exe
C:\WINDOWS\system32\lxdfcoms.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Update\Install\{BBE9401D-7D3B-4CCE-BA43-E4219B1F6B09}\chrome_updater.exe
C:\DOCUME~1\CRAIGD~1\LOCALS~1\Temp\CR_41DC0.tmp\setup.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\Lexmark 6500 Series\lxdfmon.exe
C:\Program Files\Lexmark 6500 Series\lxdfamon.exe
C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe
C:\Program Files\Acer Display\eDisplay Management\DTHtml.exe
C:\Program Files\Portrait Displays\Pivot Pro Plugin\wpctrl.exe
C:\Program Files\Simple Star\PhotoShow Print & Share\OurPictures.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Portrait Displays\Pivot Pro Plugin\floater.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Documents and Settings\Craig DeRosier\Application Data\Smilebox\SmileboxTray.exe
c:\PROGRA~1\mcafee\msc\mcupdmgr.exe
C:\Program Files\Common Files\Portrait Displays\Shared\HookManager.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.earthlink.net/partner/more/msie/button/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://att.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.earthlink.net/AL/Search
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by MSN & Bing
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120301231723.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [lxdfmon.exe] "C:\Program Files\Lexmark 6500 Series\lxdfmon.exe"
O4 - HKLM\..\Run: [lxdfamon] "C:\Program Files\Lexmark 6500 Series\lxdfamon.exe"
O4 - HKLM\..\Run: [Lexmark 6500 Series Fax Server] "C:\Program Files\Lexmark 6500 Series\fm3032.exe" /s
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [PivotSoftware] "C:\Program Files\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe" -delay=10
O4 - HKLM\..\Run: [DT ACR] C:\Program Files\Common Files\Portrait Displays\Shared\DT_startup.exe -ACR
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [OurPictures] "C:\Program Files\Simple Star\PhotoShow Print & Share\OurPictures.exe" /AutoStart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [SmileboxTray] "C:\Documents and Settings\Craig DeRosier\Application Data\Smilebox\SmileboxTray.exe"
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Refresh Pa&ge with Full Quality - C:\Program Files\EarthLink TotalAccess\Accelerator\\pac-page.html
O8 - Extra context menu item: Refresh Pi&cture with Full Quality - C:\Program Files\EarthLink TotalAccess\Accelerator\\pac-image.html
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://*.mcafee.com
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cab
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com.../en/x86/MuCatalogWebControl.cab?1283775513390
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,21/mcgdmgr.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\mcsniepl.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: lxdfCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdfserv.exe
O23 - Service: lxdf_device - - C:\WINDOWS\system32\lxdfcoms.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McciCMService - Alcatel-Lucent - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: McciServiceHost - Unknown owner - C:\Program Files\Common Files\Motive\McciServiceHost.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe

--
End of file - 10911 bytes
 

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
This is odd.... when I just sign in from yahoo email (not from the att.net) i dont get the certficate not trusted page but I do get it when signing out of yahoo mail. Any ideas ????
 

eddie5659

Moderator
Malware Specialist
Joined
Mar 19, 2001
Messages
37,270
That's odd, you would expect it the other way round. But, then it could be a redirect page for when you log out.

I do see some files that look suspect, so can you do the following for me:

-----

Download Security Check from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

---

Please download Malwarebytes' Anti-Malware from Here

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Full Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediatly.






Download and scan with SUPERAntiSpyware Free Edition for Home Users
  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download and unzip them from here.)
  • Under "Configuration and Preferences", click the Preferences button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Home" button to leave the control center screen.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click Scan your computer.
  • On the left, select all fixed drives.
  • Click "Start Complete Scan" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "Continue".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "Remove Threats" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click View Scan Logs.
      [*]Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
      [*]If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
      [*]Please copy and paste the Scan Log results in your next reply.
    [*]Click Close to exit the program.


Please include the MBAM log and, SUPERAntiSpyware Scan Log and a fresh HijackThis log in your next reply

eddie
 

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
Security check -----


Results of screen317's Security Check version 0.99.32
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
McAfee Security Scan Plus
McAfee Virtual Technician
McAfee SecurityCenter
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
HijackThis 2.0.2
Java(TM) SE Runtime Environment 6 Update 1
Java(TM) 6 Update 3
Java version out of date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

``````````End of Log````````````



Superantispyware ----

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 04/18/2012 at 09:31 AM

Application Version : 5.0.1146

Core Rules Database Version : 8472
Trace Rules Database Version: 6284

Scan type : Complete Scan
Total Scan Time : 02:44:47

Operating System Information
Windows XP Home Edition 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 568
Memory threats detected : 0
Registry items scanned : 34405
Registry threats detected : 1
File items scanned : 97666
File threats detected : 185

PUP.MyWebSearch/FunWebProducts
HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\FunWebProducts

PUP.PC MightyMax
C:\Program Files\PC MIGHTYMAX 2010\pcmm2009.error.log
C:\Program Files\PC MIGHTYMAX 2010

Adware.Tracking Cookie
C:\Documents and Settings\Craig DeRosier\Cookies\[email protected][2].txt [ /linksynergy ]
C:\Documents and Settings\Craig DeRosier\cookies\95HLW30F.txt [ /doubleclick.net ]
C:\Documents and Settings\Craig DeRosier\cookies\7I1UDVLJ.txt [ /ad.wsod.com ]
C:\Documents and Settings\Craig DeRosier\cookies\R2PR0NK1.txt [ /ad.yieldmanager.com ]
C:\Documents and Settings\Craig DeRosier\cookies\TKPF91Y3.txt [ /atdmt.com ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\Cookies\elaine [email protected][3].txt [ Cookie:elaine [email protected]/ ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\Cookies\elaine [email protected][3].txt [ Cookie:elaine [email protected]/ ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\Cookies\elaine [email protected][1].txt [ Cookie:elaine [email protected]/ ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\Cookies\elaine [email protected][3].txt [ Cookie:elaine [email protected]/ ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\Cookies\elaine [email protected][1].txt [ Cookie:elaine [email protected]/ ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.dteenergy.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.dteenergy.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.adinterax.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.richmedia.yahoo.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
citi.bridgetrack.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.accountonline.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
www.accountonline.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
sales.liveperson.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
sales.liveperson.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.readersdigest.122.2o7.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.questionmarket.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.optimost.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.edge.ru4.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.edge.ru4.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.northwestairlines.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.ge.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.247realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.247realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.247realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.oasn04.247realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.a1.interclick.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.a1.interclick.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.trafficmp.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.content.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.overture.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.fastclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.microsoftwindows.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\1U3WGY16.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /A.AS-US.FALKAG ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /ADVERTISING ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][2].TXT [ /AS-US.FALKAG ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][2].TXT [ /ATDMT ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /DOUBLECLICK ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /EDGE.RU4 ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /EHG-SARALEEAPPAREL.HITBOX ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][2].TXT [ /HITBOX ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /INSIGHTEXPRESS ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /MEDIAPLEX ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /QKSRV ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][2].TXT [ /QUESTIONMARKET ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /SERVEDBY.ADVERTISING ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /TRIBALFUSION ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][2].TXT [ /TRIPOD ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /VALUECLICK ]
C:\DOCUMENTS AND SETTINGS\ELAINE WALKER\COOKIES\ELAINE [email protected][1].TXT [ /ZEDO ]

Heur.Agent/Gen-WhiteBox
C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\MY DOCUMENTS\DOWNLOADS\INSTALLER_ADOBE_FLASH_PLAYER_ENGLISH (1).EXE
C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\MY DOCUMENTS\DOWNLOADS\INSTALLER_ADOBE_FLASH_PLAYER_ENGLISH (2).EXE
C:\DOCUMENTS AND SETTINGS\CRAIG DEROSIER\MY DOCUMENTS\DOWNLOADS\INSTALLER_ADOBE_FLASH_PLAYER_ENGLISH.EXE


Mbam--
Malwarebytes' Anti-Malware 1.41
Database version: 2775
Windows 5.1.2600 Service Pack 3

4/18/2012 3:55:54 PM
mbam-log-2012-04-18 (15-55-54).txt

Scan type: Full Scan (A:\|C:\|D:\|E:\|)
Objects scanned: 207858
Time elapsed: 2 hour(s), 40 minute(s), 5 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\*\shell\av (Rogue.AndromedaAv) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
 

eddie5659

Moderator
Malware Specialist
Joined
Mar 19, 2001
Messages
37,270
Thanks :)

Your Java is out of date, so lets get that updated first:

Upgrade Java : (32 bits)
  • Download the latest version of Java SE Runtime Environment (JRE) JRE 7 Update 3 .
  • Under the JAVA Platform Standard Edition, click the "Download JRE" button to the right.
  • Accept License Agreement.[/b]".
  • Click on the link to download Windows Offline Installation 32 bit ( jre-7u3-windows-i586.exe) and save it to your desktop. Do NOT use the Sun Download Manager..
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel, double-click on Add/Remove programs and remove all older versions of Java.
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java version.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on the download to install the newest version.(Vista or Win 7 users, right click on the jre-7u3-windows-i586.exe and select "Run as an Administrator.")



--------------------


Can you run the following tools, and copy/paste the logs that they produce here:


Download the latest version of TDSSKiller from here and save it to your Desktop.


  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.


  • Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.


  • Click the Start Scan button.


  • If a suspicious object is detected, the default action will be Skip, click on Continue.


  • If malicious objects are found, they will show in the Scan results and offer three (3) options.
  • Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.


  • Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply


--------------------------

Download aswMBR.exe ( 511KB ) to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan


On completion of the scan click save log, save it to your desktop and post in your next reply


-------------------------

Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT !!! As you download it rename it to username123.exe and save it to your Desktop


  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

    • Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
    • Remember to re-enable the protection again afterwards before connecting to the Internet.
  • Double click on ComboFix.exe & follow the prompts.

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.




Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:




Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

eddie
 

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
I ran everything,,, and will post next reply --- however the " combo fix " didnt work. It went as far as scanning up to 50 steps... and then a blue screen appeared saying " a problems has been detected and windows has been shut down to prevenet damage.... pad_pool_header. If this is the first time you have seen this stop error,, restart your computer...
( and then there was some other things on there as well ...
I turned off my firewall and antivirus like it says.... i changed the name to 123.exe.....
what do I do now ?????
Thanks.
 

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
Here is everything except the " combo fix " ---


aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-19 19:21:59
-----------------------------
19:21:59.734 OS Version: Windows 5.1.2600 Service Pack 3
19:21:59.734 Number of processors: 1 586 0x209
19:21:59.734 ComputerName: CRAIGELAINE UserName:
19:22:00.750 Initialize success
19:22:17.312 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
19:22:17.312 Disk 0 Vendor: Maxtor_2F040L0 VAM51JJ0 Size: 39205MB BusType: 3
19:22:17.343 Disk 0 MBR read successfully
19:22:17.343 Disk 0 MBR scan
19:22:17.343 Disk 0 Windows XP default MBR code
19:22:17.359 Disk 0 Partition 1 00 DE Dell Utility Dell 4.1 31 MB offset 63
19:22:17.359 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 39166 MB offset 64260
19:22:17.359 Disk 0 scanning sectors +80276805
19:22:17.468 Disk 0 scanning C:\WINDOWS\system32\drivers
19:22:36.812 Service scanning
19:23:23.109 Modules scanning
19:23:51.312 Disk 0 trace - called modules:
19:23:51.343 ntoskrnl.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
19:23:51.343 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ab37ab8]
19:23:51.343 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8aaffd98]
19:23:51.343 Scan finished successfully
19:24:29.078 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Craig DeRosier\My Documents\MBR.dat"
19:24:29.093 The log file has been saved successfully to "C:\Documents and Settings\Craig DeRosier\My Documents\aswMBR.txt"
------------------------------------------------------------------------------------


19:09:31.0546 2904 TDSS rootkit removing tool 2.7.29.0 Apr 18 2012 16:44:20
19:09:33.0546 2904 ============================================================
19:09:33.0546 2904 Current date / time: 2012/04/19 19:09:33.0546
19:09:33.0546 2904 SystemInfo:
19:09:33.0546 2904
19:09:33.0546 2904 OS Version: 5.1.2600 ServicePack: 3.0
19:09:33.0546 2904 Product type: Workstation
19:09:33.0546 2904 ComputerName: CRAIGELAINE
19:09:33.0546 2904 UserName: Craig DeRosier
19:09:33.0546 2904 Windows directory: C:\WINDOWS
19:09:33.0546 2904 System windows directory: C:\WINDOWS
19:09:33.0546 2904 Processor architecture: Intel x86
19:09:33.0546 2904 Number of processors: 1
19:09:33.0546 2904 Page size: 0x1000
19:09:33.0546 2904 Boot type: Normal boot
19:09:33.0546 2904 ============================================================
19:09:37.0015 2904 Drive \Device\Harddisk0\DR0 - Size: 0x9925B0000 (38.29 Gb), SectorSize: 0x200, Cylinders: 0x1386, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:09:37.0015 2904 \Device\Harddisk0\DR0:
19:09:37.0015 2904 MBR partitions:
19:09:37.0015 2904 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xFB04, BlocksNum 0x4C7F241
19:09:37.0125 2904 C: <-> \Device\Harddisk0\DR0\Partition0
19:09:37.0125 2904 Initialize success
19:09:37.0125 2904 ============================================================
19:10:50.0765 2236 ============================================================
19:10:50.0781 2236 Scan started
19:10:50.0781 2236 Mode: Manual; SigCheck; TDLFS;
19:10:50.0781 2236 ============================================================
19:10:51.0015 2236 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:10:52.0468 2236 !SASCORE ( UnsignedFile.Multi.Generic ) - warning
19:10:52.0468 2236 !SASCORE - detected UnsignedFile.Multi.Generic (1)
19:10:52.0671 2236 Abiosdsk - ok
19:10:52.0796 2236 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS
19:10:54.0828 2236 abp480n5 - ok
19:10:55.0015 2236 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:10:55.0234 2236 ACPI - ok
19:10:55.0437 2236 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:10:55.0656 2236 ACPIEC - ok
19:10:55.0859 2236 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:10:55.0921 2236 AdobeFlashPlayerUpdateSvc ( UnsignedFile.Multi.Generic ) - warning
19:10:55.0921 2236 AdobeFlashPlayerUpdateSvc - detected UnsignedFile.Multi.Generic (1)
19:10:56.0218 2236 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\System32\DRIVERS\adpu160m.sys
19:10:56.0625 2236 adpu160m - ok
19:10:56.0843 2236 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:10:57.0062 2236 aec - ok
19:10:57.0328 2236 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:10:57.0578 2236 AFD - ok
19:10:57.0781 2236 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\System32\DRIVERS\agp440.sys
19:10:58.0015 2236 agp440 - ok
19:10:58.0218 2236 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\System32\DRIVERS\agpCPQ.sys
19:10:58.0515 2236 agpCPQ - ok
19:10:58.0703 2236 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\System32\DRIVERS\aha154x.sys
19:10:58.0921 2236 Aha154x - ok
19:10:59.0203 2236 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\System32\DRIVERS\aic78u2.sys
19:10:59.0562 2236 aic78u2 - ok
19:10:59.0750 2236 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\System32\DRIVERS\aic78xx.sys
19:11:00.0078 2236 aic78xx - ok
19:11:00.0281 2236 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
19:11:00.0562 2236 Alerter - ok
19:11:00.0703 2236 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
19:11:00.0796 2236 ALG - ok
19:11:00.0984 2236 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\System32\DRIVERS\aliide.sys
19:11:01.0281 2236 AliIde - ok
19:11:01.0500 2236 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\System32\DRIVERS\alim1541.sys
19:11:01.0734 2236 alim1541 - ok
19:11:01.0953 2236 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\System32\DRIVERS\amdagp.sys
19:11:02.0203 2236 amdagp - ok
19:11:02.0406 2236 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\System32\DRIVERS\amsint.sys
19:11:02.0609 2236 amsint - ok
19:11:02.0718 2236 AppMgmt - ok
19:11:02.0875 2236 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\System32\DRIVERS\asc.sys
19:11:03.0187 2236 asc - ok
19:11:03.0406 2236 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\System32\DRIVERS\asc3350p.sys
19:11:03.0609 2236 asc3350p - ok
19:11:03.0828 2236 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\System32\DRIVERS\asc3550.sys
19:11:04.0140 2236 asc3550 - ok
19:11:04.0421 2236 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:11:04.0671 2236 aspnet_state - ok
19:11:04.0890 2236 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:11:05.0109 2236 AsyncMac - ok
19:11:05.0281 2236 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:11:05.0531 2236 atapi - ok
19:11:05.0671 2236 Atdisk - ok
19:11:05.0828 2236 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:11:06.0078 2236 Atmarpc - ok
19:11:06.0281 2236 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
19:11:06.0515 2236 AudioSrv - ok
19:11:06.0687 2236 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:11:06.0937 2236 audstub - ok
19:11:07.0218 2236 bcm4sbxp (068523d2cd260069b19ad68adea0d739) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
19:11:07.0421 2236 bcm4sbxp - ok
19:11:07.0671 2236 BCMModem (41347688046d49cde0f6d138a534f73d) C:\WINDOWS\system32\DRIVERS\BCMSM.sys
19:11:07.0937 2236 BCMModem - ok
19:11:08.0109 2236 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:11:08.0343 2236 Beep - ok
19:11:08.0515 2236 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
19:11:09.0218 2236 BITS - ok
19:11:09.0375 2236 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
19:11:09.0609 2236 Browser - ok
19:11:09.0796 2236 bvrp_pci (73458867c8963c76260c18d7bdb15625) C:\WINDOWS\system32\drivers\bvrp_pci.sys
19:11:09.0937 2236 bvrp_pci ( UnsignedFile.Multi.Generic ) - warning
19:11:09.0937 2236 bvrp_pci - detected UnsignedFile.Multi.Generic (1)
19:11:09.0984 2236 catchme - ok
19:11:10.0218 2236 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\System32\DRIVERS\cbidf2k.sys
19:11:10.0453 2236 cbidf - ok
19:11:10.0640 2236 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:11:10.0843 2236 cbidf2k - ok
19:11:11.0015 2236 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys
19:11:11.0218 2236 cd20xrnt - ok
19:11:11.0468 2236 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:11:11.0687 2236 Cdaudio - ok
19:11:11.0890 2236 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:11:12.0093 2236 Cdfs - ok
19:11:12.0359 2236 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:11:12.0609 2236 Cdrom - ok
19:11:12.0890 2236 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\WINDOWS\system32\drivers\cfwids.sys
19:11:13.0015 2236 cfwids - ok
19:11:13.0234 2236 Changer - ok
19:11:13.0328 2236 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
19:11:13.0578 2236 CiSvc - ok
19:11:13.0718 2236 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
19:11:14.0093 2236 ClipSrv - ok
19:11:14.0406 2236 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:11:14.0750 2236 clr_optimization_v2.0.50727_32 - ok
19:11:14.0968 2236 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:11:15.0093 2236 clr_optimization_v4.0.30319_32 - ok
19:11:15.0328 2236 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\System32\DRIVERS\cmdide.sys
19:11:15.0593 2236 CmdIde - ok
19:11:15.0703 2236 COMSysApp - ok
19:11:15.0859 2236 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\System32\DRIVERS\cpqarray.sys
19:11:16.0156 2236 Cpqarray - ok
19:11:16.0328 2236 Creative Service for CDROM Access (3c8b6609712f4ff78e521f6dcfc4032b) C:\WINDOWS\System32\CTsvcCDA.exe
19:11:16.0468 2236 Creative Service for CDROM Access ( UnsignedFile.Multi.Generic ) - warning
19:11:16.0468 2236 Creative Service for CDROM Access - detected UnsignedFile.Multi.Generic (1)
19:11:16.0578 2236 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
19:11:16.0828 2236 CryptSvc - ok
19:11:17.0000 2236 ctsfm2k (b459ae4afca570088adddbe55eabbc92) C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
19:11:17.0281 2236 ctsfm2k - ok
19:11:17.0515 2236 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\System32\DRIVERS\dac2w2k.sys
19:11:17.0750 2236 dac2w2k - ok
19:11:17.0968 2236 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\System32\DRIVERS\dac960nt.sys
19:11:18.0328 2236 dac960nt - ok
19:11:18.0500 2236 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:11:18.0687 2236 DcomLaunch - ok
19:11:18.0843 2236 DgiVecp - ok
19:11:18.0953 2236 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
19:11:19.0171 2236 Dhcp - ok
19:11:19.0328 2236 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:11:19.0562 2236 Disk - ok
19:11:19.0671 2236 dmadmin - ok
19:11:19.0796 2236 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:11:20.0156 2236 dmboot - ok
19:11:20.0390 2236 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
19:11:20.0687 2236 dmio - ok
19:11:20.0890 2236 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:11:21.0140 2236 dmload - ok
19:11:21.0343 2236 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
19:11:21.0656 2236 dmserver - ok
19:11:21.0796 2236 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:11:22.0062 2236 DMusic - ok
19:11:22.0250 2236 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
19:11:22.0484 2236 Dnscache - ok
19:11:22.0671 2236 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
19:11:22.0937 2236 Dot3svc - ok
19:11:23.0109 2236 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\System32\DRIVERS\dpti2o.sys
19:11:23.0359 2236 dpti2o - ok
19:11:23.0562 2236 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:11:23.0781 2236 drmkaud - ok
19:11:23.0968 2236 DSBrokerService (fe80901578e7e3da70299a5aeb2b7fbd) C:\Program Files\DellSupport\brkrsvc.exe
19:11:24.0093 2236 DSBrokerService - ok
19:11:24.0375 2236 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
19:11:24.0578 2236 DSproct ( UnsignedFile.Multi.Generic ) - warning
19:11:24.0578 2236 DSproct - detected UnsignedFile.Multi.Generic (1)
19:11:24.0796 2236 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
19:11:24.0890 2236 dsunidrv - ok
19:11:25.0046 2236 DTSRVC (0cedf29cfa2e1209456d98c2ee4ae6f5) C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
19:11:25.0062 2236 DTSRVC - ok
19:11:25.0281 2236 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
19:11:25.0531 2236 EapHost - ok
19:11:25.0734 2236 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
19:11:25.0984 2236 EL90XBC - ok
19:11:26.0125 2236 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
19:11:26.0359 2236 ERSvc - ok
19:11:26.0531 2236 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:11:26.0625 2236 Eventlog - ok
19:11:26.0812 2236 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll
19:11:26.0906 2236 EventSystem - ok
19:11:27.0109 2236 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:11:27.0328 2236 Fastfat - ok
19:11:27.0468 2236 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:11:27.0687 2236 FastUserSwitchingCompatibility - ok
19:11:27.0906 2236 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
19:11:28.0140 2236 Fdc - ok
19:11:28.0296 2236 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:11:28.0562 2236 Fips - ok
19:11:28.0750 2236 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:11:29.0000 2236 Flpydisk - ok
19:11:29.0265 2236 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
19:11:29.0468 2236 FltMgr - ok
19:11:29.0734 2236 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:11:29.0843 2236 FontCache3.0.0.0 - ok
19:11:30.0000 2236 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS
19:11:30.0203 2236 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
19:11:30.0203 2236 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
19:11:30.0359 2236 FsUsbExService (d3f9205cc4cb07553f2f9472c767ea87) C:\WINDOWS\system32\FsUsbExService.Exe
19:11:30.0546 2236 FsUsbExService ( UnsignedFile.Multi.Generic ) - warning
19:11:30.0546 2236 FsUsbExService - detected UnsignedFile.Multi.Generic (1)
19:11:30.0890 2236 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:11:31.0109 2236 Fs_Rec - ok
19:11:31.0359 2236 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:11:31.0593 2236 Ftdisk - ok
19:11:31.0937 2236 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
19:11:32.0171 2236 gameenum - ok
19:11:32.0390 2236 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:11:32.0625 2236 Gpc - ok
19:11:32.0796 2236 grmnusb (d956358054e99e6ffac69cd87e893a89) C:\WINDOWS\system32\drivers\grmnusb.sys
19:11:32.0843 2236 grmnusb ( UnsignedFile.Multi.Generic ) - warning
19:11:32.0843 2236 grmnusb - detected UnsignedFile.Multi.Generic (1)
19:11:33.0015 2236 gusvc (751c1d2ca2abf4a9f5a6b8d7d45b907c) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:11:33.0140 2236 gusvc - ok
19:11:33.0328 2236 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:11:33.0562 2236 helpsvc - ok
19:11:33.0671 2236 HidServ - ok
19:11:33.0828 2236 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:11:34.0046 2236 HidUsb - ok
19:11:34.0250 2236 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
19:11:34.0515 2236 hkmsvc - ok
19:11:34.0718 2236 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\System32\DRIVERS\hpn.sys
19:11:34.0984 2236 hpn - ok
19:11:35.0218 2236 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
19:11:35.0296 2236 HTTP - ok
19:11:35.0468 2236 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
19:11:35.0875 2236 HTTPFilter - ok
19:11:36.0093 2236 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
19:11:36.0328 2236 i2omgmt - ok
19:11:36.0531 2236 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\System32\DRIVERS\i2omp.sys
19:11:36.0781 2236 i2omp - ok
19:11:37.0000 2236 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:11:37.0234 2236 i8042prt - ok
19:11:37.0468 2236 i81x (06b7ef73ba5f302eecc294cdf7e19702) C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
19:11:37.0718 2236 i81x - ok
19:11:37.0953 2236 iAimFP0 (7b5b44efe5eb9dadfb8ee29700885d23) C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
19:11:38.0187 2236 iAimFP0 - ok
19:11:38.0406 2236 iAimFP1 (eb1f6bab6c22ede0ba551b527475f7e9) C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
19:11:38.0640 2236 iAimFP1 - ok
19:11:38.0859 2236 iAimFP2 (03ce989d846c1aa81145cb22fcb86d06) C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
19:11:39.0093 2236 iAimFP2 - ok
19:11:39.0359 2236 iAimFP3 (525849b4469de021d5d61b4db9be3a9d) C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
19:11:39.0609 2236 iAimFP3 - ok
19:11:39.0828 2236 iAimFP4 (589c2bcdb5bd602bf7b63d210407ef8c) C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
19:11:40.0093 2236 iAimFP4 - ok
19:11:40.0328 2236 iAimTV0 (d83bdd5c059667a2f647a6be5703a4d2) C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
19:11:40.0546 2236 iAimTV0 - ok
19:11:40.0750 2236 iAimTV1 (ed968d23354daa0d7c621580c012a1f6) C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
19:11:40.0984 2236 iAimTV1 - ok
19:11:41.0125 2236 iAimTV2 - ok
19:11:41.0343 2236 iAimTV3 (d738273f218a224c1ddac04203f27a84) C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
19:11:41.0578 2236 iAimTV3 - ok
19:11:41.0796 2236 iAimTV4 (0052d118995cbab152daabe6106d1442) C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
19:11:42.0015 2236 iAimTV4 - ok
19:11:42.0312 2236 ialm (44b7d5a4f2bd9fe21aea0bb0bace38c4) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
19:11:42.0671 2236 ialm - ok
19:11:42.0953 2236 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:11:43.0203 2236 idsvc - ok
19:11:43.0453 2236 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:11:43.0687 2236 Imapi - ok
19:11:43.0828 2236 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
19:11:44.0062 2236 ImapiService - ok
19:11:44.0234 2236 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\System32\DRIVERS\ini910u.sys
19:11:44.0531 2236 ini910u - ok
19:11:44.0750 2236 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\System32\DRIVERS\intelide.sys
19:11:44.0984 2236 IntelIde - ok
19:11:45.0250 2236 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:11:45.0484 2236 intelppm - ok
19:11:45.0703 2236 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
19:11:45.0906 2236 ip6fw - ok
19:11:46.0078 2236 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:11:46.0343 2236 IpFilterDriver - ok
19:11:46.0562 2236 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:11:46.0796 2236 IpInIp - ok
19:11:47.0015 2236 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:11:47.0218 2236 IpNat - ok
19:11:47.0468 2236 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:11:47.0703 2236 IPSec - ok
19:11:47.0906 2236 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:11:48.0015 2236 IRENUM - ok
19:11:48.0265 2236 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:11:48.0484 2236 isapnp - ok
19:11:48.0734 2236 JavaQuickStarterService (d9b1e929f2464d4c23fa9cb47df4a1d4) C:\Program Files\Java\jre7\bin\jqs.exe
19:11:48.0750 2236 JavaQuickStarterService - ok
19:11:48.0953 2236 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:11:49.0187 2236 Kbdclass - ok
19:11:49.0406 2236 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:11:49.0609 2236 kmixer - ok
19:11:49.0812 2236 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:11:49.0984 2236 KSecDD - ok
19:11:50.0156 2236 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
19:11:50.0312 2236 lanmanserver - ok
19:11:50.0500 2236 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
19:11:50.0750 2236 lanmanworkstation - ok
19:11:50.0921 2236 lbrtfdc - ok
19:11:51.0031 2236 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
19:11:51.0250 2236 LmHosts - ok
19:11:51.0421 2236 lxdfCATSCustConnectService (2144ae8412927e15119ee7303f8a5df1) C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdfserv.exe
19:11:51.0421 2236 lxdfCATSCustConnectService - ok
19:11:51.0578 2236 lxdf_device - ok
19:11:51.0781 2236 McAfee SiteAdvisor Service (19d95f16cdc256078ea45d4e566ea1db) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
19:11:52.0000 2236 McAfee SiteAdvisor Service - ok
19:11:52.0187 2236 McciCMService (e6cb119ef2e148eaa1a247343550756e) C:\Program Files\Common Files\Motive\McciCMService.exe
19:11:52.0234 2236 McciCMService ( UnsignedFile.Multi.Generic ) - warning
19:11:52.0234 2236 McciCMService - detected UnsignedFile.Multi.Generic (1)
19:11:52.0406 2236 McciServiceHost - ok
19:11:52.0500 2236 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
19:11:52.0625 2236 McComponentHostService - ok
19:11:52.0875 2236 McMPFSvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
19:11:53.0015 2236 McMPFSvc - ok
19:11:53.0250 2236 mcmscsvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:11:53.0281 2236 mcmscsvc - ok
19:11:53.0296 2236 McNaiAnn (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:11:53.0328 2236 McNaiAnn - ok
19:11:53.0328 2236 McNASvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:11:53.0359 2236 McNASvc - ok
19:11:53.0562 2236 McODS (e8c5aae17e8332f5f4f57935238cd5eb) C:\Program Files\McAfee\VirusScan\mcods.exe
19:11:53.0703 2236 McODS - ok
19:11:53.0953 2236 McProxy (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:11:53.0968 2236 McProxy - ok
19:11:54.0218 2236 McShield (151f3ca25b739b9cb0066abd1523f064) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
19:11:54.0359 2236 McShield - ok
19:11:54.0515 2236 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
19:11:54.0734 2236 Messenger - ok
19:11:54.0984 2236 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\WINDOWS\system32\drivers\mfeapfk.sys
19:11:55.0093 2236 mfeapfk - ok
19:11:55.0343 2236 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\WINDOWS\system32\drivers\mfeavfk.sys
19:11:55.0484 2236 mfeavfk - ok
19:11:55.0656 2236 mfeavfk01 - ok
19:11:55.0796 2236 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\WINDOWS\system32\drivers\mfebopk.sys
19:11:55.0906 2236 mfebopk - ok
19:11:56.0156 2236 mfefire (26ba2eebcff16f611ce1118fa0850810) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
19:11:56.0296 2236 mfefire - ok
19:11:56.0546 2236 mfefirek (215666a8a85023ef019b510cbb67f678) C:\WINDOWS\system32\drivers\mfefirek.sys
19:11:56.0687 2236 mfefirek - ok
19:11:56.0906 2236 mfehidk (56d330981866a72f061dd16cc5004513) C:\WINDOWS\system32\drivers\mfehidk.sys
19:11:57.0187 2236 mfehidk - ok
19:11:57.0437 2236 mfendisk (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
19:11:57.0562 2236 mfendisk - ok
19:11:57.0578 2236 mfendiskmp (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
19:11:57.0593 2236 mfendiskmp - ok
19:11:57.0765 2236 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\WINDOWS\system32\drivers\mferkdet.sys
19:11:57.0890 2236 mferkdet - ok
19:11:58.0062 2236 mferkdk (41fe2f288e05a6c8ab85dd56770ffbad) C:\WINDOWS\system32\drivers\mferkdk.sys
19:11:58.0203 2236 mferkdk - ok
19:11:58.0390 2236 mfesmfk (096b52ea918aa909ba5903d79e129005) C:\WINDOWS\system32\drivers\mfesmfk.sys
19:11:58.0531 2236 mfesmfk - ok
19:11:58.0734 2236 mfetdi2k (922e64ca38e38106498fb3435a8e399d) C:\WINDOWS\system32\drivers\mfetdi2k.sys
19:11:58.0875 2236 mfetdi2k - ok
19:11:58.0984 2236 mfevtp (d286062a8f57b0e69db02111493ced77) C:\WINDOWS\system32\mfevtps.exe
19:11:59.0109 2236 mfevtp - ok
19:11:59.0312 2236 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:11:59.0546 2236 mnmdd - ok
19:11:59.0687 2236 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe
19:11:59.0921 2236 mnmsrvc - ok
19:12:00.0109 2236 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:12:00.0312 2236 Modem - ok
19:12:00.0593 2236 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
19:12:00.0921 2236 MODEMCSA - ok
19:12:01.0109 2236 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:12:01.0328 2236 Mouclass - ok
19:12:01.0609 2236 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:12:01.0828 2236 mouhid - ok
19:12:02.0015 2236 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:12:02.0250 2236 MountMgr - ok
19:12:02.0468 2236 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\System32\DRIVERS\mraid35x.sys
19:12:02.0781 2236 mraid35x - ok
19:12:02.0953 2236 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
19:12:03.0062 2236 MREMP50 ( UnsignedFile.Multi.Generic ) - warning
19:12:03.0062 2236 MREMP50 - detected UnsignedFile.Multi.Generic (1)
19:12:03.0281 2236 MREMPR5 - ok
19:12:03.0421 2236 MRENDIS5 - ok
19:12:03.0500 2236 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
19:12:03.0640 2236 MRESP50 ( UnsignedFile.Multi.Generic ) - warning
19:12:03.0640 2236 MRESP50 - detected UnsignedFile.Multi.Generic (1)
19:12:03.0859 2236 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:12:04.0078 2236 MRxDAV - ok
19:12:04.0359 2236 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:12:04.0671 2236 MRxSmb - ok
19:12:04.0875 2236 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe
19:12:05.0125 2236 MSDTC - ok
19:12:05.0343 2236 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:12:05.0546 2236 Msfs - ok
19:12:05.0671 2236 MSIServer - ok
19:12:05.0828 2236 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:12:06.0046 2236 MSKSSRV - ok
19:12:06.0281 2236 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:12:06.0500 2236 MSPCLOCK - ok
19:12:06.0718 2236 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:12:06.0953 2236 MSPQM - ok
19:12:07.0171 2236 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:12:07.0421 2236 mssmbios - ok
19:12:07.0640 2236 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:12:07.0812 2236 Mup - ok
19:12:07.0984 2236 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
19:12:08.0218 2236 napagent - ok
19:12:08.0375 2236 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:12:08.0593 2236 NDIS - ok
19:12:08.0812 2236 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:12:09.0000 2236 NdisTapi - ok
19:12:09.0250 2236 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:12:09.0500 2236 Ndisuio - ok
19:12:09.0718 2236 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:12:09.0953 2236 NdisWan - ok
19:12:10.0171 2236 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:12:10.0375 2236 NDProxy - ok
19:12:10.0609 2236 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:12:10.0812 2236 NetBIOS - ok
19:12:11.0093 2236 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:12:11.0359 2236 NetBT - ok
19:12:11.0515 2236 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:12:11.0765 2236 NetDDE - ok
19:12:11.0765 2236 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:12:11.0984 2236 NetDDEdsdm - ok
19:12:12.0125 2236 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:12:12.0328 2236 Netlogon - ok
19:12:12.0468 2236 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
19:12:12.0687 2236 Netman - ok
19:12:12.0984 2236 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:12:13.0015 2236 NetTcpPortSharing - ok
19:12:13.0156 2236 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
19:12:13.0203 2236 Nla - ok
19:12:13.0453 2236 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:12:13.0687 2236 Npfs - ok
19:12:13.0921 2236 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:12:14.0218 2236 Ntfs - ok
19:12:14.0359 2236 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
19:12:14.0578 2236 NtLmSsp - ok
19:12:14.0718 2236 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
19:12:14.0984 2236 NtmsSvc - ok
19:12:15.0265 2236 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:12:15.0484 2236 Null - ok
19:12:15.0781 2236 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:12:16.0218 2236 nv - ok
19:12:16.0437 2236 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:12:16.0671 2236 NwlnkFlt - ok
19:12:16.0875 2236 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:12:17.0109 2236 NwlnkFwd - ok
19:12:17.0359 2236 omci (53d5f1278d9edb21689bbbcecc09108d) C:\WINDOWS\system32\DRIVERS\omci.sys
19:12:17.0453 2236 omci ( UnsignedFile.Multi.Generic ) - warning
19:12:17.0453 2236 omci - detected UnsignedFile.Multi.Generic (1)
19:12:17.0578 2236 OneStepSrch Service - ok
19:12:17.0812 2236 ossrv (c720c25b2d0c93dc425155f5b6a707f3) C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
19:12:17.0906 2236 ossrv - ok
19:12:18.0125 2236 P16X (f051107ff80f132882e71e3a5d302ec1) C:\WINDOWS\system32\drivers\P16X.sys
19:12:18.0421 2236 P16X - ok
19:12:18.0640 2236 P3 (c90018bafdc7098619a4a95b046b30f3) C:\WINDOWS\system32\DRIVERS\p3.sys
19:12:18.0890 2236 P3 - ok
19:12:19.0109 2236 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
19:12:19.0343 2236 Parport - ok
19:12:19.0546 2236 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:12:19.0734 2236 PartMgr - ok
19:12:19.0968 2236 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:12:20.0171 2236 ParVdm - ok
19:12:20.0343 2236 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:12:20.0531 2236 pccsmcfd - ok
19:12:20.0734 2236 PCD5SRVC{FBEA8B78-1B22F121-05040000} (fe11b610ea44101ef9dcba7f38340f64) C:\PROGRA~1\DELLSU~2\HWDiag\bin\PCD5SRVC.pkms
19:12:25.0390 2236 PCD5SRVC{FBEA8B78-1B22F121-05040000} ( UnsignedFile.Multi.Generic ) - warning
19:12:25.0390 2236 PCD5SRVC{FBEA8B78-1B22F121-05040000} - detected UnsignedFile.Multi.Generic (1)
19:12:25.0609 2236 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:12:25.0828 2236 PCI - ok
19:12:26.0000 2236 PCIDump - ok
19:12:26.0203 2236 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:12:26.0468 2236 PCIIde - ok
19:12:26.0671 2236 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:12:26.0921 2236 Pcmcia - ok
19:12:27.0093 2236 PDCOMP - ok
19:12:27.0218 2236 PDFRAME - ok
19:12:27.0437 2236 PdiPorts (089ca80ce0766b031164714b51df99bb) C:\WINDOWS\system32\Drivers\PdiPorts.sys
19:12:27.0546 2236 PdiPorts - ok
19:12:27.0750 2236 PdiService (0a098df98ec8facaa30bd7db4c7aea06) C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe
19:12:27.0765 2236 PdiService - ok
19:12:27.0937 2236 PDRELI - ok
19:12:28.0046 2236 PDRFRAME - ok
19:12:28.0140 2236 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\System32\DRIVERS\perc2.sys
19:12:28.0468 2236 perc2 - ok
19:12:28.0687 2236 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\System32\DRIVERS\perc2hib.sys
19:12:28.0921 2236 perc2hib - ok
19:12:29.0093 2236 PfModNT (2f5532f9b0f903b26847da674b4f55b2) C:\WINDOWS\System32\PfModNT.sys
19:12:29.0234 2236 PfModNT ( UnsignedFile.Multi.Generic ) - warning
19:12:29.0234 2236 PfModNT - detected UnsignedFile.Multi.Generic (1)
19:12:29.0406 2236 Pivot (ec4f52692b5cf116ca6b0428d84a9aba) C:\WINDOWS\system32\drivers\pivot.sys
19:12:29.0562 2236 Pivot ( UnsignedFile.Multi.Generic ) - warning
19:12:29.0562 2236 Pivot - detected UnsignedFile.Multi.Generic (1)
19:12:29.0812 2236 pivotmou (7d72ac1abda06ff42fd57345d0d75523) C:\WINDOWS\System32\drivers\pivotmou.sys
19:12:29.0906 2236 pivotmou ( UnsignedFile.Multi.Generic ) - warning
19:12:29.0906 2236 pivotmou - detected UnsignedFile.Multi.Generic (1)
19:12:30.0062 2236 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:12:30.0093 2236 PlugPlay - ok
19:12:30.0281 2236 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:12:30.0859 2236 PolicyAgent - ok
19:12:31.0062 2236 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:12:31.0296 2236 PptpMiniport - ok
19:12:31.0515 2236 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
19:12:31.0765 2236 Processor - ok
19:12:31.0890 2236 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:12:32.0062 2236 ProtectedStorage - ok
19:12:32.0265 2236 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:12:32.0500 2236 PSched - ok
19:12:32.0718 2236 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:12:32.0953 2236 Ptilink - ok
19:12:33.0171 2236 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\System32\DRIVERS\ql1080.sys
19:12:33.0437 2236 ql1080 - ok
19:12:33.0656 2236 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\System32\DRIVERS\ql10wnt.sys
19:12:33.0890 2236 Ql10wnt - ok
19:12:34.0109 2236 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\System32\DRIVERS\ql12160.sys
19:12:34.0343 2236 ql12160 - ok
19:12:34.0562 2236 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\System32\DRIVERS\ql1240.sys
19:12:34.0781 2236 ql1240 - ok
19:12:35.0000 2236 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\System32\DRIVERS\ql1280.sys
19:12:35.0234 2236 ql1280 - ok
19:12:35.0453 2236 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:12:35.0625 2236 RasAcd - ok
19:12:35.0796 2236 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
19:12:36.0046 2236 RasAuto - ok
19:12:36.0265 2236 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:12:36.0468 2236 Rasl2tp - ok
19:12:36.0656 2236 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
19:12:36.0875 2236 RasMan - ok
19:12:37.0062 2236 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:12:37.0328 2236 RasPppoe - ok
19:12:37.0546 2236 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:12:37.0781 2236 Raspti - ok
19:12:37.0968 2236 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:12:38.0203 2236 Rdbss - ok
19:12:38.0437 2236 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:12:38.0656 2236 RDPCDD - ok
19:12:38.0906 2236 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:12:39.0140 2236 rdpdr - ok
19:12:39.0421 2236 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
19:12:39.0734 2236 RDPWD - ok
19:12:39.0921 2236 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
19:12:40.0125 2236 RDSessMgr - ok
19:12:40.0343 2236 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:12:40.0593 2236 redbook - ok
19:12:40.0750 2236 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
19:12:40.0984 2236 RemoteAccess - ok
19:12:41.0109 2236 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe
19:12:41.0328 2236 RpcLocator - ok
19:12:41.0500 2236 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
19:12:41.0593 2236 RpcSs - ok
19:12:41.0703 2236 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe
19:12:41.0921 2236 RSVP - ok
19:12:42.0062 2236 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:12:42.0265 2236 SamSs - ok
19:12:42.0421 2236 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:12:42.0515 2236 SASDIFSV - ok
19:12:42.0546 2236 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:12:42.0640 2236 SASKUTIL - ok
19:12:42.0843 2236 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
19:12:43.0062 2236 SCardSvr - ok
19:12:43.0218 2236 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
19:12:43.0437 2236 Schedule - ok
19:12:43.0687 2236 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:12:43.0796 2236 Secdrv - ok
19:12:43.0968 2236 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
19:12:44.0203 2236 seclogon - ok
19:12:44.0375 2236 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
19:12:44.0593 2236 SENS - ok
19:12:44.0875 2236 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:12:45.0093 2236 serenum - ok
19:12:45.0390 2236 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
19:12:45.0609 2236 Serial - ok
19:12:45.0812 2236 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
19:12:46.0062 2236 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
19:12:46.0062 2236 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
19:12:46.0390 2236 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:12:46.0640 2236 Sfloppy - ok
19:12:46.0859 2236 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
19:12:47.0125 2236 SharedAccess - ok
19:12:47.0343 2236 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:12:47.0375 2236 ShellHWDetection - ok
19:12:47.0546 2236 Simbad - ok
19:12:47.0718 2236 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\System32\DRIVERS\sisagp.sys
19:12:48.0015 2236 sisagp - ok
19:12:48.0281 2236 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\System32\DRIVERS\sparrow.sys
19:12:48.0406 2236 Sparrow - ok
19:12:48.0640 2236 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:12:48.0859 2236 splitter - ok
19:12:48.0984 2236 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
19:12:49.0187 2236 Spooler - ok
19:12:49.0312 2236 sprtsvc_dellsupportcenter - ok
19:12:49.0515 2236 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:12:49.0625 2236 sr - ok
19:12:49.0796 2236 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll
19:12:49.0921 2236 srservice - ok
19:12:50.0093 2236 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:12:50.0343 2236 Srv - ok
19:12:50.0531 2236 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
19:12:50.0734 2236 sscdbus - ok
19:12:50.0968 2236 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
19:12:51.0265 2236 sscdmdfl - ok
19:12:51.0500 2236 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
19:12:51.0640 2236 sscdmdm - ok
19:12:51.0796 2236 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
19:12:51.0921 2236 SSDPSRV - ok
19:12:52.0078 2236 ssrangdr (f87737d83b965efa765117051e3b9d0c) C:\WINDOWS\system32\DRIVERS\ssrangdr.sys
19:12:52.0296 2236 ssrangdr - ok
19:12:52.0468 2236 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
19:12:52.0718 2236 stisvc - ok
19:12:52.0937 2236 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:12:53.0187 2236 swenum - ok
19:12:53.0359 2236 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:12:53.0609 2236 swmidi - ok
19:12:53.0750 2236 SwPrv - ok
19:12:53.0921 2236 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\System32\DRIVERS\symc810.sys
19:12:54.0218 2236 symc810 - ok
19:12:54.0484 2236 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\System32\DRIVERS\symc8xx.sys
19:12:54.0796 2236 symc8xx - ok
19:12:55.0000 2236 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\System32\DRIVERS\sym_hi.sys
19:12:55.0265 2236 sym_hi - ok
19:12:55.0500 2236 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\System32\DRIVERS\sym_u3.sys
19:12:55.0921 2236 sym_u3 - ok
19:12:56.0078 2236 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:12:56.0343 2236 sysaudio - ok
19:12:56.0515 2236 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
19:12:56.0750 2236 SysmonLog - ok
19:12:56.0875 2236 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
19:12:57.0125 2236 TapiSrv - ok
19:12:57.0343 2236 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:12:57.0421 2236 Tcpip - ok
19:12:57.0640 2236 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:12:57.0875 2236 TDPIPE - ok
19:12:58.0062 2236 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:12:58.0281 2236 TDTCP - ok
19:12:58.0500 2236 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:12:58.0734 2236 TermDD - ok
19:12:58.0906 2236 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
19:12:59.0125 2236 TermService - ok
19:12:59.0265 2236 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:12:59.0296 2236 Themes - ok
19:12:59.0453 2236 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\System32\DRIVERS\toside.sys
19:12:59.0671 2236 TosIde - ok
19:12:59.0843 2236 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
19:13:00.0109 2236 TrkWks - ok
19:13:00.0281 2236 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:13:00.0531 2236 Udfs - ok
19:13:00.0734 2236 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\System32\DRIVERS\ultra.sys
19:13:00.0921 2236 ultra - ok
19:13:01.0156 2236 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:13:01.0484 2236 Update - ok
19:13:01.0656 2236 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
19:13:01.0781 2236 upnphost - ok
19:13:01.0921 2236 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
19:13:02.0140 2236 UPS - ok
19:13:02.0359 2236 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:13:02.0593 2236 usbccgp - ok
19:13:02.0796 2236 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:13:03.0031 2236 usbehci - ok
19:13:03.0281 2236 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:13:03.0515 2236 usbhub - ok
19:13:03.0734 2236 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:13:03.0968 2236 usbprint - ok
19:13:04.0171 2236 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:13:04.0406 2236 usbscan - ok
19:13:04.0609 2236 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:13:04.0843 2236 USBSTOR - ok
19:13:05.0046 2236 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:13:05.0265 2236 usbuhci - ok
19:13:05.0484 2236 USB_RNDIS (bee793d4a059caea55d6ac20e19b3a8f) C:\WINDOWS\system32\DRIVERS\usb8023.sys
19:13:05.0703 2236 USB_RNDIS - ok
19:13:05.0921 2236 usb_rndisx (b6cc50279d6cd28e090a5d33244adc9a) C:\WINDOWS\system32\DRIVERS\usb8023x.sys
19:13:06.0156 2236 usb_rndisx - ok
19:13:06.0421 2236 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:13:06.0640 2236 VgaSave - ok
19:13:06.0859 2236 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\System32\DRIVERS\viaagp.sys
19:13:07.0093 2236 viaagp - ok
19:13:07.0375 2236 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys
19:13:07.0593 2236 ViaIde - ok
19:13:07.0859 2236 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:13:08.0109 2236 VolSnap - ok
19:13:08.0328 2236 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
19:13:08.0437 2236 VSS - ok
19:13:08.0593 2236 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
19:13:08.0812 2236 w32time - ok
19:13:09.0031 2236 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:13:09.0250 2236 Wanarp - ok
19:13:09.0437 2236 wanatw - ok
19:13:09.0546 2236 WDICA - ok
19:13:09.0687 2236 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:13:09.0906 2236 wdmaud - ok
19:13:10.0062 2236 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
19:13:10.0265 2236 WebClient - ok
19:13:10.0515 2236 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:13:10.0734 2236 winmgmt - ok
19:13:10.0906 2236 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
19:13:11.0031 2236 WmdmPmSN - ok
19:13:11.0265 2236 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe
19:13:11.0468 2236 WmiApSrv - ok
19:13:11.0703 2236 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:13:11.0906 2236 WMPNetworkSvc - ok
19:13:12.0140 2236 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:13:12.0218 2236 WpdUsb - ok
19:13:12.0515 2236 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:13:12.0796 2236 WPFFontCache_v0400 - ok
19:13:13.0015 2236 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:13:13.0234 2236 WS2IFSL - ok
19:13:13.0390 2236 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
19:13:13.0640 2236 wscsvc - ok
19:13:13.0843 2236 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
19:13:14.0078 2236 wuauserv - ok
19:13:14.0296 2236 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:13:14.0390 2236 WudfPf - ok
19:13:14.0609 2236 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:13:14.0656 2236 WudfRd - ok
19:13:14.0828 2236 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:13:14.0906 2236 WudfSvc - ok
19:13:15.0093 2236 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
19:13:15.0328 2236 WZCSVC - ok
19:13:15.0500 2236 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
19:13:15.0750 2236 xmlprov - ok
19:13:15.0984 2236 {6080A529-897E-4629-A488-ABA0C29B635E} (fd1f4e9cf06c71c8d73a24acf18d8296) C:\WINDOWS\system32\drivers\ialmsbw.sys
19:13:16.0718 2236 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
19:13:16.0875 2236 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (d4d7331d33d1fa73e588e5ce0d90a4c1) C:\WINDOWS\system32\drivers\ialmkchw.sys
19:13:17.0046 2236 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
19:13:17.0093 2236 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
19:13:17.0468 2236 \Device\Harddisk0\DR0 - ok
19:13:17.0500 2236 Boot (0x1200) (0f0a5b5c7077772f25aff33437524477) \Device\Harddisk0\DR0\Partition0
19:13:17.0515 2236 \Device\Harddisk0\DR0\Partition0 - ok
19:13:17.0515 2236 ============================================================
19:13:17.0515 2236 Scan finished
19:13:17.0515 2236 ============================================================
19:13:17.0640 2248 Detected object count: 17
19:13:17.0640 2248 Actual detected object count: 17
19:13:39.0000 2248 !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0000 2248 !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0000 2248 AdobeFlashPlayerUpdateSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0000 2248 AdobeFlashPlayerUpdateSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0000 2248 bvrp_pci ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0000 2248 bvrp_pci ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0000 2248 Creative Service for CDROM Access ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0000 2248 Creative Service for CDROM Access ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0015 2248 DSproct ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0015 2248 DSproct ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0015 2248 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0015 2248 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0015 2248 FsUsbExService ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0015 2248 FsUsbExService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0015 2248 grmnusb ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0015 2248 grmnusb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0015 2248 McciCMService ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0031 2248 McciCMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0031 2248 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0031 2248 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0031 2248 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0031 2248 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0031 2248 omci ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0031 2248 omci ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0031 2248 PCD5SRVC{FBEA8B78-1B22F121-05040000} ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0031 2248 PCD5SRVC{FBEA8B78-1B22F121-05040000} ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0031 2248 PfModNT ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0031 2248 PfModNT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0031 2248 Pivot ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0031 2248 Pivot ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0031 2248 pivotmou ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0031 2248 pivotmou ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:13:39.0046 2248 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
19:13:39.0046 2248 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:14:49.0859 2148 ============================================================
19:14:49.0859 2148 Scan started
19:14:49.0859 2148 Mode: Manual; SigCheck; TDLFS;
19:14:49.0859 2148 ============================================================
19:14:50.0156 2148 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:14:50.0203 2148 !SASCORE ( UnsignedFile.Multi.Generic ) - warning
19:14:50.0203 2148 !SASCORE - detected UnsignedFile.Multi.Generic (1)
19:14:50.0421 2148 Abiosdsk - ok
19:14:50.0609 2148 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS
19:14:50.0703 2148 abp480n5 - ok
19:14:50.0875 2148 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:14:51.0062 2148 ACPI - ok
19:14:51.0328 2148 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:14:51.0546 2148 ACPIEC - ok
19:14:51.0765 2148 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:14:51.0796 2148 AdobeFlashPlayerUpdateSvc ( UnsignedFile.Multi.Generic ) - warning
19:14:51.0796 2148 AdobeFlashPlayerUpdateSvc - detected UnsignedFile.Multi.Generic (1)
19:14:52.0015 2148 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\System32\DRIVERS\adpu160m.sys
19:14:52.0250 2148 adpu160m - ok
19:14:52.0484 2148 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:14:52.0703 2148 aec - ok
19:14:52.0906 2148 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:14:52.0968 2148 AFD - ok
19:14:53.0187 2148 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\System32\DRIVERS\agp440.sys
19:14:53.0437 2148 agp440 - ok
19:14:53.0640 2148 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\System32\DRIVERS\agpCPQ.sys
19:14:53.0843 2148 agpCPQ - ok
19:14:54.0015 2148 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\System32\DRIVERS\aha154x.sys
19:14:54.0125 2148 Aha154x - ok
19:14:54.0328 2148 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\System32\DRIVERS\aic78u2.sys
19:14:54.0531 2148 aic78u2 - ok
19:14:54.0734 2148 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\System32\DRIVERS\aic78xx.sys
19:14:54.0937 2148 aic78xx - ok
19:14:55.0078 2148 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
19:14:55.0296 2148 Alerter - ok
19:14:55.0421 2148 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
19:14:55.0500 2148 ALG - ok
19:14:55.0671 2148 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\System32\DRIVERS\aliide.sys
19:14:55.0875 2148 AliIde - ok
19:14:56.0093 2148 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\System32\DRIVERS\alim1541.sys
19:14:56.0343 2148 alim1541 - ok
19:14:56.0546 2148 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\System32\DRIVERS\amdagp.sys
19:14:56.0781 2148 amdagp - ok
19:14:57.0000 2148 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\System32\DRIVERS\amsint.sys
19:14:57.0093 2148 amsint - ok
19:14:57.0218 2148 AppMgmt - ok
19:14:57.0406 2148 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\System32\DRIVERS\asc.sys
19:14:57.0609 2148 asc - ok
19:14:57.0828 2148 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\System32\DRIVERS\asc3350p.sys
19:14:57.0937 2148 asc3350p - ok
19:14:58.0156 2148 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\System32\DRIVERS\asc3550.sys
19:14:58.0343 2148 asc3550 - ok
19:14:58.0578 2148 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:14:58.0593 2148 aspnet_state - ok
19:14:58.0812 2148 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:14:59.0046 2148 AsyncMac - ok
19:14:59.0296 2148 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:14:59.0468 2148 atapi - ok
19:14:59.0640 2148 Atdisk - ok
19:14:59.0796 2148 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:15:00.0031 2148 Atmarpc - ok
19:15:00.0171 2148 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
19:15:00.0406 2148 AudioSrv - ok
19:15:00.0609 2148 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:15:00.0796 2148 audstub - ok
19:15:01.0000 2148 bcm4sbxp (068523d2cd260069b19ad68adea0d739) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
19:15:01.0046 2148 bcm4sbxp - ok
19:15:01.0296 2148 BCMModem (41347688046d49cde0f6d138a534f73d) C:\WINDOWS\system32\DRIVERS\BCMSM.sys
19:15:01.0500 2148 BCMModem - ok
19:15:01.0718 2148 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:15:01.0953 2148 Beep - ok
19:15:02.0125 2148 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
19:15:02.0375 2148 BITS - ok
19:15:02.0531 2148 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
19:15:02.0750 2148 Browser - ok
19:15:02.0906 2148 bvrp_pci (73458867c8963c76260c18d7bdb15625) C:\WINDOWS\system32\drivers\bvrp_pci.sys
19:15:02.0921 2148 bvrp_pci ( UnsignedFile.Multi.Generic ) - warning
19:15:02.0921 2148 bvrp_pci - detected UnsignedFile.Multi.Generic (1)
19:15:02.0953 2148 catchme - ok
19:15:03.0187 2148 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\System32\DRIVERS\cbidf2k.sys
19:15:03.0375 2148 cbidf - ok
19:15:03.0562 2148 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:15:03.0750 2148 cbidf2k - ok
19:15:03.0953 2148 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys
19:15:04.0062 2148 cd20xrnt - ok
19:15:04.0343 2148 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:15:04.0546 2148 Cdaudio - ok
19:15:04.0750 2148 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:15:04.0968 2148 Cdfs - ok
19:15:05.0140 2148 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:15:05.0375 2148 Cdrom - ok
19:15:05.0562 2148 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\WINDOWS\system32\drivers\cfwids.sys
19:15:05.0578 2148 cfwids - ok
19:15:05.0703 2148 Changer - ok
19:15:05.0796 2148 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
19:15:06.0031 2148 CiSvc - ok
19:15:06.0140 2148 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
19:15:06.0343 2148 ClipSrv - ok
19:15:06.0562 2148 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:15:06.0593 2148 clr_optimization_v2.0.50727_32 - ok
19:15:06.0843 2148 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:15:06.0859 2148 clr_optimization_v4.0.30319_32 - ok
19:15:07.0078 2148 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\System32\DRIVERS\cmdide.sys
19:15:07.0312 2148 CmdIde - ok
19:15:07.0437 2148 COMSysApp - ok
19:15:07.0593 2148 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\System32\DRIVERS\cpqarray.sys
19:15:07.0812 2148 Cpqarray - ok
19:15:07.0953 2148 Creative Service for CDROM Access (3c8b6609712f4ff78e521f6dcfc4032b) C:\WINDOWS\System32\CTsvcCDA.exe
19:15:07.0968 2148 Creative Service for CDROM Access ( UnsignedFile.Multi.Generic ) - warning
19:15:07.0968 2148 Creative Service for CDROM Access - detected UnsignedFile.Multi.Generic (1)
19:15:08.0140 2148 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
19:15:08.0375 2148 CryptSvc - ok
19:15:08.0593 2148 ctsfm2k (b459ae4afca570088adddbe55eabbc92) C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
19:15:08.0625 2148 ctsfm2k - ok
19:15:08.0812 2148 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\System32\DRIVERS\dac2w2k.sys
19:15:09.0078 2148 dac2w2k - ok
19:15:09.0328 2148 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\System32\DRIVERS\dac960nt.sys
19:15:09.0562 2148 dac960nt - ok
19:15:09.0750 2148 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:15:09.0796 2148 DcomLaunch - ok
19:15:09.0937 2148 DgiVecp - ok
19:15:10.0078 2148 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
19:15:10.0468 2148 Dhcp - ok
19:15:10.0671 2148 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:15:10.0859 2148 Disk - ok
19:15:10.0921 2148 dmadmin - ok
19:15:11.0093 2148 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:15:11.0296 2148 dmboot - ok
19:15:11.0500 2148 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
19:15:11.0906 2148 dmio - ok
19:15:12.0109 2148 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:15:12.0328 2148 dmload - ok
19:15:12.0453 2148 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
19:15:12.0671 2148 dmserver - ok
19:15:12.0875 2148 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:15:13.0062 2148 DMusic - ok
19:15:13.0218 2148 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
19:15:13.0250 2148 Dnscache - ok
19:15:13.0390 2148 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
19:15:13.0625 2148 Dot3svc - ok
19:15:13.0781 2148 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\System32\DRIVERS\dpti2o.sys
19:15:14.0000 2148 dpti2o - ok
19:15:14.0156 2148 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:15:14.0343 2148 drmkaud - ok
19:15:14.0515 2148 DSBrokerService (fe80901578e7e3da70299a5aeb2b7fbd) C:\Program Files\DellSupport\brkrsvc.exe
19:15:14.0531 2148 DSBrokerService - ok
19:15:14.0765 2148 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
19:15:14.0812 2148 DSproct ( UnsignedFile.Multi.Generic ) - warning
19:15:14.0812 2148 DSproct - detected UnsignedFile.Multi.Generic (1)
19:15:15.0000 2148 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
19:15:15.0046 2148 dsunidrv - ok
19:15:15.0218 2148 DTSRVC (0cedf29cfa2e1209456d98c2ee4ae6f5) C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
19:15:15.0234 2148 DTSRVC - ok
19:15:15.0437 2148 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
19:15:15.0671 2148 EapHost - ok
19:15:15.0828 2148 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
19:15:16.0062 2148 EL90XBC - ok
19:15:16.0218 2148 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
19:15:16.0421 2148 ERSvc - ok
19:15:16.0546 2148 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:15:16.0578 2148 Eventlog - ok
19:15:16.0703 2148 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll
19:15:16.0765 2148 EventSystem - ok
19:15:16.0984 2148 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:15:17.0171 2148 Fastfat - ok
19:15:17.0375 2148 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:15:17.0390 2148 FastUserSwitchingCompatibility - ok
19:15:17.0562 2148 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
19:15:17.0781 2148 Fdc - ok
19:15:18.0000 2148 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:15:18.0203 2148 Fips - ok
19:15:18.0453 2148 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:15:18.0656 2148 Flpydisk - ok
19:15:18.0859 2148 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
19:15:19.0031 2148 FltMgr - ok
19:15:19.0343 2148 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:15:19.0359 2148 FontCache3.0.0.0 - ok
19:15:19.0500 2148 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS
19:15:19.0531 2148 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
19:15:19.0531 2148 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
19:15:19.0625 2148 FsUsbExService (d3f9205cc4cb07553f2f9472c767ea87) C:\WINDOWS\system32\FsUsbExService.Exe
19:15:19.0656 2148 FsUsbExService ( UnsignedFile.Multi.Generic ) - warning
19:15:19.0656 2148 FsUsbExService - detected UnsignedFile.Multi.Generic (1)
19:15:19.0828 2148 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:15:20.0046 2148 Fs_Rec - ok
19:15:20.0296 2148 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:15:20.0484 2148 Ftdisk - ok
19:15:20.0671 2148 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
19:15:20.0859 2148 gameenum - ok
19:15:21.0031 2148 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:15:21.0234 2148 Gpc - ok
19:15:21.0421 2148 grmnusb (d956358054e99e6ffac69cd87e893a89) C:\WINDOWS\system32\drivers\grmnusb.sys
19:15:21.0484 2148 grmnusb ( UnsignedFile.Multi.Generic ) - warning
19:15:21.0484 2148 grmnusb - detected UnsignedFile.Multi.Generic (1)
19:15:21.0671 2148 gusvc (751c1d2ca2abf4a9f5a6b8d7d45b907c) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:15:21.0687 2148 gusvc - ok
19:15:21.0843 2148 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:15:22.0062 2148 helpsvc - ok
19:15:22.0156 2148 HidServ - ok
19:15:22.0343 2148 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:15:22.0578 2148 HidUsb - ok
19:15:22.0859 2148 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
19:15:23.0062 2148 hkmsvc - ok
19:15:23.0234 2148 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\System32\DRIVERS\hpn.sys
19:15:23.0390 2148 hpn - ok
19:15:23.0578 2148 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
19:15:23.0609 2148 HTTP - ok
19:15:23.0765 2148 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
19:15:23.0984 2148 HTTPFilter - ok
19:15:24.0218 2148 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
19:15:24.0515 2148 i2omgmt - ok
19:15:24.0703 2148 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\System32\DRIVERS\i2omp.sys
19:15:24.0921 2148 i2omp - ok
19:15:25.0109 2148 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:15:25.0328 2148 i8042prt - ok
19:15:25.0531 2148 i81x (06b7ef73ba5f302eecc294cdf7e19702) C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
19:15:25.0781 2148 i81x - ok
19:15:25.0968 2148 iAimFP0 (7b5b44efe5eb9dadfb8ee29700885d23) C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
19:15:26.0203 2148 iAimFP0 - ok
19:15:26.0437 2148 iAimFP1 (eb1f6bab6c22ede0ba551b527475f7e9) C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
19:15:26.0656 2148 iAimFP1 - ok
19:15:26.0890 2148 iAimFP2 (03ce989d846c1aa81145cb22fcb86d06) C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
19:15:27.0109 2148 iAimFP2 - ok
19:15:27.0359 2148 iAimFP3 (525849b4469de021d5d61b4db9be3a9d) C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
19:15:27.0625 2148 iAimFP3 - ok
19:15:27.0843 2148 iAimFP4 (589c2bcdb5bd602bf7b63d210407ef8c) C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
19:15:28.0062 2148 iAimFP4 - ok
19:15:28.0328 2148 iAimTV0 (d83bdd5c059667a2f647a6be5703a4d2) C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
19:15:28.0671 2148 iAimTV0 - ok
19:15:28.0890 2148 iAimTV1 (ed968d23354daa0d7c621580c012a1f6) C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
19:15:29.0125 2148 iAimTV1 - ok
19:15:29.0296 2148 iAimTV2 - ok
19:15:29.0500 2148 iAimTV3 (d738273f218a224c1ddac04203f27a84) C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
19:15:29.0718 2148 iAimTV3 - ok
19:15:29.0921 2148 iAimTV4 (0052d118995cbab152daabe6106d1442) C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
19:15:30.0109 2148 iAimTV4 - ok
19:15:30.0406 2148 ialm (44b7d5a4f2bd9fe21aea0bb0bace38c4) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
19:15:30.0515 2148 ialm - ok
19:15:30.0843 2148 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:15:30.0890 2148 idsvc - ok
19:15:31.0468 2148 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:15:31.0656 2148 Imapi - ok
19:15:31.0781 2148 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
19:15:32.0093 2148 ImapiService - ok
19:15:32.0250 2148 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\System32\DRIVERS\ini910u.sys
19:15:32.0578 2148 ini910u - ok
19:15:32.0906 2148 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\System32\DRIVERS\intelide.sys
19:15:33.0218 2148 IntelIde - ok
19:15:33.0437 2148 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:15:33.0609 2148 intelppm - ok
19:15:33.0781 2148 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
19:15:34.0000 2148 ip6fw - ok
19:15:34.0265 2148 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:15:34.0515 2148 IpFilterDriver - ok
19:15:34.0656 2148 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:15:34.0828 2148 IpInIp - ok
19:15:34.0968 2148 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:15:35.0187 2148 IpNat - ok
19:15:35.0453 2148 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:15:35.0656 2148 IPSec - ok
19:15:35.0843 2148 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:15:35.0968 2148 IRENUM - ok
19:15:36.0171 2148 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:15:36.0390 2148 isapnp - ok
19:15:36.0640 2148 JavaQuickStarterService (d9b1e929f2464d4c23fa9cb47df4a1d4) C:\Program Files\Java\jre7\bin\jqs.exe
19:15:36.0687 2148 JavaQuickStarterService - ok
19:15:36.0890 2148 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:15:37.0078 2148 Kbdclass - ok
19:15:37.0328 2148 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:15:37.0578 2148 kmixer - ok
19:15:37.0781 2148 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:15:37.0812 2148 KSecDD - ok
19:15:37.0984 2148 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
19:15:38.0031 2148 lanmanserver - ok
19:15:38.0187 2148 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
19:15:38.0250 2148 lanmanworkstation - ok
19:15:38.0406 2148 lbrtfdc - ok
19:15:38.0500 2148 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
19:15:38.0703 2148 LmHosts - ok
19:15:38.0890 2148 lxdfCATSCustConnectService (2144ae8412927e15119ee7303f8a5df1) C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdfserv.exe
19:15:38.0906 2148 lxdfCATSCustConnectService - ok
19:15:39.0031 2148 lxdf_device - ok
19:15:39.0218 2148 McAfee SiteAdvisor Service (19d95f16cdc256078ea45d4e566ea1db) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
19:15:39.0250 2148 McAfee SiteAdvisor Service - ok
19:15:39.0406 2148 McciCMService (e6cb119ef2e148eaa1a247343550756e) C:\Program Files\Common Files\Motive\McciCMService.exe
19:15:39.0468 2148 McciCMService ( UnsignedFile.Multi.Generic ) - warning
19:15:39.0468 2148 McciCMService - detected UnsignedFile.Multi.Generic (1)
19:15:39.0640 2148 McciServiceHost - ok
19:15:39.0718 2148 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
19:15:39.0734 2148 McComponentHostService - ok
19:15:39.0968 2148 McMPFSvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
19:15:40.0000 2148 McMPFSvc - ok
19:15:40.0203 2148 mcmscsvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:15:40.0234 2148 mcmscsvc - ok
19:15:40.0234 2148 McNaiAnn (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:15:40.0265 2148 McNaiAnn - ok
19:15:40.0281 2148 McNASvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:15:40.0312 2148 McNASvc - ok
19:15:40.0500 2148 McODS (e8c5aae17e8332f5f4f57935238cd5eb) C:\Program Files\McAfee\VirusScan\mcods.exe
19:15:40.0531 2148 McODS - ok
19:15:40.0781 2148 McProxy (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:15:40.0796 2148 McProxy - ok
19:15:41.0046 2148 McShield (151f3ca25b739b9cb0066abd1523f064) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
19:15:41.0062 2148 McShield - ok
19:15:41.0218 2148 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
19:15:41.0390 2148 Messenger - ok
19:15:41.0562 2148 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\WINDOWS\system32\drivers\mfeapfk.sys
19:15:41.0578 2148 mfeapfk - ok
19:15:41.0750 2148 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\WINDOWS\system32\drivers\mfeavfk.sys
19:15:41.0781 2148 mfeavfk - ok
19:15:41.0906 2148 mfeavfk01 - ok
19:15:42.0015 2148 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\WINDOWS\system32\drivers\mfebopk.sys
19:15:42.0031 2148 mfebopk - ok
19:15:42.0281 2148 mfefire (26ba2eebcff16f611ce1118fa0850810) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
19:15:42.0296 2148 mfefire - ok
19:15:42.0546 2148 mfefirek (215666a8a85023ef019b510cbb67f678) C:\WINDOWS\system32\drivers\mfefirek.sys
19:15:42.0578 2148 mfefirek - ok
19:15:42.0812 2148 mfehidk (56d330981866a72f061dd16cc5004513) C:\WINDOWS\system32\drivers\mfehidk.sys
19:15:42.0843 2148 mfehidk - ok
19:15:43.0078 2148 mfendisk (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
19:15:43.0093 2148 mfendisk - ok
19:15:43.0109 2148 mfendiskmp (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
19:15:43.0125 2148 mfendiskmp - ok
19:15:43.0328 2148 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\WINDOWS\system32\drivers\mferkdet.sys
19:15:43.0343 2148 mferkdet - ok
19:15:43.0562 2148 mferkdk (41fe2f288e05a6c8ab85dd56770ffbad) C:\WINDOWS\system32\drivers\mferkdk.sys
19:15:43.0578 2148 mferkdk - ok
19:15:43.0750 2148 mfesmfk (096b52ea918aa909ba5903d79e129005) C:\WINDOWS\system32\drivers\mfesmfk.sys
19:15:43.0796 2148 mfesmfk - ok
19:15:44.0000 2148 mfetdi2k (922e64ca38e38106498fb3435a8e399d) C:\WINDOWS\system32\drivers\mfetdi2k.sys
19:15:44.0015 2148 mfetdi2k - ok
19:15:44.0125 2148 mfevtp (d286062a8f57b0e69db02111493ced77) C:\WINDOWS\system32\mfevtps.exe
19:15:44.0140 2148 mfevtp - ok
19:15:44.0359 2148 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:15:44.0531 2148 mnmdd - ok
19:15:44.0656 2148 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe
19:15:44.0859 2148 mnmsrvc - ok
19:15:45.0046 2148 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:15:45.0265 2148 Modem - ok
19:15:45.0531 2148 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
19:15:45.0718 2148 MODEMCSA - ok
19:15:45.0921 2148 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:15:46.0125 2148 Mouclass - ok
19:15:46.0406 2148 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:15:46.0625 2148 mouhid - ok
19:15:46.0828 2148 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:15:47.0000 2148 MountMgr - ok
19:15:47.0203 2148 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\System32\DRIVERS\mraid35x.sys
19:15:47.0406 2148 mraid35x - ok
19:15:47.0578 2148 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
19:15:47.0609 2148 MREMP50 ( UnsignedFile.Multi.Generic ) - warning
19:15:47.0609 2148 MREMP50 - detected UnsignedFile.Multi.Generic (1)
19:15:47.0625 2148 MREMPR5 - ok
19:15:47.0640 2148 MRENDIS5 - ok
19:15:47.0687 2148 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
19:15:47.0718 2148 MRESP50 ( UnsignedFile.Multi.Generic ) - warning
19:15:47.0718 2148 MRESP50 - detected UnsignedFile.Multi.Generic (1)
19:15:47.0937 2148 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:15:48.0156 2148 MRxDAV - ok
19:15:48.0406 2148 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:15:48.0453 2148 MRxSmb - ok
19:15:48.0640 2148 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe
19:15:48.0875 2148 MSDTC - ok
19:15:49.0031 2148 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:15:49.0234 2148 Msfs - ok
19:15:49.0359 2148 MSIServer - ok
19:15:49.0500 2148 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:15:49.0718 2148 MSKSSRV - ok
19:15:49.0906 2148 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:15:50.0109 2148 MSPCLOCK - ok
19:15:50.0281 2148 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:15:50.0515 2148 MSPQM - ok
19:15:50.0703 2148 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:15:50.0906 2148 mssmbios - ok
19:15:51.0125 2148 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:15:51.0156 2148 Mup - ok
19:15:51.0375 2148 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
19:15:51.0578 2148 napagent - ok
19:15:51.0796 2148 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:15:52.0000 2148 NDIS - ok
19:15:52.0234 2148 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:15:52.0281 2148 NdisTapi - ok
19:15:52.0531 2148 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:15:52.0734 2148 Ndisuio - ok
19:15:52.0953 2148 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:15:53.0140 2148 NdisWan - ok
19:15:53.0359 2148 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:15:53.0421 2148 NDProxy - ok
19:15:53.0656 2148 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:15:53.0859 2148 NetBIOS - ok
19:15:54.0078 2148 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:15:54.0281 2148 NetBT - ok
19:15:54.0453 2148 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:15:54.0640 2148 NetDDE - ok
19:15:54.0656 2148 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:15:54.0828 2148 NetDDEdsdm - ok
19:15:54.0921 2148 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:15:55.0109 2148 Netlogon - ok
19:15:55.0234 2148 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
19:15:55.0421 2148 Netman - ok
19:15:55.0750 2148 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:15:55.0765 2148 NetTcpPortSharing - ok
19:15:55.0906 2148 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
19:15:55.0953 2148 Nla - ok
19:15:56.0109 2148 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:15:56.0312 2148 Npfs - ok
19:15:56.0546 2148 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:15:56.0796 2148 Ntfs - ok
19:15:56.0937 2148 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
19:15:57.0125 2148 NtLmSsp - ok
19:15:57.0250 2148 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
19:15:57.0468 2148 NtmsSvc - ok
19:15:57.0671 2148 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:15:57.0890 2148 Null - ok
19:15:58.0187 2148 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:15:58.0468 2148 nv - ok
19:15:58.0671 2148 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:15:58.0906 2148 NwlnkFlt - ok
19:15:59.0125 2148 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:15:59.0312 2148 NwlnkFwd - ok
19:15:59.0515 2148 omci (53d5f1278d9edb21689bbbcecc09108d) C:\WINDOWS\system32\DRIVERS\omci.sys
19:15:59.0546 2148 omci ( UnsignedFile.Multi.Generic ) - warning
19:15:59.0546 2148 omci - detected UnsignedFile.Multi.Generic (1)
19:15:59.0687 2148 OneStepSrch Service - ok
19:15:59.0906 2148 ossrv (c720c25b2d0c93dc425155f5b6a707f3) C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
19:15:59.0953 2148 ossrv - ok
19:16:00.0187 2148 P16X (f051107ff80f132882e71e3a5d302ec1) C:\WINDOWS\system32\drivers\P16X.sys
19:16:00.0250 2148 P16X - ok
19:16:00.0500 2148 P3 (c90018bafdc7098619a4a95b046b30f3) C:\WINDOWS\system32\DRIVERS\p3.sys
19:16:00.0703 2148 P3 - ok
19:16:00.0906 2148 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
19:16:01.0125 2148 Parport - ok
19:16:01.0359 2148 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:16:01.0609 2148 PartMgr - ok
19:16:01.0828 2148 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:16:02.0000 2148 ParVdm - ok
19:16:02.0187 2148 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:16:02.0234 2148 pccsmcfd - ok
19:16:02.0484 2148 PCD5SRVC{FBEA8B78-1B22F121-05040000} (fe11b610ea44101ef9dcba7f38340f64) C:\PROGRA~1\DELLSU~2\HWDiag\bin\PCD5SRVC.pkms
19:16:02.0546 2148 PCD5SRVC{FBEA8B78-1B22F121-05040000} ( UnsignedFile.Multi.Generic ) - warning
19:16:02.0546 2148 PCD5SRVC{FBEA8B78-1B22F121-05040000} - detected UnsignedFile.Multi.Generic (1)
19:16:02.0765 2148 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:16:02.0968 2148 PCI - ok
19:16:03.0140 2148 PCIDump - ok
19:16:03.0359 2148 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:16:03.0546 2148 PCIIde - ok
19:16:03.0750 2148 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:16:03.0953 2148 Pcmcia - ok
19:16:04.0125 2148 PDCOMP - ok
19:16:04.0234 2148 PDFRAME - ok
19:16:04.0453 2148 PdiPorts (089ca80ce0766b031164714b51df99bb) C:\WINDOWS\system32\Drivers\PdiPorts.sys
19:16:04.0468 2148 PdiPorts - ok
19:16:04.0671 2148 PdiService (0a098df98ec8facaa30bd7db4c7aea06) C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe
19:16:04.0687 2148 PdiService - ok
19:16:04.0859 2148 PDRELI - ok
19:16:04.0984 2148 PDRFRAME - ok
19:16:05.0109 2148 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\System32\DRIVERS\perc2.sys
19:16:05.0328 2148 perc2 - ok
19:16:05.0562 2148 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\System32\DRIVERS\perc2hib.sys
19:16:05.0765 2148 perc2hib - ok
19:16:05.0937 2148 PfModNT (2f5532f9b0f903b26847da674b4f55b2) C:\WINDOWS\System32\PfModNT.sys
19:16:05.0968 2148 PfModNT ( UnsignedFile.Multi.Generic ) - warning
19:16:05.0968 2148 PfModNT - detected UnsignedFile.Multi.Generic (1)
19:16:06.0140 2148 Pivot (ec4f52692b5cf116ca6b0428d84a9aba) C:\WINDOWS\system32\drivers\pivot.sys
19:16:06.0171 2148 Pivot ( UnsignedFile.Multi.Generic ) - warning
19:16:06.0171 2148 Pivot - detected UnsignedFile.Multi.Generic (1)
19:16:06.0468 2148 pivotmou (7d72ac1abda06ff42fd57345d0d75523) C:\WINDOWS\System32\drivers\pivotmou.sys
19:16:06.0484 2148 pivotmou ( UnsignedFile.Multi.Generic ) - warning
19:16:06.0484 2148 pivotmou - detected UnsignedFile.Multi.Generic (1)
19:16:06.0640 2148 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:16:06.0656 2148 PlugPlay - ok
19:16:06.0781 2148 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:16:06.0968 2148 PolicyAgent - ok
19:16:07.0140 2148 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:16:07.0359 2148 PptpMiniport - ok
19:16:07.0593 2148 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
19:16:07.0765 2148 Processor - ok
19:16:07.0906 2148 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:16:08.0093 2148 ProtectedStorage - ok
19:16:08.0250 2148 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:16:08.0500 2148 PSched - ok
19:16:08.0859 2148 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:16:09.0046 2148 Ptilink - ok
19:16:09.0265 2148 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\System32\DRIVERS\ql1080.sys
19:16:09.0531 2148 ql1080 - ok
19:16:09.0734 2148 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\System32\DRIVERS\ql10wnt.sys
19:16:09.0953 2148 Ql10wnt - ok
19:16:10.0171 2148 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\System32\DRIVERS\ql12160.sys
19:16:10.0406 2148 ql12160 - ok
19:16:10.0625 2148 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\System32\DRIVERS\ql1240.sys
19:16:10.0859 2148 ql1240 - ok
19:16:11.0078 2148 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\System32\DRIVERS\ql1280.sys
19:16:11.0281 2148 ql1280 - ok
19:16:11.0515 2148 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:16:11.0718 2148 RasAcd - ok
19:16:11.0828 2148 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
19:16:12.0062 2148 RasAuto - ok
19:16:12.0234 2148 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:16:12.0468 2148 Rasl2tp - ok
19:16:12.0656 2148 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
19:16:12.0859 2148 RasMan - ok
19:16:13.0078 2148 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:16:13.0328 2148 RasPppoe - ok
19:16:13.0531 2148 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:16:13.0703 2148 Raspti - ok
19:16:13.0906 2148 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:16:14.0125 2148 Rdbss - ok
19:16:14.0375 2148 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:16:14.0578 2148 RDPCDD - ok
19:16:14.0828 2148 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:16:15.0062 2148 rdpdr - ok
19:16:15.0312 2148 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
19:16:15.0390 2148 RDPWD - ok
19:16:15.0578 2148 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
19:16:15.0781 2148 RDSessMgr - ok
19:16:16.0000 2148 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:16:16.0218 2148 redbook - ok
19:16:16.0421 2148 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
19:16:16.0640 2148 RemoteAccess - ok
19:16:16.0781 2148 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe
19:16:17.0000 2148 RpcLocator - ok
19:16:17.0125 2148 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
19:16:17.0203 2148 RpcSs - ok
19:16:17.0390 2148 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe
19:16:17.0593 2148 RSVP - ok
19:16:17.0734 2148 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:16:17.0921 2148 SamSs - ok
19:16:18.0078 2148 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:16:18.0093 2148 SASDIFSV - ok
19:16:18.0125 2148 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:16:18.0140 2148 SASKUTIL - ok
19:16:18.0343 2148 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
19:16:18.0578 2148 SCardSvr - ok
19:16:18.0750 2148 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
19:16:18.0953 2148 Schedule - ok
19:16:19.0171 2148 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:16:19.0281 2148 Secdrv - ok
19:16:19.0468 2148 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
19:16:19.0703 2148 seclogon - ok
19:16:19.0812 2148 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
19:16:20.0015 2148 SENS - ok
19:16:20.0203 2148 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:16:20.0500 2148 serenum - ok
19:16:20.0718 2148 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
19:16:20.0921 2148 Serial - ok
19:16:21.0109 2148 ServiceLayer (9d38320bb32230349379df5ddbbf7fce) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
19:16:21.0171 2148 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
19:16:21.0171 2148 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
19:16:21.0484 2148 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:16:21.0687 2148 Sfloppy - ok
19:16:21.0859 2148 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
19:16:22.0062 2148 SharedAccess - ok
19:16:22.0281 2148 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:16:22.0375 2148 ShellHWDetection - ok
19:16:22.0531 2148 Simbad - ok
19:16:22.0671 2148 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\System32\DRIVERS\sisagp.sys
19:16:22.0890 2148 sisagp - ok
19:16:23.0109 2148 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\System32\DRIVERS\sparrow.sys
19:16:23.0218 2148 Sparrow - ok
19:16:23.0390 2148 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:16:23.0578 2148 splitter - ok
19:16:23.0734 2148 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
19:16:23.0781 2148 Spooler - ok
19:16:23.0890 2148 sprtsvc_dellsupportcenter - ok
19:16:24.0093 2148 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:16:24.0187 2148 sr - ok
19:16:24.0296 2148 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll
19:16:24.0437 2148 srservice - ok
19:16:24.0609 2148 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:16:24.0687 2148 Srv - ok
19:16:24.0906 2148 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
19:16:24.0968 2148 sscdbus - ok
19:16:25.0187 2148 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
19:16:25.0250 2148 sscdmdfl - ok
19:16:25.0453 2148 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
19:16:25.0515 2148 sscdmdm - ok
19:16:25.0703 2148 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
19:16:25.0812 2148 SSDPSRV - ok
19:16:26.0015 2148 ssrangdr (f87737d83b965efa765117051e3b9d0c) C:\WINDOWS\system32\DRIVERS\ssrangdr.sys
19:16:26.0078 2148 ssrangdr - ok
19:16:26.0250 2148 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
19:16:26.0484 2148 stisvc - ok
19:16:26.0687 2148 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:16:26.0890 2148 swenum - ok
19:16:27.0109 2148 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:16:27.0296 2148 swmidi - ok
19:16:27.0406 2148 SwPrv - ok
19:16:27.0593 2148 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\System32\DRIVERS\symc810.sys
19:16:27.0812 2148 symc810 - ok
19:16:28.0000 2148 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\System32\DRIVERS\symc8xx.sys
19:16:28.0218 2148 symc8xx - ok
19:16:28.0437 2148 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\System32\DRIVERS\sym_hi.sys
19:16:28.0640 2148 sym_hi - ok
19:16:28.0843 2148 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\System32\DRIVERS\sym_u3.sys
19:16:29.0031 2148 sym_u3 - ok
19:16:29.0250 2148 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:16:29.0437 2148 sysaudio - ok
19:16:29.0578 2148 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
19:16:29.0765 2148 SysmonLog - ok
19:16:29.0875 2148 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
19:16:30.0078 2148 TapiSrv - ok
19:16:30.0312 2148 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:16:30.0375 2148 Tcpip - ok
19:16:30.0640 2148 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:16:30.0843 2148 TDPIPE - ok
19:16:31.0062 2148 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:16:31.0234 2148 TDTCP - ok
19:16:31.0468 2148 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:16:31.0703 2148 TermDD - ok
19:16:31.0859 2148 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
19:16:32.0046 2148 TermService - ok
19:16:32.0156 2148 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:16:32.0171 2148 Themes - ok
19:16:32.0328 2148 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\System32\DRIVERS\toside.sys
19:16:32.0562 2148 TosIde - ok
19:16:32.0718 2148 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
19:16:32.0921 2148 TrkWks - ok
19:16:33.0078 2148 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:16:33.0281 2148 Udfs - ok
19:16:33.0531 2148 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\System32\DRIVERS\ultra.sys
19:16:33.0640 2148 ultra - ok
19:16:33.0875 2148 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:16:34.0109 2148 Update - ok
19:16:34.0281 2148 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
19:16:34.0421 2148 upnphost - ok
19:16:34.0609 2148 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
19:16:34.0796 2148 UPS - ok
19:16:35.0015 2148 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:16:35.0265 2148 usbccgp - ok
19:16:35.0453 2148 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:16:35.0687 2148 usbehci - ok
19:16:35.0875 2148 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:16:36.0062 2148 usbhub - ok
19:16:36.0281 2148 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:16:36.0484 2148 usbprint - ok
19:16:36.0687 2148 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:16:36.0875 2148 usbscan - ok
19:16:37.0078 2148 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:16:37.0281 2148 USBSTOR - ok
19:16:37.0437 2148 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:16:37.0640 2148 usbuhci - ok
19:16:37.0859 2148 USB_RNDIS (bee793d4a059caea55d6ac20e19b3a8f) C:\WINDOWS\system32\DRIVERS\usb8023.sys
19:16:38.0062 2148 USB_RNDIS - ok
19:16:38.0265 2148 usb_rndisx (b6cc50279d6cd28e090a5d33244adc9a) C:\WINDOWS\system32\DRIVERS\usb8023x.sys
19:16:38.0453 2148 usb_rndisx - ok
19:16:38.0671 2148 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:16:38.0875 2148 VgaSave - ok
19:16:39.0093 2148 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\System32\DRIVERS\viaagp.sys
19:16:39.0281 2148 viaagp - ok
19:16:39.0531 2148 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys
19:16:39.0734 2148 ViaIde - ok
19:16:39.0953 2148 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:16:40.0140 2148 VolSnap - ok
19:16:40.0296 2148 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
19:16:40.0390 2148 VSS - ok
19:16:40.0500 2148 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
19:16:40.0703 2148 w32time - ok
19:16:40.0921 2148 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:16:41.0156 2148 Wanarp - ok
19:16:41.0328 2148 wanatw - ok
19:16:41.0468 2148 WDICA - ok
19:16:41.0640 2148 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:16:41.0828 2148 wdmaud - ok
19:16:42.0000 2148 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
19:16:42.0218 2148 WebClient - ok
19:16:42.0453 2148 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:16:42.0671 2148 winmgmt - ok
19:16:42.0843 2148 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
19:16:42.0890 2148 WmdmPmSN - ok
19:16:43.0078 2148 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe
19:16:43.0312 2148 WmiApSrv - ok
19:16:43.0515 2148 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:16:43.0593 2148 WMPNetworkSvc - ok
19:16:43.0812 2148 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:16:43.0859 2148 WpdUsb - ok
19:16:44.0171 2148 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:16:44.0203 2148 WPFFontCache_v0400 - ok
19:16:44.0437 2148 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:16:44.0609 2148 WS2IFSL - ok
19:16:44.0781 2148 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
19:16:44.0984 2148 wscsvc - ok
19:16:45.0093 2148 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
19:16:45.0312 2148 wuauserv - ok
19:16:45.0515 2148 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:16:45.0562 2148 WudfPf - ok
19:16:45.0781 2148 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:16:45.0828 2148 WudfRd - ok
19:16:45.0984 2148 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:16:46.0015 2148 WudfSvc - ok
19:16:46.0140 2148 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
19:16:46.0328 2148 WZCSVC - ok
19:16:46.0515 2148 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
19:16:46.0718 2148 xmlprov - ok
19:16:46.0890 2148 {6080A529-897E-4629-A488-ABA0C29B635E} (fd1f4e9cf06c71c8d73a24acf18d8296) C:\WINDOWS\system32\drivers\ialmsbw.sys
19:16:46.0953 2148 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
19:16:47.0187 2148 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (d4d7331d33d1fa73e588e5ce0d90a4c1) C:\WINDOWS\system32\drivers\ialmkchw.sys
19:16:47.0250 2148 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
19:16:47.0281 2148 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
19:16:47.0656 2148 \Device\Harddisk0\DR0 - ok
19:16:47.0687 2148 Boot (0x1200) (0f0a5b5c7077772f25aff33437524477) \Device\Harddisk0\DR0\Partition0
19:16:47.0703 2148 \Device\Harddisk0\DR0\Partition0 - ok
19:16:47.0703 2148 ============================================================
19:16:47.0703 2148 Scan finished
19:16:47.0703 2148 ============================================================
19:16:47.0718 0292 Detected object count: 17
19:16:47.0718 0292 Actual detected object count: 17
19:18:38.0203 0292 !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0203 0292 !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0203 0292 AdobeFlashPlayerUpdateSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0203 0292 AdobeFlashPlayerUpdateSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0203 0292 bvrp_pci ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0203 0292 bvrp_pci ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0203 0292 Creative Service for CDROM Access ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0203 0292 Creative Service for CDROM Access ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0203 0292 DSproct ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0203 0292 DSproct ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0203 0292 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0203 0292 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0218 0292 FsUsbExService ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0218 0292 FsUsbExService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0218 0292 grmnusb ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0218 0292 grmnusb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0218 0292 McciCMService ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0218 0292 McciCMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0218 0292 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0218 0292 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0218 0292 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0218 0292 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0218 0292 omci ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0218 0292 omci ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0218 0292 PCD5SRVC{FBEA8B78-1B22F121-05040000} ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0218 0292 PCD5SRVC{FBEA8B78-1B22F121-05040000} ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0218 0292 PfModNT ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0218 0292 PfModNT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0234 0292 Pivot ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0234 0292 Pivot ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0234 0292 pivotmou ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0234 0292 pivotmou ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:18:38.0234 0292 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
19:18:38.0234 0292 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:19:44.0906 2100 Deinitialize success
 

eddie5659

Moderator
Malware Specialist
Joined
Mar 19, 2001
Messages
37,270
Okay, we'll leave ComboFix for now, can you run this for me:

Download OTL to your Desktop

  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Select All Users
  • Please copy the text in the code box below and paste it in the Custom Scans/Fixes box in OTL:

    Code:
    netsvcs
    activex
    msconfig
    %SYSTEMDRIVE%\*.
    %PROGRAMFILES%\*.exe
    %LOCALAPPDATA%\*.exe
    %windir%\system32\tasks\*.*
    %systemroot%\Fonts\*.exe
    %systemroot%\*. /mp /s
    /md5start
    consrv.dll
    explorer.exe
    winlogon.exe
    regedit.exe
    Userinit.exe
    svchost.exe
    /md5stop
    C:\Windows\assembly\tmp\U\*.* /s
    %Temp%\smtmp\1\*.*
    %Temp%\smtmp\2\*.*
    %Temp%\smtmp\3\*.*
    %Temp%\smtmp\4\*.*
    >C:\commands.txt echo list vol /raw /hide /c
    /wait
    >C:\DiskReport.txt diskpart /s C:\commands.txt /raw /hide /c
    /wait
    type c:\diskreport.txt /c
    /wait
    erase c:\commands.txt /hide /c
    /wait
    erase c:\diskreport.txt /hide /c
    CREATERESTOREPOINT
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic

eddie
 

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
OTL logfile created on: 4/23/2012 6:48:43 PM - Run 1
OTL by OldTimer - Version 3.2.41.0 Folder = C:\Documents and Settings\Craig DeRosier\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.28 Gb Available Physical Memory | 63.91% Memory free
2.27 Gb Paging File | 1.36 Gb Available in Paging File | 59.63% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 38.25 Gb Total Space | 2.22 Gb Free Space | 5.82% Space Free | Partition Type: NTFS

Computer Name: CRAIGELAINE | User Name: Craig DeRosier | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/04/23 18:40:44 | 000,594,944 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Craig DeRosier\My Documents\Downloads\OTL.exe
PRC - [2012/04/19 19:04:38 | 000,161,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012/04/12 03:37:36 | 001,224,176 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
PRC - [2012/03/29 03:44:56 | 000,313,160 | ---- | M] (Smilebox, Inc.) -- C:\Documents and Settings\Craig DeRosier\Application Data\Smilebox\SmileboxTray.exe
PRC - [2012/03/07 17:27:25 | 003,905,920 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2011/12/06 18:25:42 | 000,150,856 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\SYSTEM32\mfevtps.exe
PRC - [2011/12/06 18:21:24 | 000,160,608 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
PRC - [2011/12/06 18:21:08 | 000,166,288 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
PRC - [2011/11/22 18:18:26 | 001,318,816 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2011/08/11 19:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2011/01/27 19:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
PRC - [2010/06/30 16:46:44 | 000,146,032 | ---- | M] (Portrait Displays Inc.) -- C:\Program Files\Common Files\Portrait Displays\Shared\HookManager.exe
PRC - [2010/06/30 16:46:32 | 000,121,456 | ---- | M] () -- C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
PRC - [2010/06/30 16:46:30 | 001,264,240 | ---- | M] (Portrait Displays, Inc) -- C:\Program Files\Acer Display\eDisplay Management\dthtml.exe
PRC - [2010/05/13 16:34:48 | 000,711,792 | ---- | M] () -- C:\Program Files\Portrait Displays\Pivot Pro Plugin\Floater.exe
PRC - [2010/05/13 16:34:42 | 000,674,928 | ---- | M] () -- C:\Program Files\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
PRC - [2010/04/16 15:34:34 | 000,109,168 | ---- | M] (Portrait Displays, Inc.) -- C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe
PRC - [2010/01/15 08:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2009/12/08 15:25:28 | 000,093,320 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2009/03/05 20:41:02 | 000,098,304 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
PRC - [2009/02/19 10:34:32 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\SYSTEM32\FsUsbExService.Exe
PRC - [2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/06/11 13:53:44 | 000,455,600 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\lxdfmon.exe
PRC - [2007/06/01 08:06:09 | 000,020,480 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\lxdfamon.exe
PRC - [2007/05/29 06:06:44 | 000,598,960 | ---- | M] ( ) -- C:\WINDOWS\SYSTEM32\lxdfcoms.exe
PRC - [2007/05/29 06:06:20 | 000,099,248 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfserv.exe
PRC - [2007/05/29 06:06:11 | 000,295,856 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfpswx.exe
PRC - [2006/06/27 10:45:02 | 004,796,416 | ---- | M] (Simple Star, Inc.) -- C:\Program Files\Simple Star\PhotoShow Print & Share\OurPictures.exe


========== Modules (No Company Name) ==========

MOD - [2012/04/22 03:40:44 | 000,052,736 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2012/04/22 03:40:42 | 000,065,024 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2012/04/18 06:41:41 | 000,117,760 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2012/04/18 06:41:40 | 000,052,224 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2012/04/12 03:37:34 | 000,444,400 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\ppgooglenaclpluginchrome.dll
MOD - [2012/04/12 03:37:33 | 003,915,248 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\pdf.dll
MOD - [2012/04/12 03:36:08 | 000,122,880 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\avutil-51.dll
MOD - [2012/04/12 03:36:06 | 000,220,672 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\avformat-53.dll
MOD - [2012/04/12 03:36:05 | 001,747,456 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\avcodec-53.dll
MOD - [2012/04/12 02:51:55 | 008,743,584 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\gcswf32.dll
MOD - [2012/04/11 05:08:40 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d96906db18e87ffe2e08f6cda7e2be0f\System.Windows.Forms.ni.dll
MOD - [2012/04/11 05:08:03 | 001,591,808 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\8d886cdc2ca5f0ff97cd1afe8773bb6e\System.Drawing.ni.dll
MOD - [2012/04/11 05:04:18 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2012/04/11 05:03:52 | 000,261,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2012/04/11 05:03:28 | 005,025,792 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2012/02/15 05:41:54 | 000,627,712 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\c0d15fb6308587fef8744d568e64bcda\System.EnterpriseServices.ni.dll
MOD - [2012/02/15 05:38:30 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll
MOD - [2012/02/15 05:38:13 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\94a40f415bfa947e251888bbe88bb973\System.Configuration.ni.dll
MOD - [2012/02/15 05:37:56 | 007,953,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll
MOD - [2011/12/28 05:36:07 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
MOD - [2011/12/28 05:34:03 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2010/06/30 16:46:42 | 000,236,144 | ---- | M] () -- C:\Program Files\Common Files\Portrait Displays\Shared\DThook.dll
MOD - [2010/06/30 16:46:32 | 000,121,456 | ---- | M] () -- C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
MOD - [2010/06/30 16:46:26 | 000,084,592 | ---- | M] () -- C:\Program Files\Common Files\Portrait Displays\Plugins\CC\gui.dll
MOD - [2010/06/30 16:37:38 | 000,172,032 | ---- | M] () -- C:\Program Files\Common Files\Portrait Displays\Shared\PresetsCOM.dll
MOD - [2010/05/13 16:34:48 | 000,711,792 | ---- | M] () -- C:\Program Files\Portrait Displays\Pivot Pro Plugin\Floater.exe
MOD - [2010/05/13 16:34:42 | 000,674,928 | ---- | M] () -- C:\Program Files\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
MOD - [2009/01/29 12:27:02 | 000,071,696 | ---- | M] () -- c:\Program Files\McAfee\SiteAdvisor\mcfrmwk.dll
MOD - [2009/01/29 12:27:00 | 000,207,376 | ---- | M] () -- c:\Program Files\McAfee\SiteAdvisor\cntscan.dll
MOD - [2009/01/29 12:26:58 | 000,117,264 | ---- | M] () -- c:\Program Files\McAfee\SiteAdvisor\apengine.dll
MOD - [2008/10/16 17:43:10 | 000,028,672 | ---- | M] () -- C:\Program Files\MuvEnum\AddressBar\BandObjectLib.dll
MOD - [2008/09/16 19:03:34 | 000,837,632 | ---- | M] () -- C:\Program Files\MuvEnum\AddressBar\System.Data.SQLite.dll
MOD - [2007/06/11 13:53:44 | 000,455,600 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\lxdfmon.exe
MOD - [2007/06/08 04:52:43 | 000,036,864 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\app4r.monitor.core.dll
MOD - [2007/06/08 04:52:43 | 000,028,672 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\app4r.monitor.common.dll
MOD - [2007/06/08 04:52:00 | 000,057,344 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\app4r.devmons.mcmdevmon.dll
MOD - [2007/06/01 08:06:28 | 000,011,776 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\app4r.devmons.mcmdevmon.autoplayutil.dll
MOD - [2007/06/01 08:06:09 | 000,020,480 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\lxdfamon.exe
MOD - [2007/05/29 06:06:11 | 000,295,856 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfpswx.exe
MOD - [2007/05/25 13:42:12 | 000,151,552 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfdrui.dll
MOD - [2007/05/25 13:42:10 | 000,113,664 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\PRTPROCS\W32X86\lxdfdrpp.dll
MOD - [2007/05/25 13:41:51 | 000,176,640 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfdr.dll
MOD - [2007/05/24 16:24:25 | 000,692,224 | ---- | M] () -- C:\WINDOWS\SYSTEM32\lxdfdrs.dll
MOD - [2007/05/24 16:21:25 | 000,278,528 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\lxdfscw.dll
MOD - [2007/05/24 07:41:46 | 000,045,056 | ---- | M] () -- C:\WINDOWS\SYSTEM32\LXDFPMON.DLL
MOD - [2007/05/24 07:39:22 | 000,032,768 | ---- | M] () -- C:\Program Files\Lexmark 6500 Series\ipcmt.dll
MOD - [2007/05/22 10:09:48 | 000,065,536 | ---- | M] () -- C:\WINDOWS\SYSTEM32\lxdfcaps.dll
MOD - [2007/05/21 16:16:16 | 001,323,008 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfhpec.dll
MOD - [2007/05/16 00:45:45 | 000,802,816 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfptpc.dll
MOD - [2007/05/03 11:39:31 | 000,589,824 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfdatr.dll
MOD - [2007/04/17 10:17:05 | 000,069,632 | ---- | M] () -- C:\WINDOWS\SYSTEM32\lxdfcnv4.dll
MOD - [2007/04/09 10:59:29 | 000,069,632 | ---- | M] () -- C:\WINDOWS\SYSTEM32\lxdfoem.dll
MOD - [2007/03/26 03:39:35 | 000,073,728 | ---- | M] () -- C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfcats.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\Documents and Settings\All Users\Application Data\OneStepSrch\onestep210.exe C:\Program Files\OneStepSrch\onestep.dll Service -- (OneStepSrch Service)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Motive\McciServiceHost.exe -- (McciServiceHost)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012/04/19 19:04:38 | 000,161,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012/04/13 19:51:49 | 000,253,088 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2011/12/06 18:25:42 | 000,150,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\WINDOWS\SYSTEM32\mfevtps.exe -- (mfevtp)
SRV - [2011/12/06 18:21:24 | 000,160,608 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV - [2011/12/06 18:21:08 | 000,166,288 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV - [2011/10/18 17:59:54 | 000,361,976 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2011/08/11 19:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2011/01/27 19:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2011/01/27 19:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV - [2011/01/27 19:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2011/01/27 19:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV - [2011/01/27 19:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV - [2010/06/30 16:46:32 | 000,121,456 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe -- (DTSRVC)
SRV - [2010/04/16 15:34:34 | 000,109,168 | ---- | M] (Portrait Displays, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe -- (PdiService)
SRV - [2010/01/15 08:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009/12/08 15:25:28 | 000,093,320 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2009/02/19 10:34:32 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\SYSTEM32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008/04/07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007/11/15 10:23:56 | 000,202,544 | ---- | M] (SupportSoft, Inc.) [Auto | Stopped] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2007/05/29 06:06:44 | 000,598,960 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\SYSTEM32\lxdfcoms.exe -- (lxdf_device)
SRV - [2007/05/29 06:06:20 | 000,099,248 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdfserv.exe -- (lxdfCATSCustConnectService)
SRV - [2007/03/07 16:47:46 | 000,076,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\DRIVERS\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS -- (MRENDIS5)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS -- (MREMPR5)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (mfeavfk01)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\DRIVERS\wATV03nt.sys -- (iAimTV2)
DRV - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\Drivers\DgiVecp.sys -- (DgiVecp)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\CRAIGD~1\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\CRAIGD~1\LOCALS~1\Temp\aswMBR.sys -- (aswMBR)
DRV - [2011/10/15 13:16:16 | 000,464,176 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfehidk.sys -- (mfehidk)
DRV - [2011/10/15 13:16:16 | 000,338,176 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfefirek.sys -- (mfefirek)
DRV - [2011/10/15 13:16:16 | 000,180,816 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfeavfk.sys -- (mfeavfk)
DRV - [2011/10/15 13:16:16 | 000,121,256 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfeapfk.sys -- (mfeapfk)
DRV - [2011/10/15 13:16:16 | 000,089,792 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfetdi2k.sys -- (mfetdi2k)
DRV - [2011/10/15 13:16:16 | 000,087,656 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\mferkdet.sys -- (mferkdet)
DRV - [2011/10/15 13:16:16 | 000,083,856 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfendisk.sys -- (mfendiskmp)
DRV - [2011/10/15 13:16:16 | 000,083,856 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfendisk.sys -- (mfendisk)
DRV - [2011/10/15 13:16:16 | 000,059,456 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfebopk.sys -- (mfebopk)
DRV - [2011/10/15 13:16:16 | 000,057,600 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\cfwids.sys -- (cfwids)
DRV - [2011/07/22 12:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 17:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/07/27 05:47:30 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRESP50.sys -- (MRESP50)
DRV - [2010/07/27 05:47:10 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2010/05/13 16:34:30 | 000,017,465 | ---- | M] (Portrait Displays, Inc.) [Kernel | System | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\pivot.sys -- (Pivot)
DRV - [2010/05/13 16:34:28 | 000,011,323 | ---- | M] (Portrait Displays, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\pivotmou.sys -- (pivotmou)
DRV - [2010/04/16 15:34:10 | 000,017,136 | ---- | M] (Portrait Displays, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\PdiPorts.sys -- (PdiPorts)
DRV - [2009/09/16 10:22:48 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\mfesmfk.sys -- (mfesmfk)
DRV - [2009/09/16 10:22:14 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\mferkdk.sys -- (mferkdk)
DRV - [2009/02/19 10:34:30 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2008/10/05 22:54:50 | 000,002,560 | ---- | M] (SupportSoft Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\ssrangdr.sys -- (ssrangdr)
DRV - [2008/04/13 14:56:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\usb8023.sys -- (USB_RNDIS)
DRV - [2008/04/13 14:45:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\gameenum.sys -- (gameenum)
DRV - [2007/12/05 16:47:42 | 000,020,640 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Dell Support Center\HWDiag\bin\pcd5srvc.pkms -- (PCD5SRVC{FBEA8B78-1B22F121-05040000})
DRV - [2007/09/17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007/07/03 17:58:20 | 000,106,792 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\sscdmdm.sys -- (sscdmdm)
DRV - [2007/07/03 17:57:24 | 000,011,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\sscdmdfl.sys -- (sscdmdfl)
DRV - [2007/07/03 17:54:24 | 000,080,552 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2007/02/25 13:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\dsunidrv.sys -- (dsunidrv)
DRV - [2006/10/05 17:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2004/08/04 02:29:50 | 000,019,455 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wvchntxx.sys -- (iAimFP4)
DRV - [2004/08/04 02:29:48 | 000,012,063 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wsiintxx.sys -- (iAimFP3)
DRV - [2004/08/04 02:29:46 | 000,023,615 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wch7xxnt.sys -- (iAimTV4)
DRV - [2004/08/04 02:29:44 | 000,033,599 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv04nt.sys -- (iAimTV3)
DRV - [2004/08/04 02:29:42 | 000,029,311 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv01nt.sys -- (iAimTV0)
DRV - [2004/08/04 02:29:42 | 000,019,551 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv02nt.sys -- (iAimTV1)
DRV - [2004/08/04 02:29:38 | 000,012,415 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv01nt.sys -- (iAimFP0)
DRV - [2004/08/04 02:29:38 | 000,012,127 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv02nt.sys -- (iAimFP1)
DRV - [2004/08/04 02:29:38 | 000,011,775 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv05nt.sys -- (iAimFP2)
DRV - [2004/08/04 02:29:36 | 000,161,020 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\i81xnt5.sys -- (i81x)
DRV - [2003/09/22 11:43:06 | 001,330,048 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\P16X.sys -- (P16X) Creative SB Live! Series (WDM)
DRV - [2003/09/22 07:48:06 | 000,130,192 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\ctsfm2k.sys -- (ctsfm2k)
DRV - [2003/09/22 07:47:38 | 000,178,672 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\ctoss2k.sys -- (ossrv)
DRV - [2003/08/29 04:59:24 | 001,101,696 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\BCMSM.sys -- (BCMModem)
DRV - [2003/05/23 14:58:30 | 000,043,136 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2002/11/08 15:45:06 | 000,017,217 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\omci.sys -- (omci)
DRV - [2002/05/13 20:59:20 | 000,004,272 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\bvrp_pci.sys -- (bvrp_pci)
DRV - [2001/08/17 14:11:06 | 000,066,591 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\EL90XBC5.SYS -- (EL90XBC)
DRV - [1999/12/17 02:00:00 | 000,006,752 | ---- | M] (Creative Technology Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\SYSTEM32\PFMODNT.SYS -- (PfModNT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.earthlink.net/AL/Search
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.dell4me.com/myway
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.dell4me.com/myway
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/
IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.earthlink.net/partner/more/msie/button/search.html
IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://att.net/
IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\SearchScopes\{CF85CA8F-0E57-4E65-9F45-B70924B489A9}: "URL" = http://search.comcast.net/?q={searchTerms}&cat=Web&con=net&x=12&y=10
IE - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://att.my.yahoo.com/"
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.8
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll File not found
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~1\mcafee\msc\npmcsn~1.dll ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MVT: C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Craig DeRosier\Application Data\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010/06/03 19:29:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files\Common Files\McAfee\SystemCore [2012/04/22 03:44:02 | 000,000,000 | ---D | M]

[2009/09/13 08:59:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Craig DeRosier\Application Data\Mozilla\Extensions
[2009/09/12 07:16:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Craig DeRosier\Application Data\Mozilla\Firefox\Profiles\1u3wgy16.default\extensions
[2009/09/12 07:16:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Craig DeRosier\Application Data\Mozilla\Firefox\Profiles\1u3wgy16.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2)
[2010/03/21 16:33:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Craig DeRosier\Application Data\Mozilla\Firefox\Profiles\83pdpaxo.default\extensions
[2009/09/13 09:07:31 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Craig DeRosier\Application Data\Mozilla\Firefox\Profiles\83pdpaxo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:eek:riginalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\Application\18.0.1025.162\gcswf32.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\Craig DeRosier\Application Data\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Garmin Communicator Plug-In (Enabled) = C:\Program Files\Garmin GPS Plugin\npGarmin.dll
CHR - plugin: McAfee Virtual Technician (Enabled) = C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll
CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~1\mcafee\msc\npmcsn~1.dll
CHR - Extension: YouTube = C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/02/15 15:20:05 | 000,000,027 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - No CLSID value found.
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120301231723.dll (McAfee, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O3 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\Toolbar\ShellBrowser: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
O3 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\Toolbar\ShellBrowser: (no name) - {C7768536-96F8-4001-B1A2-90EE21279187} - No CLSID value found.
O3 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\Toolbar\WebBrowser: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
O3 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O4 - HKLM..\Run: [DT ACR] C:\Program Files\Common Files\Portrait Displays\Shared\DT_startup.exe ()
O4 - HKLM..\Run: [Lexmark 6500 Series Fax Server] C:\Program Files\Lexmark 6500 Series\fm3032.exe ()
O4 - HKLM..\Run: [lxdfamon] C:\Program Files\Lexmark 6500 Series\lxdfamon.exe ()
O4 - HKLM..\Run: [lxdfmon.exe] C:\Program Files\Lexmark 6500 Series\lxdfmon.exe ()
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [PivotSoftware] C:\Program Files\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe ()
O4 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007..\Run: [OurPictures] C:\Program Files\Simple Star\PhotoShow Print & Share\OurPictures.exe (Simple Star, Inc.)
O4 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007..\Run: [SmileboxTray] C:\Documents and Settings\Craig DeRosier\Application Data\Smilebox\SmileboxTray.exe (Smilebox, Inc.)
O4 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Search - Reg Error: Value error. File not found
O8 - Extra context menu item: Refresh Pa&ge with Full Quality - C:\Program Files\EarthLink TotalAccess\Accelerator\\pac-page.html File not found
O8 - Extra context menu item: Refresh Pi&cture with Full Quality - C:\Program Files\EarthLink TotalAccess\Accelerator\\pac-image.html File not found
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O15 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..Trusted Domains: ([]msn in My Computer)
O15 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..Trusted Domains: $talisma_url$ ([]https in Trusted sites)
O15 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..Trusted Domains: internet ([]about in Trusted sites)
O15 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..Trusted Domains: mcafee.com ([]http in Trusted sites)
O15 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..Trusted Domains: mcafee.com ([]https in Trusted sites)
O15 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..Trusted Domains: yahoo.com ([us.mg204.mail] https in Trusted sites)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/templates/ieawsdc.cab (Microsoft Office Template and Media Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/downl...-4505-8fb8-d0d2d160e512/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cab (Reg Error: Key error.)
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.update.microsoft.com.../en/x86/MuCatalogWebControl.cab?1283775513390 (MUCatalogWebControl Class)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} http://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,21/mcgdmgr.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3F1610AA-560D-42C7-A623-5EBDA347D582}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\SYSTEM32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxsrvc.dll) - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Jasc Paint Shop Photo Album Wallpaper.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Jasc Paint Shop Photo Album Wallpaper.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2002/09/03 10:59:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

ActiveX: {02f78298-8af6-495c-9ecb-b6ae68678186} - KB867282
ActiveX: {04d6265d-6b5d-41c3-9e7c-48be15919643} - KB890923
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608555} - Internet Explorer Classes for Java
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 8.5.1
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {2298d453-bcae-4519-bf33-1cbf3faf1524} - Q867801
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 8.5.1
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2cc9d512-6db6-4f1c-8979-9a41fae88de0} - Q837009
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {3e7bb08a-a7a3-4692-8eac-ac5e7895755b} - KB834707
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5c9ff2bf-938d-47fe-85d9-9dbab4f65018} - KB897715
ActiveX: {5f3c70b3-ac2f-432c-8f9c-1624df61f54f} - Microsoft Data Access Components KB870669
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {795d0712-722c-43ec-906a-fc5e678eada9} - Q831167
ActiveX: {79844cfb-ac65-4e10-a06a-c974234f40d0} - KB883939
ActiveX: {82ced0ff-a00d-4405-ba5f-ef4699159333} - KB896727
ActiveX: {839117ee-2132-4bae-a56a-42b50204c9b9} - KB889293
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8ade8c02-8da6-4ec1-a9ee-ec00ff73ce98} - Internet Explorer Q903235
ActiveX: {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.UnInstall.PerUser
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - rundll32.exe C:\WINDOWS\System32\Setup\FxsOcm.dll,XP_UninstallProvider
ActiveX: {abcdf74f-9a64-4e6e-b8eb-6e5a41de6550} -
ActiveX: {ae594d5e-dd07-4e54-8252-daa5aebbd4ec} - KB905915
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {eddbec60-89cb-44ef-8291-0850fd28ff6a} - Q832894
ActiveX: {EFCE7BE0-510E-4932-9475-F44CD90DE16A} - Microsoft .NET Framework 1.1 Security Update (KB2572067)
ActiveX: {f5173cf0-1dfb-4978-8e50-a90169ee7ca9} - Q823353
ActiveX: {F5776D81-AE53-4935-8E84-B0B283D8BCEF} - Q330994
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: >{8ADB2D55-EC58-4962-BB75-5F6D1E5C0F01} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: Microsoft Base Smart Card Crypto Provider Package -

MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^NkbMonitor.exe.lnk - C:\Program Files\Nikon\PictureProject\NkbMonitor.exe - (Nikon Corporation)
MsConfig - StartUpReg: ABBYY Community Agent - hkey= - key= - File not found
MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - File not found
MsConfig - StartUpReg: BCMSMMSG - hkey= - key= - C:\WINDOWS\BCMSMMSG.exe (Broadcom Corporation)
MsConfig - StartUpReg: ctfmon.exe - hkey= - key= - File not found
MsConfig - StartUpReg: DellSupport - hkey= - key= - C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
MsConfig - StartUpReg: DellSupportCenter - hkey= - key= - C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
MsConfig - StartUpReg: diagent - hkey= - key= - C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe (Creative Technology Ltd)
MsConfig - StartUpReg: dscactivate - hkey= - key= - C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
MsConfig - StartUpReg: HotKeysCmds - hkey= - key= - File not found
MsConfig - StartUpReg: IgfxTray - hkey= - key= - File not found
MsConfig - StartUpReg: lxdfamon - hkey= - key= - C:\Program Files\Lexmark 6500 Series\lxdfamon.exe ()
MsConfig - StartUpReg: lxdfmon.exe - hkey= - key= - C:\Program Files\Lexmark 6500 Series\lxdfmon.exe ()
MsConfig - StartUpReg: mcagent_exe - hkey= - key= - C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
MsConfig - StartUpReg: OurPictures - hkey= - key= - C:\Program Files\Simple Star\PhotoShow Print & Share\OurPictures.exe (Simple Star, Inc.)
MsConfig - StartUpReg: PCMService - hkey= - key= - C:\Program Files\Dell\Media Experience\PCMService.exe (CyberLink Corp.)
MsConfig - StartUpReg: QuickTime Task - hkey= - key= - C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
MsConfig - StartUpReg: SiteAdvisor - hkey= - key= - File not found
MsConfig - StartUpReg: UpdateManager - hkey= - key= - C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe (Sonic Solutions)
MsConfig - StartUpReg: UpdReg - hkey= - key= - C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 1

CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1056

========== Files/Folders - Created Within 30 Days ==========

[2012/04/23 18:36:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
[2012/04/22 03:13:21 | 000,000,000 | --SD | C] -- C:\123.exe
[2012/04/20 19:50:44 | 002,072,624 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Craig DeRosier\My Documents\TDSSKiller.exe
[2012/04/19 20:41:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Craig DeRosier\Local Settings\Application Data\Sun
[2012/04/19 18:43:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2012/04/18 06:41:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Craig DeRosier\Application Data\SUPERAntiSpyware.com
[2012/04/18 06:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
[2012/04/18 06:40:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2012/04/18 06:40:25 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2012/04/11 16:15:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Craig DeRosier\Application Data\ElevatedDiagnostics
[2012/04/11 11:55:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Craig DeRosier\Start Menu\Programs\Google Chrome
[2012/04/01 08:50:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\McAfee
[2012/03/31 11:01:18 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2012/03/31 10:53:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows PowerShell 1.0
[2012/03/31 10:53:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
[90 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[40 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
[1 C:\Documents and Settings\Craig DeRosier\*.tmp files -> C:\Documents and Settings\Craig DeRosier\*.tmp -> ]
[1 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/04/23 18:51:05 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/04/23 18:36:54 | 000,001,595 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Center.lnk
[2012/04/23 18:34:27 | 000,000,440 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{77C0F623-4968-49DA-8597-15F9F6040A2C}.job
[2012/04/22 22:20:00 | 000,001,014 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4098222733-1584023330-3210826012-1007UA.job
[2012/04/22 19:20:00 | 000,000,962 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4098222733-1584023330-3210826012-1007Core.job
[2012/04/22 15:00:58 | 000,000,105 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Desktop\Google.url
[2012/04/22 14:57:25 | 000,001,170 | ---- | M] () -- C:\WINDOWS\System32\WPA.DBL
[2012/04/22 07:32:24 | 002,072,624 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Craig DeRosier\My Documents\TDSSKiller.exe
[2012/04/22 03:35:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\BOOTSTAT.DAT
[2012/04/22 03:35:06 | 2145,456,128 | -HS- | M] () -- C:\hiberfil.sys
[2012/04/22 01:00:33 | 000,000,420 | ---- | M] () -- C:\WINDOWS\tasks\vtscheduletask.job
[2012/04/19 19:24:29 | 000,000,512 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\My Documents\MBR.dat
[2012/04/18 06:40:35 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/04/15 04:49:43 | 002,651,190 | ---- | M] () -- C:\WINDOWS\Jasc Paint Shop Photo Album Wallpaper.bmp
[2012/04/13 19:33:27 | 000,002,351 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Desktop\Google Chrome.lnk
[2012/04/13 19:33:27 | 000,002,329 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/04/11 05:09:40 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/04/11 05:04:56 | 000,514,182 | ---- | M] () -- C:\WINDOWS\System32\PERFH009.DAT
[2012/04/11 05:04:56 | 000,094,398 | ---- | M] () -- C:\WINDOWS\System32\PERFC009.DAT
[2012/04/08 04:54:28 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/03/31 12:06:40 | 001,456,207 | ---- | M] () -- C:\Documents and Settings\Craig DeRosier\My Documents\Easter pic .jpg
[90 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[40 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
[1 C:\Documents and Settings\Craig DeRosier\*.tmp files -> C:\Documents and Settings\Craig DeRosier\*.tmp -> ]
[1 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/04/19 20:04:14 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012/04/19 20:04:14 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012/04/19 19:24:29 | 000,000,512 | ---- | C] () -- C:\Documents and Settings\Craig DeRosier\My Documents\MBR.dat
[2012/04/18 06:40:35 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/04/11 17:09:00 | 000,000,830 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/04/11 11:55:30 | 000,002,329 | ---- | C] () -- C:\Documents and Settings\Craig DeRosier\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/04/11 11:55:29 | 000,002,351 | ---- | C] () -- C:\Documents and Settings\Craig DeRosier\Desktop\Google Chrome.lnk
[2012/03/31 12:06:58 | 001,456,207 | ---- | C] () -- C:\Documents and Settings\Craig DeRosier\My Documents\Easter pic .jpg
[2012/03/08 20:11:55 | 000,196,710 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-4098222733-1584023330-3210826012-1007-0.dat
[2012/02/14 18:52:55 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/12/26 16:00:46 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/12/26 09:45:35 | 000,196,710 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2011/04/18 14:45:18 | 000,007,432 | ---- | C] () -- C:\WINDOWS\System32\Machnm32.sys

========== LOP Check ==========

[2008/11/25 13:08:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\6500 Series
[2004/02/10 09:50:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2008/08/22 00:43:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Comcast
[2006/07/13 19:42:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EnterNHelp
[2010/03/21 12:57:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FileCure
[2012/03/31 11:20:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Garmin
[2004/08/18 12:41:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Individual Software
[2009/03/12 17:33:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iWin Games
[2011/12/15 07:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LxThumbs
[2006/07/16 14:51:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\muvee Technologies
[2009/12/21 19:24:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2009/04/16 22:43:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
[2008/11/02 17:35:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2009/04/07 17:10:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/11/08 10:20:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ThumbnailCache4R
[2006/07/13 19:42:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ultima_T15
[2004/02/10 09:54:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009/03/29 18:05:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[2008/11/27 10:21:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\6500 Series
[2011/04/18 14:51:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\DisplayTune
[2006/10/05 14:27:53 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Earthlink
[2012/04/11 16:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\ElevatedDiagnostics
[2010/03/21 16:26:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Facebook
[2012/03/31 11:20:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\GARMIN
[2008/11/25 14:03:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Hallmark
[2004/08/18 12:44:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Individual Software
[2004/03/01 17:25:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\InterTrust
[2009/03/23 23:17:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\iWin
[2004/05/14 06:08:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Jasc
[2004/02/13 20:50:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Leadertech
[2008/11/25 13:23:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Lexmark Productivity Studio
[2010/03/21 09:09:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\licenses
[2006/07/16 14:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\muvee Technologies
[2006/07/16 14:50:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Nikon
[2009/12/21 19:24:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\PC Suite
[2010/03/21 09:10:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\PCMM2009
[2010/03/21 09:09:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\PCMM2010
[2009/12/21 19:17:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Samsung
[2012/04/18 13:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Smilebox
[2009/03/12 16:10:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\SpinTop
[2008/11/09 08:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\SupportSoft
[2008/11/02 09:45:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Craig DeRosier\Application Data\Uniblue
[2008/12/30 21:02:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\COMCASTTOOLBAR
[2004/02/12 22:00:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Earthlink
[2009/10/04 04:56:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\SACore
[2012/04/23 18:34:27 | 000,000,440 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{77C0F623-4968-49DA-8597-15F9F6040A2C}.job
[2012/04/22 01:00:33 | 000,000,420 | ---- | M] () -- C:\WINDOWS\Tasks\vtscheduletask.job

========== Purity Check ==========



========== Custom Scans ==========

< %SYSTEMDRIVE%\*. >
[2012/04/22 03:31:34 | 000,000,000 | --SD | M] -- C:\123.exe
[2009/08/23 05:25:41 | 000,000,000 | ---D | M] -- C:\4590113019808be47da94c407812
[2009/02/20 18:35:10 | 000,000,000 | ---D | M] -- C:\Avenger
[2009/06/08 14:22:33 | 000,000,000 | ---D | M] -- C:\Chart Support Files
[2009/02/15 15:08:00 | 000,000,000 | ---D | M] -- C:\cmdcons
[2009/06/08 14:22:57 | 000,000,000 | ---D | M] -- C:\Color
[2009/06/08 14:22:50 | 000,000,000 | ---D | M] -- C:\Config
[2012/04/19 19:06:20 | 000,000,000 | -H-D | M] -- C:\Config.Msi
[2009/06/08 14:22:53 | 000,000,000 | ---D | M] -- C:\Custom
[2007/04/14 20:44:04 | 000,000,000 | ---D | M] -- C:\DELL
[2004/03/10 16:40:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings
[2006/02/24 08:31:12 | 000,000,000 | ---D | M] -- C:\DRIVERS
[2009/06/08 14:23:00 | 000,000,000 | ---D | M] -- C:\Filters
[2009/06/08 14:22:11 | 000,000,000 | ---D | M] -- C:\Fontnav
[2009/04/02 17:08:13 | 000,000,000 | ---D | M] -- C:\GameHouse Games
[2008/11/09 19:47:42 | 000,000,000 | ---D | M] -- C:\Garmin
[2009/06/08 14:22:09 | 000,000,000 | ---D | M] -- C:\Graphics
[2004/02/10 09:06:52 | 000,000,000 | ---D | M] -- C:\I386
[2008/11/01 15:06:07 | 000,000,000 | ---D | M] -- C:\lexmark
[2008/10/31 16:42:13 | 000,000,000 | ---D | M] -- C:\logs
[2009/06/08 14:22:06 | 000,000,000 | ---D | M] -- C:\Macros
[2004/02/10 09:52:19 | 000,000,000 | ---D | M] -- C:\Media
[2009/03/12 13:25:17 | 000,000,000 | ---D | M] -- C:\My Games
[2004/02/10 09:54:31 | 000,000,000 | ---D | M] -- C:\My Music
[2010/03/21 13:31:52 | 000,000,000 | ---D | M] -- C:\New Folder
[2012/04/18 12:38:23 | 000,000,000 | ---D | M] -- C:\Program Files
[2009/06/08 14:24:01 | 000,000,000 | ---D | M] -- C:\Programs
[2012/04/19 20:04:18 | 000,000,000 | ---D | M] -- C:\Qoobox
[2009/06/08 14:22:05 | 000,000,000 | ---D | M] -- C:\Queries
[2009/02/15 15:39:53 | 000,000,000 | -HSD | M] -- C:\RECYCLER
[2009/06/08 14:22:08 | 000,000,000 | ---D | M] -- C:\Shared
[2006/09/13 16:48:07 | 000,000,000 | ---D | M] -- C:\spoolerlogs
[2004/08/25 07:40:19 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2009/06/08 14:22:22 | 000,000,000 | ---D | M] -- C:\Template
[2009/03/12 12:03:46 | 000,000,000 | ---D | M] -- C:\users
[2012/04/22 03:35:15 | 000,000,000 | ---D | M] -- C:\WINDOWS
[2004/07/28 22:44:06 | 000,000,000 | ---D | M] -- C:\WUTemp
[2009/06/08 14:22:24 | 000,000,000 | ---D | M] -- C:\XML

< %PROGRAMFILES%\*.exe >
Invalid Environment Variable: LOCALAPPDATA

< %windir%\system32\tasks\*.* >

< %systemroot%\Fonts\*.exe >

< %systemroot%\*. /mp /s >

< MD5 for: EXPLORER.EXE >
[2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2007/06/13 07:26:03 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2004/08/04 03:56:49 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2004/08/04 03:56:49 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\SoftwareDistribution\Download\6ca7b3a8efd5a9b6f87fff395a2eb989\explorer.exe
[2002/08/29 07:00:00 | 001,004,032 | ---- | M] (Microsoft Corporation) MD5=A82B28BFC2E4455FE43022A498C0EF0A -- C:\WINDOWS\$NtUninstallKB820291$\explorer.exe

< MD5 for: REGEDIT.EXE >
[2008/04/13 20:12:32 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=058710B720282CA82B909912D3EF28DB -- C:\WINDOWS\regedit.exe
[2008/04/13 20:12:32 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=058710B720282CA82B909912D3EF28DB -- C:\WINDOWS\ServicePackFiles\i386\regedit.exe
[2004/08/04 03:56:55 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=783AFC80383C176B22DBF8333343992D -- C:\WINDOWS\$NtServicePackUninstall$\regedit.exe
[2004/08/04 03:56:55 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=783AFC80383C176B22DBF8333343992D -- C:\WINDOWS\SoftwareDistribution\Download\6ca7b3a8efd5a9b6f87fff395a2eb989\regedit.exe
[2002/08/29 07:00:00 | 000,134,144 | ---- | M] (Microsoft Corporation) MD5=B28FB518CD2949715CBFCE0E93A7A535 -- C:\I386\REGEDIT.EXE

< MD5 for: SVCHOST.EXE >
[2002/08/29 07:00:00 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=0F7D9C87B0CE1FA520473119752C6F79 -- C:\I386\SVCHOST.EXE
[2008/04/13 20:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008/04/13 20:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\SYSTEM32\svchost.exe
[2004/08/04 03:56:57 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
[2004/08/04 03:56:57 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\SoftwareDistribution\Download\6ca7b3a8efd5a9b6f87fff395a2eb989\svchost.exe

< MD5 for: USERINIT.EXE >
[2004/08/04 03:56:57 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2004/08/04 03:56:57 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\SoftwareDistribution\Download\6ca7b3a8efd5a9b6f87fff395a2eb989\userinit.exe
[2008/04/13 20:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/13 20:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\SYSTEM32\userinit.exe
[2002/08/29 07:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=E931E0A2B8BF0019DB902E98D03662CB -- C:\I386\USERINIT.EXE

< MD5 for: WINLOGON.EXE >
[2004/08/04 03:56:57 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2004/08/04 03:56:57 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\SoftwareDistribution\Download\6ca7b3a8efd5a9b6f87fff395a2eb989\winlogon.exe
[2002/08/29 07:00:00 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=2246D8D8F4714A2CEDB21AB9B1849ABB -- C:\I386\WINLOGON.EXE
[2002/08/29 07:00:00 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=2246D8D8F4714A2CEDB21AB9B1849ABB -- C:\WINDOWS\$NtUninstallKB841533$\winlogon.exe
[2008/04/13 20:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 20:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\SYSTEM32\winlogon.exe

< C:\Windows\assembly\tmp\U\*.* /s >

< %Temp%\smtmp\1\*.* >

< %Temp%\smtmp\2\*.* >

< %Temp%\smtmp\3\*.* >

< %Temp%\smtmp\4\*.* >

< type c:\diskreport.txt /c >
Microsoft DiskPart version 5.1.3565
Copyright (C) 1999-2003 Microsoft Corporation.
On computer: CRAIGELAINE
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
Volume 0 D CD-ROM 0 B
Volume 1 C NTFS Partition 38 GB Healthy System
Volume 2 E Removeable 0 B

========== Alternate Data Streams ==========

@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C47E54BB
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:54301EF8
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3F2F06F2
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7715B65F
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F6BF312D
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F664613B
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6E009657
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EA34E08F
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:667565EE

< End of report >


-----------------------------------------

OTL Extras logfile created on: 4/23/2012 6:48:43 PM - Run 1
OTL by OldTimer - Version 3.2.41.0 Folder = C:\Documents and Settings\Craig DeRosier\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.28 Gb Available Physical Memory | 63.91% Memory free
2.27 Gb Paging File | 1.36 Gb Available in Paging File | 59.63% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 38.25 Gb Total Space | 2.22 Gb Free Space | 5.82% Space Free | Partition Type: NTFS

Computer Name: CRAIGELAINE | User Name: Craig DeRosier | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:mad:xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:mad:xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:mad:xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:mad:xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:mad:xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:mad:xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:mad:xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:mad:xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:mad:xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:mad:xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\SYSTEM32\lxdfcoms.exe" = C:\WINDOWS\SYSTEM32\lxdfcoms.exe:*:Enabled:Lexmark Communications System -- ( )
"C:\Program Files\Lexmark 6500 Series\lxdfamon.exe" = C:\Program Files\Lexmark 6500 Series\lxdfamon.exe:*:Enabled:Lexmark Device Monitor -- ()
"C:\Program Files\Lexmark 6500 Series\FRun.exe" = C:\Program Files\Lexmark 6500 Series\FRun.exe:*:Enabled:Lexmark Productivity Studio -- ()
"C:\Program Files\Abbyy FineReader 6.0 Sprint\scan\scanman6.exe" = C:\Program Files\Abbyy FineReader 6.0 Sprint\scan\scanman6.exe:*:Enabled:ABBYY FineReader -- (ABBYY (BIT Software))
"C:\Program Files\Lexmark 6500 Series\lxdfmon.exe" = C:\Program Files\Lexmark 6500 Series\lxdfmon.exe:*:Enabled:printer Device Monitor -- ()
"C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfpswx.exe" = C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfpswx.exe:*:Enabled:printer Status Window Interface -- ()
"C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdftime.exe" = C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdftime.exe:*:Enabled:Lexmark Connect Time Executable -- (Lexmark International, Inc.)
"C:\Program Files\Lexmark 6500 Series\LXDFFax.exe" = C:\Program Files\Lexmark 6500 Series\LXDFFax.exe:*:Enabled:Fax Solutions Software -- ()
"C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfjswx.exe" = C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfjswx.exe:*:Enabled:Job Status Window Interface -- ()
"C:\Program Files\Lexmark 6500 Series\Wireless\lxdfwpss.exe" = C:\Program Files\Lexmark 6500 Series\Wireless\lxdfwpss.exe:*:Enabled: -- (Lexmark International, Inc.)
"C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfwbgw.exe" = C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdfwbgw.exe:*:Enabled:Lexmark Web Gateway -- ()
"C:\Program Files\Global Star\Age of Sail II\privateer.exe" = C:\Program Files\Global Star\Age of Sail II\privateer.exe:*:Enabled:privateer
"C:\Program Files\Team17\Worms 2\Frontend.exe" = C:\Program Files\Team17\Worms 2\Frontend.exe:*:Disabled:Worms 2 Frontend
"C:\WINDOWS\SYSTEM32\ftp.exe" = C:\WINDOWS\SYSTEM32\ftp.exe:*:Enabled:File Transfer Program -- (Microsoft Corporation)
"C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe" = C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server
"C:\Program Files\Common Files\Motive\McciServiceHost.exe" = C:\Program Files\Common Files\Motive\McciServiceHost.exe:*:Enabled:McciServiceHost
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" = C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe:*:Enabled:McAfee Shared Service Host -- (McAfee, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}" = Pivot Pro Plugin
"{04410044-9149-45C6-A806-F2BF9CFCE762}" = Microsoft Encarta Encyclopedia Standard 2004
"{09DA4F91-2A09-4232-AB8C-6BC740096DE3}" = Sonic Update Manager
"{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}" = SDK
"{11F1920A-56A2-4642-B6E0-3B31A12C9288}" = Dell Solution Center
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Dell Media Experience
"{26A24AE4-039D-4CA4-87B4-2F83217003FF}" = Java(TM) 7 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35BDEFF1-A610-4956-A00D-15453C116395}" = Internet Explorer Default Page
"{366FFC89-C800-4366-B903-B9C4314109A5}" = Garmin WebUpdater
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B9F45E8-E3CE-40B4-9463-80A9B3481DEF}" = Banctec Service Agreement
"{54DD126C-E5F5-404C-B4B7-66DF7FD4F2FF}" = MSSoap
"{54F90B55-BEB3-4F0D-8802-228822FA5921}" = WordPerfect Office 11
"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0
"{64658686-0CD4-4CF6-983D-0A6BE32007DB}" = Business Complete Care Services Agreement
"{68D60342-7686-45C9-B8EB-40EF843D0460}" = Dell Networking Guide
"{79C217FB-ADE6-47D9-8205-A479BB264B16}" = PhotoShow Print & Share
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport
"{7F142D56-3326-11D5-B229-002078017FBF}" = Modem Helper
"{89EE857B-8970-4F9F-AB58-A1C873AC72B3}" = Broadcom Management Programs
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Extreme Graphics Driver
"{8ED02445-D491-414C-A56D-2ED6BBB7239A}" = Garmin Communicator Plugin
"{90D55A3F-1D99-4C94-A77E-46DC14F0BF08}" = Help and Support Customization
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96E16100-A77F-4B31-B9AD-FFBA040EE1BD}" = Sound Blaster Live!
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A586DC50-B18D-48FB-B7CC-A598200457C2}" = Acer eDisplay Management
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C69AEBA2-6BDC-4C84-9275-6A48D4E1E4B1}" = EarthLink MailBox
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC000127-5E5D-4A1C-90CB-EEAAAC1E3AC0}" = Jasc Paint Shop Photo Album
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D22B50A0-DD4E-4E33-9971-891C328677C8}" = DellConnect
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{DBDB8C5A-E0B9-4C10-A649-59D962E3A07F}" = EarthLink Webspace
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{E3436EE2-D5CB-4249-840B-3A0140CC34C3}" = Classic PhoneTools
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F8131A35-47FD-27AD-116D-0E79AF5DE5EE}" = Acrobat.com
"{F91E1833-2D7C-4725-B98A-C779FEC41946}" = EarthLink MDAC
"{FC4ED75D-916C-4A8C-BB67-3C6F6E06D62B}" = Banctec Service Agreement
"{FF3999BE-1A7B-4738-88AA-97BF14094A4A}" = PictureProject
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Windows Driver Package - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Windows Driver Package - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"AddressBar" = MuvEnum Address Bar - Windows Explorer Extension
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"BCM V.92 56K Modem" = BCM V.92 56K Modem
"BLS OnTheRoad rev.1_is1" = BLS OnTheRoad v.2_2005 rev.1
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"comcastDD" = Desktop Doctor
"Dell Digital Jukebox Driver" = Dell Digital Jukebox Driver
"EarthLinkMailClient" = EarthLink MailBox
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{89EE857B-8970-4F9F-AB58-A1C873AC72B3}" = Broadcom Management Programs
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"Lexmark 6500 Series" = Lexmark 6500 Series
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"McAfee Security Scan" = McAfee Security Scan Plus
"McAfee Virtual Technician" = McAfee Virtual Technician
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"MSC" = McAfee SecurityCenter
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Q903235" = Internet Explorer Q903235
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"Shockwave" = Shockwave
"SmartInstaller" = TotalAccess Smart Installer
"StreetPlugin" = Learn2 Player (Uninstall Only)
"Tweak UI 2.10" = Tweak UI
"ViewpointMediaPlayer" =
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4098222733-1584023330-3210826012-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Facebook Plug-In" = Facebook Plug-In
"Google Chrome" = Google Chrome
"Smilebox" = Smilebox

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 4/22/2012 2:57:59 PM | Computer Name = CRAIGELAINE | Source = MsiInstaller | ID = 10005
Description = Product: Microsoft .NET Framework 1.1 -- Internal Error 2705. Directory

Error - 4/22/2012 2:57:59 PM | Computer Name = CRAIGELAINE | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 1.1 - Update '{0213C6AF-5562-4D09-884C-2ADCFC8C2F35}'
could not be installed. Error code 1603. Additional information is available in
the log file C:\DOCUME~1\CRAIGD~1\LOCALS~1\Temp\NDP1.1sp1-KB2656353-X86\NDP1.1sp1-KB2656353-X86-msi.0.log.

Error - 4/22/2012 2:58:00 PM | Computer Name = CRAIGELAINE | Source = NativeWrapper | ID = 5000
Description =

Error - 4/22/2012 2:58:12 PM | Computer Name = CRAIGELAINE | Source = MsiInstaller | ID = 10005
Description = Product: Microsoft .NET Framework 1.1 -- Internal Error 2705. Directory

Error - 4/22/2012 2:58:12 PM | Computer Name = CRAIGELAINE | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 1.1 - Update '{1897C549-AE52-4571-8996-44854F5612B2}'
could not be installed. Error code 1603. Additional information is available in
the log file C:\DOCUME~1\CRAIGD~1\LOCALS~1\Temp\NDP1.1sp1-KB2656370-X86\NDP1.1sp1-KB2656370-X86-msi.0.log.

Error - 4/22/2012 2:58:12 PM | Computer Name = CRAIGELAINE | Source = NativeWrapper | ID = 5000
Description =

Error - 4/23/2012 6:32:00 PM | Computer Name = CRAIGELAINE | Source = MsiInstaller | ID = 10005
Description = Product: Microsoft .NET Framework 1.1 -- Internal Error 2705. Directory

Error - 4/23/2012 6:32:00 PM | Computer Name = CRAIGELAINE | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 1.1 - Update '{0213C6AF-5562-4D09-884C-2ADCFC8C2F35}'
could not be installed. Error code 1603. Additional information is available in
the log file C:\WINDOWS\TEMP\NDP1.1sp1-KB2656353-X86\NDP1.1sp1-KB2656353-X86-msi.0.log.

Error - 4/23/2012 6:32:01 PM | Computer Name = CRAIGELAINE | Source = NativeWrapper | ID = 5000
Description =

Error - 4/23/2012 6:46:37 PM | Computer Name = CRAIGELAINE | Source = Application Hang | ID = 1002
Description = Hanging application OTL.exe, version 3.2.41.0, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

[ System Events ]
Error - 4/22/2012 3:37:01 AM | Computer Name = CRAIGELAINE | Source = Service Control Manager | ID = 7000
Description = The McciServiceHost service failed to start due to the following error:
%%2

Error - 4/22/2012 3:38:23 AM | Computer Name = CRAIGELAINE | Source = Service Control Manager | ID = 7022
Description = The SupportSoft Sprocket Service (dellsupportcenter) service hung
on starting.

Error - 4/22/2012 3:40:22 AM | Computer Name = CRAIGELAINE | Source = System Error | ID = 1003
Description = Error code 00000019, parameter1 00000020, parameter2 88d69768, parameter3
88d69b80, parameter4 1a830004.

Error - 4/22/2012 3:42:21 AM | Computer Name = CRAIGELAINE | Source = DCOM | ID = 10010
Description = The server {211EBA3A-EA5A-496B-A021-5C6BEB365E4C} did not register
with DCOM within the required timeout.

Error - 4/22/2012 2:49:55 PM | Computer Name = CRAIGELAINE | Source = Windows Update Agent | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on
Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2656353).

Error - 4/22/2012 2:50:11 PM | Computer Name = CRAIGELAINE | Source = Windows Update Agent | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on
Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2656370).

Error - 4/22/2012 2:58:05 PM | Computer Name = CRAIGELAINE | Source = Windows Update Agent | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on
Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2656353).

Error - 4/22/2012 2:58:18 PM | Computer Name = CRAIGELAINE | Source = Windows Update Agent | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on
Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2656370).

Error - 4/23/2012 6:30:20 PM | Computer Name = CRAIGELAINE | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.1.65 on
the Network Card with network address 000D56199A76.

Error - 4/23/2012 6:33:31 PM | Computer Name = CRAIGELAINE | Source = Windows Update Agent | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on
Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2656353).


< End of report >
 

eddie5659

Moderator
Malware Specialist
Joined
Mar 19, 2001
Messages
37,270
Can you uninstall this via AddRemove Programs:

ViewpointMediaPlayer

Then, do the following:

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following
    Code:
    :OTL
    SRV - File not found [Disabled | Stopped] -- C:\Documents and Settings\All Users\Application Data\OneStepSrch\onestep210.exe C:\Program Files\OneStepSrch\onestep.dll Service -- (OneStepSrch Service)
    SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Motive\McciServiceHost.exe -- (McciServiceHost)
    SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
    SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand | Stopped] -- System32\DRIVERS\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
    DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
    DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS -- (MRENDIS5)
    DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS -- (MREMPR5)
    DRV - File not found [Kernel | On_Demand | Unknown] -- -- (mfeavfk01)
    DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
    DRV - File not found [Kernel | On_Demand | Stopped] -- System32\DRIVERS\wATV03nt.sys -- (iAimTV2)
    DRV - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\Drivers\DgiVecp.sys -- (DgiVecp)
    DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
    DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\CRAIGD~1\LOCALS~1\Temp\catchme.sys -- (catchme)
    DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\CRAIGD~1\LOCALS~1\Temp\aswMBR.sys -- (aswMBR)
    FF - user.js - File not found
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll File not found
    FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
    CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
    O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - No CLSID value found.
    O3 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\Toolbar\ShellBrowser: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
    O3 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\Toolbar\ShellBrowser: (no name) - {C7768536-96F8-4001-B1A2-90EE21279187} - No CLSID value found.
    O3 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\..\Toolbar\WebBrowser: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
    O4 - HKLM..\Run: [NPSStartup] File not found
    O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-21-4098222733-1584023330-3210826012-1007\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O8 - Extra context menu item: &Search - Reg Error: Value error. File not found
    O8 - Extra context menu item: Refresh Pa&ge with Full Quality - C:\Program Files\EarthLink TotalAccess\Accelerator\\pac-page.html File not found
    O8 - Extra context menu item: Refresh Pi&cture with Full Quality - C:\Program Files\EarthLink TotalAccess\Accelerator\\pac-image.html File not found
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://bin.mcafee.com/molbin/shared/...4/mcinsctl.cab (Reg Error: Key error.)
    O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get.../ultrashim.cab (Reg Error: Key error.)
    O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} http://download.mcafee.com/molbin/sh...21/mcgdmgr.cab (Reg Error: Key error.)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
    [90 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
    [7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [40 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
    [1 C:\Documents and Settings\Craig DeRosier\*.tmp files -> C:\Documents and Settings\Craig DeRosier\*.tmp -> ]
    [1 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> ]
    [2004/02/10 09:54:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
    @Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C47E54BB
    @Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:54301EF8
    @Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3F2F06F2
    @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7715B65F
    @Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F6BF312D
    @Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F664613B
    @Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6E009657
    @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EA34E08F
    @Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:667565EE
    :Files
    ipconfig /flushdns /c
    :Commands 
    [purity] 
    [resethosts] 
    [emptytemp] 
    [emptyjava]
    [EMPTYFLASH] 
    [CREATERESTOREPOINT] 
    [Reboot]
  • Then click the Run Fix button at the top
  • Click OK.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot. Copy/Paste the report in your next reply.


eddie
 

frank55

Thread Starter
Joined
Mar 25, 2012
Messages
33
mmmmm.... " viewpointmedia player" is not listed on my add/remove programs. :(
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

Top