Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

McAfee Security Centre Firewall keeps turning itself off


  • Please log in to reply
15 replies to this topic

#1 JackedPC

JackedPC

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:49 AM

Posted 10 February 2012 - 11:33 PM

Hello,

I have a laptop that has McAfee Security Centre installed on it. Just today I noticed that for some reason the firewall was off. Since then every time I try to turn the firewall back on, it turns off again after a couple of seconds. I have scanned my system with both MalwareBytes and SUPERAntiSpyware as well as McAfee itself and all three claim that my laptop is clean (SUPERAntiSpyware only found tracking cookies). Windows firewall doesn't work either; when I try to configure the settings it gives me this error:

Windows Firewall can't change some of your settings: Error 0x80070424

What should I do? This problem only started recently and I'd like to get my laptop back in working order!

Edited by Budapest, 11 February 2012 - 02:21 AM.
Moved from Win7


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:49 AM

Posted 11 February 2012 - 12:25 AM

Download

FSS

Checkmark

Internet Services
Windows Firewall
System Restore
Security Center
Windows Update

Click on "Scan".
Please copy and paste the log to your reply.

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Edited by narenxp, 11 February 2012 - 02:44 AM.


#3 JackedPC

JackedPC
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:49 AM

Posted 11 February 2012 - 11:25 AM

Thanks for your swift reply!
Here are the logs:

FSS Log
Farbar Service Scanner Version: 10-02-2012
Ran by Jacky (administrator) on 11-02-2012 at 10:15:49
Running from "C:\Users\Jacky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YQ0LXEAR"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



TDSSKiller Log
10:17:32.0569 4848 TDSS rootkit removing tool 2.7.11.0 Feb 9 2012 10:12:57
10:17:32.0881 4848 ============================================================
10:17:32.0881 4848 Current date / time: 2012/02/11 10:17:32.0881
10:17:32.0881 4848 SystemInfo:
10:17:32.0881 4848
10:17:32.0881 4848 OS Version: 6.1.7601 ServicePack: 1.0
10:17:32.0881 4848 Product type: Workstation
10:17:32.0881 4848 ComputerName: JACKY-PC
10:17:32.0881 4848 UserName: Jacky
10:17:32.0881 4848 Windows directory: C:\windows
10:17:32.0881 4848 System windows directory: C:\windows
10:17:32.0881 4848 Running under WOW64
10:17:32.0881 4848 Processor architecture: Intel x64
10:17:32.0881 4848 Number of processors: 4
10:17:32.0881 4848 Page size: 0x1000
10:17:32.0881 4848 Boot type: Normal boot
10:17:32.0881 4848 ============================================================
10:17:33.0537 4848 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:17:33.0537 4848 \Device\Harddisk0\DR0:
10:17:33.0537 4848 MBR used
10:17:33.0537 4848 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
10:17:33.0537 4848 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
10:17:33.0568 4848 Initialize success
10:17:33.0568 4848 ============================================================
10:17:59.0763 6844 ============================================================
10:17:59.0763 6844 Scan started
10:17:59.0763 6844 Mode: Manual; TDLFS;
10:17:59.0763 6844 ============================================================
10:18:00.0699 6844 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
10:18:00.0745 6844 1394ohci - ok
10:18:00.0808 6844 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
10:18:00.0808 6844 ACPI - ok
10:18:00.0855 6844 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
10:18:00.0901 6844 AcpiPmi - ok
10:18:01.0073 6844 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
10:18:01.0089 6844 adp94xx - ok
10:18:01.0151 6844 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
10:18:01.0167 6844 adpahci - ok
10:18:01.0213 6844 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
10:18:01.0229 6844 adpu320 - ok
10:18:01.0307 6844 AFD (d5b031c308a409a0a576bff4cf083d30) C:\windows\system32\drivers\afd.sys
10:18:01.0307 6844 AFD - ok
10:18:01.0385 6844 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
10:18:01.0385 6844 agp440 - ok
10:18:01.0432 6844 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
10:18:01.0432 6844 aliide - ok
10:18:01.0463 6844 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
10:18:01.0463 6844 amdide - ok
10:18:01.0525 6844 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
10:18:01.0525 6844 AmdK8 - ok
10:18:01.0572 6844 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\drivers\amdppm.sys
10:18:01.0572 6844 AmdPPM - ok
10:18:01.0619 6844 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
10:18:01.0666 6844 amdsata - ok
10:18:01.0744 6844 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
10:18:01.0744 6844 amdsbs - ok
10:18:01.0791 6844 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
10:18:01.0837 6844 amdxata - ok
10:18:01.0915 6844 ApfiltrService (24ed0eb2b2558970176ecee680f8f806) C:\windows\system32\DRIVERS\Apfiltr.sys
10:18:01.0962 6844 ApfiltrService - ok
10:18:02.0040 6844 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
10:18:02.0087 6844 AppID - ok
10:18:02.0149 6844 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
10:18:02.0149 6844 arc - ok
10:18:02.0196 6844 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
10:18:02.0196 6844 arcsas - ok
10:18:02.0259 6844 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
10:18:02.0259 6844 AsyncMac - ok
10:18:02.0321 6844 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
10:18:02.0321 6844 atapi - ok
10:18:02.0399 6844 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
10:18:02.0415 6844 b06bdrv - ok
10:18:02.0477 6844 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
10:18:02.0493 6844 b57nd60a - ok
10:18:02.0539 6844 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
10:18:02.0555 6844 Beep - ok
10:18:02.0602 6844 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
10:18:02.0617 6844 blbdrive - ok
10:18:02.0680 6844 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
10:18:02.0680 6844 bowser - ok
10:18:02.0742 6844 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
10:18:02.0742 6844 BrFiltLo - ok
10:18:02.0773 6844 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
10:18:02.0773 6844 BrFiltUp - ok
10:18:02.0836 6844 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
10:18:02.0851 6844 Brserid - ok
10:18:02.0898 6844 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
10:18:02.0914 6844 BrSerWdm - ok
10:18:02.0945 6844 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
10:18:02.0945 6844 BrUsbMdm - ok
10:18:02.0976 6844 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
10:18:02.0976 6844 BrUsbSer - ok
10:18:03.0054 6844 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
10:18:03.0054 6844 BthEnum - ok
10:18:03.0085 6844 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
10:18:03.0101 6844 BTHMODEM - ok
10:18:03.0163 6844 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
10:18:03.0163 6844 BthPan - ok
10:18:03.0226 6844 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys
10:18:03.0273 6844 BTHPORT - ok
10:18:03.0351 6844 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys
10:18:03.0382 6844 BTHUSB - ok
10:18:03.0460 6844 btmaux (16c1bac9760c9fa85a30f3fa0fbb1b7a) C:\windows\system32\DRIVERS\btmaux.sys
10:18:03.0507 6844 btmaux - ok
10:18:03.0569 6844 btmhsf (0c468d8da95be16bfdd380bb9de88259) C:\windows\system32\DRIVERS\btmhsf.sys
10:18:03.0600 6844 btmhsf - ok
10:18:03.0663 6844 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
10:18:03.0678 6844 cdfs - ok
10:18:03.0741 6844 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
10:18:03.0787 6844 cdrom - ok
10:18:03.0881 6844 cfwids (ed0263b2eb24f0f4e3898036fa1d28a1) C:\windows\system32\drivers\cfwids.sys
10:18:03.0928 6844 cfwids - ok
10:18:03.0990 6844 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
10:18:04.0006 6844 circlass - ok
10:18:04.0068 6844 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
10:18:04.0068 6844 CLFS - ok
10:18:04.0162 6844 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
10:18:04.0177 6844 CmBatt - ok
10:18:04.0193 6844 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
10:18:04.0209 6844 cmdide - ok
10:18:04.0255 6844 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
10:18:04.0287 6844 CNG - ok
10:18:04.0365 6844 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\drivers\compbatt.sys
10:18:04.0365 6844 Compbatt - ok
10:18:04.0396 6844 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
10:18:04.0443 6844 CompositeBus - ok
10:18:04.0505 6844 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
10:18:04.0505 6844 crcdisk - ok
10:18:04.0645 6844 CtClsFlt (bc3d4f90978cd7c8eabd1baf3bf7873a) C:\windows\system32\DRIVERS\CtClsFlt.sys
10:18:04.0692 6844 CtClsFlt - ok
10:18:04.0801 6844 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
10:18:04.0848 6844 DfsC - ok
10:18:04.0911 6844 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
10:18:04.0911 6844 discache - ok
10:18:04.0973 6844 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
10:18:04.0973 6844 Disk - ok
10:18:05.0051 6844 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
10:18:05.0051 6844 drmkaud - ok
10:18:05.0113 6844 dtsoftbus01 (d3d64cf7b2bceaa34a270f45a3fffb36) C:\windows\system32\DRIVERS\dtsoftbus01.sys
10:18:05.0113 6844 dtsoftbus01 - ok
10:18:05.0176 6844 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
10:18:05.0254 6844 DXGKrnl - ok
10:18:05.0363 6844 EagleX64 - ok
10:18:05.0472 6844 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
10:18:05.0581 6844 ebdrv - ok
10:18:05.0675 6844 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
10:18:05.0691 6844 elxstor - ok
10:18:05.0722 6844 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
10:18:05.0722 6844 ErrDev - ok
10:18:05.0815 6844 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
10:18:05.0831 6844 exfat - ok
10:18:05.0878 6844 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
10:18:05.0893 6844 fastfat - ok
10:18:05.0956 6844 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
10:18:05.0956 6844 fdc - ok
10:18:06.0018 6844 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
10:18:06.0018 6844 FileInfo - ok
10:18:06.0065 6844 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
10:18:06.0065 6844 Filetrace - ok
10:18:06.0127 6844 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
10:18:06.0127 6844 flpydisk - ok
10:18:06.0174 6844 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
10:18:06.0221 6844 FltMgr - ok
10:18:06.0268 6844 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
10:18:06.0268 6844 FsDepends - ok
10:18:06.0330 6844 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
10:18:06.0330 6844 Fs_Rec - ok
10:18:06.0408 6844 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
10:18:06.0408 6844 fvevol - ok
10:18:06.0455 6844 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
10:18:06.0471 6844 gagp30kx - ok
10:18:06.0549 6844 ggflt (a4198f2bd8aa592cb90476277a81b5e1) C:\windows\system32\DRIVERS\ggflt.sys
10:18:06.0595 6844 ggflt - ok
10:18:06.0627 6844 ggsemc (d266350bdaab9eb6c1aec370eeaaff3a) C:\windows\system32\DRIVERS\ggsemc.sys
10:18:06.0673 6844 ggsemc - ok
10:18:06.0736 6844 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
10:18:06.0736 6844 hcw85cir - ok
10:18:06.0798 6844 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
10:18:06.0845 6844 HdAudAddService - ok
10:18:06.0892 6844 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
10:18:06.0892 6844 HDAudBus - ok
10:18:06.0939 6844 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
10:18:06.0939 6844 HidBatt - ok
10:18:06.0985 6844 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
10:18:07.0001 6844 HidBth - ok
10:18:07.0048 6844 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
10:18:07.0048 6844 HidIr - ok
10:18:07.0126 6844 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
10:18:07.0157 6844 HidUsb - ok
10:18:07.0235 6844 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
10:18:07.0282 6844 HpSAMD - ok
10:18:07.0344 6844 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
10:18:07.0391 6844 HTTP - ok
10:18:07.0453 6844 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
10:18:07.0453 6844 hwpolicy - ok
10:18:07.0531 6844 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
10:18:07.0531 6844 i8042prt - ok
10:18:07.0594 6844 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\windows\system32\DRIVERS\iaStor.sys
10:18:07.0594 6844 iaStor - ok
10:18:07.0672 6844 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
10:18:07.0734 6844 iaStorV - ok
10:18:07.0812 6844 iBtFltCoex (fc85972037815fa7b413e790b426acb2) C:\windows\system32\DRIVERS\iBtFltCoex.sys
10:18:07.0859 6844 iBtFltCoex - ok
10:18:08.0155 6844 igfx (174bcac474de13b2650e444cf124828e) C:\windows\system32\DRIVERS\igdkmd64.sys
10:18:08.0530 6844 igfx - ok
10:18:08.0608 6844 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
10:18:08.0623 6844 iirsp - ok
10:18:08.0717 6844 intaud_WaveExtensible (caddf0927dac63edae48f5c35a61d87d) C:\windows\system32\drivers\intelaud.sys
10:18:08.0764 6844 intaud_WaveExtensible - ok
10:18:08.0826 6844 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\windows\system32\DRIVERS\IntcDAud.sys
10:18:08.0873 6844 IntcDAud - ok
10:18:08.0935 6844 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
10:18:08.0951 6844 intelide - ok
10:18:08.0982 6844 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
10:18:08.0998 6844 intelppm - ok
10:18:09.0060 6844 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
10:18:09.0060 6844 IpFilterDriver - ok
10:18:09.0107 6844 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
10:18:09.0154 6844 IPMIDRV - ok
10:18:09.0185 6844 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
10:18:09.0201 6844 IPNAT - ok
10:18:09.0247 6844 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
10:18:09.0263 6844 IRENUM - ok
10:18:09.0310 6844 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
10:18:09.0310 6844 isapnp - ok
10:18:09.0357 6844 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
10:18:09.0403 6844 iScsiPrt - ok
10:18:09.0466 6844 iwdbus (716f66336f10885d935b08174dc54242) C:\windows\system32\DRIVERS\iwdbus.sys
10:18:09.0513 6844 iwdbus - ok
10:18:09.0559 6844 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
10:18:09.0559 6844 kbdclass - ok
10:18:09.0606 6844 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
10:18:09.0653 6844 kbdhid - ok
10:18:09.0731 6844 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
10:18:09.0762 6844 KSecDD - ok
10:18:09.0809 6844 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
10:18:09.0856 6844 KSecPkg - ok
10:18:09.0918 6844 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
10:18:09.0918 6844 ksthunk - ok
10:18:09.0996 6844 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
10:18:09.0996 6844 lltdio - ok
10:18:10.0121 6844 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
10:18:10.0137 6844 LSI_FC - ok
10:18:10.0152 6844 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
10:18:10.0152 6844 LSI_SAS - ok
10:18:10.0168 6844 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
10:18:10.0168 6844 LSI_SAS2 - ok
10:18:10.0215 6844 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
10:18:10.0230 6844 LSI_SCSI - ok
10:18:10.0246 6844 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
10:18:10.0261 6844 luafv - ok
10:18:10.0308 6844 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\windows\system32\drivers\mbam.sys
10:18:10.0308 6844 MBAMProtector - ok
10:18:10.0480 6844 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
10:18:10.0480 6844 megasas - ok
10:18:10.0511 6844 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
10:18:10.0527 6844 MegaSR - ok
10:18:10.0573 6844 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\windows\system32\DRIVERS\HECIx64.sys
10:18:10.0620 6844 MEIx64 - ok
10:18:10.0683 6844 mfeapfk (ef3acfb7e3f82d5f7cde9ef5f0a4e2e2) C:\windows\system32\drivers\mfeapfk.sys
10:18:10.0729 6844 mfeapfk - ok
10:18:10.0776 6844 mfeavfk (e7a60bdb4365b561d896019b82fb7dd0) C:\windows\system32\drivers\mfeavfk.sys
10:18:10.0823 6844 mfeavfk - ok
10:18:10.0901 6844 mfeavfk01 - ok
10:18:10.0995 6844 mfefirek (670dffe55e2f9ab99d9169c428bcece9) C:\windows\system32\drivers\mfefirek.sys
10:18:11.0041 6844 mfefirek - ok
10:18:11.0119 6844 mfehidk (1892616b7f9291fd77c3fa0a5811fe9f) C:\windows\system32\drivers\mfehidk.sys
10:18:11.0182 6844 mfehidk - ok
10:18:11.0213 6844 mfenlfk (1721261c77f6e7a9e0cb51b7d9f31b60) C:\windows\system32\DRIVERS\mfenlfk.sys
10:18:11.0260 6844 mfenlfk - ok
10:18:11.0338 6844 mferkdet (65776bd8029e409935b90de30bf99526) C:\windows\system32\drivers\mferkdet.sys
10:18:11.0385 6844 mferkdet - ok
10:18:11.0447 6844 mfewfpk (4f17d8b85b903d96ef7033bb6ef50516) C:\windows\system32\drivers\mfewfpk.sys
10:18:11.0494 6844 mfewfpk - ok
10:18:11.0556 6844 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
10:18:11.0556 6844 Modem - ok
10:18:11.0603 6844 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
10:18:11.0603 6844 monitor - ok
10:18:11.0650 6844 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
10:18:11.0665 6844 mouclass - ok
10:18:11.0712 6844 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
10:18:11.0712 6844 mouhid - ok
10:18:11.0759 6844 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
10:18:11.0759 6844 mountmgr - ok
10:18:11.0821 6844 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
10:18:11.0868 6844 mpio - ok
10:18:11.0899 6844 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
10:18:11.0899 6844 mpsdrv - ok
10:18:11.0931 6844 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
10:18:11.0931 6844 MRxDAV - ok
10:18:11.0977 6844 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
10:18:12.0024 6844 mrxsmb - ok
10:18:12.0087 6844 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
10:18:12.0133 6844 mrxsmb10 - ok
10:18:12.0196 6844 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
10:18:12.0227 6844 mrxsmb20 - ok
10:18:12.0289 6844 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
10:18:12.0336 6844 msahci - ok
10:18:12.0383 6844 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
10:18:12.0430 6844 msdsm - ok
10:18:12.0492 6844 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
10:18:12.0492 6844 Msfs - ok
10:18:12.0539 6844 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
10:18:12.0539 6844 mshidkmdf - ok
10:18:12.0586 6844 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
10:18:12.0586 6844 msisadrv - ok
10:18:12.0664 6844 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
10:18:12.0664 6844 MSKSSRV - ok
10:18:12.0711 6844 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
10:18:12.0711 6844 MSPCLOCK - ok
10:18:12.0757 6844 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
10:18:12.0757 6844 MSPQM - ok
10:18:12.0804 6844 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
10:18:12.0851 6844 MsRPC - ok
10:18:12.0882 6844 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
10:18:12.0898 6844 mssmbios - ok
10:18:12.0929 6844 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
10:18:12.0929 6844 MSTEE - ok
10:18:12.0976 6844 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
10:18:12.0976 6844 MTConfig - ok
10:18:13.0038 6844 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
10:18:13.0038 6844 Mup - ok
10:18:13.0179 6844 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
10:18:13.0194 6844 NativeWifiP - ok
10:18:13.0272 6844 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\windows\system32\drivers\ndis.sys
10:18:13.0319 6844 NDIS - ok
10:18:13.0381 6844 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
10:18:13.0397 6844 NdisCap - ok
10:18:13.0444 6844 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
10:18:13.0459 6844 NdisTapi - ok
10:18:13.0491 6844 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
10:18:13.0537 6844 Ndisuio - ok
10:18:13.0584 6844 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
10:18:13.0584 6844 NdisWan - ok
10:18:13.0647 6844 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
10:18:13.0647 6844 NDProxy - ok
10:18:13.0693 6844 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
10:18:13.0693 6844 NetBIOS - ok
10:18:13.0740 6844 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
10:18:13.0740 6844 NetBT - ok
10:18:14.0005 6844 NETwNs64 (5d262402b0634c998f8cbcead7dd8676) C:\windows\system32\DRIVERS\NETwNs64.sys
10:18:14.0193 6844 NETwNs64 - ok
10:18:14.0255 6844 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
10:18:14.0255 6844 nfrd960 - ok
10:18:14.0317 6844 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
10:18:14.0317 6844 Npfs - ok
10:18:14.0364 6844 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
10:18:14.0364 6844 nsiproxy - ok
10:18:14.0442 6844 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
10:18:14.0536 6844 Ntfs - ok
10:18:14.0598 6844 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
10:18:14.0598 6844 Null - ok
10:18:14.0661 6844 nusb3hub (158ad24745bd85ba9be3c51c38f48c32) C:\windows\system32\DRIVERS\nusb3hub.sys
10:18:14.0707 6844 nusb3hub - ok
10:18:14.0739 6844 nusb3xhc (d40a13b2c0891e218f9523b376955db6) C:\windows\system32\DRIVERS\nusb3xhc.sys
10:18:14.0785 6844 nusb3xhc - ok
10:18:14.0832 6844 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
10:18:14.0848 6844 nvraid - ok
10:18:14.0879 6844 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
10:18:14.0879 6844 nvstor - ok
10:18:14.0957 6844 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
10:18:14.0957 6844 nv_agp - ok
10:18:15.0004 6844 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
10:18:15.0004 6844 ohci1394 - ok
10:18:15.0082 6844 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
10:18:15.0082 6844 Parport - ok
10:18:15.0113 6844 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
10:18:15.0113 6844 partmgr - ok
10:18:15.0175 6844 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
10:18:15.0222 6844 pci - ok
10:18:15.0269 6844 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
10:18:15.0269 6844 pciide - ok
10:18:15.0331 6844 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
10:18:15.0331 6844 pcmcia - ok
10:18:15.0378 6844 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
10:18:15.0378 6844 pcw - ok
10:18:15.0441 6844 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
10:18:15.0456 6844 PEAUTH - ok
10:18:15.0597 6844 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
10:18:15.0659 6844 PptpMiniport - ok
10:18:15.0721 6844 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
10:18:15.0721 6844 Processor - ok
10:18:15.0799 6844 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
10:18:15.0799 6844 Psched - ok
10:18:15.0877 6844 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\windows\system32\Drivers\PxHlpa64.sys
10:18:15.0940 6844 PxHlpa64 - ok
10:18:16.0049 6844 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
10:18:16.0080 6844 ql2300 - ok
10:18:16.0127 6844 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
10:18:16.0143 6844 ql40xx - ok
10:18:16.0174 6844 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
10:18:16.0174 6844 QWAVEdrv - ok
10:18:16.0236 6844 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
10:18:16.0236 6844 RasAcd - ok
10:18:16.0299 6844 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
10:18:16.0299 6844 RasAgileVpn - ok
10:18:16.0345 6844 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
10:18:16.0345 6844 Rasl2tp - ok
10:18:16.0408 6844 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
10:18:16.0423 6844 RasPppoe - ok
10:18:16.0455 6844 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
10:18:16.0470 6844 RasSstp - ok
10:18:16.0517 6844 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
10:18:16.0517 6844 rdbss - ok
10:18:16.0564 6844 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
10:18:16.0579 6844 rdpbus - ok
10:18:16.0626 6844 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
10:18:16.0626 6844 RDPCDD - ok
10:18:16.0673 6844 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
10:18:16.0673 6844 RDPENCDD - ok
10:18:16.0720 6844 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
10:18:16.0720 6844 RDPREFMP - ok
10:18:16.0767 6844 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys
10:18:16.0813 6844 RDPWD - ok
10:18:16.0876 6844 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
10:18:16.0876 6844 rdyboost - ok
10:18:17.0001 6844 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
10:18:17.0001 6844 RFCOMM - ok
10:18:17.0047 6844 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
10:18:17.0047 6844 rspndr - ok
10:18:17.0125 6844 RSUSBSTOR (be29b0a3ac1e8bd02ffab8cee86badfa) C:\windows\system32\Drivers\RtsUStor.sys
10:18:17.0172 6844 RSUSBSTOR - ok
10:18:17.0266 6844 RTL8167 (2777226ee8bf50b059d7a7c90177e99c) C:\windows\system32\DRIVERS\Rt64win7.sys
10:18:17.0328 6844 RTL8167 - ok
10:18:17.0391 6844 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:18:17.0406 6844 SASDIFSV - ok
10:18:17.0422 6844 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
10:18:17.0422 6844 SASKUTIL - ok
10:18:17.0515 6844 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
10:18:17.0515 6844 sbp2port - ok
10:18:17.0562 6844 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
10:18:17.0609 6844 scfilter - ok
10:18:17.0671 6844 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
10:18:17.0671 6844 secdrv - ok
10:18:17.0734 6844 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
10:18:17.0734 6844 Serenum - ok
10:18:17.0781 6844 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
10:18:17.0781 6844 Serial - ok
10:18:17.0843 6844 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
10:18:17.0843 6844 sermouse - ok
10:18:17.0890 6844 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
10:18:17.0890 6844 sffdisk - ok
10:18:17.0937 6844 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
10:18:17.0937 6844 sffp_mmc - ok
10:18:17.0983 6844 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
10:18:17.0983 6844 sffp_sd - ok
10:18:18.0046 6844 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
10:18:18.0046 6844 sfloppy - ok
10:18:18.0124 6844 Sftfs (a40abfdcb75f835fdf3ce0cc64e4250d) C:\windows\system32\DRIVERS\Sftfslh.sys
10:18:18.0139 6844 Sftfs - ok
10:18:18.0202 6844 Sftplay (411769ed1cb12d2b44217734347bdb7a) C:\windows\system32\DRIVERS\Sftplaylh.sys
10:18:18.0202 6844 Sftplay - ok
10:18:18.0264 6844 Sftredir (a14d0df34bbb00ea94da16193d0c7957) C:\windows\system32\DRIVERS\Sftredirlh.sys
10:18:18.0264 6844 Sftredir - ok
10:18:18.0327 6844 Sftvol (393b22addd89979eb1c60898f51c3648) C:\windows\system32\DRIVERS\Sftvollh.sys
10:18:18.0327 6844 Sftvol - ok
10:18:18.0405 6844 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
10:18:18.0405 6844 SiSRaid2 - ok
10:18:18.0451 6844 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
10:18:18.0467 6844 SiSRaid4 - ok
10:18:18.0514 6844 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
10:18:18.0529 6844 Smb - ok
10:18:18.0592 6844 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
10:18:18.0592 6844 spldr - ok
10:18:18.0654 6844 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
10:18:18.0701 6844 srv - ok
10:18:18.0748 6844 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
10:18:18.0795 6844 srv2 - ok
10:18:18.0857 6844 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
10:18:18.0857 6844 srvnet - ok
10:18:18.0935 6844 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
10:18:18.0951 6844 stexstor - ok
10:18:18.0997 6844 STHDA (ef5acde92ba3f691bbfef781cb063501) C:\windows\system32\DRIVERS\stwrt64.sys
10:18:19.0060 6844 STHDA - ok
10:18:19.0122 6844 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
10:18:19.0138 6844 swenum - ok
10:18:19.0247 6844 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys
10:18:19.0294 6844 Tcpip - ok
10:18:19.0387 6844 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys
10:18:19.0434 6844 TCPIP6 - ok
10:18:19.0481 6844 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
10:18:19.0528 6844 tcpipreg - ok
10:18:19.0575 6844 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
10:18:19.0575 6844 TDPIPE - ok
10:18:19.0621 6844 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
10:18:19.0621 6844 TDTCP - ok
10:18:19.0668 6844 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
10:18:19.0668 6844 tdx - ok
10:18:19.0715 6844 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
10:18:19.0746 6844 TermDD - ok
10:18:19.0809 6844 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
10:18:19.0855 6844 tssecsrv - ok
10:18:19.0918 6844 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
10:18:19.0965 6844 TsUsbFlt - ok
10:18:20.0011 6844 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
10:18:20.0058 6844 TsUsbGD - ok
10:18:20.0105 6844 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
10:18:20.0152 6844 tunnel - ok
10:18:20.0199 6844 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
10:18:20.0199 6844 uagp35 - ok
10:18:20.0245 6844 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
10:18:20.0292 6844 udfs - ok
10:18:20.0355 6844 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
10:18:20.0355 6844 uliagpkx - ok
10:18:20.0401 6844 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
10:18:20.0433 6844 umbus - ok
10:18:20.0495 6844 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
10:18:20.0495 6844 UmPass - ok
10:18:20.0557 6844 usbccgp (19ad7990c0b67e48dac5b26f99628223) C:\windows\system32\DRIVERS\usbccgp.sys
10:18:20.0604 6844 usbccgp - ok
10:18:20.0682 6844 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
10:18:20.0682 6844 usbcir - ok
10:18:20.0729 6844 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys
10:18:20.0776 6844 usbehci - ok
10:18:20.0854 6844 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
10:18:20.0901 6844 usbhub - ok
10:18:20.0963 6844 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\windows\system32\drivers\usbohci.sys
10:18:20.0963 6844 usbohci - ok
10:18:21.0010 6844 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
10:18:21.0010 6844 usbprint - ok
10:18:21.0057 6844 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
10:18:21.0103 6844 USBSTOR - ok
10:18:21.0166 6844 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\windows\system32\drivers\usbuhci.sys
10:18:21.0166 6844 usbuhci - ok
10:18:21.0228 6844 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
10:18:21.0275 6844 usbvideo - ok
10:18:21.0322 6844 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
10:18:21.0337 6844 vdrvroot - ok
10:18:21.0369 6844 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
10:18:21.0369 6844 vga - ok
10:18:21.0415 6844 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
10:18:21.0415 6844 VgaSave - ok
10:18:21.0462 6844 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
10:18:21.0462 6844 vhdmp - ok
10:18:21.0525 6844 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
10:18:21.0540 6844 viaide - ok
10:18:21.0571 6844 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
10:18:21.0618 6844 volmgr - ok
10:18:21.0649 6844 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
10:18:21.0649 6844 volmgrx - ok
10:18:21.0696 6844 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
10:18:21.0759 6844 volsnap - ok
10:18:21.0805 6844 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
10:18:21.0821 6844 vsmraid - ok
10:18:21.0852 6844 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
10:18:21.0852 6844 vwifibus - ok
10:18:21.0915 6844 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
10:18:21.0915 6844 vwififlt - ok
10:18:21.0946 6844 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
10:18:21.0961 6844 vwifimp - ok
10:18:22.0055 6844 wacmoumonitor (43ce14e1e17da81ea71dfe686805ed07) C:\windows\system32\DRIVERS\wacmoumonitor.sys
10:18:22.0086 6844 wacmoumonitor - ok
10:18:22.0164 6844 wacommousefilter (e04d43c7d1641e95d35cae6086c7e350) C:\windows\system32\DRIVERS\wacommousefilter.sys
10:18:22.0211 6844 wacommousefilter - ok
10:18:22.0258 6844 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
10:18:22.0258 6844 WacomPen - ok
10:18:22.0320 6844 wacomvhid (ec1ceb237e365330c1fcfc4876aa0ac0) C:\windows\system32\DRIVERS\wacomvhid.sys
10:18:22.0367 6844 wacomvhid - ok
10:18:22.0414 6844 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
10:18:22.0429 6844 WANARP - ok
10:18:22.0429 6844 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
10:18:22.0429 6844 Wanarpv6 - ok
10:18:22.0492 6844 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
10:18:22.0492 6844 Wd - ok
10:18:22.0539 6844 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
10:18:22.0570 6844 Wdf01000 - ok
10:18:22.0648 6844 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
10:18:22.0648 6844 WfpLwf - ok
10:18:22.0710 6844 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\windows\system32\DRIVERS\wimfltr.sys
10:18:22.0710 6844 WimFltr - ok
10:18:22.0757 6844 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
10:18:22.0757 6844 WIMMount - ok
10:18:22.0866 6844 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
10:18:22.0897 6844 WinUsb - ok
10:18:22.0975 6844 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\DRIVERS\wmiacpi.sys
10:18:22.0991 6844 WmiAcpi - ok
10:18:23.0069 6844 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
10:18:23.0069 6844 ws2ifsl - ok
10:18:23.0131 6844 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
10:18:23.0131 6844 WudfPf - ok
10:18:23.0194 6844 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
10:18:23.0194 6844 WUDFRd - ok
10:18:23.0256 6844 X6va005 - ok
10:18:23.0287 6844 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:18:23.0553 6844 \Device\Harddisk0\DR0 - ok
10:18:23.0553 6844 Boot (0x1200) (17e6064b18aa88ed8319b3238fe06a25) \Device\Harddisk0\DR0\Partition0
10:18:23.0553 6844 \Device\Harddisk0\DR0\Partition0 - ok
10:18:23.0584 6844 Boot (0x1200) (9353cf31a6ec515e78353d1600509a2f) \Device\Harddisk0\DR0\Partition1
10:18:23.0584 6844 \Device\Harddisk0\DR0\Partition1 - ok
10:18:23.0584 6844 ============================================================
10:18:23.0584 6844 Scan finished
10:18:23.0584 6844 ============================================================
10:18:23.0599 5180 Detected object count: 0
10:18:23.0599 5180 Actual detected object count: 0
10:19:50.0790 6080 Deinitialize success


aswMBR Log
aswMBR version 0.9.9.1532 Copyright© 2011 AVAST Software
Run date: 2012-02-11 10:20:56
-----------------------------
10:20:56.516 OS Version: Windows x64 6.1.7601 Service Pack 1
10:20:56.516 Number of processors: 4 586 0x2A07
10:20:56.516 ComputerName: JACKY-PC UserName: Jacky
10:20:58.123 Initialize success
10:22:08.387 AVAST engine defs: 12021100
10:22:47.684 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:22:47.699 Disk 0 Vendor: ST950032 D005 Size: 476940MB BusType: 3
10:22:47.715 Disk 0 MBR read successfully
10:22:47.715 Disk 0 MBR scan
10:22:47.715 Disk 0 Windows 7 default MBR code
10:22:47.731 Disk 0 Partition 1 00 DE Dell Utility DELL 8.0 100 MB offset 2048
10:22:47.746 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
10:22:47.762 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461838 MB offset 30926848
10:22:47.762 Service scanning
10:22:50.804 Modules scanning
10:22:50.804 Disk 0 trace - called modules:
10:22:50.835 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
10:22:50.835 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80043e7060]
10:22:51.350 3 CLASSPNP.SYS[fffff8800185a43f] -> nt!IofCallDriver -> [0xfffffa8004100770]
10:22:51.350 5 ACPI.sys[fffff88000fab7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004106050]
10:22:52.223 AVAST engine scan C:\windows
10:22:54.953 AVAST engine scan C:\windows\system32
10:26:19.622 AVAST engine scan C:\windows\system32\drivers
10:26:34.708 AVAST engine scan C:\Users\Jacky
10:47:52.508 AVAST engine scan C:\ProgramData
10:53:17.006 Scan finished successfully
11:23:10.167 Disk 0 MBR has been saved successfully to "C:\Users\Jacky\Desktop\MBR.dat"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:49 AM

Posted 11 February 2012 - 11:33 AM

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


To be on safer side before running registry fixes i would suggest you to

Download

http://www.snapfiles.com/get/erunt.html

Install it and backup your registry to C:/Windows/erdnt

Now Download the registry files

windows firewall

base filtering engine

security center

Download three files

Launch them one by one,click YES when you get a prompt


Restart your PC

Now,open RUN and type

regedit and click ok

go to

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE

Right click on it-permissions

Click on ADD and type

Everyone and click ok

Now Click on Everyone

Below you have permission for users

Select full control and click ok


Now,open RUN and type

services.msc and click ok

start base filtering engine service and then windows firewall service

Post new FSS log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Edited by narenxp, 24 May 2012 - 10:28 AM.


#5 JackedPC

JackedPC
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:49 AM

Posted 11 February 2012 - 03:06 PM

Well the good news is that Windows Firewall is working again! McAfee still has yet to show any changes.


ESET Results
C:\Users\Jacky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\I4GOUWH9\members[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Users\Jacky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\I4GOUWH9\request-gift-card[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Users\Jacky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\I4GOUWH9\rewards[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Users\Jacky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\WUD42ORG\lootpalace_com[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined


FSS Log 2
Farbar Service Scanner Version: 10-02-2012
Ran by Jacky (administrator) on 11-02-2012 at 14:52:07
Running from "C:\Users\Jacky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KLB9IKKB"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




Mini Toolbox Log
MiniToolBox by Farbar Version: 18-01-2012
Ran by Jacky (administrator) on 11-02-2012 at 14:56:38
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 1030 = Wireless Network Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Jacky-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : AC-72-89-2B-C0-E7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : AC-72-89-2B-C0-E7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 1030
Physical Address. . . . . . . . . : AC-72-89-2B-C0-E6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::dc3a:3d7b:cd57:c10e%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : February-11-12 2:45:18 PM
Lease Expires . . . . . . . . . . : March-19-48 9:25:06 PM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 363623049
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-CC-AA-07-18-03-73-6D-6A-00
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 18-03-73-6D-6A-00
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : AC-72-89-2B-C0-EA
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C1841663-043D-490A-B76A-5E668D5E36A3}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{B53A061D-131F-453E-A55E-FD6068D76538}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{1529B394-64CE-47AE-BE6C-B2A7956D264C}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{7AE6AF88-E555-4B0C-AC0E-47607DBE003A}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.2.1

Name: google.com
Addresses: 74.125.115.104
74.125.115.105
74.125.115.106
74.125.115.99
74.125.115.147
74.125.115.103


Pinging google.com [74.125.113.103] with 32 bytes of data:
Reply from 74.125.113.103: bytes=32 time=56ms TTL=52
Reply from 74.125.113.103: bytes=32 time=46ms TTL=52

Ping statistics for 74.125.113.103:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 46ms, Maximum = 56ms, Average = 51ms
Server: UnKnown
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.2.43
98.137.149.56


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=67ms TTL=54
Reply from 209.191.122.70: bytes=32 time=63ms TTL=54

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 63ms, Maximum = 67ms, Average = 65ms
Server: UnKnown
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 3ms, Average = 1ms
===========================================================================
Interface List
16...ac 72 89 2b c0 e7 ......Microsoft Virtual WiFi Miniport Adapter #2
15...ac 72 89 2b c0 e7 ......Microsoft Virtual WiFi Miniport Adapter
14...ac 72 89 2b c0 e6 ......Intel® Centrino® Wireless-N 1030
13...18 03 73 6d 6a 00 ......Realtek PCIe FE Family Controller
12...ac 72 89 2b c0 ea ......Bluetooth Device (Personal Area Network)
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.2 30
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.2 286
192.168.2.2 255.255.255.255 On-link 192.168.2.2 286
192.168.2.255 255.255.255.255 On-link 192.168.2.2 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.2 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.2 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
14 286 fe80::/64 On-link
14 286 fe80::dc3a:3d7b:cd57:c10e/128
On-link
1 306 ff00::/8 On-link
14 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/11/2012 02:44:10 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2012 01:15:30 PM) (Source: Application Error) (User: )
Description: Faulting application name: MapleStory.exe, version: 1.0.0.1, time stamp: 0x4f264f5d
Faulting module name: MapleStory.exe, version: 1.0.0.1, time stamp: 0x4f264f5d
Exception code: 0xc0000005
Fault offset: 0x007ba616
Faulting process id: 0x1e24
Faulting application start time: 0xMapleStory.exe0
Faulting application path: MapleStory.exe1
Faulting module path: MapleStory.exe2
Report Id: MapleStory.exe3

Error: (02/11/2012 11:58:15 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/11/2012 11:58:10 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/11/2012 11:11:51 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (02/11/2012 10:00:29 AM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (02/11/2012 09:50:24 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2012 01:04:05 AM) (Source: Application Error) (User: )
Description: Faulting application name: mcagent.exe, version: 11.0.644.0, time stamp: 0x4ecc1f77
Faulting module name: mcupdshm.dll, version: 11.0.630.0, time stamp: 0x4e85ae96
Exception code: 0xc0000005
Fault offset: 0x00000000000086cc
Faulting process id: 0x1324
Faulting application start time: 0xmcagent.exe0
Faulting application path: mcagent.exe1
Faulting module path: mcagent.exe2
Report Id: mcagent.exe3

Error: (02/10/2012 10:17:29 PM) (Source: Application Error) (User: )
Description: Faulting application name: MapleStory.exe, version: 1.0.0.1, time stamp: 0x4f264f5d
Faulting module name: MapleStory.exe, version: 1.0.0.1, time stamp: 0x4f264f5d
Exception code: 0xc0000005
Fault offset: 0x007ba616
Faulting process id: 0x1e98
Faulting application start time: 0xMapleStory.exe0
Faulting application path: MapleStory.exe1
Faulting module path: MapleStory.exe2
Report Id: MapleStory.exe3

Error: (02/10/2012 06:08:56 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (02/11/2012 02:47:18 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error:
%%1068

Error: (02/11/2012 02:47:18 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service depends on the Base Filtering Engine service which failed to start because of the following error:
%%5

Error: (02/11/2012 02:47:18 PM) (Source: Service Control Manager) (User: )
Description: The Base Filtering Engine service terminated with the following error:
%%5

Error: (02/11/2012 02:47:18 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error:
%%1068

Error: (02/11/2012 02:47:18 PM) (Source: Service Control Manager) (User: )
Description: The Base Filtering Engine service terminated with the following error:
%%5

Error: (02/11/2012 02:47:18 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service depends on the Base Filtering Engine service which failed to start because of the following error:
%%5

Error: (02/11/2012 02:46:23 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (02/11/2012 02:46:11 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (02/11/2012 02:45:53 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (02/11/2012 02:44:05 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends on the Base Filtering Engine service which failed to start because of the following error:
%%5


Microsoft Office Sessions:
=========================
Error: (02/11/2012 02:44:10 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2012 01:15:30 PM) (Source: Application Error)(User: )
Description: MapleStory.exe1.0.0.14f264f5dMapleStory.exe1.0.0.14f264f5dc0000005007ba6161e2401cce8e0fa0a11b0C:\Nexon\MapleStory\MapleStory.exeC:\Nexon\MapleStory\MapleStory.exe61401a89-54dc-11e1-b612-ac72892bc0ea

Error: (02/11/2012 11:58:15 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jacky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KLB9IKKB\esetsmartinstaller_enu.exe

Error: (02/11/2012 11:58:10 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jacky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KLB9IKKB\esetsmartinstaller_enu.exe

Error: (02/11/2012 11:11:51 AM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (02/11/2012 10:00:29 AM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (02/11/2012 09:50:24 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2012 01:04:05 AM) (Source: Application Error)(User: )
Description: mcagent.exe11.0.644.04ecc1f77mcupdshm.dll11.0.630.04e85ae96c000000500000000000086cc132401cce84902c3dd49C:\Program Files\mcafee.com\agent\mcagent.exec:\PROGRA~1\mcafee\msc\mcupdshm.dll339232a7-5476-11e1-ae4f-ac72892bc0ea

Error: (02/10/2012 10:17:29 PM) (Source: Application Error)(User: )
Description: MapleStory.exe1.0.0.14f264f5dMapleStory.exe1.0.0.14f264f5dc0000005007ba6161e9801cce84953e5a445C:\Nexon\MapleStory\MapleStory.exeC:\Nexon\MapleStory\MapleStory.exeed385fdd-545e-11e1-ae4f-ac72892bc0ea

Error: (02/10/2012 06:08:56 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


=========================== Installed Programs ============================

AC3Filter 1.63b (Version: 1.63b)
Adobe AIR (Version: 1.5.3.9130)
Adobe Flash Player 10 Plugin (Version: 10.3.181.22)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.55)
Adobe Photoshop Elements 8.0 (Version: 8.0)
Adobe Reader X (10.1.1) MUI (Version: 10.1.1)
Advanced Audio FX Engine (Version: 1.12.05)
µTorrent (Version: 3.0.0)
Audition (Version: 1.00.0000)
Bamboo (Version: 5.2.4-6)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.41.3.0173)
Dell DataSafe Local Backup - Support Software (Version: 9.4.55)
Dell DataSafe Local Backup (Version: 9.4.55)
Dell DataSafe Online (Version: 2.1.19634)
Dell Digital Delivery (Version: 1.7.4501.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell MusicStage (Version: 1.5.201.0)
Dell Perks Webslice IE8 (Version: 8.0)
Dell PhotoStage (Version: 1.5.0.65)
Dell Stage (Version: 1.5.201.0)
Dell Support Center (Version: 3.1.5907.23)
Dell Touchpad (Version: 7.1209.101.204)
Dell VideoStage (Version: 1.2.0.1712)
Dell Webcam Central (Version: 2.00.44)
DivX Web Player (Version: 1.5.0)
Dragon Age: Origins (Version: 1.04)
ERUNT 1.1j
ESET Online Scanner v3
Google Chrome (Version: 16.0.912.77)
IDT Audio (Version: 1.0.6324.0)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1118)
Intel® Processor Graphics (Version: 8.15.10.2361)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.0.0.0454)
Intel® PROSet/Wireless WiFi Software (Version: 14.00.1000)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
Intel® WiDi (Version: 2.1.35.0)
Intel® Wireless Display
Internet Explorer (Version: 8)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 22 (Version: 6.0.220)
Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 6 Update 30 (Version: 6.0.300)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
MapleStory
McAfee SecurityCenter (Version: 11.0.654)
McAfee Virtual Technician (Version: 6.3.0.1911)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft PowerPoint Viewer (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nexon Game Manager
Nexus Mod Manager (Version: 0.13.1)
NVIDIA PhysX (Version: 9.09.0203)
OpenOffice.org 3.3 (Version: 3.3.9567)
Pando Media Booster (Version: 2.6.0.1)
Quickset64 (Version: 10.09.20)
Realtek Ethernet Controller Driver (Version: 7.31.1025.2010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30126)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.32.0)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.5 (Version: 5.5.124)
Sony Ericsson PC Companion 2.01.231 (Version: 2.01.231)
Sony Ericsson Update Engine (Version: 2.11.11.21)
Sony Ericsson Update Service (Version: 2.11.7.13)
SUPERAntiSpyware (Version: 5.0.1144)
TrustedID (Version: 5.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0)
WebTablet IE Plugin (Version: 1.1.0.7)
WebTablet Netscape Plugin (Version: 1.1.0.5)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.10 beta 1 (64-bit) (Version: 4.10.1)

========================= Memory info: ===================================

Percentage of memory in use: 38%
Total physical RAM: 4003.17 MB
Available physical RAM: 2477.64 MB
Total Pagefile: 8004.54 MB
Available Pagefile: 5580.58 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.14 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:352.29 GB) NTFS

========================= Users: ========================================

User accounts for \\JACKY-PC

Administrator Guest Jacky


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:49 AM

Posted 11 February 2012 - 05:26 PM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows-vista/Turn-System-Restore-on-or-off

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#7 JackedPC

JackedPC
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:49 AM

Posted 11 February 2012 - 06:20 PM

Awesome! Thank-you so much for helping!

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:49 AM

Posted 11 February 2012 - 07:13 PM

You're most welcome :)

#9 chraga89

chraga89

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:49 AM

Posted 24 May 2012 - 10:14 AM

hi narenxp this link is corrupted

http://www.mediafire.com/?3g2d9ijwwe5aa75

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:49 AM

Posted 24 May 2012 - 10:27 AM

Here are the links for all the four services

windows firewall

base filtering engine

security center

windows defender


good luck

#11 chraga89

chraga89

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:49 AM

Posted 25 May 2012 - 03:07 AM

thanks a lot narenxp, my firewall is back in service again.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:49 AM

Posted 25 May 2012 - 05:37 AM

You're most welcome :)

Edited by narenxp, 25 May 2012 - 05:37 AM.


#13 shaileshsgaur

shaileshsgaur

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:05:49 AM

Posted 03 October 2012 - 04:14 PM

Hello

#14 PapaNeedsHelp

PapaNeedsHelp

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:09:49 PM

Posted 26 December 2012 - 02:47 PM

Hello. I have followed the steps you detailed above, but my daughter's McaFee Firewall still refuses to stay running. I have saved the logs and can post them here or in a new message as you desire.

History: Her McAfee definitions were up to date, and everything was working fine about a week ago. She went to apply Windows Updates, then shut down for a few days. When she powered back up, within a few minutes she got a warning that her computer was not protected. Opening the McAfee program showed the firewall was turned off. The Windows firewall stil lshows enabled however. Whenever we start the McAfee firewall, within 5 sec to 5 minutes it turn back off again.

The main difference I see between the logs above and hers is that the Windows Firewall errors noted in the very first log were not present in my run.

No AV scanner has found anything significant that I can see (excepting the ESET scanner finding the Dell DataSafe Backup service and quarantining it, probably since I went into the advanced settings and turned on the additional 2 checkboxes).


Can someone please help?


Thank you!

#15 PapaNeedsHelp

PapaNeedsHelp

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:09:49 PM

Posted 26 December 2012 - 03:50 PM

FYI, I found the link to the McAfee Virtual Technician (http://mvt.mcafee.com), and it reported several registry issues whose correction seem to have resolved the issue. Since no actual infections were found by any of the tools, I donot know what made these changes, and will keep an eye out for their return (and open a new post if/when that happens).

The changes seem pretty purposeful to me. Is it possible that something tried to infect, made these changes, and got caught before it got itself fully clawed-in?

In case it helps anyone else in this same state, the reported issues were:

Expected Registry Value not Present
Expected : 60
Existing : 600
Key: HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\SystemCore\VSCore\On Access Scanner\McShield\Configuration ScanProcessesDelaySeconds

Expected Registry Value not Present
Expected : ini log txt trc
Existing : ini log txt trc wiki-publisher log1 evtx mui
Key: HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\SystemCore\VSCore\On Access Scanner\McShield\Configuration SmoothWritesExtensions

Expected Registry Value not Present
Expected : 2
Existing : 4
Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\McMPFSvc Start

Expected Service State Incorrect
Expected : running
Existing : stopped
Service: McMPFSvc "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc

Expected Service Startup type Incorrect
Expected : automatic
Existing : disabled
Service: McMPFSvc "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users