Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

help with win32/sirefef [Solved]

Started by cepyelland , Apr 03 2012 10:37 PM

  • This topic is locked This topic is locked

#1
cepyelland
Posted 03 April 2012 - 10:37 PM

cepyelland

    Member

  • Member
  • PipPip
  • 39 posts
Hi folks, recently got this bug, sirefef My Microsoft security essentials pops up with a warning, from what i've read it sounds bad but I hope if possible not to have to do a re=install. I am running WinXp up to date on an Asuse board p5n-d. I have 2 internal hard drives would the both be infected or just my Op sys drive? I have been using Firefox for a browser and had been good untill the other day when I clicked OK to allow firefox as an exception to my windows firewall, I have changed that back and firefox still works but I get popups even when the computer is not in use. Please help or point me to a thread I can follow along. Thanks

Edited by cepyelland, 03 April 2012 - 10:38 PM.

  • 0

Advertisements

#2
azarl
Posted 04 April 2012 - 09:59 AM

azarl

    GeekU Admin

  • Community Leader
  • 25,310 posts
Download OTL to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Select All Users
  • Under the Custom Scan box paste this in
    netsvcs
    %SYSTEMDRIVE%\*.exe
    /md5start
    consrv.dll
    explorer.exe
    winlogon.exe
    Userinit.exe
    svchost.exe
    /md5stop
    C:\Windows\assembly\tmp\U\*.* /s
    %Temp%\smtmp\1\*.*
    %Temp%\smtmp\2\*.*
    %Temp%\smtmp\3\*.*
    %Temp%\smtmp\4\*.*
    >C:\commands.txt echo list vol /raw /hide /c
    /wait
    >C:\DiskReport.txt diskpart /s C:\commands.txt /raw /hide /c
    /wait
    type c:\diskreport.txt /c
    /wait
    erase c:\commands.txt /hide /c
    /wait
    erase c:\diskreport.txt /hide /c
    CREATERESTOREPOINT
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Post both logs

Step 2

Download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Check the boxes beside:

    • Verify Driver Digital Signature
    • Detect TDLFS file system
  • then click OK.
  • Click the Start Scan button to start the scan.
  • If a suspicious object is detected, the default action will be Skip
  • If malicious objects are found, they will show in the Scan results and offer three (3) options.
  • Ensure Cure is selected for malicious objects

    Posted Image
  • Click Continue then Reboot now to finish the cleaning process.
  • Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.
  • 0

#3
cepyelland
Posted 04 April 2012 - 07:33 PM

cepyelland

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
OTL logfile created on: 4/4/2012 7:11:58 PM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\user\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.45 Gb Available Physical Memory | 72.41% Memory free
3.85 Gb Paging File | 3.47 Gb Available in Paging File | 90.26% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 931.50 Gb Total Space | 524.14 Gb Free Space | 56.27% Space Free | Partition Type: NTFS
Drive D: | 172.69 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 232.88 Gb Total Space | 6.93 Gb Free Space | 2.98% Space Free | Partition Type: NTFS

Computer Name: HOME-56D1A40C9D | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/04/04 19:04:52 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\My Documents\Downloads\OTL.exe
PRC - [2011/11/02 02:00:44 | 000,090,448 | ---- | M] (Research In Motion Limited) -- C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/09/08 11:10:20 | 000,450,560 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
PRC - [2008/09/08 11:09:40 | 000,184,320 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
PRC - [2008/04/13 18:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2008/09/08 11:10:20 | 000,450,560 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
MOD - [2008/09/08 11:09:40 | 000,184,320 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
MOD - [2008/09/08 10:57:14 | 000,102,400 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll
MOD - [2008/06/20 10:02:47 | 000,245,248 | ---- | M] () -- \\?\globalroot\systemroot\system32\mswsock.dll
MOD - [2008/06/20 10:02:47 | 000,245,248 | ---- | M] () -- \\.\globalroot\systemroot\system32\mswsock.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Xyz777s.dll -- (ZTEusbnmea)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wpsscannersvc.dll -- (zpsc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\icm10blk.dll -- (zpcollector)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\procexp111.dll -- (zfdwm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EAWDMFD.dll -- (zenos1)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zd1211u(zydas).dll -- (zebrmdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cbidf2k.dll -- (zdeviceservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hsfhwbs2.dll -- (YMIDUSB)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\maya70docserver.dll -- (X4HSX32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mgabg.dll -- (WmaCDriverV32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SRS_SSCFilter.dll -- (wlsetupsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\gv3.dll -- (winsshd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tiumfwl.dll -- (winmtsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mhndrv.dll -- (winachsx)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CX23880.dll -- (winachsf)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FET5X86V.dll -- (whoisd32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\atmarpc.dll -- (webrootspysweeperservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (W700bus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raspppoe.dll -- (vzupsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntservice1.dll -- (vusbbus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMCB000.dll -- (VRFIL)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (VRADFIL)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ndiscm.dll -- (vproeventmonitor)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tlntsvr.dll -- (vmnetadapter)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysaudio.dll -- (vet-rec)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ATWPKT2.dll -- (vetmsgnt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysenforce.dll -- (veteboot)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (ventrilo)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tosrfnds.dll -- (VC6SecS)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMMOUNT.dll -- (VAIOMediaPlatform-VideoServer-UPnP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ftpds.dll -- (VAIOMediaPlatform-PhotoServer-HTTP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tsdhd.dll -- (vaiomediaplatform-mobile-gateway)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USA49W.dll -- (V0070VID)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssqlserveradhelper.dll -- (UxTuneUp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dmload.dll -- (usnjsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlsetupsvc.dll -- (unrealircd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (unlockerdriver5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreeTdi.dll -- (uhcd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sscdserd.dll -- (U81xmgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (tvtfilter)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\irenum.dll -- (tunnelguardservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\enxpsvc.dll -- (tsmservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\QPCapSvc.dll -- (tmlisten)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cltnetcnservice.dll -- (thpsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wtwservice.dll -- (thotkey)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SGIR.dll -- (tfsnudfa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\macformatservice.dll -- (teefer2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\abnetmon.dll -- (tcpipBM)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (symproxysvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mysql.dll -- (symmpi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tdtcp.dll -- (symlcbrd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\driverhardwarev2.dll -- (symantecantibotshim)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tunnelguardservice.dll -- (swmsflt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MaxtorFrontPanel1.dll -- (stylexphelper)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvax.dll -- (STV680)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MailService.dll -- (StMp3Rec)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\roxwatch9.dll -- (stllssvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sglfb.dll -- (SrvcEKIOMngr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RalinkRegistryWriter.dll -- (sptisrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zebrmdm.dll -- (Spsmqvsm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IFP700.dll -- (spmd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WmUsbHid.dll -- (sp_clamsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zendcoreapache.dll -- (snoopfree)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NWSLP.dll -- (sndsrvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cvspydr2.dll -- (SMNDIS5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sfhlp01.dll -- (SMCB000)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avsinc.dll -- (smbusp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tfsnudfa.dll -- (SiSRaid2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdvp.dll -- (sigfilt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USBCCID.dll -- (sfsync02)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdm.dll -- (SerTVOutCtlr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aliide.dll -- (se58mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nalntservice.dll -- (se44mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\apphostsvc.dll -- (SE27obex)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleorahome92pagingserver.dll -- (sddmi2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SecureStorageService.dll -- (scsk4)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PAC7302.dll -- (screadspool)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\spmgr.dll -- (SaiNtHid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ProcObsrv.dll -- (s616unic)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Sk9920nt.dll -- (s616mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (s3psddr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rampartsvc.dll -- (s217nd5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fingrd32.dll -- (s116mgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\VAIOMediaPlatform-VideoServer-UPnP.dll -- (rtl8185)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\msiserver.dll -- (rslinx)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TVALG.dll -- (roxliveshare)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_pat_f.dll -- (rnadiagreceiver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nsm1mdm.dll -- (remoterecord)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WSIMD.dll -- (regsrvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NEOFLTR_600_13319.dll -- (rasirda)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termservice.dll -- (qbreminderflash)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GBDevice.dll -- (qbfcservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\prevxdriver.dll -- (pvservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\db2ntsecserver.dll -- (procexp90)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntpr_nic_service2.dll -- (ppmoucls)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (pnmsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avgfwsrv.dll -- (PID_08A0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se58mdfl.dll -- (pgsql-8.0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\imonitor.dll -- (pdlnsv25)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (pdlnemsg)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMTPSVC.dll -- (pcouffin)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\citrixxteserver.dll -- (PciBus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmuda3.dll -- (PCASp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmsvr.dll -- (pavsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MS1000.dll -- (P17xfi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ctxhttp.dll -- (p1131vid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Pnp680r.dll -- (OsaFsLoc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMFLT.dll -- (oracle%oracle_home_service%clientcache80)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dlaudf_m.dll -- (openvpnservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvraid.dll -- (ONSIO)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhserd.dll -- (ofcpfwsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\stisvc.dll -- (odclientservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usb20l.dll -- (NWADI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dsproct.dll -- (nvcap)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE27obex.dll -- (nsm1serd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\incdpass.dll -- (npkcmsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cpqdfw.dll -- (NPDriver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dcfssvc.dll -- (noipducservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll -- (nmwcdc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (NITaggerService)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TPECioCtl.dll -- (ngserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreshIO.dll -- (ngdbserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netdde.dll -- (nfmservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termdd.dll -- (netsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WBHWDOCT.dll -- (netcfgsvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AEAudioService.dll -- (ncupdatesvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE2Emgmt.dll -- (navapsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_prt_f.dll -- (mwlsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pageserver.dll -- (MtxDma0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pid_0928.dll -- (MSSQL$AUTODESKVAULT)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tmesbs32.dll -- (MSIRCOMM)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bgsvcgen.dll -- (mr2kserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NITaggerService.dll -- (mindrepair)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA8032U.dll -- (mctskshd.exe)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aawservice.dll -- (mcstrm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xTuner.dll -- (ma_cmidi_installerservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\DfwWebAgent.dll -- (MA_CMIDI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTAudSvcService.dll -- (lyncusbserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dhcp.dll -- (lxcgcustomerconnect)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NetPipeActivator.dll -- (lxbu_device)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\audstub.dll -- (LVVI500A)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (lvtuner)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssql$sqlexpress.dll -- (lusbaudio)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KMW_KBD.dll -- (ltxred)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (LRMINIPORT)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CoolerXPDriver.dll -- (lirsgt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vrfwsvc.dll -- (ldlcserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PTDCVsp.dll -- (Ld51ocnucsnp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pptpminiport.dll -- (L8042Kbd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CnxtHdAudService.dll -- (Ktp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\diskeeper.dll -- (kraidsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\elbydelay.dll -- (klblmain)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dot4print.dll -- (k750mgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sp_clamsrv.dll -- (itmrtsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\k750bus.dll -- (IOSLINK)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (Invoker)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdc8021x.dll -- (iksysflt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xEnc.dll -- (ifxspmgtsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\speedfan.dll -- (idebusdr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bh611.dll -- (id2scaps)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nscservice.dll -- (icraplus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pdlndldl.dll -- (iap)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (iaimfp4)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iaantmon.dll -- (iaimfp1)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\agnfilt.dll -- (HSFHWALI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rpclocator.dll -- (hsf_msft)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\p2pimsvc.dll -- (hpqwmi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netmnt.dll -- (HpqRemHid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eamon.dll -- (hpqddsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdfl.dll -- (hpdj)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mfcom.dll -- (HIDSwvd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt2500usb.dll -- (haspnt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\thotkey.dll -- (Hardlock)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdm.dll -- (ha10kx2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtSub.dll -- (gv3)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtHid.dll -- (gdihook5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vnxservice.dll -- (fsks)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\x10nets.dll -- (fsaa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\profos.dll -- (firelm01)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\kpfwsvc.dll -- (FETNDISB)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KLOGNT.dll -- (FET5X86V)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (fcprintservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WaveEnrollmentService.dll -- (F700isw)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dpc_srv_webcast.dll -- (Exportit)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\winproxy.dll -- (etoksrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netbt.dll -- (erecoveryservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ino_fltr.dll -- (epson_pm_rpcv2_01)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\odysseyIM4.dll -- (enxpsvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NETw4v32.dll -- (enxpsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\symfw.dll -- (EMSCR)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\a016mdm.dll -- (EMATCORE)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdfsvc.dll -- (elockservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mbmiodrvr.dll -- (EKECioCtl)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eabusb.dll -- (ehsched)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RTLE8023xp.dll -- (EAWDMFD)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntlmssp.dll -- (eamon)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webrootenterpriseclientservice.dll -- (driverhardwarev2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\UNDPX2A.dll -- (DniVad)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btwavdt.dll -- (DLH5X)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\e1000.dll -- (dlapoolm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lvprcsrv.dll -- (dlaifs_m)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rsvchost.dll -- (DKbFltr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\acnusvc.dll -- (DivisCTP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA-620.dll -- (DirectUpdate)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ireike.dll -- (defwatch)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (db2remotecmd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TeamViewer.dll -- (db2ntsecserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pci.dll -- (CXTUNE)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mpfirewl.dll -- (cxpt_service)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BLKWGU(Belkin).dll -- (CVPND)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RDID1027.dll -- (ctprxy2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\disk.dll -- (coste)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\shellhwdetection.dll -- (cmbatt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iAimTV5.dll -- (clmtomcatstartersvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Tb2RCAssist.dll -- (citrixxteserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv122.dll -- (centennialiptransferagent)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SPCtl.dll -- (cdudf_xp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hpzius12.dll -- (cdfsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tos_sps32.dll -- (CdaC15BA)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AVCamUSB20.dll -- (ccs)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (ccdecode)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcz_device.dll -- (ccalib8)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BTSLBCSP.dll -- (caili)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IBM_LLC2.dll -- (BVRPMPR5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iclarityqosservice.dll -- (btwrchid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mcsysmon.dll -- (bthmodem)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (bglivesvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IJPLMSVC.dll -- (Bcim)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (bc_ip_f)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\6to4.dll -- (awservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fs_rec.dll -- (avidstartup)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vaiomediaplatform-photoserver-appserver.dll -- (avg7updsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcg_device.dll -- (avg7core)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (avcgbfl)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlancfg.dll -- (automate5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MTC0001_ESB.dll -- (AtiPcie)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usbsermpt.dll -- (ati2mpaa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\twdns.dll -- (aswtdi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fax.dll -- (ASUSVRC)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhmdm.dll -- (asuskeyboardservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zntport.dll -- (ASNDIS5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GameConsoleService.dll -- (asapiw2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eskerlicensecontrol.dll -- (artourservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se2Cnd5.dll -- (arkbcfltr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\megamonitorsrv.dll -- (arcltsrv)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmdmon.dll -- (APLMp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webcompserver.dll -- (amdppm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleformsserver-forms60server-oraform.dll -- (agpcpq)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rvscc.dll -- (AFGSp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btfirst.dll -- (aexnsclienttransport)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ssfs0509.dll -- (advantage)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s3savagenb.dll -- (adobeactivefilemonitor5.0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EIO.dll -- (adminserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt61.dll -- (adiusbaw)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avp.dll -- (adiloader)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ivscheduler.dll -- (A88xEnc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ccpwdsvc.dll -- ({85ccb53b-23d8-4e73-b1b7-9ddb71827d9b})
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2008/09/08 11:10:20 | 000,450,560 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM)
SRV - [2008/09/08 11:09:40 | 000,184,320 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV - [2008/04/13 18:12:36 | 000,005,632 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\iaimtv3.dll -- (lmimirr)
SRV - [2006/02/28 06:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\simptcp.dll -- (SQLBrowser)
SRV - [2001/08/17 22:36:10 | 000,009,728 | ---- | M] (Brother Industries, Ltd.) [Auto | Stopped] -- C:\WINDOWS\system32\brserif.dll -- (tosrfbnp)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2008/10/09 10:35:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2008/10/09 10:33:00 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008/10/09 10:33:00 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/04/13 12:40:27 | 000,057,600 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\redbook.sys -- (redbook)
DRV - [2007/11/01 14:38:56 | 004,620,288 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005/08/02 09:06:57 | 000,016,512 | R--- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [2004/08/13 18:56:20 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-2000478354-484061587-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.mywebsea...CFQWFQAodpXtv7Q
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1004\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz0.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1004\..\SearchScopes,DefaultScope = {AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1004\..\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}: "URL" = http://search.condui...&ctid=CT2504091
IE - HKU\S-1-5-21-2000478354-484061587-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "My Web Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Google Powered Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "My Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.ca/"
FF - prefs.js..extensions.enabledItems: {D9ADB0A8-7BFB-498D-9880-EE78A81CCFA0}:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {ba14329e-9550-4989-b3f2-9732e92d17cc}:3.3.3.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8442
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.126
FF - prefs.js..keyword.URL: "http://search.mywebs...v7Q&searchfor="
FF - prefs.js..network.proxy.type: 0


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@fileplanet.com/fpdlm: C:\Program Files\Download Manager\npfpdlm.dll (IGN Entertainment)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/03/29 17:55:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/31 12:15:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/22 20:17:48 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{1266764D-FC4F-4FA7-B63B-884D53B1680F}: C:\Documents and Settings\user\Application Data\NetAssistant\ [2011/02/23 19:21:31 | 000,000,000 | ---D | M]

[2010/12/02 17:51:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Application Data\Mozilla\Extensions
[2012/03/21 07:35:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions
[2010/12/14 12:24:56 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/03/21 07:35:58 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2012/03/01 21:36:33 | 000,000,000 | ---D | M] (TelevisionFanatic) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]
[2012/02/14 16:52:14 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]
[2011/01/07 12:10:32 | 000,000,903 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\searchplugins\conduit.xml
[2012/01/28 17:41:15 | 000,009,650 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\searchplugins\my-web-search.xml
[2012/03/31 12:15:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/10/18 17:00:41 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/03/12 22:39:39 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/10/03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/03/12 22:38:32 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/03/12 22:38:32 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

Hosts file not found
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz0.dll (Conduit Ltd.)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngin0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz0.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2000478354-484061587-725345543-1004\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\prxtbVuz0.dll (Conduit Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
O4 - HKU\S-1-5-21-2000478354-484061587-725345543-1004..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe (IGN Entertainment)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2000478354-484061587-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - mswsock.dll File not found
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1290014030029 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://www.photolab....veX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.ma...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.16.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1B003C1E-9E7E-4145-87D9-492976147A63}: DhcpNameServer = 172.16.1.254
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Desktop Background.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Desktop Background.bmp
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2010/11/16 17:01:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/09/16 18:31:43 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: A88xEnc - %systemroot%\system32\ivscheduler.dll File not found
NetSvcs: firelm01 - %systemroot%\system32\profos.dll File not found
NetSvcs: lxcgcustomerconnect - %systemroot%\system32\dhcp.dll File not found
NetSvcs: thotkey - %systemroot%\system32\wtwservice.dll File not found
NetSvcs: CXTUNE - %systemroot%\system32\pci.dll File not found
NetSvcs: s616unic - %systemroot%\system32\ProcObsrv.dll File not found
NetSvcs: ncupdatesvc - %systemroot%\system32\AEAudioService.dll File not found
NetSvcs: HSFHWALI - %systemroot%\system32\agnfilt.dll File not found
NetSvcs: SerTVOutCtlr - %systemroot%\system32\mdm.dll File not found
NetSvcs: spmd - %systemroot%\system32\IFP700.dll File not found
NetSvcs: smbusp - %systemroot%\system32\avsinc.dll File not found
NetSvcs: vet-rec - %systemroot%\system32\sysaudio.dll File not found
NetSvcs: SiSRaid2 - %systemroot%\system32\tfsnudfa.dll File not found
NetSvcs: vusbbus - %systemroot%\system32\ntservice1.dll File not found
NetSvcs: kraidsvc - %systemroot%\system32\diskeeper.dll File not found
NetSvcs: tvtfilter - %systemroot%\system32\https-admserv61.dll File not found
NetSvcs: symlcbrd - %systemroot%\system32\tdtcp.dll File not found
NetSvcs: noipducservice - %systemroot%\system32\dcfssvc.dll File not found
NetSvcs: Bcim - %systemroot%\system32\IJPLMSVC.dll File not found
NetSvcs: uhcd - %systemroot%\system32\FreeTdi.dll File not found
NetSvcs: hpdj - %systemroot%\system32\s616mdfl.dll File not found
NetSvcs: lxbu_device - %systemroot%\system32\NetPipeActivator.dll File not found
NetSvcs: CVPND - %systemroot%\system32\BLKWGU(Belkin).dll File not found
NetSvcs: stylexphelper - %systemroot%\system32\MaxtorFrontPanel1.dll File not found
NetSvcs: NPDriver - %systemroot%\system32\cpqdfw.dll File not found
NetSvcs: cmbatt - %systemroot%\system32\shellhwdetection.dll File not found
NetSvcs: fsks - %systemroot%\system32\vnxservice.dll File not found
NetSvcs: iap - %systemroot%\system32\pdlndldl.dll File not found
NetSvcs: STV680 - %systemroot%\system32\nvax.dll File not found
NetSvcs: hpqwmi - %systemroot%\system32\p2pimsvc.dll File not found
NetSvcs: asapiw2k - %systemroot%\system32\GameConsoleService.dll File not found
NetSvcs: zdeviceservice - %systemroot%\system32\cbidf2k.dll File not found
NetSvcs: hsf_msft - %systemroot%\system32\rpclocator.dll File not found
NetSvcs: veteboot - %systemroot%\system32\sysenforce.dll File not found
NetSvcs: tmlisten - %systemroot%\system32\QPCapSvc.dll File not found
NetSvcs: LRMINIPORT - %systemroot%\system32\lp6nds35.dll File not found
NetSvcs: ccs - %systemroot%\system32\AVCamUSB20.dll File not found
NetSvcs: ccalib8 - %systemroot%\system32\lxcz_device.dll File not found
NetSvcs: ASNDIS5 - %systemroot%\system32\zntport.dll File not found
NetSvcs: HIDSwvd - %systemroot%\system32\mfcom.dll File not found
NetSvcs: YMIDUSB - %systemroot%\system32\hsfhwbs2.dll File not found
NetSvcs: nvcap - %systemroot%\system32\dsproct.dll File not found
NetSvcs: VC6SecS - %systemroot%\system32\tosrfnds.dll File not found
NetSvcs: dlaifs_m - %systemroot%\system32\lvprcsrv.dll File not found
NetSvcs: winachsf - %systemroot%\system32\CX23880.dll File not found
NetSvcs: V0070VID - %systemroot%\system32\USA49W.dll File not found
NetSvcs: itmrtsvc - %systemroot%\system32\sp_clamsrv.dll File not found
NetSvcs: mctskshd.exe - %systemroot%\system32\MA8032U.dll File not found
NetSvcs: IOSLINK - %systemroot%\system32\k750bus.dll File not found
NetSvcs: navapsvc - %systemroot%\system32\SE2Emgmt.dll File not found
NetSvcs: mcstrm - %systemroot%\system32\aawservice.dll File not found
NetSvcs: vproeventmonitor - %systemroot%\system32\ndiscm.dll File not found
NetSvcs: s3psddr - %systemroot%\system32\raidmagt.dll File not found
NetSvcs: DivisCTP - %systemroot%\system32\acnusvc.dll File not found
NetSvcs: BVRPMPR5 - %systemroot%\system32\IBM_LLC2.dll File not found
NetSvcs: SMNDIS5 - %systemroot%\system32\cvspydr2.dll File not found
NetSvcs: regsrvc - %systemroot%\system32\WSIMD.dll File not found
NetSvcs: caili - %systemroot%\system32\BTSLBCSP.dll File not found
NetSvcs: zfdwm - %systemroot%\system32\procexp111.dll File not found
NetSvcs: clmtomcatstartersvc - %systemroot%\system32\iAimTV5.dll File not found
NetSvcs: cxpt_service - %systemroot%\system32\mpfirewl.dll File not found
NetSvcs: hpqddsvc - %systemroot%\system32\eamon.dll File not found
NetSvcs: vmnetadapter - %systemroot%\system32\tlntsvr.dll File not found
NetSvcs: ccdecode - %systemroot%\system32\EMATCORE.dll File not found
NetSvcs: ldlcserv - %systemroot%\system32\vrfwsvc.dll File not found
NetSvcs: db2remotecmd - %systemroot%\system32\isdrv120.dll File not found
NetSvcs: pgsql-8.0 - %systemroot%\system32\se58mdfl.dll File not found
NetSvcs: MSSQL$AUTODESKVAULT - %systemroot%\system32\pid_0928.dll File not found
NetSvcs: centennialiptransferagent - %systemroot%\system32\isdrv122.dll File not found
NetSvcs: EKECioCtl - %systemroot%\system32\mbmiodrvr.dll File not found
NetSvcs: symproxysvc - %systemroot%\system32\raidmagt.dll File not found
NetSvcs: bthmodem - %systemroot%\system32\mcsysmon.dll File not found
NetSvcs: Ld51ocnucsnp - %systemroot%\system32\PTDCVsp.dll File not found
NetSvcs: lusbaudio - %systemroot%\system32\mssql$sqlexpress.dll File not found
NetSvcs: advantage - %systemroot%\system32\ssfs0509.dll File not found
NetSvcs: pavsrv - %systemroot%\system32\raidmsvr.dll File not found
NetSvcs: eamon - %systemroot%\system32\ntlmssp.dll File not found
NetSvcs: s616mdm - %systemroot%\system32\Sk9920nt.dll File not found
NetSvcs: automate5 - %systemroot%\system32\wlancfg.dll File not found
NetSvcs: Hardlock - %systemroot%\system32\thotkey.dll File not found
NetSvcs: vetmsgnt - %systemroot%\system32\ATWPKT2.dll File not found
NetSvcs: oracle%oracle_home_service%clientcache80 - %systemroot%\system32\CTMFLT.dll File not found
NetSvcs: sigfilt - %systemroot%\system32\cdvp.dll File not found
NetSvcs: adobeactivefilemonitor5.0 - %systemroot%\system32\s3savagenb.dll File not found
NetSvcs: netcfgsvr - %systemroot%\system32\WBHWDOCT.dll File not found
NetSvcs: StMp3Rec - %systemroot%\system32\MailService.dll File not found
NetSvcs: ZTEusbnmea - %systemroot%\system32\Xyz777s.dll File not found
NetSvcs: fsaa - %systemroot%\system32\x10nets.dll File not found
NetSvcs: U81xmgmt - %systemroot%\system32\sscdserd.dll File not found
NetSvcs: bglivesvc - %systemroot%\system32\olapserver.dll File not found
NetSvcs: adminserver - %systemroot%\system32\EIO.dll File not found
NetSvcs: lirsgt - %systemroot%\system32\CoolerXPDriver.dll File not found
NetSvcs: artourservice - %systemroot%\system32\eskerlicensecontrol.dll File not found
NetSvcs: webrootspysweeperservice - %systemroot%\system32\atmarpc.dll File not found
NetSvcs: citrixxteserver - %systemroot%\system32\Tb2RCAssist.dll File not found
NetSvcs: P17xfi - %systemroot%\system32\MS1000.dll File not found
NetSvcs: ASUSVRC - %systemroot%\system32\fax.dll File not found
NetSvcs: DKbFltr - %systemroot%\system32\rsvchost.dll File not found
NetSvcs: rasirda - %systemroot%\system32\NEOFLTR_600_13319.dll File not found
NetSvcs: DLH5X - %systemroot%\system32\btwavdt.dll File not found
NetSvcs: MtxDma0 - %systemroot%\system32\pageserver.dll File not found
NetSvcs: tosrfbnp - C:\WINDOWS\system32\brserif.dll (Brother Industries, Ltd.)
NetSvcs: dlapoolm - %systemroot%\system32\e1000.dll File not found
NetSvcs: ONSIO - %systemroot%\system32\nvraid.dll File not found
NetSvcs: tunnelguardservice - %systemroot%\system32\irenum.dll File not found
NetSvcs: UxTuneUp - %systemroot%\system32\mssqlserveradhelper.dll File not found
NetSvcs: klblmain - %systemroot%\system32\elbydelay.dll File not found
NetSvcs: avg7core - %systemroot%\system32\lxcg_device.dll File not found
NetSvcs: coste - %systemroot%\system32\disk.dll File not found
NetSvcs: qbreminderflash - %systemroot%\system32\termservice.dll File not found
NetSvcs: iaimfp1 - %systemroot%\system32\iaantmon.dll File not found
NetSvcs: npkcmsvc - %systemroot%\system32\incdpass.dll File not found
NetSvcs: FETNDISB - %systemroot%\system32\kpfwsvc.dll File not found
NetSvcs: ctprxy2k - %systemroot%\system32\RDID1027.dll File not found
NetSvcs: sfsync02 - %systemroot%\system32\USBCCID.dll File not found
NetSvcs: usnjsvc - %systemroot%\system32\dmload.dll File not found
NetSvcs: SaiNtHid - %systemroot%\system32\spmgr.dll File not found
NetSvcs: unrealircd - %systemroot%\system32\wlsetupsvc.dll File not found
NetSvcs: agpcpq - %systemroot%\system32\oracleformsserver-forms60server-oraform.dll File not found
NetSvcs: DirectUpdate - %systemroot%\system32\MA-620.dll File not found
NetSvcs: winachsx - %systemroot%\system32\mhndrv.dll File not found
NetSvcs: icraplus - %systemroot%\system32\nscservice.dll File not found
NetSvcs: Ktp - %systemroot%\system32\CnxtHdAudService.dll File not found
NetSvcs: pvservice - %systemroot%\system32\prevxdriver.dll File not found
NetSvcs: avidstartup - %systemroot%\system32\fs_rec.dll File not found
NetSvcs: EMSCR - %systemroot%\system32\symfw.dll File not found
NetSvcs: enxpsvr - %systemroot%\system32\odysseyIM4.dll File not found
NetSvcs: Invoker - %systemroot%\system32\mks_scan.dll File not found
NetSvcs: VRADFIL - %systemroot%\system32\eeyeevnt.dll File not found
NetSvcs: lmimirr - C:\WINDOWS\system32\iaimtv3.dll ()
NetSvcs: remoterecord - %systemroot%\system32\nsm1mdm.dll File not found
NetSvcs: pdlnsv25 - %systemroot%\system32\imonitor.dll File not found
NetSvcs: CdaC15BA - %systemroot%\system32\tos_sps32.dll File not found
NetSvcs: VAIOMediaPlatform-PhotoServer-HTTP - %systemroot%\system32\ftpds.dll File not found
NetSvcs: unlockerdriver5 - %systemroot%\system32\EMATCORE.dll File not found
NetSvcs: winmtsrv - %systemroot%\system32\tiumfwl.dll File not found
NetSvcs: gdihook5 - %systemroot%\system32\SaiNtHid.dll File not found
NetSvcs: SE27obex - %systemroot%\system32\apphostsvc.dll File not found
NetSvcs: ngserver - %systemroot%\system32\TPECioCtl.dll File not found
NetSvcs: OsaFsLoc - %systemroot%\system32\Pnp680r.dll File not found
NetSvcs: adiloader - %systemroot%\system32\avp.dll File not found
NetSvcs: symmpi - %systemroot%\system32\mysql.dll File not found
NetSvcs: mr2kserv - %systemroot%\system32\bgsvcgen.dll File not found
NetSvcs: ehsched - %systemroot%\system32\eabusb.dll File not found
NetSvcs: PID_08A0 - %systemroot%\system32\avgfwsrv.dll File not found
NetSvcs: F700isw - %systemroot%\system32\WaveEnrollmentService.dll File not found
NetSvcs: WmaCDriverV32 - %systemroot%\system32\mgabg.dll File not found
NetSvcs: se58mdm - %systemroot%\system32\aliide.dll File not found
NetSvcs: NITaggerService - %systemroot%\system32\eeyeevnt.dll File not found
NetSvcs: nmwcdc - %systemroot%\system32\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll File not found
NetSvcs: zenos1 - %systemroot%\system32\EAWDMFD.dll File not found
NetSvcs: idebusdr - %systemroot%\system32\speedfan.dll File not found
NetSvcs: bc_ip_f - %systemroot%\system32\isdrv120.dll File not found
NetSvcs: screadspool - %systemroot%\system32\PAC7302.dll File not found
NetSvcs: whoisd32 - %systemroot%\system32\FET5X86V.dll File not found
NetSvcs: aexnsclienttransport - %systemroot%\system32\btfirst.dll File not found
NetSvcs: swmsflt - %systemroot%\system32\tunnelguardservice.dll File not found
NetSvcs: odclientservice - %systemroot%\system32\stisvc.dll File not found
NetSvcs: PCASp50 - %systemroot%\system32\cmuda3.dll File not found
NetSvcs: asuskeyboardservice - %systemroot%\system32\pxfhmdm.dll File not found
NetSvcs: erecoveryservice - %systemroot%\system32\netbt.dll File not found
NetSvcs: MA_CMIDI - %systemroot%\system32\DfwWebAgent.dll File not found
NetSvcs: stllssvr - %systemroot%\system32\roxwatch9.dll File not found
NetSvcs: openvpnservice - %systemroot%\system32\dlaudf_m.dll File not found
NetSvcs: btwrchid - %systemroot%\system32\iclarityqosservice.dll File not found
NetSvcs: FET5X86V - %systemroot%\system32\KLOGNT.dll File not found
NetSvcs: thpsrv - %systemroot%\system32\cltnetcnservice.dll File not found
NetSvcs: cdfsvc - %systemroot%\system32\hpzius12.dll File not found
NetSvcs: zpcollector - %systemroot%\system32\icm10blk.dll File not found
NetSvcs: ifxspmgtsrv - %systemroot%\system32\A88xEnc.dll File not found
NetSvcs: lyncusbserv - %systemroot%\system32\CTAudSvcService.dll File not found
NetSvcs: arcltsrv - %systemroot%\system32\megamonitorsrv.dll File not found
NetSvcs: adiusbaw - %systemroot%\system32\rt61.dll File not found
NetSvcs: AtiPcie - %systemroot%\system32\MTC0001_ESB.dll File not found
NetSvcs: sndsrvc - %systemroot%\system32\NWSLP.dll File not found
NetSvcs: netsvc - %systemroot%\system32\termdd.dll File not found
NetSvcs: driverhardwarev2 - %systemroot%\system32\webrootenterpriseclientservice.dll File not found
NetSvcs: s116mgmt - %systemroot%\system32\fingrd32.dll File not found
NetSvcs: arkbcfltr - %systemroot%\system32\se2Cnd5.dll File not found
NetSvcs: winsshd - %systemroot%\system32\gv3.dll File not found
NetSvcs: snoopfree - %systemroot%\system32\zendcoreapache.dll File not found
NetSvcs: rnadiagreceiver - %systemroot%\system32\bc_pat_f.dll File not found
NetSvcs: tsmservice - %systemroot%\system32\enxpsvc.dll File not found
NetSvcs: fcprintservice - %systemroot%\system32\pensup.dll File not found
NetSvcs: tfsnudfa - %systemroot%\system32\SGIR.dll File not found
NetSvcs: amdppm - %systemroot%\system32\webcompserver.dll File not found
NetSvcs: sddmi2 - %systemroot%\system32\oracleorahome92pagingserver.dll File not found
NetSvcs: ma_cmidi_installerservice - %systemroot%\system32\A88xTuner.dll File not found
NetSvcs: ltxred - %systemroot%\system32\KMW_KBD.dll File not found
NetSvcs: lvtuner - %systemroot%\system32\mks_scan.dll File not found
NetSvcs: ha10kx2k - %systemroot%\system32\s616mdm.dll File not found
NetSvcs: scsk4 - %systemroot%\system32\SecureStorageService.dll File not found
NetSvcs: avg7updsvc - %systemroot%\system32\vaiomediaplatform-photoserver-appserver.dll File not found
NetSvcs: pdlnemsg - %systemroot%\system32\genregistrar.dll File not found
NetSvcs: HpqRemHid - %systemroot%\system32\netmnt.dll File not found
NetSvcs: APLMp50 - %systemroot%\system32\cmdmon.dll File not found
NetSvcs: ati2mpaa - %systemroot%\system32\usbsermpt.dll File not found
NetSvcs: Exportit - %systemroot%\system32\dpc_srv_webcast.dll File not found
NetSvcs: awservice - %systemroot%\system32\6to4.dll File not found
NetSvcs: db2ntsecserver - %systemroot%\system32\TeamViewer.dll File not found
NetSvcs: sptisrv - %systemroot%\system32\RalinkRegistryWriter.dll File not found
NetSvcs: gv3 - %systemroot%\system32\SaiNtSub.dll File not found
NetSvcs: mwlsvc - %systemroot%\system32\bc_prt_f.dll File not found
NetSvcs: s217nd5 - %systemroot%\system32\rampartsvc.dll File not found
NetSvcs: se44mdm - %systemroot%\system32\nalntservice.dll File not found
NetSvcs: symantecantibotshim - %systemroot%\system32\driverhardwarev2.dll File not found
NetSvcs: p1131vid - %systemroot%\system32\ctxhttp.dll File not found
NetSvcs: AFGSp50 - %systemroot%\system32\rvscc.dll File not found
NetSvcs: SMCB000 - %systemroot%\system32\sfhlp01.dll File not found
NetSvcs: DniVad - %systemroot%\system32\UNDPX2A.dll File not found
NetSvcs: defwatch - %systemroot%\system32\ireike.dll File not found
NetSvcs: ngdbserv - %systemroot%\system32\FreshIO.dll File not found
NetSvcs: cdudf_xp - %systemroot%\system32\SPCtl.dll File not found
NetSvcs: mindrepair - %systemroot%\system32\NITaggerService.dll File not found
NetSvcs: roxliveshare - %systemroot%\system32\TVALG.dll File not found
NetSvcs: ofcpfwsvc - %systemroot%\system32\pxfhserd.dll File not found
NetSvcs: tcpipBM - %systemroot%\system32\abnetmon.dll File not found
NetSvcs: nsm1serd - %systemroot%\system32\SE27obex.dll File not found
NetSvcs: W700bus - %systemroot%\system32\olapserver.dll File not found
NetSvcs: epson_pm_rpcv2_01 - %systemroot%\system32\ino_fltr.dll File not found
NetSvcs: PciBus - %systemroot%\system32\citrixxteserver.dll File not found
NetSvcs: iaimfp4 - %systemroot%\system32\https-admserv61.dll File not found
NetSvcs: rtl8185 - %systemroot%\system32\VAIOMediaPlatform-VideoServer-UPnP.dll File not found
NetSvcs: {85ccb53b-23d8-4e73-b1b7-9ddb71827d9b} - %systemroot%\system32\ccpwdsvc.dll File not found
NetSvcs: pcouffin - %systemroot%\system32\SMTPSVC.dll File not found
NetSvcs: SrvcEKIOMngr - %systemroot%\system32\sglfb.dll File not found
NetSvcs: VAIOMediaPlatform-VideoServer-UPnP - %systemroot%\system32\CTMMOUNT.dll File not found
NetSvcs: zebrmdm - %systemroot%\system32\zd1211u(zydas).dll File not found
NetSvcs: etoksrv - %systemroot%\system32\winproxy.dll File not found
NetSvcs: Spsmqvsm - %systemroot%\system32\zebrmdm.dll File not found
NetSvcs: ppmoucls - %systemroot%\system32\ntpr_nic_service2.dll File not found
NetSvcs: rslinx - %systemroot%\system32\msiserver.dll File not found
NetSvcs: VRFIL - %systemroot%\system32\SMCB000.dll File not found
NetSvcs: qbfcservice - %systemroot%\system32\GBDevice.dll File not found
NetSvcs: enxpsvc - %systemroot%\system32\NETw4v32.dll File not found
NetSvcs: NWADI - %systemroot%\system32\usb20l.dll File not found
NetSvcs: X4HSX32 - %systemroot%\system32\maya70docserver.dll File not found
NetSvcs: iksysflt - %systemroot%\system32\mdc8021x.dll File not found
NetSvcs: EAWDMFD - %systemroot%\system32\RTLE8023xp.dll File not found
NetSvcs: haspnt - %systemroot%\system32\rt2500usb.dll File not found
NetSvcs: id2scaps - %systemroot%\system32\bh611.dll File not found
NetSvcs: SQLBrowser - C:\WINDOWS\system32\simptcp.dll (Microsoft Corporation)
NetSvcs: vzupsvc - %systemroot%\system32\raspppoe.dll File not found
NetSvcs: LVVI500A - %systemroot%\system32\audstub.dll File not found
NetSvcs: wlsetupsvc - %systemroot%\system32\SRS_SSCFilter.dll File not found
NetSvcs: elockservice - %systemroot%\system32\cdfsvc.dll File not found
NetSvcs: k750mgmt - %systemroot%\system32\dot4print.dll File not found
NetSvcs: sp_clamsrv - %systemroot%\system32\WmUsbHid.dll File not found
NetSvcs: pnmsrv - %systemroot%\system32\pensup.dll File not found
NetSvcs: avcgbfl - %systemroot%\system32\genregistrar.dll File not found
NetSvcs: teefer2 - %systemroot%\system32\macformatservice.dll File not found
NetSvcs: ventrilo - %systemroot%\system32\lp6nds35.dll File not found
NetSvcs: aswtdi - %systemroot%\system32\twdns.dll File not found
NetSvcs: zpsc - %systemroot%\system32\wpsscannersvc.dll File not found
NetSvcs: MSIRCOMM - %systemroot%\system32\tmesbs32.dll File not found
NetSvcs: L8042Kbd - %systemroot%\system32\pptpminiport.dll File not found
NetSvcs: procexp90 - %systemroot%\system32\db2ntsecserver.dll File not found
NetSvcs: vaiomediaplatform-mobile-gateway - %systemroot%\system32\tsdhd.dll File not found
NetSvcs: EMATCORE - %systemroot%\system32\a016mdm.dll File not found
NetSvcs: nfmservice - %systemroot%\system32\netdde.dll File not found
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/04/03 18:58:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2012/03/31 21:22:18 | 000,000,000 | ---D | C] -- C:\Avenger
[2012/03/30 19:58:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\Malwarebytes
[2012/03/30 19:58:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/03/30 19:58:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012/03/30 19:57:59 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012/03/30 19:57:59 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/03/29 18:03:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\DDMSettings
[2012/03/26 20:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Sun
[2012/03/26 19:11:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia
[2012/03/26 19:11:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe
[2012/03/17 12:04:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\.minecraft
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/04/04 18:28:00 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012/04/04 18:28:00 | 000,000,878 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012/04/04 16:52:26 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/04/03 21:28:44 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/04/03 21:23:36 | 000,000,000 | -HS- | M] () -- C:\WINDOWS\System32\dds_trash_log.cmd
[2012/04/03 21:23:34 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/04/03 21:23:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/04/03 19:43:45 | 000,009,216 | ---- | M] () -- C:\Documents and Settings\user\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/03 18:58:21 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2012/04/03 18:57:21 | 022,259,528 | ---- | M] () -- C:\Documents and Settings\user\My Documents\vlc-2.0.1-win32.exe
[2012/03/31 12:15:31 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/03/31 12:15:31 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2012/03/30 19:58:02 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012/03/29 21:03:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/03/17 13:11:16 | 000,000,874 | ---- | M] () -- C:\Documents and Settings\user\Desktop\Shortcut to Minecraft.lnk
[2012/03/14 03:18:50 | 000,114,176 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/03/14 03:00:50 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/03/11 15:12:32 | 000,139,488 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2012/03/11 15:12:26 | 000,270,776 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/04/03 18:58:21 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2012/04/03 18:56:43 | 022,259,528 | ---- | C] () -- C:\Documents and Settings\user\My Documents\vlc-2.0.1-win32.exe
[2012/03/30 19:58:02 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012/03/26 19:20:27 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/03/26 18:49:37 | 000,000,000 | -HS- | C] () -- C:\WINDOWS\System32\dds_trash_log.cmd
[2012/03/17 13:11:16 | 000,000,874 | ---- | C] () -- C:\Documents and Settings\user\Desktop\Shortcut to Minecraft.lnk
[2012/02/14 18:13:31 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/11/24 20:05:45 | 000,000,339 | ---- | C] () -- C:\WINDOWS\EDofMA.ini
[2011/07/21 13:19:03 | 000,682,280 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2011/07/16 17:40:22 | 000,139,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011/07/16 17:40:22 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\user\Application Data\PnkBstrK.sys
[2011/07/16 17:40:04 | 000,270,776 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011/07/16 17:40:03 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2011/07/16 17:40:03 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011/05/22 18:15:37 | 000,000,720 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2011/02/21 19:49:55 | 000,319,488 | R--- | C] () -- C:\WINDOWS\System32\MafiaSetup.exe
[2011/02/08 12:42:35 | 000,139,670 | ---- | C] () -- C:\WINDOWS\HPHins17.dat
[2011/02/08 12:42:35 | 000,006,820 | ---- | C] () -- C:\WINDOWS\hphmdl17.dat
[2011/01/05 15:07:26 | 000,815,104 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011/01/05 15:07:25 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/12/29 13:04:49 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010/12/29 12:50:00 | 000,000,819 | ---- | C] () -- C:\WINDOWS\CoDUO.INI
[2010/12/28 12:39:21 | 000,000,745 | ---- | C] () -- C:\WINDOWS\CoD.INI
[2010/12/16 03:16:37 | 001,095,512 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/12/14 15:12:43 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin
[2010/12/02 18:15:20 | 000,009,216 | ---- | C] () -- C:\Documents and Settings\user\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/02 17:51:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/11/17 12:32:05 | 000,005,810 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010/11/17 12:05:12 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010/11/17 12:05:11 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010/11/17 12:05:11 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010/11/17 11:01:06 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2010/11/17 10:13:54 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010/11/16 17:03:19 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/11/16 16:59:37 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/11/16 05:29:53 | 000,057,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\redbook.sys
[2010/11/16 05:28:28 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/11/16 05:25:44 | 000,114,176 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/07/10 05:38:00 | 002,195,030 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< MD5 for: EXPLORER.EXE >
[2008/04/13 18:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/13 18:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006/02/28 06:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: SVCHOST.EXE >
[2008/04/13 18:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008/04/13 18:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\svchost.exe
[2012/01/13 14:53:20 | 000,182,856 | ---- | M] () MD5=63EEC8A8B221AB79045E776E5F592868 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2006/02/28 06:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: USERINIT.EXE >
[2006/02/28 06:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/13 18:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/13 18:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2006/02/28 06:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2012/01/13 14:53:20 | 000,182,856 | ---- | M] () MD5=63EEC8A8B221AB79045E776E5F592868 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008/04/13 18:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 18:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe

< C:\Windows\assembly\tmp\U\*.* /s >

< %Temp%\smtmp\1\*.* >

< %Temp%\smtmp\2\*.* >

< %Temp%\smtmp\3\*.* >

< %Temp%\smtmp\4\*.* >

< type c:\diskreport.txt /c >
Microsoft DiskPart version 5.1.3565
Copyright © 1999-2003 Microsoft Corporation.
On computer: HOME-56D1A40C9D
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
Volume 0 D steamengine CDFS DVD-ROM 173 MB
Volume 1 E NTFS Partition 233 GB Healthy
Volume 2 C NTFS Partition 932 GB Healthy System

< End of report >

OTL Extras logfile created on: 4/4/2012 7:11:58 PM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\user\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.45 Gb Available Physical Memory | 72.41% Memory free
3.85 Gb Paging File | 3.47 Gb Available in Paging File | 90.26% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 931.50 Gb Total Space | 524.14 Gb Free Space | 56.27% Space Free | Partition Type: NTFS
Drive D: | 172.69 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 232.88 Gb Total Space | 6.93 Gb Free Space | 2.98% Space Free | Partition Type: NTFS

Computer Name: HOME-56D1A40C9D | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-2000478354-484061587-725345543-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"4481:TCP" = 4481:TCP:LocalSubNet:Enabled:BlackBerry Desktop Software Wireless Music Sync data transfer
"4481:UDP" = 4481:UDP:LocalSubNet:Enabled:BlackBerry Desktop Software Wireless Music Sync discovery
"4482:TCP" = 4482:TCP:LocalSubNet:Enabled:BlackBerry Desktop Software Wireless Music Sync data transfer
"4482:UDP" = 4482:UDP:LocalSubNet:Enabled:BlackBerry Desktop Software Wireless Music Sync discovery

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\VideoLAN\VLC\vlc.exe" = C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- ()
"C:\Program Files\Call of Duty\CoDMP.exe" = C:\Program Files\Call of Duty\CoDMP.exe:*:Enabled:CoDMP -- ()
"C:\Program Files\Call of Duty\CoDUOMP.exe" = C:\Program Files\Call of Duty\CoDUOMP.exe:*:Enabled:CoDUOMP -- ()
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe" = C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2 -- (EA Digital Illusions CE AB)
"C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe" = C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty® - World at War™ -- (Activision Blizzard, Inc.)
"C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe" = C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty® - World at War™ -- (Activision Blizzard, Inc.)
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files\Steam\steamapps\common\lead and gold gangs of the wild west\lag_win32_public_dev.exe" = C:\Program Files\Steam\steamapps\common\lead and gold gangs of the wild west\lag_win32_public_dev.exe:*:Enabled:Lead and Gold - Gangs of the Wild West -- ()
"C:\Program Files\Steam\steamapps\common\mafia ii\pc\Mafia2.exe" = C:\Program Files\Steam\steamapps\common\mafia ii\pc\Mafia2.exe:*:Enabled:Mafia II -- (2K Czech)
"C:\Program Files\Raptr\raptr.exe" = C:\Program Files\Raptr\raptr.exe:*:Enabled:Raptr Client -- (Raptr, Inc)
"C:\Program Files\Raptr\raptr_im.exe" = C:\Program Files\Raptr\raptr_im.exe:*:Enabled:Raptr IM -- (Raptr, Inc)
"C:\Program Files\Activision\Empires Dawn of the Modern World\Empires_DMW.exe" = C:\Program Files\Activision\Empires Dawn of the Modern World\Empires_DMW.exe:*:Enabled:Empires_DMW -- ()
"C:\Program Files\Steam\steamapps\common\brothers in arms road to hill 30\System\bia.exe" = C:\Program Files\Steam\steamapps\common\brothers in arms road to hill 30\System\bia.exe:*:Enabled:Brothers in Arms: Road to Hill 30 -- (Gearbox Software)
"C:\Program Files\Steam\steamapps\common\brothers in arms earned in blood\System\EiB.exe" = C:\Program Files\Steam\steamapps\common\brothers in arms earned in blood\System\EiB.exe:*:Enabled:Brothers in Arms: Earned in Blood -- (Gearbox Software)
"C:\Program Files\Steam\steamapps\common\silent hunter 3\sh3.exe" = C:\Program Files\Steam\steamapps\common\silent hunter 3\sh3.exe:*:Enabled:Silent Hunter III -- (Ubisoft)
"C:\Program Files\Steam\steamapps\common\il 2 sturmovik 1946\il2fb.exe" = C:\Program Files\Steam\steamapps\common\il 2 sturmovik 1946\il2fb.exe:*:Enabled:IL-2 Sturmovik: 1946 -- ()
"C:\Program Files\Steam\steamapps\common\brothers in arms hells highway\Binaries\biahh.exe" = C:\Program Files\Steam\steamapps\common\brothers in arms hells highway\Binaries\biahh.exe:*:Enabled:Brothers in Arms: [bleep]'s Highway -- ()
"C:\Program Files\Steam\steamapps\common\blazing angels squadrons of wwii\SettingsApplication.exe" = C:\Program Files\Steam\steamapps\common\blazing angels squadrons of wwii\SettingsApplication.exe:*:Enabled:Blazing Angels: Squadrons of WWII -- (Ubisoft)
"C:\Program Files\Steam\steamapps\common\blazing angels 2 secret missions of wwii\Bin\BA2.exe" = C:\Program Files\Steam\steamapps\common\blazing angels 2 secret missions of wwii\Bin\BA2.exe:*:Enabled:Blazing Angels 2: Secret Missions of WWII -- (Ubisoft)
"C:\Program Files\Steam\steamapps\common\silent hunters wolves of the pacific\sh4.exe" = C:\Program Files\Steam\steamapps\common\silent hunters wolves of the pacific\sh4.exe:*:Enabled:Silent Hunter: Wolves of the Pacific U-Boat Missions -- (Ubisoft)
"C:\Program Files\Steam\steamapps\common\order of war - demo\oow_final.exe" = C:\Program Files\Steam\steamapps\common\order of war - demo\oow_final.exe:*:Enabled:Order of War - Demo -- (Wargaming.net)
"C:\Program Files\Steam\steamapps\common\order of war - demo\oow_final.bin" = C:\Program Files\Steam\steamapps\common\order of war - demo\oow_final.bin:*:Enabled:Thu Jul 23 06:02:39 2009 -- (Wargaming.net)
"C:\Program Files\Steam\steamapps\common\killingfloor\System\KillingFloor.exe" = C:\Program Files\Steam\steamapps\common\killingfloor\System\KillingFloor.exe:*:Enabled:Killing Floor -- ()
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)
"C:\Program Files\Steam\steamapps\cepyelland\day of defeat source\hl2.exe" = C:\Program Files\Steam\steamapps\cepyelland\day of defeat source\hl2.exe:*:Enabled:Day of Defeat: Source -- ()
"C:\Program Files\Steam\steamapps\common\railworks\RailWorks.exe" = C:\Program Files\Steam\steamapps\common\railworks\RailWorks.exe:*:Enabled:Train Simulator 2012 -- (RailSimulator.com)
"C:\Program Files\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe" = C:\Program Files\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe:*:Enabled:BlackBerry Desktop Software -- (Research In Motion)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Firefox -- (Mozilla Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C}" = Call of Duty® - World at War™ 1.6 Patch
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B5154C0-8F00-4616-B0AB-6240AE80D9CE}" = SimCity™ Societies
"{0F0A0506-9A9C-406a-999D-0D5A92EBC14B}" = HP Photosmart Appliance Printer Driver Software 9.0
"{1266764D-FC4F-4FA7-B63B-884D53B1680F}" = NetAssistant
"{12BAA98C-F8DD-4BC9-BBE6-1C8463114197}" = BlackBerry Device Software Updater
"{149464D9-B06F-4505-9968-FD1206F67AD3}" = Call of Duty® - World at War™ 1.3 Patch
"{17B17327-36D2-4549-B854-1A0C5920BE43}" = BlackBerry Desktop Software 7.0
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java™ 6 Update 29
"{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty® - World at War™ 1.2 Patch
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{611BD998-34B9-4DDA-00AE-0CB4632E86FA}" = SimCity 4 Rush Hour
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{750C87B8-AF19-4C3C-B791-50D9C83AE572}" = Call of Duty® - World at War™ 1.7 Patch
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{7E18C9F0-1262-4AF6-AC3D-9CB1EBF54772}" = Day of Defeat: Source
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9BF3D390-A0AD-4733-AFC8-18E306B8E219}_is1" = SCARM 0.9.8 beta
"{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty® - World at War™ 1.4 Patch
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A662E280-64A8-4CF5-8407-13D0808602B3}" = Call of Duty - United Offensive
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.2)
"{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty® - World at War™ 1.1 Patch
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E}" = Call of Duty® - World at War™ 1.5 Patch
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240C0}" = WinZip 15.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF911E7B-1B9D-4e1c-8534-60E70FA45BC1}" = ps_app_npi_software_req
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty® - World at War™
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"8461-7759-5462-8226" = Vuze
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"BlackBerry_Desktop" = BlackBerry Desktop Software 7.0
"Call of Duty" = Call of Duty
"Complete Canadian Wills Kit08-1" = Complete Canadian Wills Kit
"conduitEngine" = Conduit Engine
"DivX Setup" = DivX Setup
"Download Manager" = Download Manager 2.3.10
"EAX Unified" = EAX Unified
"Empires Dawn of the Modern World" = Empires Dawn of the Modern World
"Free File Opener_is1" = Free File Opener v2011.6.0.4
"GearDrivers" = GearDrivers
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C}" = Call of Duty® - World at War™ 1.6 Patch
"InstallShield_{149464D9-B06F-4505-9968-FD1206F67AD3}" = Call of Duty® - World at War™ 1.3 Patch
"InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty® - World at War™ 1.2 Patch
"InstallShield_{750C87B8-AF19-4C3C-B791-50D9C83AE572}" = Call of Duty® - World at War™ 1.7 Patch
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty® - World at War™ 1.4 Patch
"InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}" = Call of Duty - United Offensive
"InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty® - World at War™ 1.1 Patch
"InstallShield_{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E}" = Call of Duty® - World at War™ 1.5 Patch
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty® - World at War™
"Mafia Game" = Mafia Game
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.60.1.1000
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 11.0 (x86 en-US)" = Mozilla Firefox 11.0 (x86 en-US)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"PCFriendly" = PCFriendly
"PunkBusterSvc" = PunkBuster Services
"Raptr" = Raptr
"Steam App 1250" = Killing Floor
"Steam App 15190" = Brothers in Arms: Road to Hill 30
"Steam App 15200" = Silent Hunter: Wolves of the Pacific
"Steam App 15210" = Silent Hunter III
"Steam App 15220" = Blazing Angels: Squadrons of WWII
"Steam App 15230" = Blazing Angels 2: Secret Missions of WWII
"Steam App 15240" = Silent Hunter: Wolves of the Pacific U-Boat Missions
"Steam App 15320" = IL-2 Sturmovik: 1946
"Steam App 15390" = Brothers in Arms: [bleep]'s Highway
"Steam App 19800" = Brothers in Arms: Earned in Blood
"Steam App 24010" = RailWorks 2
"Steam App 300" = Day of Defeat: Source
"Steam App 34620" = Order of War - Demo
"Steam App 42120" = Lead and Gold - Gangs of the Wild West
"Steam App 50130" = Mafia II
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"VLC media player" = VLC media player 2.0.1
"Vuze_Remote Toolbar" = Vuze Remote Toolbar
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR 4.00 beta 1 (32-bit)
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XTrkCAD 4.0.3a" = XTrkCAD 4.0.3a
"Xvid_is1" = Xvid 1.2.1 final uninstall
"YTdetect" = Yahoo! Detect

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2000478354-484061587-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Driver Performer 2010" = Driver Performer 2010
"NetAssistant" = NetAssistant for Firefox

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2/22/2012 9:19:01 PM | Computer Name = HOME-56D1A40C9D | Source = Application Error | ID = 1000
Description = Faulting application plugin-container.exe, version 10.0.2.4428, faulting
module coreclr.dll, version 4.1.10111.0, fault address 0x0013d2a6.

Error - 3/12/2012 5:30:38 AM | Computer Name = HOME-56D1A40C9D | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 0x80070670, P2 patchapplication, P3 am bdd,
P4 11.1.3927.0, P5 mpsigstub.exe, P6 3.0.8402.0, P7 microsoft security essentials,
P8 NIL, P9 NIL, P10 NIL.

Error - 3/17/2012 2:53:26 PM | Computer Name = HOME-56D1A40C9D | Source = Application Error | ID = 1000
Description = Faulting application javaw.exe, version 6.0.290.11, faulting module
nvoglnt.dll, version 6.14.12.5896, fault address 0x00761c5a.

Error - 3/17/2012 3:09:52 PM | Computer Name = HOME-56D1A40C9D | Source = Application Error | ID = 1000
Description = Faulting application javaw.exe, version 6.0.290.11, faulting module
nvoglnt.dll, version 6.14.12.5896, fault address 0x00761c09.

Error - 3/17/2012 3:13:51 PM | Computer Name = HOME-56D1A40C9D | Source = Application Error | ID = 1000
Description = Faulting application javaw.exe, version 6.0.290.11, faulting module
nvoglnt.dll, version 6.14.12.5896, fault address 0x00761c5a.

Error - 3/26/2012 11:51:04 PM | Computer Name = HOME-56D1A40C9D | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 11.0.0.4454, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 3/28/2012 1:41:15 PM | Computer Name = HOME-56D1A40C9D | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 11.0.0.4454, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 3/28/2012 8:41:12 PM | Computer Name = HOME-56D1A40C9D | Source = Application Hang | ID = 1002
Description = Hanging application DivX Plus Player.exe, version 10.2.1.23, hang
module hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 3/29/2012 8:52:16 PM | Computer Name = HOME-56D1A40C9D | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P2 3.0.8402.0, P3 timeout, P4 1.1.8202.0, P5 fixed, P6 2 _ 2048, P7 5 _ not boot,
P8 NIL, P9 NIL, P10 NIL.

Error - 3/31/2012 1:36:58 AM | Computer Name = HOME-56D1A40C9D | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8402.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.

[ System Events ]
Error - 4/4/2012 9:07:41 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 4/4/2012 9:09:42 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 4/4/2012 9:10:40 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Sqlserveragent service terminated with the following error: %%5

Error - 4/4/2012 9:11:03 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 4/4/2012 9:12:16 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 4/4/2012 9:15:46 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 4/4/2012 9:16:38 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 4/4/2012 9:20:22 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 4/4/2012 9:21:22 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 4/4/2012 9:21:43 PM | Computer Name = HOME-56D1A40C9D | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127


< End of report >
  • 0

#4
cepyelland
Posted 04 April 2012 - 08:46 PM

cepyelland

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
19:34:51.0281 0508 TDSS rootkit removing tool 2.7.25.0 Apr 3 2012 13:42:32
19:34:51.0906 0508 ============================================================
19:34:51.0906 0508 Current date / time: 2012/04/04 19:34:51.0906
19:34:51.0906 0508 SystemInfo:
19:34:51.0906 0508
19:34:51.0906 0508 OS Version: 5.1.2600 ServicePack: 3.0
19:34:51.0906 0508 Product type: Workstation
19:34:51.0906 0508 ComputerName: HOME-56D1A40C9D
19:34:51.0906 0508 UserName: user
19:34:51.0906 0508 Windows directory: C:\WINDOWS
19:34:51.0906 0508 System windows directory: C:\WINDOWS
19:34:51.0906 0508 Processor architecture: Intel x86
19:34:51.0906 0508 Number of processors: 2
19:34:51.0906 0508 Page size: 0x1000
19:34:51.0906 0508 Boot type: Normal boot
19:34:51.0906 0508 ============================================================
19:34:55.0578 0508 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
19:34:55.0609 0508 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
19:34:55.0640 0508 \Device\Harddisk0\DR0:
19:34:55.0640 0508 MBR used
19:34:55.0640 0508 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681
19:34:55.0640 0508 \Device\Harddisk1\DR1:
19:34:55.0640 0508 MBR used
19:34:55.0640 0508 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
19:34:55.0671 0508 Initialize success
19:34:55.0671 0508 ============================================================
19:35:56.0281 2112 ============================================================
19:35:56.0281 2112 Scan started
19:35:56.0281 2112 Mode: Manual; SigCheck; TDLFS;
19:35:56.0281 2112 ============================================================
19:35:57.0000 2112 A88xEnc - ok
19:35:57.0015 2112 Abiosdsk - ok
19:35:57.0015 2112 abp480n5 - ok
19:35:57.0062 2112 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:35:57.0265 2112 ACPI - ok
19:35:57.0296 2112 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:35:57.0390 2112 ACPIEC - ok
19:35:57.0390 2112 adiloader - ok
19:35:57.0390 2112 adiusbaw - ok
19:35:57.0406 2112 adminserver - ok
19:35:57.0406 2112 adobeactivefilemonitor5.0 - ok
19:35:57.0421 2112 adpu160m - ok
19:35:57.0421 2112 advantage - ok
19:35:57.0453 2112 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:35:57.0546 2112 aec - ok
19:35:57.0546 2112 aexnsclienttransport - ok
19:35:57.0593 2112 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:35:57.0671 2112 AFD - ok
19:35:57.0671 2112 AFGSp50 - ok
19:35:57.0687 2112 agpcpq - ok
19:35:57.0687 2112 Aha154x - ok
19:35:57.0687 2112 aic78u2 - ok
19:35:57.0703 2112 aic78xx - ok
19:35:57.0734 2112 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
19:35:57.0828 2112 Alerter - ok
19:35:57.0843 2112 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
19:35:57.0968 2112 ALG - ok
19:35:57.0984 2112 AliIde - ok
19:35:57.0984 2112 amdppm - ok
19:35:58.0000 2112 amsint - ok
19:35:58.0000 2112 APLMp50 - ok
19:35:58.0000 2112 AppMgmt - ok
19:35:58.0015 2112 arcltsrv - ok
19:35:58.0015 2112 arkbcfltr - ok
19:35:58.0031 2112 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:35:58.0125 2112 Arp1394 - ok
19:35:58.0171 2112 artourservice - ok
19:35:58.0187 2112 asapiw2k - ok
19:35:58.0187 2112 asc - ok
19:35:58.0187 2112 asc3350p - ok
19:35:58.0203 2112 asc3550 - ok
19:35:58.0203 2112 ASNDIS5 - ok
19:35:58.0250 2112 Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys
19:35:58.0265 2112 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
19:35:58.0265 2112 Aspi32 - detected UnsignedFile.Multi.Generic (1)
19:35:58.0375 2112 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:35:58.0406 2112 aspnet_state - ok
19:35:58.0421 2112 asuskeyboardservice - ok
19:35:58.0421 2112 ASUSVRC - ok
19:35:58.0421 2112 aswtdi - ok
19:35:58.0453 2112 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:35:58.0515 2112 AsyncMac - ok
19:35:58.0531 2112 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:35:58.0640 2112 atapi - ok
19:35:58.0640 2112 Atdisk - ok
19:35:58.0640 2112 ati2mpaa - ok
19:35:58.0656 2112 AtiPcie - ok
19:35:58.0671 2112 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:35:58.0750 2112 Atmarpc - ok
19:35:58.0781 2112 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
19:35:58.0875 2112 AudioSrv - ok
19:35:58.0906 2112 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:35:58.0984 2112 audstub - ok
19:35:59.0000 2112 automate5 - ok
19:35:59.0000 2112 avcgbfl - ok
19:35:59.0000 2112 avg7core - ok
19:35:59.0015 2112 avg7updsvc - ok
19:35:59.0015 2112 avidstartup - ok
19:35:59.0015 2112 awservice - ok
19:35:59.0031 2112 Bcim - ok
19:35:59.0031 2112 bc_ip_f - ok
19:35:59.0046 2112 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:35:59.0187 2112 Beep - ok
19:35:59.0203 2112 bglivesvc - ok
19:35:59.0250 2112 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
19:35:59.0328 2112 BITS - ok
19:35:59.0375 2112 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
19:35:59.0437 2112 Browser - ok
19:35:59.0453 2112 bthmodem - ok
19:35:59.0453 2112 btwrchid - ok
19:35:59.0453 2112 BVRPMPR5 - ok
19:35:59.0468 2112 caili - ok
19:35:59.0484 2112 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:35:59.0562 2112 cbidf2k - ok
19:35:59.0578 2112 ccalib8 - ok
19:35:59.0593 2112 ccdecode - ok
19:35:59.0593 2112 ccs - ok
19:35:59.0593 2112 cd20xrnt - ok
19:35:59.0609 2112 CdaC15BA - ok
19:35:59.0609 2112 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:35:59.0734 2112 Cdaudio - ok
19:35:59.0734 2112 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:35:59.0828 2112 Cdfs - ok
19:35:59.0843 2112 cdfsvc - ok
19:35:59.0859 2112 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:35:59.0953 2112 Cdrom - ok
19:35:59.0968 2112 cdudf_xp - ok
19:35:59.0968 2112 centennialiptransferagent - ok
19:35:59.0968 2112 Changer - ok
19:35:59.0984 2112 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
19:36:00.0078 2112 CiSvc - ok
19:36:00.0093 2112 citrixxteserver - ok
19:36:00.0093 2112 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
19:36:00.0171 2112 ClipSrv - ok
19:36:00.0218 2112 clmtomcatstartersvc - ok
19:36:00.0312 2112 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:36:00.0406 2112 clr_optimization_v2.0.50727_32 - ok
19:36:00.0453 2112 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:36:00.0468 2112 clr_optimization_v4.0.30319_32 - ok
19:36:00.0468 2112 cmbatt - ok
19:36:00.0484 2112 CmdIde - ok
19:36:00.0484 2112 COMSysApp - ok
19:36:00.0500 2112 coste - ok
19:36:00.0500 2112 Cpqarray - ok
19:36:00.0531 2112 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
19:36:00.0625 2112 CryptSvc - ok
19:36:00.0625 2112 ctprxy2k - ok
19:36:00.0625 2112 CVPND - ok
19:36:00.0640 2112 cxpt_service - ok
19:36:00.0640 2112 CXTUNE - ok
19:36:00.0656 2112 dac2w2k - ok
19:36:00.0656 2112 dac960nt - ok
19:36:00.0656 2112 db2ntsecserver - ok
19:36:00.0671 2112 db2remotecmd - ok
19:36:00.0718 2112 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:36:00.0812 2112 DcomLaunch - ok
19:36:00.0859 2112 defwatch - ok
19:36:00.0906 2112 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
19:36:01.0000 2112 Dhcp - ok
19:36:01.0000 2112 DirectUpdate - ok
19:36:01.0015 2112 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:36:01.0093 2112 Disk - ok
19:36:01.0093 2112 DivisCTP - ok
19:36:01.0109 2112 DKbFltr - ok
19:36:01.0109 2112 dlaifs_m - ok
19:36:01.0125 2112 dlapoolm - ok
19:36:01.0125 2112 DLH5X - ok
19:36:01.0125 2112 dmadmin - ok
19:36:01.0171 2112 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:36:01.0250 2112 dmboot - ok
19:36:01.0265 2112 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
19:36:01.0359 2112 dmio - ok
19:36:01.0390 2112 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:36:01.0468 2112 dmload - ok
19:36:01.0484 2112 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
19:36:01.0593 2112 dmserver - ok
19:36:01.0640 2112 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:36:01.0718 2112 DMusic - ok
19:36:01.0734 2112 DniVad - ok
19:36:01.0750 2112 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
19:36:01.0843 2112 Dnscache - ok
19:36:01.0875 2112 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
19:36:01.0968 2112 Dot3svc - ok
19:36:01.0968 2112 dpti2o - ok
19:36:01.0984 2112 driverhardwarev2 - ok
19:36:01.0984 2112 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:36:02.0046 2112 drmkaud - ok
19:36:02.0062 2112 eamon - ok
19:36:02.0093 2112 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
19:36:02.0171 2112 EapHost - ok
19:36:02.0171 2112 EAWDMFD - ok
19:36:02.0171 2112 ehsched - ok
19:36:02.0187 2112 EKECioCtl - ok
19:36:02.0187 2112 elockservice - ok
19:36:02.0187 2112 EMATCORE - ok
19:36:02.0203 2112 EMSCR - ok
19:36:02.0203 2112 enxpsvc - ok
19:36:02.0218 2112 enxpsvr - ok
19:36:02.0218 2112 epson_pm_rpcv2_01 - ok
19:36:02.0218 2112 erecoveryservice - ok
19:36:02.0250 2112 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
19:36:02.0328 2112 ERSvc - ok
19:36:02.0343 2112 etoksrv - ok
19:36:02.0359 2112 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:36:02.0406 2112 Eventlog - ok
19:36:02.0437 2112 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
19:36:02.0484 2112 EventSystem - ok
19:36:02.0484 2112 Exportit - ok
19:36:02.0500 2112 F700isw - ok
19:36:02.0515 2112 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:36:02.0609 2112 Fastfat - ok
19:36:02.0656 2112 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:36:02.0687 2112 FastUserSwitchingCompatibility - ok
19:36:02.0703 2112 fcprintservice - ok
19:36:02.0718 2112 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
19:36:02.0796 2112 Fdc - ok
19:36:02.0812 2112 FET5X86V - ok
19:36:02.0812 2112 FETNDISB - ok
19:36:02.0828 2112 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:36:02.0906 2112 Fips - ok
19:36:02.0906 2112 firelm01 - ok
19:36:02.0921 2112 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:36:02.0984 2112 Flpydisk - ok
19:36:03.0046 2112 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
19:36:03.0125 2112 FltMgr - ok
19:36:03.0234 2112 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:36:03.0265 2112 FontCache3.0.0.0 - ok
19:36:03.0343 2112 ForceWare Intelligent Application Manager (IAM) (606acb555e9e3599537b2f33e73082b1) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
19:36:03.0406 2112 ForceWare Intelligent Application Manager (IAM) ( UnsignedFile.Multi.Generic ) - warning
19:36:03.0406 2112 ForceWare Intelligent Application Manager (IAM) - detected UnsignedFile.Multi.Generic (1)
19:36:03.0406 2112 fsaa - ok
19:36:03.0421 2112 fsks - ok
19:36:03.0437 2112 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:36:03.0515 2112 Fs_Rec - ok
19:36:03.0531 2112 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:36:03.0625 2112 Ftdisk - ok
19:36:03.0625 2112 gdihook5 - ok
19:36:03.0656 2112 GEARAspiWDM (32a73a8952580b284a47290adb62032a) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:36:03.0671 2112 GEARAspiWDM - ok
19:36:03.0703 2112 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:36:03.0812 2112 Gpc - ok
19:36:03.0859 2112 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:36:03.0937 2112 gupdate - ok
19:36:03.0937 2112 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:36:03.0968 2112 gupdatem - ok
19:36:03.0968 2112 gv3 - ok
19:36:03.0984 2112 ha10kx2k - ok
19:36:03.0984 2112 Hardlock - ok
19:36:04.0000 2112 haspnt - ok
19:36:04.0000 2112 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:36:04.0093 2112 HDAudBus - ok
19:36:04.0156 2112 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:36:04.0265 2112 helpsvc - ok
19:36:04.0312 2112 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
19:36:04.0406 2112 HidServ - ok
19:36:04.0421 2112 HIDSwvd - ok
19:36:04.0468 2112 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:36:04.0531 2112 HidUsb - ok
19:36:04.0562 2112 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
19:36:04.0671 2112 hkmsvc - ok
19:36:04.0671 2112 hpdj - ok
19:36:04.0687 2112 hpn - ok
19:36:04.0687 2112 hpqddsvc - ok
19:36:04.0687 2112 HpqRemHid - ok
19:36:04.0703 2112 hpqwmi - ok
19:36:04.0734 2112 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:36:04.0921 2112 HPZid412 - ok
19:36:04.0937 2112 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:36:04.0968 2112 HPZipr12 - ok
19:36:05.0031 2112 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:36:05.0062 2112 HPZius12 - ok
19:36:05.0062 2112 HSFHWALI - ok
19:36:05.0078 2112 hsf_msft - ok
19:36:05.0125 2112 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
19:36:05.0171 2112 HTTP - ok
19:36:05.0187 2112 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
19:36:05.0281 2112 HTTPFilter - ok
19:36:05.0296 2112 i2omgmt - ok
19:36:05.0296 2112 i2omp - ok
19:36:05.0343 2112 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:36:05.0421 2112 i8042prt - ok
19:36:05.0437 2112 iaimfp1 - ok
19:36:05.0453 2112 iaimfp4 - ok
19:36:05.0453 2112 iap - ok
19:36:05.0453 2112 icraplus - ok
19:36:05.0468 2112 id2scaps - ok
19:36:05.0468 2112 idebusdr - ok
19:36:05.0562 2112 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
19:36:05.0593 2112 IDriverT ( UnsignedFile.Multi.Generic ) - warning
19:36:05.0593 2112 IDriverT - detected UnsignedFile.Multi.Generic (1)
19:36:05.0750 2112 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:36:05.0828 2112 idsvc - ok
19:36:05.0828 2112 ifxspmgtsrv - ok
19:36:05.0843 2112 iksysflt - ok
19:36:05.0843 2112 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:36:05.0921 2112 Imapi - ok
19:36:05.0984 2112 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
19:36:06.0093 2112 ImapiService - ok
19:36:06.0109 2112 ini910u - ok
19:36:06.0218 2112 IntcAzAudAddService (eb5608fd4f2961517ac9f5cac88b023b) C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:36:06.0468 2112 IntcAzAudAddService - ok
19:36:06.0484 2112 IntelIde - ok
19:36:06.0515 2112 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:36:06.0578 2112 intelppm - ok
19:36:06.0593 2112 Invoker - ok
19:36:06.0593 2112 IOSLINK - ok
19:36:06.0609 2112 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
19:36:06.0703 2112 Ip6Fw - ok
19:36:06.0718 2112 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:36:06.0796 2112 IpFilterDriver - ok
19:36:06.0828 2112 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:36:06.0921 2112 IpInIp - ok
19:36:06.0937 2112 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:36:07.0015 2112 IpNat - ok
19:36:07.0031 2112 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:36:07.0125 2112 IPSec - ok
19:36:07.0140 2112 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:36:07.0218 2112 IRENUM - ok
19:36:07.0234 2112 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:36:07.0328 2112 isapnp - ok
19:36:07.0343 2112 itmrtsvc - ok
19:36:07.0453 2112 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe
19:36:07.0546 2112 JavaQuickStarterService - ok
19:36:07.0546 2112 k750mgmt - ok
19:36:07.0562 2112 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:36:07.0625 2112 Kbdclass - ok
19:36:07.0656 2112 klblmain - ok
19:36:07.0671 2112 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:36:07.0765 2112 kmixer - ok
19:36:07.0765 2112 kraidsvc - ok
19:36:07.0796 2112 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:36:07.0875 2112 KSecDD - ok
19:36:07.0890 2112 Ktp - ok
19:36:07.0890 2112 L8042Kbd - ok
19:36:07.0937 2112 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
19:36:07.0984 2112 lanmanserver - ok
19:36:08.0000 2112 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
19:36:08.0093 2112 lanmanworkstation - ok
19:36:08.0125 2112 lbrtfdc - ok
19:36:08.0140 2112 Ld51ocnucsnp - ok
19:36:08.0140 2112 ldlcserv - ok
19:36:08.0156 2112 lirsgt - ok
19:36:08.0187 2112 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
19:36:08.0281 2112 LmHosts - ok
19:36:08.0281 2112 lmimirr - ok
19:36:08.0296 2112 LRMINIPORT - ok
19:36:08.0296 2112 ltxred - ok
19:36:08.0296 2112 lusbaudio - ok
19:36:08.0312 2112 lvtuner - ok
19:36:08.0312 2112 LVVI500A - ok
19:36:08.0312 2112 lxbu_device - ok
19:36:08.0328 2112 lxcgcustomerconnect - ok
19:36:08.0328 2112 lyncusbserv - ok
19:36:08.0343 2112 MA_CMIDI - ok
19:36:08.0343 2112 ma_cmidi_installerservice - ok
19:36:08.0343 2112 mcstrm - ok
19:36:08.0359 2112 mctskshd.exe - ok
19:36:08.0375 2112 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
19:36:08.0453 2112 Messenger - ok
19:36:08.0484 2112 mindrepair - ok
19:36:08.0515 2112 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:36:08.0593 2112 mnmdd - ok
19:36:08.0625 2112 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
19:36:08.0703 2112 mnmsrvc - ok
19:36:08.0734 2112 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:36:08.0812 2112 Modem - ok
19:36:08.0843 2112 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:36:08.0906 2112 Mouclass - ok
19:36:08.0937 2112 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:36:09.0015 2112 mouhid - ok
19:36:09.0031 2112 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:36:09.0109 2112 MountMgr - ok
19:36:09.0156 2112 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
19:36:09.0187 2112 MpFilter - ok
19:36:09.0296 2112 MpKsld97a8e73 (a69630d039c38018689190234f866d77) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A4E20A19-A3A4-46DF-AD22-A5AAFA514713}\MpKsld97a8e73.sys
19:36:09.0312 2112 MpKsld97a8e73 - ok
19:36:09.0312 2112 mr2kserv - ok
19:36:09.0328 2112 mraid35x - ok
19:36:09.0328 2112 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:36:09.0406 2112 MRxDAV - ok
19:36:09.0437 2112 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:36:09.0531 2112 MRxSmb - ok
19:36:09.0562 2112 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
19:36:09.0640 2112 MSDTC - ok
19:36:09.0640 2112 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:36:09.0718 2112 Msfs - ok
19:36:09.0718 2112 MSIRCOMM - ok
19:36:09.0718 2112 MSIServer - ok
19:36:09.0734 2112 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:36:09.0796 2112 MSKSSRV - ok
19:36:09.0859 2112 MsMpSvc (cfce43b70ca0cc4dcc8adb62b792b173) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
19:36:09.0875 2112 MsMpSvc - ok
19:36:09.0921 2112 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:36:09.0984 2112 MSPCLOCK - ok
19:36:10.0000 2112 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:36:10.0062 2112 MSPQM - ok
19:36:10.0093 2112 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:36:10.0171 2112 mssmbios - ok
19:36:10.0171 2112 MSSQL$AUTODESKVAULT - ok
19:36:10.0218 2112 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
19:36:10.0250 2112 MTsensor - ok
19:36:10.0250 2112 MtxDma0 - ok
19:36:10.0281 2112 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:36:10.0328 2112 Mup - ok
19:36:10.0343 2112 mwlsvc - ok
19:36:10.0375 2112 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
19:36:10.0468 2112 napagent - ok
19:36:10.0468 2112 navapsvc - ok
19:36:10.0484 2112 ncupdatesvc - ok
19:36:10.0484 2112 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:36:10.0578 2112 NDIS - ok
19:36:10.0640 2112 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:36:10.0656 2112 NdisTapi - ok
19:36:10.0687 2112 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:36:10.0765 2112 Ndisuio - ok
19:36:10.0781 2112 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:36:10.0906 2112 NdisWan - ok
19:36:10.0968 2112 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:36:11.0000 2112 NDProxy - ok
19:36:11.0046 2112 Net Driver HPZ12 (51c6d8bfbd4ea5b62a1ba7f4469250d3) C:\WINDOWS\system32\HPZinw12.dll
19:36:11.0062 2112 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:36:11.0062 2112 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:36:11.0078 2112 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:36:11.0171 2112 NetBIOS - ok
19:36:11.0234 2112 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:36:11.0343 2112 NetBT - ok
19:36:11.0359 2112 netcfgsvr - ok
19:36:11.0390 2112 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:36:11.0500 2112 NetDDE - ok
19:36:11.0500 2112 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:36:11.0593 2112 NetDDEdsdm - ok
19:36:11.0640 2112 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:36:11.0703 2112 Netlogon - ok
19:36:11.0750 2112 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
19:36:11.0859 2112 Netman - ok
19:36:11.0875 2112 netsvc - ok
19:36:12.0015 2112 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:36:12.0046 2112 NetTcpPortSharing - ok
19:36:12.0046 2112 nfmservice - ok
19:36:12.0046 2112 ngdbserv - ok
19:36:12.0062 2112 ngserver - ok
19:36:12.0078 2112 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:36:12.0171 2112 NIC1394 - ok
19:36:12.0203 2112 NITaggerService - ok
19:36:12.0250 2112 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
19:36:12.0281 2112 Nla - ok
19:36:12.0281 2112 nmwcdc - ok
19:36:12.0296 2112 noipducservice - ok
19:36:12.0296 2112 NPDriver - ok
19:36:12.0312 2112 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:36:12.0375 2112 Npfs - ok
19:36:12.0390 2112 npkcmsvc - ok
19:36:12.0406 2112 nsm1serd - ok
19:36:12.0500 2112 nSvcIp (fb988984573be3cb17ea73f346645144) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
19:36:12.0546 2112 nSvcIp ( UnsignedFile.Multi.Generic ) - warning
19:36:12.0546 2112 nSvcIp - detected UnsignedFile.Multi.Generic (1)
19:36:12.0562 2112 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:36:12.0640 2112 Ntfs - ok
19:36:12.0640 2112 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:36:12.0703 2112 NtLmSsp - ok
19:36:12.0750 2112 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
19:36:12.0828 2112 NtmsSvc - ok
19:36:12.0859 2112 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:36:12.0921 2112 Null - ok
19:36:13.0140 2112 nv (ed9816dbaf6689542ea7d022631906a1) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:36:13.0500 2112 nv - ok
19:36:13.0546 2112 nvcap - ok
19:36:13.0578 2112 NVENETFD (7d275ecda4628318912f6c945d5cf963) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
19:36:13.0656 2112 NVENETFD - ok
19:36:13.0687 2112 nvgts (ea98bfe4931bd13d747d647c1859796e) C:\WINDOWS\system32\DRIVERS\nvgts.sys
19:36:13.0734 2112 nvgts - ok
19:36:13.0765 2112 nvnetbus (b64aacefad2be5bff5353fe681253c67) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
19:36:13.0796 2112 nvnetbus - ok
19:36:13.0828 2112 NVSvc (a2322c6207ebb0761a6c8cc9003ebacf) C:\WINDOWS\system32\nvsvc32.exe
19:36:13.0875 2112 NVSvc - ok
19:36:13.0875 2112 NWADI - ok
19:36:13.0906 2112 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:36:13.0984 2112 NwlnkFlt - ok
19:36:13.0984 2112 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:36:14.0078 2112 NwlnkFwd - ok
19:36:14.0078 2112 odclientservice - ok
19:36:14.0093 2112 ofcpfwsvc - ok
19:36:14.0093 2112 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:36:14.0171 2112 ohci1394 - ok
19:36:14.0187 2112 ONSIO - ok
19:36:14.0187 2112 openvpnservice - ok
19:36:14.0203 2112 oracle%oracle_home_service%clientcache80 - ok
19:36:14.0203 2112 OsaFsLoc - ok
19:36:14.0281 2112 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:36:14.0296 2112 ose - ok
19:36:14.0312 2112 p1131vid - ok
19:36:14.0312 2112 P17xfi - ok
19:36:14.0343 2112 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
19:36:14.0421 2112 Parport - ok
19:36:14.0437 2112 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:36:14.0500 2112 PartMgr - ok
19:36:14.0531 2112 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:36:14.0593 2112 ParVdm - ok
19:36:14.0609 2112 pavsrv - ok
19:36:14.0609 2112 PCASp50 - ok
19:36:14.0625 2112 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:36:14.0703 2112 PCI - ok
19:36:14.0703 2112 PciBus - ok
19:36:14.0718 2112 PCIDump - ok
19:36:14.0734 2112 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:36:14.0828 2112 PCIIde - ok
19:36:14.0843 2112 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:36:14.0937 2112 Pcmcia - ok
19:36:14.0937 2112 pcouffin - ok
19:36:14.0953 2112 PDCOMP - ok
19:36:14.0953 2112 PDFRAME - ok
19:36:14.0968 2112 pdlnemsg - ok
19:36:14.0968 2112 pdlnsv25 - ok
19:36:14.0968 2112 PDRELI - ok
19:36:14.0984 2112 PDRFRAME - ok
19:36:14.0984 2112 perc2 - ok
19:36:15.0000 2112 perc2hib - ok
19:36:15.0000 2112 pgsql-8.0 - ok
19:36:15.0015 2112 PID_08A0 - ok
19:36:15.0046 2112 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:36:15.0093 2112 PlugPlay - ok
19:36:15.0125 2112 Pml Driver HPZ12 (79834aa2fbf9fe81eebb229024f6f7fc) C:\WINDOWS\system32\HPZipm12.dll
19:36:15.0140 2112 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:36:15.0140 2112 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:36:15.0203 2112 PnkBstrA (3a2bdd76e7d2a5f40a7174793d1ba794) C:\WINDOWS\system32\PnkBstrA.exe
19:36:15.0328 2112 PnkBstrA - ok
19:36:15.0328 2112 pnmsrv - ok
19:36:15.0359 2112 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:36:15.0421 2112 PolicyAgent - ok
19:36:15.0437 2112 ppmoucls - ok
19:36:15.0453 2112 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:36:15.0546 2112 PptpMiniport - ok
19:36:15.0562 2112 procexp90 - ok
19:36:15.0578 2112 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:36:15.0640 2112 ProtectedStorage - ok
19:36:15.0640 2112 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:36:15.0734 2112 PSched - ok
19:36:15.0750 2112 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:36:15.0812 2112 Ptilink - ok
19:36:15.0828 2112 pvservice - ok
19:36:15.0843 2112 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:36:15.0859 2112 PxHelp20 - ok
19:36:15.0875 2112 qbfcservice - ok
19:36:15.0875 2112 qbreminderflash - ok
19:36:15.0890 2112 ql1080 - ok
19:36:15.0890 2112 Ql10wnt - ok
19:36:15.0906 2112 ql12160 - ok
19:36:15.0906 2112 ql1240 - ok
19:36:15.0921 2112 ql1280 - ok
19:36:15.0937 2112 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:36:16.0000 2112 RasAcd - ok
19:36:16.0031 2112 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
19:36:16.0171 2112 RasAuto - ok
19:36:16.0171 2112 rasirda - ok
19:36:16.0218 2112 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:36:16.0296 2112 Rasl2tp - ok
19:36:16.0328 2112 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
19:36:16.0406 2112 RasMan - ok
19:36:16.0421 2112 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:36:16.0500 2112 RasPppoe - ok
19:36:16.0500 2112 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:36:16.0578 2112 Raspti - ok
19:36:16.0593 2112 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:36:16.0703 2112 Rdbss - ok
19:36:16.0718 2112 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:36:16.0781 2112 RDPCDD - ok
19:36:16.0843 2112 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
19:36:16.0890 2112 RDPWD - ok
19:36:16.0906 2112 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
19:36:17.0031 2112 RDSessMgr - ok
19:36:17.0046 2112 regsrvc - ok
19:36:17.0062 2112 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
19:36:17.0203 2112 RemoteAccess - ok
19:36:17.0218 2112 remoterecord - ok
19:36:17.0250 2112 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\WINDOWS\system32\Drivers\RimUsb.sys
19:36:17.0343 2112 RimUsb - ok
19:36:17.0359 2112 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
19:36:17.0406 2112 RimVSerPort - ok
19:36:17.0406 2112 rnadiagreceiver - ok
19:36:17.0437 2112 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
19:36:17.0500 2112 ROOTMODEM - ok
19:36:17.0515 2112 roxliveshare - ok
19:36:17.0625 2112 RoxLiveShare9 - ok
19:36:17.0625 2112 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
19:36:17.0703 2112 RpcLocator - ok
19:36:17.0765 2112 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:36:17.0812 2112 RpcSs - ok
19:36:17.0828 2112 rslinx - ok
19:36:17.0843 2112 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
19:36:17.0937 2112 RSVP - ok
19:36:17.0937 2112 rtl8185 - ok
19:36:17.0937 2112 s116mgmt - ok
19:36:17.0953 2112 s217nd5 - ok
19:36:17.0953 2112 s3psddr - ok
19:36:17.0968 2112 s616mdm - ok
19:36:17.0968 2112 s616unic - ok
19:36:17.0968 2112 SaiNtHid - ok
19:36:18.0015 2112 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:36:18.0078 2112 SamSs - ok
19:36:18.0078 2112 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
19:36:18.0171 2112 SCardSvr - ok
19:36:18.0234 2112 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
19:36:18.0312 2112 Schedule - ok
19:36:18.0328 2112 screadspool - ok
19:36:18.0328 2112 scsk4 - ok
19:36:18.0343 2112 sddmi2 - ok
19:36:18.0343 2112 SE27obex - ok
19:36:18.0359 2112 se44mdm - ok
19:36:18.0359 2112 se58mdm - ok
19:36:18.0390 2112 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:36:18.0453 2112 Secdrv - ok
19:36:18.0484 2112 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
19:36:18.0546 2112 seclogon - ok
19:36:18.0562 2112 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
19:36:18.0640 2112 SENS - ok
19:36:18.0656 2112 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:36:18.0734 2112 serenum - ok
19:36:18.0750 2112 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
19:36:18.0875 2112 Serial - ok
19:36:18.0890 2112 SerTVOutCtlr - ok
19:36:18.0921 2112 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:36:18.0984 2112 Sfloppy - ok
19:36:18.0984 2112 sfsync02 - ok
19:36:19.0031 2112 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
19:36:19.0125 2112 SharedAccess - ok
19:36:19.0171 2112 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:36:19.0187 2112 ShellHWDetection - ok
19:36:19.0203 2112 sigfilt - ok
19:36:19.0234 2112 sigmimeh (1a19a10b4203acc07d16a830ad59f7ea) C:\WINDOWS\system32\drivers\sigmimeh.sys
19:36:19.0281 2112 sigmimeh - ok
19:36:19.0296 2112 Simbad - ok
19:36:19.0296 2112 SiSRaid2 - ok
19:36:19.0312 2112 smbusp - ok
19:36:19.0312 2112 SMCB000 - ok
19:36:19.0312 2112 SMNDIS5 - ok
19:36:19.0328 2112 sndsrvc - ok
19:36:19.0328 2112 snoopfree - ok
19:36:19.0343 2112 Sparrow - ok
19:36:19.0359 2112 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:36:19.0421 2112 splitter - ok
19:36:19.0437 2112 spmd - ok
19:36:19.0484 2112 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
19:36:19.0515 2112 Spooler - ok
19:36:19.0531 2112 Spsmqvsm - ok
19:36:19.0531 2112 sptisrv - ok
19:36:19.0546 2112 sp_clamsrv - ok
19:36:19.0578 2112 SQLBrowser (9c454cd857b4c0ccf7a614b047616503) C:\WINDOWS\system32\SimpTcp.dll
19:36:19.0656 2112 SQLBrowser - ok
19:36:19.0687 2112 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:36:19.0765 2112 sr - ok
19:36:19.0796 2112 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
19:36:19.0875 2112 srservice - ok
19:36:19.0921 2112 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:36:19.0968 2112 Srv - ok
19:36:19.0968 2112 SrvcEKIOMngr - ok
19:36:20.0000 2112 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
19:36:20.0062 2112 SSDPSRV - ok
19:36:20.0078 2112 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
19:36:20.0203 2112 stisvc - ok
19:36:20.0250 2112 stllssvr - ok
19:36:20.0250 2112 StMp3Rec - ok
19:36:20.0265 2112 STV680 - ok
19:36:20.0265 2112 stylexphelper - ok
19:36:20.0281 2112 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:36:20.0375 2112 swenum - ok
19:36:20.0390 2112 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:36:20.0484 2112 swmidi - ok
19:36:20.0500 2112 swmsflt - ok
19:36:20.0500 2112 SwPrv - ok
19:36:20.0515 2112 symantecantibotshim - ok
19:36:20.0515 2112 symc810 - ok
19:36:20.0531 2112 symc8xx - ok
19:36:20.0531 2112 symlcbrd - ok
19:36:20.0531 2112 symmpi - ok
19:36:20.0546 2112 symproxysvc - ok
19:36:20.0546 2112 sym_hi - ok
19:36:20.0562 2112 sym_u3 - ok
19:36:20.0578 2112 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:36:20.0640 2112 sysaudio - ok
19:36:20.0671 2112 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
19:36:20.0750 2112 SysmonLog - ok
19:36:20.0765 2112 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
19:36:20.0843 2112 TapiSrv - ok
19:36:20.0890 2112 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:36:20.0937 2112 Tcpip - ok
19:36:20.0937 2112 tcpipBM - ok
19:36:20.0953 2112 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:36:21.0031 2112 TDPIPE - ok
19:36:21.0078 2112 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:36:21.0140 2112 TDTCP - ok
19:36:21.0156 2112 teefer2 - ok
19:36:21.0156 2112 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:36:21.0234 2112 TermDD - ok
19:36:21.0265 2112 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
19:36:21.0343 2112 TermService - ok
19:36:21.0359 2112 tfsnudfa - ok
19:36:21.0390 2112 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:36:21.0421 2112 Themes - ok
19:36:21.0421 2112 thotkey - ok
19:36:21.0421 2112 thpsrv - ok
19:36:21.0437 2112 tmlisten - ok
19:36:21.0437 2112 TosIde - ok
19:36:21.0468 2112 tosrfbnp (c62f76344cd3a3a6314055b4929e529d) C:\WINDOWS\system32\BrSerIf.dll
19:36:21.0562 2112 tosrfbnp - ok
19:36:21.0593 2112 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
19:36:21.0656 2112 TrkWks - ok
19:36:21.0671 2112 tsmservice - ok
19:36:21.0671 2112 tunnelguardservice - ok
19:36:21.0687 2112 tvtfilter - ok
19:36:21.0687 2112 U81xmgmt - ok
19:36:21.0718 2112 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:36:21.0796 2112 Udfs - ok
19:36:21.0812 2112 uhcd - ok
19:36:21.0812 2112 ultra - ok
19:36:21.0828 2112 unlockerdriver5 - ok
19:36:21.0828 2112 unrealircd - ok
19:36:21.0859 2112 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:36:21.0937 2112 Update - ok
19:36:21.0953 2112 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
19:36:22.0031 2112 upnphost - ok
19:36:22.0046 2112 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
19:36:22.0125 2112 UPS - ok
19:36:22.0171 2112 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
19:36:22.0250 2112 usbaudio - ok
19:36:22.0281 2112 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:36:22.0343 2112 usbccgp - ok
19:36:22.0359 2112 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:36:22.0453 2112 usbehci - ok
19:36:22.0484 2112 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:36:22.0562 2112 usbhub - ok
19:36:22.0578 2112 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
19:36:22.0640 2112 usbohci - ok
19:36:22.0687 2112 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:36:22.0765 2112 usbprint - ok
19:36:22.0796 2112 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:36:22.0859 2112 usbscan - ok
19:36:22.0875 2112 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:36:22.0953 2112 USBSTOR - ok
19:36:22.0953 2112 usnjsvc - ok
19:36:22.0968 2112 UxTuneUp - ok
19:36:22.0968 2112 V0070VID - ok
19:36:22.0968 2112 vaiomediaplatform-mobile-gateway - ok
19:36:22.0984 2112 VAIOMediaPlatform-PhotoServer-HTTP - ok
19:36:22.0984 2112 VAIOMediaPlatform-VideoServer-UPnP - ok
19:36:23.0000 2112 VC6SecS - ok
19:36:23.0000 2112 ventrilo - ok
19:36:23.0015 2112 vet-rec - ok
19:36:23.0015 2112 veteboot - ok
19:36:23.0015 2112 vetmsgnt - ok
19:36:23.0031 2112 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:36:23.0093 2112 VgaSave - ok
19:36:23.0140 2112 ViaIde - ok
19:36:23.0156 2112 vmnetadapter - ok
19:36:23.0171 2112 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:36:23.0265 2112 VolSnap - ok
19:36:23.0265 2112 vproeventmonitor - ok
19:36:23.0281 2112 VRADFIL - ok
19:36:23.0281 2112 VRFIL - ok
19:36:23.0296 2112 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
19:36:23.0406 2112 VSS - ok
19:36:23.0421 2112 vusbbus - ok
19:36:23.0437 2112 vzupsvc - ok
19:36:23.0453 2112 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
19:36:23.0531 2112 W32Time - ok
19:36:23.0531 2112 W700bus - ok
19:36:23.0546 2112 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:36:23.0625 2112 Wanarp - ok
19:36:23.0671 2112 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
19:36:23.0703 2112 Wdf01000 - ok
19:36:23.0734 2112 WDICA - ok
19:36:23.0750 2112 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:36:23.0828 2112 wdmaud - ok
19:36:23.0859 2112 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
19:36:23.0921 2112 WebClient - ok
19:36:23.0937 2112 webrootspysweeperservice - ok
19:36:23.0937 2112 whoisd32 - ok
19:36:23.0953 2112 winachsf - ok
19:36:23.0968 2112 winachsx - ok
19:36:24.0015 2112 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:36:24.0093 2112 winmgmt - ok
19:36:24.0109 2112 winmtsrv - ok
19:36:24.0109 2112 winsshd - ok
19:36:24.0125 2112 wlsetupsvc - ok
19:36:24.0125 2112 WmaCDriverV32 - ok
19:36:24.0171 2112 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
19:36:24.0218 2112 WmdmPmSN - ok
19:36:24.0250 2112 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:36:24.0343 2112 WmiApSrv - ok
19:36:24.0468 2112 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:36:24.0640 2112 WMPNetworkSvc - ok
19:36:24.0687 2112 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys
19:36:24.0703 2112 WpdUsb - ok
19:36:24.0906 2112 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:36:24.0937 2112 WPFFontCache_v0400 - ok
19:36:24.0984 2112 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:36:25.0078 2112 WS2IFSL - ok
19:36:25.0109 2112 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
19:36:25.0203 2112 wuauserv - ok
19:36:25.0250 2112 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:36:25.0296 2112 WudfPf - ok
19:36:25.0312 2112 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:36:25.0343 2112 WudfRd - ok
19:36:25.0375 2112 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:36:25.0390 2112 WudfSvc - ok
19:36:25.0468 2112 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
19:36:25.0578 2112 WZCSVC - ok
19:36:25.0593 2112 X4HSX32 - ok
19:36:25.0609 2112 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
19:36:25.0687 2112 xmlprov - ok
19:36:25.0703 2112 YMIDUSB - ok
19:36:25.0718 2112 z525mgmt (11028c6a84a967070cb1286550f2058f) C:\WINDOWS\system32\pelmouse.dll
19:36:25.0750 2112 Suspicious file (NoAccess): C:\WINDOWS\system32\pelmouse.dll. md5: 11028c6a84a967070cb1286550f2058f
19:36:25.0750 2112 z525mgmt ( Backdoor.Multi.ZAccess.gen ) - infected
19:36:25.0750 2112 z525mgmt - detected Backdoor.Multi.ZAccess.gen (0)
19:36:25.0750 2112 zdeviceservice - ok
19:36:25.0765 2112 zebrmdm - ok
19:36:25.0765 2112 zenos1 - ok
19:36:25.0781 2112 zfdwm - ok
19:36:25.0781 2112 zpcollector - ok
19:36:25.0781 2112 zpsc - ok
19:36:25.0796 2112 ZTEusbnmea - ok
19:36:25.0812 2112 {85ccb53b-23d8-4e73-b1b7-9ddb71827d9b} - ok
19:36:25.0828 2112 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
19:36:26.0046 2112 \Device\Harddisk0\DR0 - ok
19:36:26.0062 2112 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
19:36:26.0359 2112 \Device\Harddisk1\DR1 - ok
19:36:26.0359 2112 Boot (0x1200) (efd4d2575d283f28bec5067f85591749) \Device\Harddisk0\DR0\Partition0
19:36:26.0359 2112 \Device\Harddisk0\DR0\Partition0 - ok
19:36:26.0359 2112 Boot (0x1200) (d191c9c5f7df7b003cc4cb1c1bccbab8) \Device\Harddisk1\DR1\Partition0
19:36:26.0359 2112 \Device\Harddisk1\DR1\Partition0 - ok
19:36:26.0359 2112 ============================================================
19:36:26.0359 2112 Scan finished
19:36:26.0359 2112 ============================================================
19:36:26.0468 2868 Detected object count: 7
19:36:26.0468 2868 Actual detected object count: 7
19:37:29.0734 2868 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user
19:37:29.0734 2868 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:37:29.0734 2868 ForceWare Intelligent Application Manager (IAM) ( UnsignedFile.Multi.Generic ) - skipped by user
19:37:29.0734 2868 ForceWare Intelligent Application Manager (IAM) ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:37:29.0734 2868 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
19:37:29.0734 2868 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:37:29.0734 2868 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:37:29.0734 2868 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:37:29.0734 2868 nSvcIp ( UnsignedFile.Multi.Generic ) - skipped by user
19:37:29.0734 2868 nSvcIp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:37:29.0734 2868 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:37:29.0734 2868 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:37:29.0828 2868 C:\WINDOWS\system32\pelmouse.dll - copied to quarantine
19:37:29.0843 2868 HKLM\SYSTEM\ControlSet001\services\z525mgmt - will be deleted on reboot
19:37:29.0843 2868 C:\WINDOWS\system32\pelmouse.dll - will be deleted on reboot
19:37:29.0843 2868 z525mgmt ( Backdoor.Multi.ZAccess.gen ) - User select action: Delete
19:37:39.0828 2544 Deinitialize success
  • 0

#5
azarl
Posted 05 April 2012 - 01:46 AM

azarl

    GeekU Admin

  • Community Leader
  • 25,310 posts
Hi cepyelland

Some more checks please.

Download aswMBR.exe (1.8mb) to your desktop.

Double click aswMBR.exe to run it.

Click the "Scan" button to start the scan.
If Avast asks to download definitions, please say Yes.

Posted Image


On completion of the scan click save log, save it to your desktop and post it in your next reply.

Posted Image
  • 0

#6
cepyelland
Posted 06 April 2012 - 08:36 PM

cepyelland

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
You did not say to click fix so I have not, this is the results
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-06 19:11:46
-----------------------------
19:11:46.546 OS Version: Windows 5.1.2600 Service Pack 3
19:11:46.546 Number of processors: 2 586 0x170A
19:11:46.546 ComputerName: HOME-56D1A40C9D UserName: user
19:11:50.234 Initialize success
19:14:13.000 AVAST engine defs: 12040601
19:14:20.562 Disk 0 \Device\Harddisk0\DR0 -> \Device\Scsi\nvgts1Port2Path0Target0Lun0
19:14:20.562 Disk 0 Vendor: ST325062 3.AA Size: 238475MB BusType: 3
19:14:20.562 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Scsi\nvgts1Port2Path1Target1Lun0
19:14:20.562 Disk 1 Vendor: ST310005 CC38 Size: 953869MB BusType: 3
19:14:20.578 Disk 1 MBR read successfully
19:14:20.578 Disk 1 MBR scan
19:14:20.593 Disk 1 Windows XP default MBR code
19:14:20.593 Disk 1 Partition 1 80 (A) 07 HPFS/NTFS NTFS 953859 MB offset 63
19:14:20.593 Disk 1 scanning sectors +1953504000
19:14:20.671 Disk 1 scanning C:\WINDOWS\system32\drivers
19:14:29.656 File: C:\WINDOWS\system32\drivers\mrxsmb.sys **INFECTED** Win32:Rootkit-gen [Rtk]
19:14:36.703 Disk 1 trace - called modules:
19:14:36.718 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x88d27fd0]<<
19:14:36.718 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0x8a4f8030]
19:14:36.718 3 CLASSPNP.SYS[b8108fd7] -> nt!IofCallDriver -> [0x88dc86e0]
19:14:36.718 \Driver\00316514[0x88ee9bf8] -> IRP_MJ_CREATE -> 0x88d27fd0
19:14:38.109 AVAST engine scan C:\WINDOWS
19:15:01.296 AVAST engine scan C:\WINDOWS\system32
19:18:57.328 AVAST engine scan C:\WINDOWS\system32\drivers
19:19:07.875 File: C:\WINDOWS\system32\drivers\mrxsmb.sys **INFECTED** Win32:Rootkit-gen [Rtk]
19:19:48.890 AVAST engine scan C:\Documents and Settings\user
20:19:17.390 AVAST engine scan C:\Documents and Settings\All Users
20:21:53.531 Scan finished successfully
20:32:50.625 Disk 1 MBR has been saved successfully to "C:\Documents and Settings\user\Desktop\MBR.dat"
20:32:50.625 The log file has been saved successfully to "C:\Documents and Settings\user\Desktop\aswMBR.txt"
  • 0

#7
azarl
Posted 07 April 2012 - 02:41 AM

azarl

    GeekU Admin

  • Community Leader
  • 25,310 posts
Download and Install Combofix

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
  • Double click on ComboFix.exe & follow the prompts.
  • Accept the disclaimer and allow to update if it asks
  • Allow the installation of the recovery console

    Posted Image

    Posted Image
  • When finished, it shall produce a log for you.
  • Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.



Please make sure you include the combo fix log in your next reply
  • 0

#8
cepyelland
Posted 10 April 2012 - 11:31 PM

cepyelland

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
Here are the results.
ComboFix 12-04-07.03 - user 04/10/2012 23:08:56.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1665 [GMT -6:00]
Running from: c:\documents and settings\user\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\Tarma Installer
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setup.dll
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.exe
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.ico
c:\documents and settings\All Users\Application Data\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\_Setup.dll
c:\documents and settings\All Users\Application Data\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\_Setupx.dll
c:\documents and settings\All Users\Application Data\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\Setup.exe
c:\documents and settings\All Users\Application Data\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\Setup.ico
c:\documents and settings\NetworkService\Application Data\6816C279.exe
c:\documents and settings\NetworkService\Application Data\6F647EAD.exe
c:\documents and settings\NetworkService\Application Data\6F80F85A.exe
c:\documents and settings\NetworkService\Application Data\PriceGong
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\1.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\1131.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\12939.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\14121.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\2265.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\3644.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\4465.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\469.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\4887.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\4932.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\5505.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\5961.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\6109.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\6148.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\641.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\8246.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\8954.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\920.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\9796.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\9835.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\a.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\b.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\c.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\d.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\e.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\f.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\g.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\h.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\i.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\j.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\k.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\l.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\m.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\mru.xml
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\n.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\o.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\p.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\q.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\r.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\s.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\t.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\u.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\v.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\w.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\wlu.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\x.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\y.txt
c:\documents and settings\NetworkService\Application Data\PriceGong\Data\z.txt
c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]
c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]\chrome.manifest
c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]\chrome\64ffxtbr.jar
c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]\install.rdf
c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]\META-INF\manifest.mf
c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]\META-INF\zigbert.rsa
c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]\META-INF\zigbert.sf
c:\documents and settings\user\Recent\Thumbs.db
C:\install.exe
c:\program files\TelevisionFanatic
c:\program files\TelevisionFanatic\bar\gen1\COMMON.T8S
c:\program files\TelevisionFanatic\bar\IE9Mesg\COMMON.T8S
c:\program files\TelevisionFanatic\bar\Message\COMMON.T8S
c:\program files\TelevisionFanatic\bar\Settings\s_pid.dat
c:\program files\TelevisionFanaticEI
C:\Thumbs.db
c:\windows\$NtUninstallKB4387$
c:\windows\$NtUninstallKB4387$\3517259839
c:\windows\$NtUninstallKB4387$\4281658903\@
c:\windows\$NtUninstallKB4387$\4281658903\cfg.ini
c:\windows\$NtUninstallKB4387$\4281658903\Desktop.ini
c:\windows\$NtUninstallKB4387$\4281658903\L\eiuwxaym
c:\windows\$NtUninstallKB4387$\4281658903\oemid
c:\windows\$NtUninstallKB4387$\4281658903\U\00000001.@
c:\windows\$NtUninstallKB4387$\4281658903\U\00000002.@
c:\windows\$NtUninstallKB4387$\4281658903\U\00000004.@
c:\windows\$NtUninstallKB4387$\4281658903\U\80000000.@
c:\windows\$NtUninstallKB4387$\4281658903\U\80000004.@
c:\windows\$NtUninstallKB4387$\4281658903\U\80000032.@
c:\windows\$NtUninstallKB4387$\4281658903\version
c:\windows\system32\_000051_.tmp.dll
c:\windows\system32\AutoRun.inf
c:\windows\system32\dds_trash_log.cmd
c:\windows\system32\dllcache\dlimport.exe
c:\windows\system32\SET287.tmp
c:\windows\system32\SET288.tmp
c:\windows\system32\SET28A.tmp
c:\windows\system32\SET28F.tmp
c:\windows\system32\SET296.tmp
c:\windows\system32\SET298.tmp
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_TELEVISIONFANATICSERVICE
-------\Legacy_USNJSVC
-------\Service_usnjsvc
.
.
((((((((((((((((((((((((( Files Created from 2012-03-11 to 2012-04-11 )))))))))))))))))))))))))))))))
.
.
2012-04-10 09:23 . 2012-03-14 02:15 6582328 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B4843FD5-3F3C-4BEB-89DC-3BC7262AC23F}\mpengine.dll
2012-04-05 03:41 . 2012-04-05 03:41 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Conduit
2012-04-05 01:37 . 2012-04-05 01:37 -------- d-----w- C:\TDSSKiller_Quarantine
2012-04-05 01:23 . 2008-04-13 18:40 57600 -c--a-w- c:\windows\system32\dllcache\redbook.sys
2012-03-31 01:58 . 2012-03-31 01:58 -------- d-----w- c:\documents and settings\user\Application Data\Malwarebytes
2012-03-31 01:58 . 2012-03-31 01:58 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2012-03-31 01:57 . 2012-03-31 01:58 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-03-31 01:57 . 2011-12-10 21:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-30 00:03 . 2012-03-30 00:03 -------- d-----w- c:\documents and settings\user\Application Data\DDMSettings
2012-03-21 05:20 . 2012-03-13 04:39 44472 ----a-w- c:\program files\Mozilla Firefox\mozglue.dll
2012-03-21 05:20 . 2012-03-13 04:39 592824 ----a-w- c:\program files\Mozilla Firefox\gkmedias.dll
2012-03-17 18:04 . 2012-04-08 00:35 -------- d-----w- c:\documents and settings\user\Application Data\.minecraft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-14 02:15 . 2011-01-26 17:52 6582328 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-03-11 21:12 . 2011-07-16 23:40 139488 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-03-11 21:12 . 2011-07-17 01:03 270776 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-03-11 21:12 . 2011-07-16 23:40 270776 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-03-04 19:19 . 2011-07-16 23:40 270776 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-02-23 00:51 . 2011-06-15 18:25 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-03 09:22 . 2006-02-28 12:00 1860096 ----a-w- c:\windows\system32\win32k.sys
2012-01-31 12:44 . 2011-01-24 18:26 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-03-13 04:39 . 2011-11-10 00:28 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\prxtbVuz2.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
2011-05-09 09:49 176936 ----a-w- c:\program files\Vuze_Remote\prxtbVuz2.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\prxtbVuz2.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{BA14329E-9550-4989-B3F2-9732E92D17CC}"= "c:\program files\Vuze_Remote\prxtbVuz2.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-07-09 13923432]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"DeleteEngineAfterUpdate"="reg DELETE HKCU\Software\ConduitEngine" [X]
"FlashPlayerUpdate"="c:\windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe" [2012-02-10 247968]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2005-05-04 00:43 69632 ----a-w- c:\windows\Alcmtr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2011-09-27 13:22 59240 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2008-04-14 00:12 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
2009-10-27 17:18 1103216 ----a-w- c:\program files\Download Manager\DLM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]
2007-08-30 16:50 205480 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
2011-06-15 21:16 997920 ----a-w- c:\program files\Microsoft Security Client\msseces.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2010-07-09 22:24 13923432 ----a-w- c:\windows\system32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2010-07-09 22:24 110696 ----a-w- c:\windows\system32\nvmctray.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2010-07-08 05:52 1753192 ----a-w- c:\program files\NVIDIA Corporation\nView\nwiz.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-10-24 20:28 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr]
2011-11-18 01:21 53160 ----a-w- c:\progra~1\Raptr\raptrstub.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RIMBBLaunchAgent.exe]
2011-11-02 08:00 90448 ----a-w- c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2007-10-25 17:57 16855552 ----a-w- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2011-10-13 15:27 17351304 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
2011-08-11 09:19 1242448 ----a-w- c:\program files\Steam\Steam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-06-09 19:06 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Call of Duty\\CoDMP.exe"=
"c:\\Program Files\\Call of Duty\\CoDUOMP.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Electronic Arts\\Battlefield Bad Company 2\\BFBC2Updater.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Activision\\Call of Duty - World at War\\CoDWaW.exe"=
"c:\\Program Files\\Activision\\Call of Duty - World at War\\CoDWaWmp.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\lead and gold gangs of the wild west\\lag_win32_public_dev.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\mafia ii\\pc\\Mafia2.exe"=
"c:\\Program Files\\Raptr\\raptr.exe"=
"c:\\Program Files\\Raptr\\raptr_im.exe"=
"c:\\Program Files\\Activision\\Empires Dawn of the Modern World\\Empires_DMW.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\brothers in arms road to hill 30\\System\\bia.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\brothers in arms earned in blood\\System\\EiB.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\silent hunter 3\\sh3.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\il 2 sturmovik 1946\\il2fb.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\brothers in arms hells highway\\Binaries\\biahh.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\blazing angels squadrons of wwii\\SettingsApplication.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\blazing angels 2 secret missions of wwii\\Bin\\BA2.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\silent hunters wolves of the pacific\\sh4.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\order of war - demo\\oow_final.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\order of war - demo\\oow_final.bin"=
"c:\\Program Files\\Steam\\steamapps\\common\\killingfloor\\System\\KillingFloor.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\Vuze\\Azureus.exe"=
"c:\\Program Files\\Steam\\steamapps\\cepyelland\\day of defeat source\\hl2.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\railworks\\RailWorks.exe"=
"c:\\Program Files\\Research In Motion\\BlackBerry Desktop\\Rim.Desktop.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
R1 MpKsl340bbca8;MpKsl340bbca8;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B4843FD5-3F3C-4BEB-89DC-3BC7262AC23F}\MpKsl340bbca8.sys [4/10/2012 11:24 PM 29904]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [3/18/2010 1:16 PM 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [8/29/2011 11:08 PM 136176]
S2 pcouffin;Hpconfig;c:\windows\system32\svchost.exe -k netsvcs [2/28/2006 6:00 AM 14336]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [8/29/2011 11:08 PM 136176]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [3/18/2010 1:16 PM 753504]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSL340BBCA8
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
NETSVCS REQUIRES REPAIRS - current entries shown
6to4
AppMgmt
AudioSrv
Browser
CryptSvc
DMServer
DHCP
ERSvc
EventSystem
FastUserSwitchingCompatibility
HidServ
Ias
Iprip
Irmon
LanmanServer
LanmanWorkstation
Messenger
Netman
Nla
Ntmssvc
NWCWorkstation
Nwsapagent
Rasauto
A88xEnc
firelm01
lxcgcustomerconnect
thotkey
CXTUNE
s616unic
ncupdatesvc
HSFHWALI
SerTVOutCtlr
spmd
smbusp
vet-rec
SiSRaid2
vusbbus
kraidsvc
tvtfilter
symlcbrd
noipducservice
Bcim
uhcd
hpdj
lxbu_device
CVPND
stylexphelper
NPDriver
cmbatt
fsks
iap
STV680
hpqwmi
asapiw2k
zdeviceservice
hsf_msft
veteboot
tmlisten
LRMINIPORT
ccs
ccalib8
ASNDIS5
HIDSwvd
YMIDUSB
nvcap
VC6SecS
dlaifs_m
winachsf
V0070VID
itmrtsvc
mctskshd.exe
IOSLINK
navapsvc
mcstrm
vproeventmonitor
s3psddr
DivisCTP
BVRPMPR5
SMNDIS5
regsrvc
caili
zfdwm
clmtomcatstartersvc
cxpt_service
hpqddsvc
vmnetadapter
ccdecode
ldlcserv
db2remotecmd
pgsql-8.0
MSSQL$AUTODESKVAULT
centennialiptransferagent
EKECioCtl
symproxysvc
bthmodem
Ld51ocnucsnp
lusbaudio
advantage
pavsrv
eamon
s616mdm
automate5
Hardlock
vetmsgnt
oracle%oracle_home_service%clientcache80
sigfilt
adobeactivefilemonitor5.0
netcfgsvr
StMp3Rec
ZTEusbnmea
fsaa
U81xmgmt
bglivesvc
adminserver
lirsgt
artourservice
webrootspysweeperservice
citrixxteserver
P17xfi
ASUSVRC
DKbFltr
rasirda
DLH5X
MtxDma0
tosrfbnp
dlapoolm
ONSIO
tunnelguardservice
UxTuneUp
klblmain
avg7core
coste
qbreminderflash
iaimfp1
npkcmsvc
FETNDISB
ctprxy2k
sfsync02
SaiNtHid
unrealircd
agpcpq
DirectUpdate
winachsx
icraplus
Ktp
pvservice
avidstartup
EMSCR
enxpsvr
Invoker
VRADFIL
lmimirr
dlaopiom
WMIService
nmsaccess
z525mgmt
remoterecord
pdlnsv25
CdaC15BA
VAIOMediaPlatform-PhotoServer-HTTP
unlockerdriver5
winmtsrv
gdihook5
SE27obex
ngserver
OsaFsLoc
adiloader
symmpi
mr2kserv
ehsched
PID_08A0
F700isw
WmaCDriverV32
se58mdm
NITaggerService
nmwcdc
zenos1
idebusdr
bc_ip_f
screadspool
whoisd32
aexnsclienttransport
swmsflt
odclientservice
PCASp50
asuskeyboardservice
erecoveryservice
MA_CMIDI
stllssvr
openvpnservice
btwrchid
FET5X86V
thpsrv
cdfsvc
zpcollector
ifxspmgtsrv
lyncusbserv
arcltsrv
adiusbaw
AtiPcie
sndsrvc
netsvc
driverhardwarev2
s116mgmt
arkbcfltr
winsshd
snoopfree
rnadiagreceiver
tsmservice
fcprintservice
tfsnudfa
amdppm
sddmi2
ma_cmidi_installerservice
ltxred
lvtuner
ha10kx2k
scsk4
avg7updsvc
pdlnemsg
HpqRemHid
APLMp50
ati2mpaa
Exportit
awservice
db2ntsecserver
sptisrv
gv3
mwlsvc
s217nd5
se44mdm
symantecantibotshim
p1131vid
AFGSp50
SMCB000
DniVad
defwatch
ngdbserv
cdudf_xp
mindrepair
roxliveshare
ofcpfwsvc
tcpipBM
nsm1serd
W700bus
epson_pm_rpcv2_01
PciBus
iaimfp4
rtl8185
{85ccb53b-23d8-4e73-b1b7-9ddb71827d9b}
pcouffin
SrvcEKIOMngr
VAIOMediaPlatform-VideoServer-UPnP
zebrmdm
etoksrv
Spsmqvsm
ppmoucls
rslinx
VRFIL
qbfcservice
enxpsvc
NWADI
X4HSX32
iksysflt
EAWDMFD
haspnt
id2scaps
SQLBrowser
vzupsvc
LVVI500A
wlsetupsvc
elockservice
k750mgmt
sp_clamsrv
pnmsrv
avcgbfl
teefer2
ventrilo
aswtdi
zpsc
MSIRCOMM
L8042Kbd
procexp90
vaiomediaplatform-mobile-gateway
EMATCORE
nfmservice
Rasman
Remoteaccess
Schedule
Seclogon
SENS
Sharedaccess
SRService
Tapisrv
Themes
TrkWks
W32Time
WZCSVC
Wmi
WmdmPmSp
winmgmt
xmlprov
BITS
wuauserv
ShellHWDetection
helpsvc
WmdmPmSN
napagent
hkmsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-04-06 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 23:57]
.
2012-04-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-30 05:08]
.
2012-04-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-30 05:08]
.
2012-04-11 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 21:39]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://home.mywebsearch.com/index.jhtml?n=77DE8857&ptnrS=XPxdm017YYca&ptb=23B16AB8-69A2-4406-820F-B134B6C8DDF5&si=CJCMxrWe7a0CFQWFQAodpXtv7Q
uInternet Connection Wizard,ShellNext = iexplore
LSP: %SYSTEMROOT%\system32\nvLsp.dll
TCP: DhcpNameServer = 172.16.1.254
FF - ProfilePath - c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - My Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.ca/
FF - prefs.js: keyword.URL - hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=23B16AB8-69A2-4406-820F-B134B6C8DDF5&n=77ece111&ind=2012012817&id=XPxdm017YYca&ptnrS=XPxdm017YYca&si=CJCMxrWe7a0CFQWFQAodpXtv7Q&searchfor=
FF - prefs.js: network.proxy.type - 0
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true);user_pref(extentions.y2layers.installId, f92e3f1e-061e-46fa-a2d5-33410256809e
FF - user.js: extentions.y2layers.defaultEnableAppsList - PageRage/Lite,PageRage/Global,PageRageTeases,
FF - user.js: extensions.autoDisableScopes - 14
FF - user.js: security.csp.enable - false
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-04861316.sys
AddRemove-NVIDIA Display Control Panel - c:\program files\NVIDIA Corporation\Uninstall\nvuninst.exe
AddRemove-{889DF117-14D1-44EE-9F31-C5FB5D47F68B} - c:\docume~1\ALLUSE~1\APPLIC~1\TARMAI~1\{889DF~1\Setup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-04-10 23:24
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-2000478354-484061587-725345543-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"??"=hex:10,aa,ec,9c,45,18,da,cd,fc,12,1e,0b,4e,b8,30,0d,61,ff,e6,00,86,1c,7c,
e5,4f,ad,28,e0,37,0d,83,da,b7,af,81,4d,48,c9,e3,97,22,2b,d0,25,4e,ad,5d,a6,\
"??"=hex:d9,eb,e8,87,54,a1,8d,80,f0,7a,3a,0f,c2,c7,4d,2a
.
[HKEY_USERS\S-1-5-21-2000478354-484061587-725345543-1004\Software\SecuROM\License information*]
"datasecu"=hex:f2,1d,4f,3c,fd,8f,35,a0,45,94,7e,13,87,da,ba,79,37,c5,a6,9d,6d,
9d,b8,3f,66,a3,d9,96,d3,d2,4d,a3,bb,58,0f,45,94,05,9d,3e,01,78,45,eb,1a,3f,\
"rkeysecu"=hex:d9,20,27,ad,ba,67,d4,60,b2,8d,75,85,6c,25,a0,69
.
[HKEY_LOCAL_MACHINE\software\Microsoft\DbgagD\1*]
"value"="?\09\04\1d\03!)à"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'lsass.exe'(748)
c:\windows\system32\nvLsp.dll
.
- - - - - - - > 'explorer.exe'(2212)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
c:\program files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
.
**************************************************************************
.
Completion time: 2012-04-10 23:27:44 - machine was rebooted
ComboFix-quarantined-files.txt 2012-04-11 05:27
.
Pre-Run: 561,311,899,648 bytes free
Post-Run: 564,566,892,544 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 270727782D71C3540978372F98708409

Edited by cepyelland, 10 April 2012 - 11:40 PM.

  • 0

#9
azarl
Posted 11 April 2012 - 02:18 AM

azarl

    GeekU Admin

  • Community Leader
  • 25,310 posts
Your computer has been infected by a backdoor trojan. This could allow hackers to remotely control your computer and steal critical system information including passwords.
I recommend you take the following steps immediately:
  • Use another, uninfected computer to change all your internet passwords, especially ones with financial implications such as banks, paypal, ebay, etc. Alos change the passwords for any other site you use.
  • Call your bank(s), credit card company or any other institution which may be affected and advise them that your login/password or credit card information may have been stolen and ask what steps to take with regard to your account.
  • Consider what other private information could possibly have been taken from your computer and take appropriate steps
More Information:
How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
When Should I Format, How Should I Reinstall

This infection can almost certainly be cleaned, but as the malware could be configured to run any program a remote attacker requires, it will be impossible to be 100% sure that the machine is clean, if this is unacceptable to you then you should consider reformatting the system partition and reinstalling Windows as this is the only 100% sure answer.

If you wish to reformat then please let me know in your next response, otherwise I'll continue with instructions for cleaning.

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Xyz777s.dll -- (ZTEusbnmea)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wpsscannersvc.dll -- (zpsc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\icm10blk.dll -- (zpcollector)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\procexp111.dll -- (zfdwm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EAWDMFD.dll -- (zenos1)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zd1211u(zydas).dll -- (zebrmdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cbidf2k.dll -- (zdeviceservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hsfhwbs2.dll -- (YMIDUSB)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\maya70docserver.dll -- (X4HSX32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mgabg.dll -- (WmaCDriverV32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SRS_SSCFilter.dll -- (wlsetupsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\gv3.dll -- (winsshd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tiumfwl.dll -- (winmtsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mhndrv.dll -- (winachsx)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CX23880.dll -- (winachsf)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FET5X86V.dll -- (whoisd32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\atmarpc.dll -- (webrootspysweeperservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (W700bus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raspppoe.dll -- (vzupsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntservice1.dll -- (vusbbus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMCB000.dll -- (VRFIL)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (VRADFIL)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ndiscm.dll -- (vproeventmonitor)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tlntsvr.dll -- (vmnetadapter)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysaudio.dll -- (vet-rec)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ATWPKT2.dll -- (vetmsgnt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysenforce.dll -- (veteboot)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (ventrilo)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tosrfnds.dll -- (VC6SecS)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMMOUNT.dll -- (VAIOMediaPlatform-VideoServer-UPnP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ftpds.dll -- (VAIOMediaPlatform-PhotoServer-HTTP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tsdhd.dll -- (vaiomediaplatform-mobile-gateway)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USA49W.dll -- (V0070VID)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssqlserveradhelper.dll -- (UxTuneUp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dmload.dll -- (usnjsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlsetupsvc.dll -- (unrealircd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (unlockerdriver5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreeTdi.dll -- (uhcd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sscdserd.dll -- (U81xmgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (tvtfilter)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\irenum.dll -- (tunnelguardservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\enxpsvc.dll -- (tsmservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\QPCapSvc.dll -- (tmlisten)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cltnetcnservice.dll -- (thpsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wtwservice.dll -- (thotkey)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SGIR.dll -- (tfsnudfa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\macformatservice.dll -- (teefer2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\abnetmon.dll -- (tcpipBM)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (symproxysvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mysql.dll -- (symmpi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tdtcp.dll -- (symlcbrd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\driverhardwarev2.dll -- (symantecantibotshim)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tunnelguardservice.dll -- (swmsflt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MaxtorFrontPanel1.dll -- (stylexphelper)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvax.dll -- (STV680)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MailService.dll -- (StMp3Rec)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\roxwatch9.dll -- (stllssvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sglfb.dll -- (SrvcEKIOMngr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RalinkRegistryWriter.dll -- (sptisrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zebrmdm.dll -- (Spsmqvsm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IFP700.dll -- (spmd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WmUsbHid.dll -- (sp_clamsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zendcoreapache.dll -- (snoopfree)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NWSLP.dll -- (sndsrvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cvspydr2.dll -- (SMNDIS5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sfhlp01.dll -- (SMCB000)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avsinc.dll -- (smbusp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tfsnudfa.dll -- (SiSRaid2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdvp.dll -- (sigfilt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USBCCID.dll -- (sfsync02)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdm.dll -- (SerTVOutCtlr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aliide.dll -- (se58mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nalntservice.dll -- (se44mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\apphostsvc.dll -- (SE27obex)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleorahome92pagingserver.dll -- (sddmi2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SecureStorageService.dll -- (scsk4)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PAC7302.dll -- (screadspool)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\spmgr.dll -- (SaiNtHid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ProcObsrv.dll -- (s616unic)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Sk9920nt.dll -- (s616mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (s3psddr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rampartsvc.dll -- (s217nd5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fingrd32.dll -- (s116mgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\VAIOMediaPlatform-VideoServer-UPnP.dll -- (rtl8185)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\msiserver.dll -- (rslinx)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TVALG.dll -- (roxliveshare)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_pat_f.dll -- (rnadiagreceiver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nsm1mdm.dll -- (remoterecord)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WSIMD.dll -- (regsrvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NEOFLTR_600_13319.dll -- (rasirda)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termservice.dll -- (qbreminderflash)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GBDevice.dll -- (qbfcservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\prevxdriver.dll -- (pvservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\db2ntsecserver.dll -- (procexp90)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntpr_nic_service2.dll -- (ppmoucls)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (pnmsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avgfwsrv.dll -- (PID_08A0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se58mdfl.dll -- (pgsql-8.0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\imonitor.dll -- (pdlnsv25)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (pdlnemsg)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMTPSVC.dll -- (pcouffin)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\citrixxteserver.dll -- (PciBus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmuda3.dll -- (PCASp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmsvr.dll -- (pavsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MS1000.dll -- (P17xfi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ctxhttp.dll -- (p1131vid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Pnp680r.dll -- (OsaFsLoc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMFLT.dll -- (oracle%oracle_home_service%clientcache80)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dlaudf_m.dll -- (openvpnservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvraid.dll -- (ONSIO)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhserd.dll -- (ofcpfwsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\stisvc.dll -- (odclientservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usb20l.dll -- (NWADI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dsproct.dll -- (nvcap)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE27obex.dll -- (nsm1serd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\incdpass.dll -- (npkcmsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cpqdfw.dll -- (NPDriver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dcfssvc.dll -- (noipducservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll -- (nmwcdc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (NITaggerService)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TPECioCtl.dll -- (ngserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreshIO.dll -- (ngdbserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netdde.dll -- (nfmservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termdd.dll -- (netsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WBHWDOCT.dll -- (netcfgsvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AEAudioService.dll -- (ncupdatesvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE2Emgmt.dll -- (navapsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_prt_f.dll -- (mwlsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pageserver.dll -- (MtxDma0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pid_0928.dll -- (MSSQL$AUTODESKVAULT)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tmesbs32.dll -- (MSIRCOMM)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bgsvcgen.dll -- (mr2kserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NITaggerService.dll -- (mindrepair)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA8032U.dll -- (mctskshd.exe)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aawservice.dll -- (mcstrm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xTuner.dll -- (ma_cmidi_installerservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\DfwWebAgent.dll -- (MA_CMIDI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTAudSvcService.dll -- (lyncusbserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dhcp.dll -- (lxcgcustomerconnect)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NetPipeActivator.dll -- (lxbu_device)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\audstub.dll -- (LVVI500A)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (lvtuner)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssql$sqlexpress.dll -- (lusbaudio)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KMW_KBD.dll -- (ltxred)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (LRMINIPORT)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CoolerXPDriver.dll -- (lirsgt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vrfwsvc.dll -- (ldlcserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PTDCVsp.dll -- (Ld51ocnucsnp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pptpminiport.dll -- (L8042Kbd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CnxtHdAudService.dll -- (Ktp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\diskeeper.dll -- (kraidsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\elbydelay.dll -- (klblmain)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dot4print.dll -- (k750mgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sp_clamsrv.dll -- (itmrtsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\k750bus.dll -- (IOSLINK)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (Invoker)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdc8021x.dll -- (iksysflt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xEnc.dll -- (ifxspmgtsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\speedfan.dll -- (idebusdr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bh611.dll -- (id2scaps)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nscservice.dll -- (icraplus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pdlndldl.dll -- (iap)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (iaimfp4)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iaantmon.dll -- (iaimfp1)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\agnfilt.dll -- (HSFHWALI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rpclocator.dll -- (hsf_msft)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\p2pimsvc.dll -- (hpqwmi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netmnt.dll -- (HpqRemHid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eamon.dll -- (hpqddsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdfl.dll -- (hpdj)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mfcom.dll -- (HIDSwvd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt2500usb.dll -- (haspnt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\thotkey.dll -- (Hardlock)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdm.dll -- (ha10kx2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtSub.dll -- (gv3)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtHid.dll -- (gdihook5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vnxservice.dll -- (fsks)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\x10nets.dll -- (fsaa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\profos.dll -- (firelm01)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\kpfwsvc.dll -- (FETNDISB)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KLOGNT.dll -- (FET5X86V)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (fcprintservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WaveEnrollmentService.dll -- (F700isw)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dpc_srv_webcast.dll -- (Exportit)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\winproxy.dll -- (etoksrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netbt.dll -- (erecoveryservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ino_fltr.dll -- (epson_pm_rpcv2_01)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\odysseyIM4.dll -- (enxpsvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NETw4v32.dll -- (enxpsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\symfw.dll -- (EMSCR)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\a016mdm.dll -- (EMATCORE)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdfsvc.dll -- (elockservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mbmiodrvr.dll -- (EKECioCtl)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eabusb.dll -- (ehsched)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RTLE8023xp.dll -- (EAWDMFD)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntlmssp.dll -- (eamon)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webrootenterpriseclientservice.dll -- (driverhardwarev2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\UNDPX2A.dll -- (DniVad)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btwavdt.dll -- (DLH5X)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\e1000.dll -- (dlapoolm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lvprcsrv.dll -- (dlaifs_m)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rsvchost.dll -- (DKbFltr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\acnusvc.dll -- (DivisCTP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA-620.dll -- (DirectUpdate)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ireike.dll -- (defwatch)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (db2remotecmd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TeamViewer.dll -- (db2ntsecserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pci.dll -- (CXTUNE)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mpfirewl.dll -- (cxpt_service)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BLKWGU(Belkin).dll -- (CVPND)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RDID1027.dll -- (ctprxy2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\disk.dll -- (coste)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\shellhwdetection.dll -- (cmbatt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iAimTV5.dll -- (clmtomcatstartersvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Tb2RCAssist.dll -- (citrixxteserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv122.dll -- (centennialiptransferagent)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SPCtl.dll -- (cdudf_xp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hpzius12.dll -- (cdfsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tos_sps32.dll -- (CdaC15BA)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AVCamUSB20.dll -- (ccs)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (ccdecode)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcz_device.dll -- (ccalib8)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BTSLBCSP.dll -- (caili)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IBM_LLC2.dll -- (BVRPMPR5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iclarityqosservice.dll -- (btwrchid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mcsysmon.dll -- (bthmodem)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (bglivesvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IJPLMSVC.dll -- (Bcim)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (bc_ip_f)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\6to4.dll -- (awservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fs_rec.dll -- (avidstartup)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vaiomediaplatform-photoserver-appserver.dll -- (avg7updsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcg_device.dll -- (avg7core)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (avcgbfl)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlancfg.dll -- (automate5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MTC0001_ESB.dll -- (AtiPcie)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usbsermpt.dll -- (ati2mpaa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\twdns.dll -- (aswtdi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fax.dll -- (ASUSVRC)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhmdm.dll -- (asuskeyboardservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zntport.dll -- (ASNDIS5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GameConsoleService.dll -- (asapiw2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eskerlicensecontrol.dll -- (artourservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se2Cnd5.dll -- (arkbcfltr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\megamonitorsrv.dll -- (arcltsrv)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmdmon.dll -- (APLMp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webcompserver.dll -- (amdppm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleformsserver-forms60server-oraform.dll -- (agpcpq)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rvscc.dll -- (AFGSp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btfirst.dll -- (aexnsclienttransport)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ssfs0509.dll -- (advantage)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s3savagenb.dll -- (adobeactivefilemonitor5.0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EIO.dll -- (adminserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt61.dll -- (adiusbaw)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avp.dll -- (adiloader)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ivscheduler.dll -- (A88xEnc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ccpwdsvc.dll -- ({85ccb53b-23d8-4e73-b1b7-9ddb71827d9b})
FF - prefs.js..keyword.URL: "http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=23B16AB8-69A2-4406-820F-B134B6C8DDF5&n=77ece111&ind=2012012817&id=XPxdm017YYca&ptnrS=XPxdm017YYca&si=CJCMxrWe7a0CFQWFQAodpXtv7Q&searchfor="
FF - prefs.js..browser.search.defaultenginename: "My Web Search"
FF - prefs.js..browser.search.selectedEngine: "My Web Search"
[2012/02/14 16:52:14 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]
[2012/01/28 17:41:15 | 000,009,650 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\searchplugins\my-web-search.xml
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.)
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

:Files
ipconfig /flushdns /c

:Commands
[purity]
[CreateRestorePoint]
[emptytemp]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

  • 0

#10
cepyelland
Posted 11 April 2012 - 07:51 PM

cepyelland

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
OTL logfile created on: 4/11/2012 7:47:25 PM - Run 2
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\user\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.53 Gb Available Physical Memory | 76.61% Memory free
3.85 Gb Paging File | 3.57 Gb Available in Paging File | 92.74% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 931.50 Gb Total Space | 525.70 Gb Free Space | 56.44% Space Free | Partition Type: NTFS
Drive E: | 232.88 Gb Total Space | 7.01 Gb Free Space | 3.01% Space Free | Partition Type: NTFS

Computer Name: HOME-56D1A40C9D | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/04/04 19:04:52 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\My Documents\Downloads\OTL.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/09/08 11:10:20 | 000,450,560 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
PRC - [2008/09/08 11:09:40 | 000,184,320 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
PRC - [2008/04/13 18:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2008/09/08 11:10:20 | 000,450,560 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
MOD - [2008/09/08 11:09:40 | 000,184,320 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
MOD - [2008/09/08 10:57:14 | 000,102,400 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Xyz777s.dll -- (ZTEusbnmea)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wpsscannersvc.dll -- (zpsc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\icm10blk.dll -- (zpcollector)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\procexp111.dll -- (zfdwm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EAWDMFD.dll -- (zenos1)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zd1211u(zydas).dll -- (zebrmdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cbidf2k.dll -- (zdeviceservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hsfhwbs2.dll -- (YMIDUSB)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\maya70docserver.dll -- (X4HSX32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\orbpvr.dll -- (WMIService)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mgabg.dll -- (WmaCDriverV32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SRS_SSCFilter.dll -- (wlsetupsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\gv3.dll -- (winsshd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tiumfwl.dll -- (winmtsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mhndrv.dll -- (winachsx)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CX23880.dll -- (winachsf)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FET5X86V.dll -- (whoisd32)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\atmarpc.dll -- (webrootspysweeperservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (W700bus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raspppoe.dll -- (vzupsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntservice1.dll -- (vusbbus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMCB000.dll -- (VRFIL)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (VRADFIL)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ndiscm.dll -- (vproeventmonitor)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tlntsvr.dll -- (vmnetadapter)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysaudio.dll -- (vet-rec)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ATWPKT2.dll -- (vetmsgnt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysenforce.dll -- (veteboot)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (ventrilo)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tosrfnds.dll -- (VC6SecS)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMMOUNT.dll -- (VAIOMediaPlatform-VideoServer-UPnP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ftpds.dll -- (VAIOMediaPlatform-PhotoServer-HTTP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tsdhd.dll -- (vaiomediaplatform-mobile-gateway)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USA49W.dll -- (V0070VID)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssqlserveradhelper.dll -- (UxTuneUp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlsetupsvc.dll -- (unrealircd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreeTdi.dll -- (uhcd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sscdserd.dll -- (U81xmgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (tvtfilter)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\irenum.dll -- (tunnelguardservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\enxpsvc.dll -- (tsmservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\QPCapSvc.dll -- (tmlisten)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cltnetcnservice.dll -- (thpsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wtwservice.dll -- (thotkey)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SGIR.dll -- (tfsnudfa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\macformatservice.dll -- (teefer2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\abnetmon.dll -- (tcpipBM)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (symproxysvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mysql.dll -- (symmpi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tdtcp.dll -- (symlcbrd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\driverhardwarev2.dll -- (symantecantibotshim)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tunnelguardservice.dll -- (swmsflt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MaxtorFrontPanel1.dll -- (stylexphelper)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvax.dll -- (STV680)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MailService.dll -- (StMp3Rec)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\roxwatch9.dll -- (stllssvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sglfb.dll -- (SrvcEKIOMngr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RalinkRegistryWriter.dll -- (sptisrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zebrmdm.dll -- (Spsmqvsm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IFP700.dll -- (spmd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WmUsbHid.dll -- (sp_clamsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zendcoreapache.dll -- (snoopfree)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NWSLP.dll -- (sndsrvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cvspydr2.dll -- (SMNDIS5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sfhlp01.dll -- (SMCB000)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avsinc.dll -- (smbusp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tfsnudfa.dll -- (SiSRaid2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdvp.dll -- (sigfilt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USBCCID.dll -- (sfsync02)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdm.dll -- (SerTVOutCtlr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aliide.dll -- (se58mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nalntservice.dll -- (se44mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\apphostsvc.dll -- (SE27obex)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleorahome92pagingserver.dll -- (sddmi2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SecureStorageService.dll -- (scsk4)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PAC7302.dll -- (screadspool)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\spmgr.dll -- (SaiNtHid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ProcObsrv.dll -- (s616unic)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Sk9920nt.dll -- (s616mdm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (s3psddr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rampartsvc.dll -- (s217nd5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fingrd32.dll -- (s116mgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\VAIOMediaPlatform-VideoServer-UPnP.dll -- (rtl8185)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\msiserver.dll -- (rslinx)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TVALG.dll -- (roxliveshare)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_pat_f.dll -- (rnadiagreceiver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nsm1mdm.dll -- (remoterecord)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WSIMD.dll -- (regsrvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NEOFLTR_600_13319.dll -- (rasirda)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termservice.dll -- (qbreminderflash)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GBDevice.dll -- (qbfcservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\prevxdriver.dll -- (pvservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\db2ntsecserver.dll -- (procexp90)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntpr_nic_service2.dll -- (ppmoucls)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (pnmsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avgfwsrv.dll -- (PID_08A0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se58mdfl.dll -- (pgsql-8.0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\imonitor.dll -- (pdlnsv25)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (pdlnemsg)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMTPSVC.dll -- (pcouffin)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\citrixxteserver.dll -- (PciBus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmuda3.dll -- (PCASp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmsvr.dll -- (pavsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MS1000.dll -- (P17xfi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ctxhttp.dll -- (p1131vid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Pnp680r.dll -- (OsaFsLoc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMFLT.dll -- (oracle%oracle_home_service%clientcache80)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dlaudf_m.dll -- (openvpnservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvraid.dll -- (ONSIO)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhserd.dll -- (ofcpfwsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\stisvc.dll -- (odclientservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usb20l.dll -- (NWADI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dsproct.dll -- (nvcap)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE27obex.dll -- (nsm1serd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\incdpass.dll -- (npkcmsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cpqdfw.dll -- (NPDriver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dcfssvc.dll -- (noipducservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll -- (nmwcdc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ESMCR.dll -- (nmsaccess)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (NITaggerService)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TPECioCtl.dll -- (ngserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreshIO.dll -- (ngdbserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netdde.dll -- (nfmservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termdd.dll -- (netsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WBHWDOCT.dll -- (netcfgsvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AEAudioService.dll -- (ncupdatesvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE2Emgmt.dll -- (navapsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_prt_f.dll -- (mwlsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pageserver.dll -- (MtxDma0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pid_0928.dll -- (MSSQL$AUTODESKVAULT)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tmesbs32.dll -- (MSIRCOMM)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bgsvcgen.dll -- (mr2kserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NITaggerService.dll -- (mindrepair)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA8032U.dll -- (mctskshd.exe)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aawservice.dll -- (mcstrm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xTuner.dll -- (ma_cmidi_installerservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\DfwWebAgent.dll -- (MA_CMIDI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTAudSvcService.dll -- (lyncusbserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dhcp.dll -- (lxcgcustomerconnect)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NetPipeActivator.dll -- (lxbu_device)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\audstub.dll -- (LVVI500A)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (lvtuner)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssql$sqlexpress.dll -- (lusbaudio)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KMW_KBD.dll -- (ltxred)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (LRMINIPORT)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iaimtv3.dll -- (lmimirr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CoolerXPDriver.dll -- (lirsgt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vrfwsvc.dll -- (ldlcserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PTDCVsp.dll -- (Ld51ocnucsnp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pptpminiport.dll -- (L8042Kbd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CnxtHdAudService.dll -- (Ktp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\diskeeper.dll -- (kraidsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\elbydelay.dll -- (klblmain)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dot4print.dll -- (k750mgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sp_clamsrv.dll -- (itmrtsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\k750bus.dll -- (IOSLINK)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (Invoker)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdc8021x.dll -- (iksysflt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xEnc.dll -- (ifxspmgtsrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\speedfan.dll -- (idebusdr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bh611.dll -- (id2scaps)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nscservice.dll -- (icraplus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pdlndldl.dll -- (iap)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (iaimfp4)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iaantmon.dll -- (iaimfp1)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\agnfilt.dll -- (HSFHWALI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rpclocator.dll -- (hsf_msft)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\p2pimsvc.dll -- (hpqwmi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netmnt.dll -- (HpqRemHid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eamon.dll -- (hpqddsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdfl.dll -- (hpdj)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mfcom.dll -- (HIDSwvd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt2500usb.dll -- (haspnt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\thotkey.dll -- (Hardlock)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdm.dll -- (ha10kx2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtSub.dll -- (gv3)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtHid.dll -- (gdihook5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vnxservice.dll -- (fsks)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\x10nets.dll -- (fsaa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\profos.dll -- (firelm01)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\kpfwsvc.dll -- (FETNDISB)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KLOGNT.dll -- (FET5X86V)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (fcprintservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WaveEnrollmentService.dll -- (F700isw)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dpc_srv_webcast.dll -- (Exportit)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\winproxy.dll -- (etoksrv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netbt.dll -- (erecoveryservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ino_fltr.dll -- (epson_pm_rpcv2_01)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\odysseyIM4.dll -- (enxpsvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NETw4v32.dll -- (enxpsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\symfw.dll -- (EMSCR)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\a016mdm.dll -- (EMATCORE)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdfsvc.dll -- (elockservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mbmiodrvr.dll -- (EKECioCtl)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eabusb.dll -- (ehsched)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RTLE8023xp.dll -- (EAWDMFD)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntlmssp.dll -- (eamon)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webrootenterpriseclientservice.dll -- (driverhardwarev2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\UNDPX2A.dll -- (DniVad)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btwavdt.dll -- (DLH5X)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\e1000.dll -- (dlapoolm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\kl1.dll -- (dlaopiom)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lvprcsrv.dll -- (dlaifs_m)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rsvchost.dll -- (DKbFltr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\acnusvc.dll -- (DivisCTP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA-620.dll -- (DirectUpdate)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ireike.dll -- (defwatch)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (db2remotecmd)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TeamViewer.dll -- (db2ntsecserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pci.dll -- (CXTUNE)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mpfirewl.dll -- (cxpt_service)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BLKWGU(Belkin).dll -- (CVPND)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RDID1027.dll -- (ctprxy2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\disk.dll -- (coste)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\shellhwdetection.dll -- (cmbatt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iAimTV5.dll -- (clmtomcatstartersvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Tb2RCAssist.dll -- (citrixxteserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv122.dll -- (centennialiptransferagent)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SPCtl.dll -- (cdudf_xp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hpzius12.dll -- (cdfsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tos_sps32.dll -- (CdaC15BA)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AVCamUSB20.dll -- (ccs)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (ccdecode)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcz_device.dll -- (ccalib8)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BTSLBCSP.dll -- (caili)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IBM_LLC2.dll -- (BVRPMPR5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iclarityqosservice.dll -- (btwrchid)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mcsysmon.dll -- (bthmodem)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (bglivesvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IJPLMSVC.dll -- (Bcim)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (bc_ip_f)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\6to4.dll -- (awservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fs_rec.dll -- (avidstartup)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vaiomediaplatform-photoserver-appserver.dll -- (avg7updsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcg_device.dll -- (avg7core)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (avcgbfl)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlancfg.dll -- (automate5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MTC0001_ESB.dll -- (AtiPcie)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usbsermpt.dll -- (ati2mpaa)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\twdns.dll -- (aswtdi)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fax.dll -- (ASUSVRC)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhmdm.dll -- (asuskeyboardservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zntport.dll -- (ASNDIS5)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GameConsoleService.dll -- (asapiw2k)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eskerlicensecontrol.dll -- (artourservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se2Cnd5.dll -- (arkbcfltr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\megamonitorsrv.dll -- (arcltsrv)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmdmon.dll -- (APLMp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webcompserver.dll -- (amdppm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleformsserver-forms60server-oraform.dll -- (agpcpq)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rvscc.dll -- (AFGSp50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btfirst.dll -- (aexnsclienttransport)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ssfs0509.dll -- (advantage)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s3savagenb.dll -- (adobeactivefilemonitor5.0)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EIO.dll -- (adminserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt61.dll -- (adiusbaw)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avp.dll -- (adiloader)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ivscheduler.dll -- (A88xEnc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ccpwdsvc.dll -- ({85ccb53b-23d8-4e73-b1b7-9ddb71827d9b})
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2008/09/08 11:10:20 | 000,450,560 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM)
SRV - [2008/09/08 11:09:40 | 000,184,320 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV - [2006/02/28 06:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\simptcp.dll -- (SQLBrowser)
SRV - [2001/08/17 22:36:10 | 000,009,728 | ---- | M] (Brother Industries, Ltd.) [Auto | Stopped] -- C:\WINDOWS\system32\brserif.dll -- (tosrfbnp)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\user\LOCALS~1\Temp\mbr.sys -- (mbr)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Running] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - [2012/04/10 23:24:10 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B4843FD5-3F3C-4BEB-89DC-3BC7262AC23F}\MpKsl340bbca8.sys -- (MpKsl340bbca8)
DRV - [2008/10/09 10:35:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2008/10/09 10:33:00 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008/10/09 10:33:00 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2007/11/01 14:38:56 | 004,620,288 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2005/08/02 09:06:57 | 000,016,512 | R--- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [2004/08/13 18:56:20 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.mywebsea...CFQWFQAodpXtv7Q
IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKCU\..\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}: "URL" = http://search.condui...&ctid=CT2504091
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "My Web Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Google Powered Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "My Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.ca/"
FF - prefs.js..extensions.enabledItems: {D9ADB0A8-7BFB-498D-9880-EE78A81CCFA0}:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {ba14329e-9550-4989-b3f2-9732e92d17cc}:3.3.3.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8442
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.126
FF - prefs.js..keyword.URL: "http://search.mywebs...v7Q&searchfor="
FF - prefs.js..network.proxy.type: 0


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@fileplanet.com/fpdlm: C:\Program Files\Download Manager\npfpdlm.dll (IGN Entertainment)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/03/29 17:55:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/31 12:15:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/22 20:17:48 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{1266764D-FC4F-4FA7-B63B-884D53B1680F}: C:\Documents and Settings\user\Application Data\NetAssistant\ [2011/02/23 19:21:31 | 000,000,000 | ---D | M]

[2010/12/02 17:51:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Application Data\Mozilla\Extensions
[2012/03/21 07:35:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions
[2010/12/14 12:24:56 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/03/21 07:35:58 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2012/02/14 16:52:14 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]
[2011/01/07 12:10:32 | 000,000,903 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\searchplugins\conduit.xml
[2012/01/28 17:41:15 | 000,009,650 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\searchplugins\my-web-search.xml
[2012/03/31 12:15:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/10/18 17:00:41 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/03/12 22:39:39 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/10/03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/03/12 22:38:32 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/03/12 22:38:32 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2012/04/10 23:23:55 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1290014030029 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://www.photolab....veX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.ma...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.16.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1B003C1E-9E7E-4145-87D9-492976147A63}: DhcpNameServer = 172.16.1.254
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Desktop Background.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Desktop Background.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/11/16 17:01:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/09/16 18:31:43 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[CREATERESTOREPOINT]
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/04/11 04:40:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2012/04/10 22:47:50 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012/04/10 22:45:51 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012/04/10 22:45:51 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012/04/10 22:45:51 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012/04/10 22:45:51 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012/04/10 22:37:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012/04/10 22:36:31 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/04/07 19:53:43 | 004,452,637 | R--- | C] (Swearware) -- C:\Documents and Settings\user\Desktop\ComboFix.exe
[2012/04/04 21:41:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Conduit
[2012/04/04 21:41:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\ConduitEngine
[2012/04/04 19:37:29 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/04/04 19:23:01 | 000,057,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\redbook.sys
[2012/04/03 18:58:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2012/03/30 19:58:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\Malwarebytes
[2012/03/30 19:58:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/03/30 19:58:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012/03/30 19:57:59 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012/03/30 19:57:59 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/03/29 18:03:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\DDMSettings
[2012/03/26 20:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Sun
[2012/03/26 19:11:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia
[2012/03/26 19:11:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe
[2012/03/17 12:04:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\.minecraft
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/04/11 19:28:00 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012/04/11 18:28:00 | 000,000,878 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012/04/10 23:28:29 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/04/10 23:23:55 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012/04/10 23:23:19 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/04/10 22:47:57 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012/04/10 22:45:01 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2012/04/10 22:44:11 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/04/07 19:54:10 | 004,452,637 | R--- | M] (Swearware) -- C:\Documents and Settings\user\Desktop\ComboFix.exe
[2012/04/07 02:27:48 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/04/06 20:32:50 | 000,000,512 | ---- | M] () -- C:\Documents and Settings\user\Desktop\MBR.dat
[2012/04/06 10:04:01 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\JC2BFlH8x.dat
[2012/04/06 09:24:56 | 000,028,160 | ---- | M] () -- C:\Documents and Settings\user\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/05 21:03:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/04/03 18:58:21 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2012/04/03 18:57:21 | 022,259,528 | ---- | M] () -- C:\Documents and Settings\user\My Documents\vlc-2.0.1-win32.exe
[2012/03/31 12:15:31 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/03/31 12:15:31 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2012/03/30 19:58:02 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012/03/17 13:11:16 | 000,000,874 | ---- | M] () -- C:\Documents and Settings\user\Desktop\Shortcut to Minecraft.lnk
[2012/03/14 03:18:50 | 000,114,176 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/03/14 03:00:50 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/04/10 22:47:57 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012/04/10 22:47:53 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2012/04/10 22:45:51 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012/04/10 22:45:51 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012/04/10 22:45:51 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012/04/10 22:45:51 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012/04/10 22:45:51 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012/04/06 20:32:50 | 000,000,512 | ---- | C] () -- C:\Documents and Settings\user\Desktop\MBR.dat
[2012/04/06 10:04:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\JC2BFlH8x.dat
[2012/04/03 18:58:21 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2012/04/03 18:56:43 | 022,259,528 | ---- | C] () -- C:\Documents and Settings\user\My Documents\vlc-2.0.1-win32.exe
[2012/03/30 19:58:02 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2012/03/26 19:20:27 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/03/17 13:11:16 | 000,000,874 | ---- | C] () -- C:\Documents and Settings\user\Desktop\Shortcut to Minecraft.lnk
[2012/02/14 18:13:31 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/11/24 20:05:45 | 000,000,339 | ---- | C] () -- C:\WINDOWS\EDofMA.ini
[2011/07/21 13:19:03 | 000,682,280 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2011/07/16 17:40:22 | 000,139,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011/07/16 17:40:22 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\user\Application Data\PnkBstrK.sys
[2011/07/16 17:40:04 | 000,270,776 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011/07/16 17:40:03 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2011/07/16 17:40:03 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011/05/22 18:15:37 | 000,000,720 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2011/02/21 19:49:55 | 000,319,488 | R--- | C] () -- C:\WINDOWS\System32\MafiaSetup.exe
[2011/02/08 12:42:35 | 000,139,670 | ---- | C] () -- C:\WINDOWS\HPHins17.dat
[2011/02/08 12:42:35 | 000,006,820 | ---- | C] () -- C:\WINDOWS\hphmdl17.dat
[2011/01/05 15:07:26 | 000,815,104 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011/01/05 15:07:25 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/12/29 13:04:49 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010/12/29 12:50:00 | 000,000,819 | ---- | C] () -- C:\WINDOWS\CoDUO.INI
[2010/12/28 12:39:21 | 000,000,745 | ---- | C] () -- C:\WINDOWS\CoD.INI
[2010/12/16 03:16:37 | 001,095,512 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/12/14 15:12:43 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin
[2010/12/02 18:15:20 | 000,028,160 | ---- | C] () -- C:\Documents and Settings\user\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/02 17:51:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/11/17 12:32:05 | 000,005,810 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010/11/17 12:05:12 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010/11/17 12:05:11 | 000,232,968 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010/11/17 12:05:11 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010/11/17 11:01:06 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2010/11/17 10:13:54 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010/11/16 17:03:19 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/11/16 16:59:37 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/11/16 05:28:28 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/11/16 05:25:44 | 000,114,176 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/07/10 05:38:00 | 002,195,030 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin

========== Custom Scans ==========

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Xyz777s.dll -- (ZTEusbnmea) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wpsscannersvc.dll -- (zpsc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\icm10blk.dll -- (zpcollector) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\procexp111.dll -- (zfdwm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EAWDMFD.dll -- (zenos1) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zd1211u(zydas).dll -- (zebrmdm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cbidf2k.dll -- (zdeviceservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hsfhwbs2.dll -- (YMIDUSB) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\maya70docserver.dll -- (X4HSX32) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mgabg.dll -- (WmaCDriverV32) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SRS_SSCFilter.dll -- (wlsetupsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\gv3.dll -- (winsshd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tiumfwl.dll -- (winmtsrv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mhndrv.dll -- (winachsx) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CX23880.dll -- (winachsf) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FET5X86V.dll -- (whoisd32) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\atmarpc.dll -- (webrootspysweeperservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (W700bus) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raspppoe.dll -- (vzupsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntservice1.dll -- (vusbbus) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMCB000.dll -- (VRFIL) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (VRADFIL) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ndiscm.dll -- (vproeventmonitor) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tlntsvr.dll -- (vmnetadapter) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysaudio.dll -- (vet-rec) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ATWPKT2.dll -- (vetmsgnt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysenforce.dll -- (veteboot) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (ventrilo) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tosrfnds.dll -- (VC6SecS) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMMOUNT.dll -- (VAIOMediaPlatform-VideoServer-UPnP) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ftpds.dll -- (VAIOMediaPlatform-PhotoServer-HTTP) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tsdhd.dll -- (vaiomediaplatform-mobile-gateway) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USA49W.dll -- (V0070VID) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssqlserveradhelper.dll -- (UxTuneUp) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dmload.dll -- (usnjsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlsetupsvc.dll -- (unrealircd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (unlockerdriver5) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreeTdi.dll -- (uhcd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sscdserd.dll -- (U81xmgmt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (tvtfilter) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\irenum.dll -- (tunnelguardservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\enxpsvc.dll -- (tsmservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\QPCapSvc.dll -- (tmlisten) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cltnetcnservice.dll -- (thpsrv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wtwservice.dll -- (thotkey) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SGIR.dll -- (tfsnudfa) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\macformatservice.dll -- (teefer2) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\abnetmon.dll -- (tcpipBM) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (symproxysvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mysql.dll -- (symmpi) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tdtcp.dll -- (symlcbrd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\driverhardwarev2.dll -- (symantecantibotshim) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tunnelguardservice.dll -- (swmsflt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MaxtorFrontPanel1.dll -- (stylexphelper) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvax.dll -- (STV680) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MailService.dll -- (StMp3Rec) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\roxwatch9.dll -- (stllssvr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sglfb.dll -- (SrvcEKIOMngr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RalinkRegistryWriter.dll -- (sptisrv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zebrmdm.dll -- (Spsmqvsm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IFP700.dll -- (spmd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WmUsbHid.dll -- (sp_clamsrv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zendcoreapache.dll -- (snoopfree) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NWSLP.dll -- (sndsrvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cvspydr2.dll -- (SMNDIS5) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sfhlp01.dll -- (SMCB000) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avsinc.dll -- (smbusp) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tfsnudfa.dll -- (SiSRaid2) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdvp.dll -- (sigfilt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USBCCID.dll -- (sfsync02) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdm.dll -- (SerTVOutCtlr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aliide.dll -- (se58mdm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nalntservice.dll -- (se44mdm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\apphostsvc.dll -- (SE27obex) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleorahome92pagingserver.dll -- (sddmi2) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SecureStorageService.dll -- (scsk4) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PAC7302.dll -- (screadspool) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\spmgr.dll -- (SaiNtHid) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ProcObsrv.dll -- (s616unic) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Sk9920nt.dll -- (s616mdm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (s3psddr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rampartsvc.dll -- (s217nd5) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fingrd32.dll -- (s116mgmt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\VAIOMediaPlatform-VideoServer-UPnP.dll -- (rtl8185) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\msiserver.dll -- (rslinx) >

< SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TVALG.dll -- (roxliveshare) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_pat_f.dll -- (rnadiagreceiver) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nsm1mdm.dll -- (remoterecord) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WSIMD.dll -- (regsrvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NEOFLTR_600_13319.dll -- (rasirda) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termservice.dll -- (qbreminderflash) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GBDevice.dll -- (qbfcservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\prevxdriver.dll -- (pvservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\db2ntsecserver.dll -- (procexp90) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntpr_nic_service2.dll -- (ppmoucls) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (pnmsrv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avgfwsrv.dll -- (PID_08A0) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se58mdfl.dll -- (pgsql-8.0) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\imonitor.dll -- (pdlnsv25) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (pdlnemsg) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMTPSVC.dll -- (pcouffin) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\citrixxteserver.dll -- (PciBus) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmuda3.dll -- (PCASp50) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmsvr.dll -- (pavsrv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MS1000.dll -- (P17xfi) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ctxhttp.dll -- (p1131vid) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Pnp680r.dll -- (OsaFsLoc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMFLT.dll -- (oracle%oracle_home_service%clientcache80) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dlaudf_m.dll -- (openvpnservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvraid.dll -- (ONSIO) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhserd.dll -- (ofcpfwsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\stisvc.dll -- (odclientservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usb20l.dll -- (NWADI) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dsproct.dll -- (nvcap) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE27obex.dll -- (nsm1serd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\incdpass.dll -- (npkcmsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cpqdfw.dll -- (NPDriver) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dcfssvc.dll -- (noipducservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll -- (nmwcdc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (NITaggerService) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TPECioCtl.dll -- (ngserver) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreshIO.dll -- (ngdbserv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netdde.dll -- (nfmservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termdd.dll -- (netsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WBHWDOCT.dll -- (netcfgsvr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AEAudioService.dll -- (ncupdatesvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE2Emgmt.dll -- (navapsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_prt_f.dll -- (mwlsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pageserver.dll -- (MtxDma0) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pid_0928.dll -- (MSSQL$AUTODESKVAULT) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tmesbs32.dll -- (MSIRCOMM) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bgsvcgen.dll -- (mr2kserv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NITaggerService.dll -- (mindrepair) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA8032U.dll -- (mctskshd.exe) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aawservice.dll -- (mcstrm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xTuner.dll -- (ma_cmidi_installerservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\DfwWebAgent.dll -- (MA_CMIDI) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTAudSvcService.dll -- (lyncusbserv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dhcp.dll -- (lxcgcustomerconnect) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NetPipeActivator.dll -- (lxbu_device) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\audstub.dll -- (LVVI500A) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (lvtuner) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssql$sqlexpress.dll -- (lusbaudio) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KMW_KBD.dll -- (ltxred) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (LRMINIPORT) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CoolerXPDriver.dll -- (lirsgt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vrfwsvc.dll -- (ldlcserv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PTDCVsp.dll -- (Ld51ocnucsnp) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pptpminiport.dll -- (L8042Kbd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CnxtHdAudService.dll -- (Ktp) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\diskeeper.dll -- (kraidsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\elbydelay.dll -- (klblmain) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dot4print.dll -- (k750mgmt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sp_clamsrv.dll -- (itmrtsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\k750bus.dll -- (IOSLINK) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (Invoker) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdc8021x.dll -- (iksysflt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xEnc.dll -- (ifxspmgtsrv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\speedfan.dll -- (idebusdr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bh611.dll -- (id2scaps) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nscservice.dll -- (icraplus) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pdlndldl.dll -- (iap) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (iaimfp4) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iaantmon.dll -- (iaimfp1) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\agnfilt.dll -- (HSFHWALI) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rpclocator.dll -- (hsf_msft) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\p2pimsvc.dll -- (hpqwmi) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netmnt.dll -- (HpqRemHid) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eamon.dll -- (hpqddsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdfl.dll -- (hpdj) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mfcom.dll -- (HIDSwvd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt2500usb.dll -- (haspnt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\thotkey.dll -- (Hardlock) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdm.dll -- (ha10kx2k) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtSub.dll -- (gv3) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtHid.dll -- (gdihook5) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vnxservice.dll -- (fsks) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\x10nets.dll -- (fsaa) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\profos.dll -- (firelm01) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\kpfwsvc.dll -- (FETNDISB) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KLOGNT.dll -- (FET5X86V) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (fcprintservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WaveEnrollmentService.dll -- (F700isw) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dpc_srv_webcast.dll -- (Exportit) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\winproxy.dll -- (etoksrv) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netbt.dll -- (erecoveryservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ino_fltr.dll -- (epson_pm_rpcv2_01) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\odysseyIM4.dll -- (enxpsvr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NETw4v32.dll -- (enxpsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\symfw.dll -- (EMSCR) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\a016mdm.dll -- (EMATCORE) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdfsvc.dll -- (elockservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mbmiodrvr.dll -- (EKECioCtl) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eabusb.dll -- (ehsched) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RTLE8023xp.dll -- (EAWDMFD) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntlmssp.dll -- (eamon) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webrootenterpriseclientservice.dll -- (driverhardwarev2) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\UNDPX2A.dll -- (DniVad) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btwavdt.dll -- (DLH5X) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\e1000.dll -- (dlapoolm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lvprcsrv.dll -- (dlaifs_m) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rsvchost.dll -- (DKbFltr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\acnusvc.dll -- (DivisCTP) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA-620.dll -- (DirectUpdate) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ireike.dll -- (defwatch) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (db2remotecmd) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TeamViewer.dll -- (db2ntsecserver) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pci.dll -- (CXTUNE) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mpfirewl.dll -- (cxpt_service) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BLKWGU(Belkin).dll -- (CVPND) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RDID1027.dll -- (ctprxy2k) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\disk.dll -- (coste) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\shellhwdetection.dll -- (cmbatt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iAimTV5.dll -- (clmtomcatstartersvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Tb2RCAssist.dll -- (citrixxteserver) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv122.dll -- (centennialiptransferagent) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SPCtl.dll -- (cdudf_xp) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hpzius12.dll -- (cdfsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tos_sps32.dll -- (CdaC15BA) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AVCamUSB20.dll -- (ccs) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (ccdecode) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcz_device.dll -- (ccalib8) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BTSLBCSP.dll -- (caili) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IBM_LLC2.dll -- (BVRPMPR5) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iclarityqosservice.dll -- (btwrchid) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mcsysmon.dll -- (bthmodem) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (bglivesvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IJPLMSVC.dll -- (Bcim) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (bc_ip_f) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\6to4.dll -- (awservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fs_rec.dll -- (avidstartup) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vaiomediaplatform-photoserver-appserver.dll -- (avg7updsvc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcg_device.dll -- (avg7core) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (avcgbfl) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlancfg.dll -- (automate5) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MTC0001_ESB.dll -- (AtiPcie) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usbsermpt.dll -- (ati2mpaa) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\twdns.dll -- (aswtdi) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fax.dll -- (ASUSVRC) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhmdm.dll -- (asuskeyboardservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zntport.dll -- (ASNDIS5) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GameConsoleService.dll -- (asapiw2k) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eskerlicensecontrol.dll -- (artourservice) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se2Cnd5.dll -- (arkbcfltr) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\megamonitorsrv.dll -- (arcltsrv) >

< SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmdmon.dll -- (APLMp50) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webcompserver.dll -- (amdppm) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleformsserver-forms60server-oraform.dll -- (agpcpq) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rvscc.dll -- (AFGSp50) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btfirst.dll -- (aexnsclienttransport) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ssfs0509.dll -- (advantage) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s3savagenb.dll -- (adobeactivefilemonitor5.0) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EIO.dll -- (adminserver) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt61.dll -- (adiusbaw) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avp.dll -- (adiloader) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ivscheduler.dll -- (A88xEnc) >

< SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ccpwdsvc.dll -- ({85ccb53b-23d8-4e73-b1b7-9ddb71827d9b}) >

< FF - prefs.js..keyword.URL: "http://search.mywebs...v7Q&searchfor=" >

< FF - prefs.js..browser.search.defaultenginename: "My Web Search" >

< FF - prefs.js..browser.search.selectedEngine: "My Web Search" >

< [2012/02/14 16:52:14 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected] >
Invalid Switch: 14 16:52:14 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]

< [2012/01/28 17:41:15 | 000,009,650 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\searchplugins\my-web-search.xml >
Invalid Switch: 28 17:41:15 | 000,009,650 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\searchplugins\my-web-search.xml

< O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC) >

< O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.) >
Invalid Switch: wvc1dmo.cab (Reg Error: Key error.)

< [8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] >

< [8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] >

< >

< :Files >

< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.

< >

< :Commands >

< [purity] >

< [emptytemp] >

< End of report >
  • 0

#11
azarl
Posted 12 April 2012 - 02:37 AM

azarl

    GeekU Admin

  • Community Leader
  • 25,310 posts
I think you pressed Run Scan not Run Fix. Can you try it again please. From my previous post
  • 0

#12
cepyelland
Posted 12 April 2012 - 09:58 PM

cepyelland

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
Sorry about that, did it just before i hit the sack and must have been not on the ball.

All processes killed
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Xyz777s.dll -- (ZTEusbnmea)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wpsscannersvc.dll -- (zpsc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\icm10blk.dll -- (zpcollector)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\procexp111.dll -- (zfdwm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EAWDMFD.dll -- (zenos1)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zd1211u(zydas).dll -- (zebrmdm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cbidf2k.dll -- (zdeviceservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hsfhwbs2.dll -- (YMIDUSB)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\maya70docserver.dll -- (X4HSX32)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mgabg.dll -- (WmaCDriverV32)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SRS_SSCFilter.dll -- (wlsetupsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\gv3.dll -- (winsshd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tiumfwl.dll -- (winmtsrv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mhndrv.dll -- (winachsx)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CX23880.dll -- (winachsf)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FET5X86V.dll -- (whoisd32)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\atmarpc.dll -- (webrootspysweeperservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (W700bus)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raspppoe.dll -- (vzupsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntservice1.dll -- (vusbbus)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMCB000.dll -- (VRFIL)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (VRADFIL)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ndiscm.dll -- (vproeventmonitor)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tlntsvr.dll -- (vmnetadapter)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysaudio.dll -- (vet-rec)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ATWPKT2.dll -- (vetmsgnt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sysenforce.dll -- (veteboot)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (ventrilo)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tosrfnds.dll -- (VC6SecS)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMMOUNT.dll -- (VAIOMediaPlatform-VideoServer-UPnP)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ftpds.dll -- (VAIOMediaPlatform-PhotoServer-HTTP)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tsdhd.dll -- (vaiomediaplatform-mobile-gateway)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USA49W.dll -- (V0070VID)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssqlserveradhelper.dll -- (UxTuneUp)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dmload.dll -- (usnjsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlsetupsvc.dll -- (unrealircd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (unlockerdriver5)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreeTdi.dll -- (uhcd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sscdserd.dll -- (U81xmgmt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (tvtfilter)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\irenum.dll -- (tunnelguardservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\enxpsvc.dll -- (tsmservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\QPCapSvc.dll -- (tmlisten)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cltnetcnservice.dll -- (thpsrv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wtwservice.dll -- (thotkey)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SGIR.dll -- (tfsnudfa)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\macformatservice.dll -- (teefer2)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\abnetmon.dll -- (tcpipBM)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (symproxysvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mysql.dll -- (symmpi)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tdtcp.dll -- (symlcbrd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\driverhardwarev2.dll -- (symantecantibotshim)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tunnelguardservice.dll -- (swmsflt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MaxtorFrontPanel1.dll -- (stylexphelper)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvax.dll -- (STV680)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MailService.dll -- (StMp3Rec)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\roxwatch9.dll -- (stllssvr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sglfb.dll -- (SrvcEKIOMngr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RalinkRegistryWriter.dll -- (sptisrv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zebrmdm.dll -- (Spsmqvsm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IFP700.dll -- (spmd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WmUsbHid.dll -- (sp_clamsrv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zendcoreapache.dll -- (snoopfree)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NWSLP.dll -- (sndsrvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cvspydr2.dll -- (SMNDIS5)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sfhlp01.dll -- (SMCB000)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avsinc.dll -- (smbusp)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tfsnudfa.dll -- (SiSRaid2)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdvp.dll -- (sigfilt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USBCCID.dll -- (sfsync02)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdm.dll -- (SerTVOutCtlr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aliide.dll -- (se58mdm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nalntservice.dll -- (se44mdm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\apphostsvc.dll -- (SE27obex)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleorahome92pagingserver.dll -- (sddmi2)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SecureStorageService.dll -- (scsk4)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PAC7302.dll -- (screadspool)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\spmgr.dll -- (SaiNtHid)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ProcObsrv.dll -- (s616unic)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Sk9920nt.dll -- (s616mdm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmagt.dll -- (s3psddr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rampartsvc.dll -- (s217nd5)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fingrd32.dll -- (s116mgmt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\VAIOMediaPlatform-VideoServer-UPnP.dll -- (rtl8185)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\msiserver.dll -- (rslinx)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TVALG.dll -- (roxliveshare)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_pat_f.dll -- (rnadiagreceiver)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nsm1mdm.dll -- (remoterecord)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WSIMD.dll -- (regsrvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NEOFLTR_600_13319.dll -- (rasirda)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termservice.dll -- (qbreminderflash)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GBDevice.dll -- (qbfcservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\prevxdriver.dll -- (pvservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\db2ntsecserver.dll -- (procexp90)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntpr_nic_service2.dll -- (ppmoucls)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (pnmsrv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avgfwsrv.dll -- (PID_08A0)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se58mdfl.dll -- (pgsql-8.0)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\imonitor.dll -- (pdlnsv25)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (pdlnemsg)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SMTPSVC.dll -- (pcouffin)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\citrixxteserver.dll -- (PciBus)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmuda3.dll -- (PCASp50)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\raidmsvr.dll -- (pavsrv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MS1000.dll -- (P17xfi)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ctxhttp.dll -- (p1131vid)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Pnp680r.dll -- (OsaFsLoc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTMFLT.dll -- (oracle%oracle_home_service%clientcache80)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dlaudf_m.dll -- (openvpnservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvraid.dll -- (ONSIO)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhserd.dll -- (ofcpfwsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\stisvc.dll -- (odclientservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usb20l.dll -- (NWADI)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dsproct.dll -- (nvcap)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE27obex.dll -- (nsm1serd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\incdpass.dll -- (npkcmsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cpqdfw.dll -- (NPDriver)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dcfssvc.dll -- (noipducservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll -- (nmwcdc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eeyeevnt.dll -- (NITaggerService)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TPECioCtl.dll -- (ngserver)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\FreshIO.dll -- (ngdbserv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netdde.dll -- (nfmservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\termdd.dll -- (netsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WBHWDOCT.dll -- (netcfgsvr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AEAudioService.dll -- (ncupdatesvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE2Emgmt.dll -- (navapsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bc_prt_f.dll -- (mwlsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pageserver.dll -- (MtxDma0)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pid_0928.dll -- (MSSQL$AUTODESKVAULT)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tmesbs32.dll -- (MSIRCOMM)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bgsvcgen.dll -- (mr2kserv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NITaggerService.dll -- (mindrepair)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA8032U.dll -- (mctskshd.exe)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\aawservice.dll -- (mcstrm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xTuner.dll -- (ma_cmidi_installerservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\DfwWebAgent.dll -- (MA_CMIDI)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTAudSvcService.dll -- (lyncusbserv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dhcp.dll -- (lxcgcustomerconnect)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NetPipeActivator.dll -- (lxbu_device)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\audstub.dll -- (LVVI500A)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (lvtuner)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssql$sqlexpress.dll -- (lusbaudio)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KMW_KBD.dll -- (ltxred)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lp6nds35.dll -- (LRMINIPORT)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CoolerXPDriver.dll -- (lirsgt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vrfwsvc.dll -- (ldlcserv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\PTDCVsp.dll -- (Ld51ocnucsnp)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pptpminiport.dll -- (L8042Kbd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CnxtHdAudService.dll -- (Ktp)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\diskeeper.dll -- (kraidsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\elbydelay.dll -- (klblmain)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dot4print.dll -- (k750mgmt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sp_clamsrv.dll -- (itmrtsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\k750bus.dll -- (IOSLINK)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mks_scan.dll -- (Invoker)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mdc8021x.dll -- (iksysflt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\A88xEnc.dll -- (ifxspmgtsrv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\speedfan.dll -- (idebusdr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\bh611.dll -- (id2scaps)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nscservice.dll -- (icraplus)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pdlndldl.dll -- (iap)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\https-admserv61.dll -- (iaimfp4)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iaantmon.dll -- (iaimfp1)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\agnfilt.dll -- (HSFHWALI)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rpclocator.dll -- (hsf_msft)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\p2pimsvc.dll -- (hpqwmi)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netmnt.dll -- (HpqRemHid)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eamon.dll -- (hpqddsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdfl.dll -- (hpdj)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mfcom.dll -- (HIDSwvd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt2500usb.dll -- (haspnt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\thotkey.dll -- (Hardlock)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s616mdm.dll -- (ha10kx2k)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtSub.dll -- (gv3)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SaiNtHid.dll -- (gdihook5)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vnxservice.dll -- (fsks)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\x10nets.dll -- (fsaa)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\profos.dll -- (firelm01)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\kpfwsvc.dll -- (FETNDISB)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\KLOGNT.dll -- (FET5X86V)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pensup.dll -- (fcprintservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WaveEnrollmentService.dll -- (F700isw)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\dpc_srv_webcast.dll -- (Exportit)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\winproxy.dll -- (etoksrv)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netbt.dll -- (erecoveryservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ino_fltr.dll -- (epson_pm_rpcv2_01)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\odysseyIM4.dll -- (enxpsvr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NETw4v32.dll -- (enxpsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\symfw.dll -- (EMSCR)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\a016mdm.dll -- (EMATCORE)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cdfsvc.dll -- (elockservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mbmiodrvr.dll -- (EKECioCtl)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eabusb.dll -- (ehsched)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RTLE8023xp.dll -- (EAWDMFD)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ntlmssp.dll -- (eamon)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webrootenterpriseclientservice.dll -- (driverhardwarev2)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\UNDPX2A.dll -- (DniVad)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btwavdt.dll -- (DLH5X)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\e1000.dll -- (dlapoolm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lvprcsrv.dll -- (dlaifs_m)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rsvchost.dll -- (DKbFltr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\acnusvc.dll -- (DivisCTP)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA-620.dll -- (DirectUpdate)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ireike.dll -- (defwatch)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (db2remotecmd)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TeamViewer.dll -- (db2ntsecserver)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pci.dll -- (CXTUNE)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mpfirewl.dll -- (cxpt_service)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BLKWGU(Belkin).dll -- (CVPND)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\RDID1027.dll -- (ctprxy2k)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\disk.dll -- (coste)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\shellhwdetection.dll -- (cmbatt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iAimTV5.dll -- (clmtomcatstartersvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Tb2RCAssist.dll -- (citrixxteserver)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv122.dll -- (centennialiptransferagent)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SPCtl.dll -- (cdudf_xp)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\hpzius12.dll -- (cdfsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tos_sps32.dll -- (CdaC15BA)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\AVCamUSB20.dll -- (ccs)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EMATCORE.dll -- (ccdecode)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcz_device.dll -- (ccalib8)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BTSLBCSP.dll -- (caili)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IBM_LLC2.dll -- (BVRPMPR5)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iclarityqosservice.dll -- (btwrchid)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mcsysmon.dll -- (bthmodem)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\olapserver.dll -- (bglivesvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\IJPLMSVC.dll -- (Bcim)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\isdrv120.dll -- (bc_ip_f)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\6to4.dll -- (awservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fs_rec.dll -- (avidstartup)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\vaiomediaplatform-photoserver-appserver.dll -- (avg7updsvc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\lxcg_device.dll -- (avg7core)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\genregistrar.dll -- (avcgbfl)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wlancfg.dll -- (automate5)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MTC0001_ESB.dll -- (AtiPcie)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\usbsermpt.dll -- (ati2mpaa)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\twdns.dll -- (aswtdi)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\fax.dll -- (ASUSVRC)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pxfhmdm.dll -- (asuskeyboardservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\zntport.dll -- (ASNDIS5)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GameConsoleService.dll -- (asapiw2k)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\eskerlicensecontrol.dll -- (artourservice)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\se2Cnd5.dll -- (arkbcfltr)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\megamonitorsrv.dll -- (arcltsrv)> in the current context!
Error: Unable to interpret <SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cmdmon.dll -- (APLMp50)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\webcompserver.dll -- (amdppm)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\oracleformsserver-forms60server-oraform.dll -- (agpcpq)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rvscc.dll -- (AFGSp50)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\btfirst.dll -- (aexnsclienttransport)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ssfs0509.dll -- (advantage)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s3savagenb.dll -- (adobeactivefilemonitor5.0)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\EIO.dll -- (adminserver)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\rt61.dll -- (adiusbaw)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avp.dll -- (adiloader)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ivscheduler.dll -- (A88xEnc)> in the current context!
Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ccpwdsvc.dll -- ({85ccb53b-23d8-4e73-b1b7-9ddb71827d9b})> in the current context!
Error: Unable to interpret <FF - prefs.js..keyword.URL: "http://search.mywebs...7Q&searchfor="> in the current context!
Error: Unable to interpret <FF - prefs.js..browser.search.defaultenginename: "My Web Search"> in the current context!
Error: Unable to interpret <FF - prefs.js..browser.search.selectedEngine: "My Web Search"> in the current context!
Error: Unable to interpret <[2012/02/14 16:52:14 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\extensions\[email protected]> in the current context!
Error: Unable to interpret <[2012/01/28 17:41:15 | 000,009,650 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\wujd7qf4.default\searchplugins\my-web-search.xml> in the current context!
Error: Unable to interpret <O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)> in the current context!
Error: Unable to interpret <O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.)> in the current context!
Error: Unable to interpret <[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]> in the current context!
Error: Unable to interpret <[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]> in the current context!
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Documents and Settings\user\My Documents\Downloads\cmd.bat deleted successfully.
C:\Documents and Settings\user\My Documents\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
Restore point Set: OTL Restore Point (0)

[EMPTYTEMP]

User: All Users

User: Default User
->Flash cache emptied: 56502 bytes

User: LocalService

User: NetworkService
->Java cache emptied: 15102 bytes
->Flash cache emptied: 29379 bytes

User: user
->Java cache emptied: 146765 bytes
->Flash cache emptied: 137523616 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2738962 bytes
%systemroot%\System32 .tmp files removed: 2577 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 27452 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 24034008 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 157.00 mb


OTL by OldTimer - Version 3.2.39.2 log created on 04122012_215000

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...
  • 0

#13
azarl
Posted 13 April 2012 - 01:38 AM

azarl

    GeekU Admin

  • Community Leader
  • 25,310 posts
Can you try again please, you need to include all the fix, including the :OTL on the first line
  • 0

#14
azarl
Posted 17 April 2012 - 06:50 AM

azarl

    GeekU Admin

  • Community Leader
  • 25,310 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP