Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow shut down and random redirects


  • This topic is locked This topic is locked
23 replies to this topic

#1 AMew

AMew

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 26 February 2012 - 08:25 PM

Hello! This is my first time on these forums; I'm hoping I can find a solution for my problem.

My laptop is relatively new and I'm already having problems with it. It's OS is Windows 7.

I'm having trouble with it recently after acquiring and getting rid of the AVG Security 2012 virus (I followed the bleepingcomputer guide to do so). It's been slow to shut down and sometimes I even have to manually shut down by holding down the power button. Obviously, this isn't the safest/smartest thing to do but it's been the only solution when I need to turn my laptop off.

Additionally, sometimes (although not all the time - it is very random) I will click something on /any/ website and it will redirect me to something completely different. Most of the time it links me to a website called "findgirlfriend.net". Sometimes, if I let the site load, it will then redirect me to a completely different site too. I'm assuming my browser might be hijacked but I can't really find a solution for it. I tried using Seek and Destroy but it didn't completely work, I suppose.

Anyway, suggestions? Am I infected?

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:27 AM

Posted 26 February 2012 - 09:15 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 AMew

AMew
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 26 February 2012 - 09:53 PM

20:20:00.0341 6804 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49
20:20:00.0467 6804 ============================================================
20:20:00.0467 6804 Current date / time: 2012/02/26 20:20:00.0467
20:20:00.0468 6804 SystemInfo:
20:20:00.0468 6804
20:20:00.0468 6804 OS Version: 6.1.7601 ServicePack: 1.0
20:20:00.0468 6804 Product type: Workstation
20:20:00.0468 6804 ComputerName: MEW-PC
20:20:00.0468 6804 UserName: Mew
20:20:00.0468 6804 Windows directory: C:\windows
20:20:00.0468 6804 System windows directory: C:\windows
20:20:00.0469 6804 Running under WOW64
20:20:00.0469 6804 Processor architecture: Intel x64
20:20:00.0469 6804 Number of processors: 4
20:20:00.0469 6804 Page size: 0x1000
20:20:00.0469 6804 Boot type: Normal boot
20:20:00.0469 6804 ============================================================
20:20:01.0261 6804 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:20:01.0273 6804 \Device\Harddisk0\DR0:
20:20:01.0274 6804 MBR used
20:20:01.0274 6804 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
20:20:01.0274 6804 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
20:20:01.0293 6804 Initialize success
20:20:01.0293 6804 ============================================================
20:20:16.0976 6796 ============================================================
20:20:16.0976 6796 Scan started
20:20:16.0976 6796 Mode: Manual; TDLFS;
20:20:16.0976 6796 ============================================================
20:20:17.0558 6796 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
20:20:17.0569 6796 1394ohci - ok
20:20:17.0612 6796 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
20:20:17.0618 6796 ACPI - ok
20:20:17.0641 6796 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
20:20:17.0644 6796 AcpiPmi - ok
20:20:17.0759 6796 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
20:20:17.0782 6796 adp94xx - ok
20:20:17.0859 6796 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
20:20:17.0871 6796 adpahci - ok
20:20:17.0944 6796 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
20:20:17.0963 6796 adpu320 - ok
20:20:18.0100 6796 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
20:20:18.0135 6796 AFD - ok
20:20:18.0187 6796 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
20:20:18.0192 6796 agp440 - ok
20:20:18.0237 6796 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
20:20:18.0240 6796 aliide - ok
20:20:18.0255 6796 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
20:20:18.0279 6796 amdide - ok
20:20:18.0303 6796 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
20:20:18.0308 6796 AmdK8 - ok
20:20:18.0323 6796 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\drivers\amdppm.sys
20:20:18.0328 6796 AmdPPM - ok
20:20:18.0369 6796 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
20:20:18.0375 6796 amdsata - ok
20:20:18.0399 6796 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
20:20:18.0407 6796 amdsbs - ok
20:20:18.0427 6796 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
20:20:18.0431 6796 amdxata - ok
20:20:18.0475 6796 AMPPAL (7d9e301ab3247765702d0b65e2e47e50) C:\windows\system32\DRIVERS\AMPPAL.sys
20:20:18.0481 6796 AMPPAL - ok
20:20:18.0498 6796 AMPPALP (7d9e301ab3247765702d0b65e2e47e50) C:\windows\system32\DRIVERS\amppal.sys
20:20:18.0504 6796 AMPPALP - ok
20:20:18.0612 6796 ApfiltrService (24ed0eb2b2558970176ecee680f8f806) C:\windows\system32\DRIVERS\Apfiltr.sys
20:20:18.0788 6796 ApfiltrService - ok
20:20:18.0872 6796 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
20:20:18.0877 6796 AppID - ok
20:20:18.0926 6796 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
20:20:18.0931 6796 arc - ok
20:20:18.0964 6796 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
20:20:18.0970 6796 arcsas - ok
20:20:19.0070 6796 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
20:20:19.0073 6796 AsyncMac - ok
20:20:19.0107 6796 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
20:20:19.0109 6796 atapi - ok
20:20:19.0227 6796 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\windows\system32\DRIVERS\AVGIDSDriver.Sys
20:20:19.0233 6796 AVGIDSDriver - ok
20:20:19.0280 6796 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\windows\system32\DRIVERS\AVGIDSEH.Sys
20:20:19.0283 6796 AVGIDSEH - ok
20:20:19.0316 6796 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\windows\system32\DRIVERS\AVGIDSFilter.Sys
20:20:19.0320 6796 AVGIDSFilter - ok
20:20:19.0364 6796 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\windows\system32\DRIVERS\avgldx64.sys
20:20:19.0374 6796 Avgldx64 - ok
20:20:19.0400 6796 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\windows\system32\DRIVERS\avgmfx64.sys
20:20:19.0404 6796 Avgmfx64 - ok
20:20:19.0445 6796 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\windows\system32\DRIVERS\avgrkx64.sys
20:20:19.0449 6796 Avgrkx64 - ok
20:20:19.0478 6796 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\windows\system32\DRIVERS\avgtdia.sys
20:20:19.0490 6796 Avgtdia - ok
20:20:19.0612 6796 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
20:20:19.0636 6796 b06bdrv - ok
20:20:19.0705 6796 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
20:20:19.0714 6796 b57nd60a - ok
20:20:19.0830 6796 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
20:20:19.0834 6796 Beep - ok
20:20:19.0878 6796 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
20:20:19.0882 6796 blbdrive - ok
20:20:20.0012 6796 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
20:20:20.0015 6796 bowser - ok
20:20:20.0047 6796 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
20:20:20.0051 6796 BrFiltLo - ok
20:20:20.0068 6796 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
20:20:20.0071 6796 BrFiltUp - ok
20:20:20.0125 6796 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
20:20:20.0136 6796 Brserid - ok
20:20:20.0165 6796 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
20:20:20.0168 6796 BrSerWdm - ok
20:20:20.0245 6796 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
20:20:20.0249 6796 BrUsbMdm - ok
20:20:20.0264 6796 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
20:20:20.0267 6796 BrUsbSer - ok
20:20:20.0322 6796 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
20:20:20.0327 6796 BthEnum - ok
20:20:20.0392 6796 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
20:20:20.0397 6796 BTHMODEM - ok
20:20:20.0434 6796 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
20:20:20.0439 6796 BthPan - ok
20:20:20.0500 6796 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\system32\Drivers\BTHport.sys
20:20:20.0509 6796 BTHPORT - ok
20:20:20.0602 6796 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\system32\Drivers\BTHUSB.sys
20:20:20.0607 6796 BTHUSB - ok
20:20:20.0651 6796 btmaudio (274e47bd9c1367bdbfa9df10c2e6c544) C:\windows\system32\drivers\btmaud.sys
20:20:20.0655 6796 btmaudio - ok
20:20:20.0688 6796 btmaux (75eab5aaf6e9f83739249ce60b4b9c39) C:\windows\system32\DRIVERS\btmaux.sys
20:20:20.0692 6796 btmaux - ok
20:20:20.0730 6796 btmhsf (0b1cc2221dc5990e4557a78ce9afad4f) C:\windows\system32\DRIVERS\btmhsf.sys
20:20:20.0736 6796 btmhsf - ok
20:20:20.0765 6796 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
20:20:20.0770 6796 cdfs - ok
20:20:20.0810 6796 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
20:20:20.0816 6796 cdrom - ok
20:20:20.0924 6796 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
20:20:20.0928 6796 circlass - ok
20:20:20.0980 6796 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
20:20:20.0991 6796 CLFS - ok
20:20:21.0113 6796 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
20:20:21.0118 6796 CmBatt - ok
20:20:21.0140 6796 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
20:20:21.0143 6796 cmdide - ok
20:20:21.0182 6796 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
20:20:21.0206 6796 CNG - ok
20:20:21.0263 6796 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\drivers\compbatt.sys
20:20:21.0268 6796 Compbatt - ok
20:20:21.0302 6796 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
20:20:21.0306 6796 CompositeBus - ok
20:20:21.0347 6796 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
20:20:21.0351 6796 crcdisk - ok
20:20:21.0485 6796 CtClsFlt (bc3d4f90978cd7c8eabd1baf3bf7873a) C:\windows\system32\DRIVERS\CtClsFlt.sys
20:20:21.0493 6796 CtClsFlt - ok
20:20:21.0618 6796 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
20:20:21.0624 6796 DfsC - ok
20:20:21.0654 6796 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
20:20:21.0657 6796 discache - ok
20:20:21.0703 6796 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
20:20:21.0708 6796 Disk - ok
20:20:21.0823 6796 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\windows\system32\DRIVERS\Dot4.sys
20:20:21.0831 6796 Dot4 - ok
20:20:21.0861 6796 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\windows\system32\DRIVERS\Dot4Prt.sys
20:20:21.0866 6796 Dot4Print - ok
20:20:21.0897 6796 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\windows\system32\DRIVERS\dot4usb.sys
20:20:21.0902 6796 dot4usb - ok
20:20:21.0939 6796 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
20:20:21.0943 6796 drmkaud - ok
20:20:21.0996 6796 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
20:20:22.0031 6796 DXGKrnl - ok
20:20:22.0155 6796 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
20:20:22.0255 6796 ebdrv - ok
20:20:22.0380 6796 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
20:20:22.0403 6796 elxstor - ok
20:20:22.0426 6796 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
20:20:22.0430 6796 ErrDev - ok
20:20:22.0543 6796 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
20:20:22.0551 6796 exfat - ok
20:20:22.0578 6796 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
20:20:22.0585 6796 fastfat - ok
20:20:22.0624 6796 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
20:20:22.0628 6796 fdc - ok
20:20:22.0666 6796 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
20:20:22.0669 6796 FileInfo - ok
20:20:22.0691 6796 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
20:20:22.0694 6796 Filetrace - ok
20:20:22.0725 6796 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
20:20:22.0729 6796 flpydisk - ok
20:20:22.0760 6796 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
20:20:22.0766 6796 FltMgr - ok
20:20:22.0786 6796 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
20:20:22.0788 6796 FsDepends - ok
20:20:22.0809 6796 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
20:20:22.0811 6796 Fs_Rec - ok
20:20:22.0855 6796 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
20:20:22.0862 6796 fvevol - ok
20:20:22.0899 6796 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
20:20:22.0904 6796 gagp30kx - ok
20:20:23.0006 6796 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
20:20:23.0011 6796 GEARAspiWDM - ok
20:20:23.0061 6796 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
20:20:23.0066 6796 hcw85cir - ok
20:20:23.0129 6796 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
20:20:23.0136 6796 HdAudAddService - ok
20:20:23.0203 6796 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
20:20:23.0209 6796 HDAudBus - ok
20:20:23.0229 6796 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
20:20:23.0233 6796 HidBatt - ok
20:20:23.0252 6796 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
20:20:23.0257 6796 HidBth - ok
20:20:23.0277 6796 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
20:20:23.0279 6796 HidIr - ok
20:20:23.0337 6796 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
20:20:23.0341 6796 HidUsb - ok
20:20:23.0456 6796 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
20:20:23.0460 6796 HpSAMD - ok
20:20:23.0554 6796 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
20:20:23.0582 6796 HTTP - ok
20:20:23.0605 6796 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
20:20:23.0606 6796 hwpolicy - ok
20:20:23.0677 6796 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
20:20:23.0680 6796 i8042prt - ok
20:20:23.0739 6796 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\windows\system32\DRIVERS\iaStor.sys
20:20:23.0742 6796 iaStor - ok
20:20:23.0861 6796 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
20:20:23.0880 6796 iaStorV - ok
20:20:23.0937 6796 iBtFltCoex (8a4ec1c3f10385181b1066120c610ae5) C:\windows\system32\DRIVERS\iBtFltCoex.sys
20:20:23.0942 6796 iBtFltCoex - ok
20:20:24.0244 6796 igfx (174bcac474de13b2650e444cf124828e) C:\windows\system32\DRIVERS\igdkmd64.sys
20:20:24.0510 6796 igfx - ok
20:20:24.0562 6796 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
20:20:24.0568 6796 iirsp - ok
20:20:24.0647 6796 intaud_WaveExtensible (caddf0927dac63edae48f5c35a61d87d) C:\windows\system32\drivers\intelaud.sys
20:20:24.0731 6796 intaud_WaveExtensible - ok
20:20:24.0820 6796 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\windows\system32\DRIVERS\IntcDAud.sys
20:20:24.0970 6796 IntcDAud - ok
20:20:25.0053 6796 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
20:20:25.0058 6796 intelide - ok
20:20:25.0089 6796 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
20:20:25.0093 6796 intelppm - ok
20:20:25.0134 6796 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
20:20:25.0138 6796 IpFilterDriver - ok
20:20:25.0153 6796 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
20:20:25.0159 6796 IPMIDRV - ok
20:20:25.0203 6796 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
20:20:25.0207 6796 IPNAT - ok
20:20:25.0244 6796 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
20:20:25.0248 6796 IRENUM - ok
20:20:25.0273 6796 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
20:20:25.0277 6796 isapnp - ok
20:20:25.0324 6796 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
20:20:25.0333 6796 iScsiPrt - ok
20:20:25.0383 6796 iwdbus (716f66336f10885d935b08174dc54242) C:\windows\system32\DRIVERS\iwdbus.sys
20:20:25.0545 6796 iwdbus - ok
20:20:25.0648 6796 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
20:20:25.0653 6796 kbdclass - ok
20:20:25.0682 6796 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
20:20:25.0686 6796 kbdhid - ok
20:20:25.0741 6796 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
20:20:25.0746 6796 KSecDD - ok
20:20:25.0775 6796 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
20:20:25.0782 6796 KSecPkg - ok
20:20:25.0823 6796 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
20:20:25.0827 6796 ksthunk - ok
20:20:25.0920 6796 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
20:20:25.0925 6796 lltdio - ok
20:20:26.0051 6796 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
20:20:26.0057 6796 LSI_FC - ok
20:20:26.0074 6796 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
20:20:26.0081 6796 LSI_SAS - ok
20:20:26.0109 6796 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
20:20:26.0112 6796 LSI_SAS2 - ok
20:20:26.0157 6796 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
20:20:26.0160 6796 LSI_SCSI - ok
20:20:26.0198 6796 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
20:20:26.0203 6796 luafv - ok
20:20:26.0239 6796 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\windows\system32\drivers\mbam.sys
20:20:26.0243 6796 MBAMProtector - ok
20:20:26.0314 6796 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
20:20:26.0316 6796 megasas - ok
20:20:26.0358 6796 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
20:20:26.0368 6796 MegaSR - ok
20:20:26.0485 6796 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\windows\system32\DRIVERS\HECIx64.sys
20:20:26.0490 6796 MEIx64 - ok
20:20:26.0543 6796 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
20:20:26.0547 6796 Modem - ok
20:20:26.0604 6796 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
20:20:26.0608 6796 monitor - ok
20:20:26.0642 6796 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
20:20:26.0646 6796 mouclass - ok
20:20:26.0734 6796 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
20:20:26.0739 6796 mouhid - ok
20:20:26.0767 6796 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
20:20:26.0771 6796 mountmgr - ok
20:20:26.0798 6796 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
20:20:26.0804 6796 mpio - ok
20:20:26.0818 6796 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
20:20:26.0821 6796 mpsdrv - ok
20:20:26.0849 6796 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
20:20:26.0855 6796 MRxDAV - ok
20:20:26.0891 6796 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
20:20:26.0895 6796 mrxsmb - ok
20:20:26.0931 6796 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
20:20:26.0940 6796 mrxsmb10 - ok
20:20:26.0976 6796 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
20:20:26.0980 6796 mrxsmb20 - ok
20:20:27.0005 6796 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
20:20:27.0009 6796 msahci - ok
20:20:27.0033 6796 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
20:20:27.0039 6796 msdsm - ok
20:20:27.0090 6796 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
20:20:27.0092 6796 Msfs - ok
20:20:27.0109 6796 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
20:20:27.0111 6796 mshidkmdf - ok
20:20:27.0134 6796 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
20:20:27.0138 6796 msisadrv - ok
20:20:27.0203 6796 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
20:20:27.0206 6796 MSKSSRV - ok
20:20:27.0243 6796 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
20:20:27.0246 6796 MSPCLOCK - ok
20:20:27.0288 6796 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
20:20:27.0290 6796 MSPQM - ok
20:20:27.0337 6796 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
20:20:27.0348 6796 MsRPC - ok
20:20:27.0395 6796 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
20:20:27.0397 6796 mssmbios - ok
20:20:27.0433 6796 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
20:20:27.0437 6796 MSTEE - ok
20:20:27.0451 6796 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
20:20:27.0455 6796 MTConfig - ok
20:20:27.0487 6796 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
20:20:27.0489 6796 Mup - ok
20:20:27.0548 6796 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
20:20:27.0556 6796 NativeWifiP - ok
20:20:27.0678 6796 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\windows\system32\drivers\ndis.sys
20:20:27.0714 6796 NDIS - ok
20:20:27.0756 6796 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
20:20:27.0760 6796 NdisCap - ok
20:20:27.0808 6796 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
20:20:27.0810 6796 NdisTapi - ok
20:20:27.0840 6796 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
20:20:27.0844 6796 Ndisuio - ok
20:20:27.0864 6796 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
20:20:27.0869 6796 NdisWan - ok
20:20:27.0897 6796 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
20:20:27.0900 6796 NDProxy - ok
20:20:27.0957 6796 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
20:20:27.0960 6796 NetBIOS - ok
20:20:27.0995 6796 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
20:20:28.0000 6796 NetBT - ok
20:20:28.0337 6796 NETwNs64 (50ad7f7040c22bb7caa59a0880875a21) C:\windows\system32\DRIVERS\NETwNs64.sys
20:20:28.0546 6796 NETwNs64 - ok
20:20:28.0596 6796 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
20:20:28.0598 6796 nfrd960 - ok
20:20:28.0633 6796 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
20:20:28.0636 6796 Npfs - ok
20:20:28.0659 6796 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
20:20:28.0659 6796 nsiproxy - ok
20:20:28.0726 6796 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
20:20:28.0798 6796 Ntfs - ok
20:20:28.0838 6796 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
20:20:28.0840 6796 Null - ok
20:20:28.0901 6796 nusb3hub (158ad24745bd85ba9be3c51c38f48c32) C:\windows\system32\DRIVERS\nusb3hub.sys
20:20:28.0913 6796 nusb3hub - ok
20:20:29.0009 6796 nusb3xhc (d40a13b2c0891e218f9523b376955db6) C:\windows\system32\DRIVERS\nusb3xhc.sys
20:20:29.0016 6796 nusb3xhc - ok
20:20:29.0061 6796 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
20:20:29.0065 6796 nvraid - ok
20:20:29.0110 6796 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
20:20:29.0117 6796 nvstor - ok
20:20:29.0145 6796 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
20:20:29.0149 6796 nv_agp - ok
20:20:29.0249 6796 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
20:20:29.0254 6796 ohci1394 - ok
20:20:29.0309 6796 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
20:20:29.0315 6796 Parport - ok
20:20:29.0357 6796 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
20:20:29.0362 6796 partmgr - ok
20:20:29.0409 6796 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
20:20:29.0416 6796 pci - ok
20:20:29.0457 6796 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
20:20:29.0461 6796 pciide - ok
20:20:29.0508 6796 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
20:20:29.0516 6796 pcmcia - ok
20:20:29.0556 6796 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
20:20:29.0574 6796 pcw - ok
20:20:29.0665 6796 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
20:20:29.0693 6796 PEAUTH - ok
20:20:29.0787 6796 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
20:20:29.0792 6796 PptpMiniport - ok
20:20:29.0823 6796 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
20:20:29.0826 6796 Processor - ok
20:20:29.0869 6796 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
20:20:29.0875 6796 Psched - ok
20:20:29.0919 6796 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\windows\system32\Drivers\PxHlpa64.sys
20:20:29.0934 6796 PxHlpa64 - ok
20:20:30.0011 6796 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
20:20:30.0060 6796 ql2300 - ok
20:20:30.0078 6796 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
20:20:30.0080 6796 ql40xx - ok
20:20:30.0112 6796 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
20:20:30.0114 6796 QWAVEdrv - ok
20:20:30.0125 6796 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
20:20:30.0127 6796 RasAcd - ok
20:20:30.0179 6796 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
20:20:30.0185 6796 RasAgileVpn - ok
20:20:30.0229 6796 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
20:20:30.0234 6796 Rasl2tp - ok
20:20:30.0255 6796 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
20:20:30.0258 6796 RasPppoe - ok
20:20:30.0299 6796 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
20:20:30.0304 6796 RasSstp - ok
20:20:30.0326 6796 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
20:20:30.0337 6796 rdbss - ok
20:20:30.0366 6796 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
20:20:30.0369 6796 rdpbus - ok
20:20:30.0391 6796 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
20:20:30.0392 6796 RDPCDD - ok
20:20:30.0422 6796 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
20:20:30.0423 6796 RDPENCDD - ok
20:20:30.0446 6796 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
20:20:30.0448 6796 RDPREFMP - ok
20:20:30.0493 6796 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys
20:20:30.0500 6796 RDPWD - ok
20:20:30.0571 6796 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
20:20:30.0579 6796 rdyboost - ok
20:20:30.0681 6796 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
20:20:30.0688 6796 RFCOMM - ok
20:20:30.0726 6796 RMCAST (caf88d6573d21cd2aa27001ddbfdc74d) C:\windows\system32\DRIVERS\RMCAST.sys
20:20:30.0732 6796 RMCAST - ok
20:20:30.0879 6796 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
20:20:30.0884 6796 rspndr - ok
20:20:30.0938 6796 RSUSBSTOR (be29b0a3ac1e8bd02ffab8cee86badfa) C:\windows\system32\Drivers\RtsUStor.sys
20:20:30.0947 6796 RSUSBSTOR - ok
20:20:30.0986 6796 RTL8167 (2777226ee8bf50b059d7a7c90177e99c) C:\windows\system32\DRIVERS\Rt64win7.sys
20:20:30.0997 6796 RTL8167 - ok
20:20:31.0056 6796 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
20:20:31.0061 6796 sbp2port - ok
20:20:31.0109 6796 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
20:20:31.0113 6796 scfilter - ok
20:20:31.0153 6796 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
20:20:31.0156 6796 secdrv - ok
20:20:31.0203 6796 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
20:20:31.0207 6796 Serenum - ok
20:20:31.0240 6796 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
20:20:31.0245 6796 Serial - ok
20:20:31.0271 6796 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
20:20:31.0274 6796 sermouse - ok
20:20:31.0302 6796 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
20:20:31.0305 6796 sffdisk - ok
20:20:31.0316 6796 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
20:20:31.0318 6796 sffp_mmc - ok
20:20:31.0342 6796 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
20:20:31.0344 6796 sffp_sd - ok
20:20:31.0361 6796 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
20:20:31.0363 6796 sfloppy - ok
20:20:31.0419 6796 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
20:20:31.0424 6796 SiSRaid2 - ok
20:20:31.0444 6796 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
20:20:31.0449 6796 SiSRaid4 - ok
20:20:31.0478 6796 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
20:20:31.0481 6796 Smb - ok
20:20:31.0523 6796 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
20:20:31.0528 6796 spldr - ok
20:20:31.0580 6796 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
20:20:31.0603 6796 srv - ok
20:20:31.0634 6796 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
20:20:31.0646 6796 srv2 - ok
20:20:31.0676 6796 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
20:20:31.0681 6796 srvnet - ok
20:20:31.0722 6796 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
20:20:31.0727 6796 stexstor - ok
20:20:31.0803 6796 STHDA (ef5acde92ba3f691bbfef781cb063501) C:\windows\system32\DRIVERS\stwrt64.sys
20:20:31.0832 6796 STHDA - ok
20:20:31.0872 6796 StillCam (decacb6921ded1a38642642685d77dac) C:\windows\system32\DRIVERS\serscan.sys
20:20:31.0877 6796 StillCam - ok
20:20:31.0927 6796 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
20:20:31.0931 6796 swenum - ok
20:20:32.0048 6796 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys
20:20:32.0099 6796 Tcpip - ok
20:20:32.0234 6796 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys
20:20:32.0246 6796 TCPIP6 - ok
20:20:32.0279 6796 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
20:20:32.0282 6796 tcpipreg - ok
20:20:32.0303 6796 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
20:20:32.0307 6796 TDPIPE - ok
20:20:32.0322 6796 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
20:20:32.0325 6796 TDTCP - ok
20:20:32.0351 6796 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
20:20:32.0355 6796 tdx - ok
20:20:32.0367 6796 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
20:20:32.0381 6796 TermDD - ok
20:20:32.0493 6796 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
20:20:32.0497 6796 tssecsrv - ok
20:20:32.0530 6796 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
20:20:32.0535 6796 TsUsbFlt - ok
20:20:32.0552 6796 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
20:20:32.0555 6796 TsUsbGD - ok
20:20:32.0596 6796 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
20:20:32.0602 6796 tunnel - ok
20:20:32.0623 6796 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
20:20:32.0627 6796 uagp35 - ok
20:20:32.0657 6796 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
20:20:32.0666 6796 udfs - ok
20:20:32.0710 6796 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
20:20:32.0713 6796 uliagpkx - ok
20:20:32.0751 6796 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
20:20:32.0756 6796 umbus - ok
20:20:32.0771 6796 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
20:20:32.0774 6796 UmPass - ok
20:20:32.0828 6796 usbccgp (19ad7990c0b67e48dac5b26f99628223) C:\windows\system32\DRIVERS\usbccgp.sys
20:20:32.0834 6796 usbccgp - ok
20:20:32.0861 6796 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
20:20:32.0864 6796 usbcir - ok
20:20:32.0874 6796 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys
20:20:32.0876 6796 usbehci - ok
20:20:32.0916 6796 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
20:20:32.0923 6796 usbhub - ok
20:20:32.0952 6796 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
20:20:32.0956 6796 usbohci - ok
20:20:32.0983 6796 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
20:20:32.0987 6796 usbprint - ok
20:20:33.0037 6796 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
20:20:33.0043 6796 usbscan - ok
20:20:33.0082 6796 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
20:20:33.0100 6796 USBSTOR - ok
20:20:33.0129 6796 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
20:20:33.0132 6796 usbuhci - ok
20:20:33.0167 6796 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
20:20:33.0175 6796 usbvideo - ok
20:20:33.0220 6796 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
20:20:33.0222 6796 vdrvroot - ok
20:20:33.0258 6796 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
20:20:33.0262 6796 vga - ok
20:20:33.0296 6796 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
20:20:33.0299 6796 VgaSave - ok
20:20:33.0321 6796 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
20:20:33.0329 6796 vhdmp - ok
20:20:33.0351 6796 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
20:20:33.0354 6796 viaide - ok
20:20:33.0388 6796 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
20:20:33.0391 6796 volmgr - ok
20:20:33.0418 6796 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
20:20:33.0428 6796 volmgrx - ok
20:20:33.0458 6796 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
20:20:33.0481 6796 volsnap - ok
20:20:33.0510 6796 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
20:20:33.0517 6796 vsmraid - ok
20:20:33.0546 6796 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
20:20:33.0549 6796 vwifibus - ok
20:20:33.0582 6796 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
20:20:33.0587 6796 vwififlt - ok
20:20:33.0615 6796 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
20:20:33.0620 6796 vwifimp - ok
20:20:33.0678 6796 wacmoumonitor (fe75777289278a4941fe6139e82b3bd9) C:\windows\system32\DRIVERS\wacmoumonitor.sys
20:20:33.0682 6796 wacmoumonitor - ok
20:20:33.0731 6796 wacommousefilter (e04d43c7d1641e95d35cae6086c7e350) C:\windows\system32\DRIVERS\wacommousefilter.sys
20:20:33.0735 6796 wacommousefilter - ok
20:20:33.0774 6796 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
20:20:33.0779 6796 WacomPen - ok
20:20:33.0809 6796 wacomvhid (ec1ceb237e365330c1fcfc4876aa0ac0) C:\windows\system32\DRIVERS\wacomvhid.sys
20:20:33.0819 6796 wacomvhid - ok
20:20:33.0869 6796 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
20:20:33.0875 6796 WANARP - ok
20:20:33.0888 6796 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
20:20:33.0891 6796 Wanarpv6 - ok
20:20:33.0997 6796 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
20:20:34.0001 6796 Wd - ok
20:20:34.0044 6796 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
20:20:34.0079 6796 Wdf01000 - ok
20:20:34.0212 6796 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
20:20:34.0216 6796 WfpLwf - ok
20:20:34.0272 6796 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\windows\system32\DRIVERS\wimfltr.sys
20:20:34.0279 6796 WimFltr - ok
20:20:34.0315 6796 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
20:20:34.0318 6796 WIMMount - ok
20:20:34.0392 6796 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\DRIVERS\wmiacpi.sys
20:20:34.0393 6796 WmiAcpi - ok
20:20:34.0492 6796 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
20:20:34.0496 6796 ws2ifsl - ok
20:20:34.0544 6796 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
20:20:34.0549 6796 WudfPf - ok
20:20:34.0586 6796 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
20:20:34.0593 6796 WUDFRd - ok
20:20:34.0653 6796 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:20:34.0914 6796 \Device\Harddisk0\DR0 - ok
20:20:34.0922 6796 Boot (0x1200) (b4a651ea79a9998884da67ecffb5e2e7) \Device\Harddisk0\DR0\Partition0
20:20:34.0924 6796 \Device\Harddisk0\DR0\Partition0 - ok
20:20:34.0962 6796 Boot (0x1200) (9353cf31a6ec515e78353d1600509a2f) \Device\Harddisk0\DR0\Partition1
20:20:34.0964 6796 \Device\Harddisk0\DR0\Partition1 - ok
20:20:34.0971 6796 ============================================================
20:20:34.0971 6796 Scan finished
20:20:34.0971 6796 ============================================================
20:20:34.0989 3160 Detected object count: 0
20:20:34.0990 3160 Actual detected object count: 0




GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-02-26 20:43:42
Windows 6.1.7601 Service Pack 1
Running: uujtcyll.exe


---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\0015007f6c3b
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\4c809347c42a
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\bc7737048afc
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\0015007f6c3b (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\4c809347c42a (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\bc7737048afc (not active ControlSet)

---- EOF - GMER 1.0.15 ----




aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-02-26 20:45:43
-----------------------------
20:45:43.812 OS Version: Windows x64 6.1.7601 Service Pack 1
20:45:43.812 Number of processors: 4 586 0x2A07
20:45:43.813 ComputerName: MEW-PC UserName: Mew
20:45:46.358 Initialize success
20:46:09.688 AVAST engine defs: 12022604
20:46:21.293 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:46:21.298 Disk 0 Vendor: ST950032 D005 Size: 476940MB BusType: 3
20:46:21.317 Disk 0 MBR read successfully
20:46:21.323 Disk 0 MBR scan
20:46:21.332 Disk 0 Windows 7 default MBR code
20:46:21.348 Disk 0 Partition 1 00 DE Dell Utility DELL 8.0 100 MB offset 2048
20:46:21.366 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
20:46:21.393 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461838 MB offset 30926848
20:46:21.441 Disk 0 scanning C:\windows\system32\drivers
20:46:34.625 Service scanning
20:47:00.086 Modules scanning
20:47:00.087 Disk 0 trace - called modules:
20:47:00.099 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys
20:47:00.100 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800472b060]
20:47:00.101 3 CLASSPNP.SYS[fffff88001baa43f] -> nt!IofCallDriver -> [0xfffffa8004082740]
20:47:00.101 5 ACPI.sys[fffff88000f587a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800409e050]
20:47:01.858 AVAST engine scan C:\windows
20:47:04.676 AVAST engine scan C:\windows\system32
20:50:58.174 AVAST engine scan C:\windows\system32\drivers
20:51:09.093 AVAST engine scan C:\Users\Mew
20:52:46.409 Disk 0 MBR has been saved successfully to "C:\Users\Mew\Desktop\MBR.dat"
20:52:46.417 The log file has been saved successfully to "C:\Users\Mew\Desktop\aswMBR.txt"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:27 AM

Posted 26 February 2012 - 10:01 PM

That looks clean

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 AMew

AMew
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 27 February 2012 - 02:52 AM

C:\Users\Mew\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\120214175313942.rsc multiple threats deleted - quarantined



MiniToolBox by Farbar Version: 18-01-2012
Ran by Mew (administrator) on 27-02-2012 at 01:47:54
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.backup.ftp", "50.30.32.39"
"network.proxy.backup.ftp_port", 8080
"network.proxy.backup.socks", "50.30.32.39"
"network.proxy.backup.socks_port", 8080
"network.proxy.backup.ssl", "50.30.32.39"
"network.proxy.backup.ssl_port", 8080
"network.proxy.ftp", "50.30.32.39"
"network.proxy.ftp_port", 8080
"network.proxy.http", "50.30.32.39"
"network.proxy.http_port", 8080
"network.proxy.share_proxy_settings", true
"network.proxy.socks", "50.30.32.39"
"network.proxy.socks_port", 8080
"network.proxy.ssl", "50.30.32.39"
"network.proxy.ssl_port", 8080
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost






109.163.226.208 www.google-analytics.com.
109.163.226.208 ad-emea.doubleclick.net.
109.163.226.208 www.statcounter.com.
67.215.245.19 www.google-analytics.com.
67.215.245.19 ad-emea.doubleclick.net.
67.215.245.19 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe FE Family Controller = Local Area Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Intel® Centrino® Wireless-N 1030 = Wireless Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Mew-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : mshome.net

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 4C-80-93-47-C4-27
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 4C-80-93-47-C4-27
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 1030
Physical Address. . . . . . . . . : 4C-80-93-47-C4-26
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : public.amu.edu.pl
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 18-03-73-AA-F6-DA
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::bc99:65a8:b678:936f%13(Preferred)
IPv4 Address. . . . . . . . . . . : 150.254.106.40(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.252.0
Lease Obtained. . . . . . . . . . : Sunday, February 26, 2012 7:10:20 PM
Lease Expires . . . . . . . . . . : Monday, February 27, 2012 7:27:22 AM
Default Gateway . . . . . . . . . : 150.254.104.1
DHCP Server . . . . . . . . . . . : 150.254.104.3
DHCPv6 IAID . . . . . . . . . . . : 219677555
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-6E-F1-21-18-03-73-AA-F6-DA
DNS Servers . . . . . . . . . . . : fe80::3882:f988:7118:4135%13
150.254.65.22
150.254.65.21
NetBIOS over Tcpip. . . . . . . . : Enabled
Connection-specific DNS Suffix Search List :
mshome.net

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 4C-80-93-47-C4-2A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6ED64C6F-DF45-4A21-A06A-CEA164C8A7A1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{59CBF672-D6A6-484F-8AEF-51C2F20A0356}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{FB8D696E-3EE7-4D5D-ADA5-AFC3DB3459EA}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{8D19C8CE-E0A9-4A5D-A6A9-7638E8597B93}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{E646F9C0-7F14-4CE3-B7DC-D07D12232F93}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: fe80::3882:f988:7118:4135

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging google.com [209.85.148.138] with 32 bytes of data:
Reply from 209.85.148.138: bytes=32 time=29ms TTL=55
Reply from 209.85.148.138: bytes=32 time=28ms TTL=55

Ping statistics for 209.85.148.138:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 28ms, Maximum = 29ms, Average = 28ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: fe80::3882:f988:7118:4135

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=187ms TTL=53
Reply from 98.139.183.24: bytes=32 time=139ms TTL=53

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 139ms, Maximum = 187ms, Average = 163ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: fe80::3882:f988:7118:4135

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...4c 80 93 47 c4 27 ......Microsoft Virtual WiFi Miniport Adapter #2
16...4c 80 93 47 c4 27 ......Microsoft Virtual WiFi Miniport Adapter
15...4c 80 93 47 c4 26 ......Intel® Centrino® Wireless-N 1030
13...18 03 73 aa f6 da ......Realtek PCIe FE Family Controller
12...4c 80 93 47 c4 2a ......Bluetooth Device (Personal Area Network)
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 150.254.104.1 150.254.106.40 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
150.254.104.0 255.255.252.0 On-link 150.254.106.40 276
150.254.106.40 255.255.255.255 On-link 150.254.106.40 276
150.254.107.255 255.255.255.255 On-link 150.254.106.40 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 150.254.106.40 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 150.254.106.40 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
13 276 fe80::/64 On-link
13 276 fe80::bc99:65a8:b678:936f/128
On-link
1 306 ff00::/8 On-link
13 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/26/2012 11:42:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/26/2012 11:42:45 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/26/2012 11:28:02 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (02/26/2012 11:28:02 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (02/26/2012 11:28:02 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (02/26/2012 11:28:02 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (02/26/2012 11:28:02 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (02/26/2012 11:28:02 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (02/26/2012 11:28:02 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (02/26/2012 11:28:02 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.


System errors:
=============
Error: (02/26/2012 07:07:13 PM) (Source: Service Control Manager) (User: )
Description: The SBSD Security Center Service service depends the following service: wscsvc. This service might not be installed.

Error: (02/26/2012 07:07:13 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (02/26/2012 07:07:10 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (02/26/2012 07:07:10 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (02/26/2012 07:06:54 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (02/26/2012 01:50:50 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.

Error: (02/26/2012 00:22:53 PM) (Source: Service Control Manager) (User: )
Description: The SBSD Security Center Service service depends the following service: wscsvc. This service might not be installed.

Error: (02/26/2012 00:22:53 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (02/26/2012 00:22:46 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (02/26/2012 00:22:46 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.0)
64 Bit HP CIO Components Installer (Version: 6.2.2)
Accidental Damage Services Agreement (Version: 2.0.0)
Adobe AIR (Version: 3.1.0.4880)
Adobe Community Help (Version: 3.2.1)
Adobe Community Help (Version: 3.2.1.650)
Adobe Flash Player 10 ActiveX (Version: 10.3.183.10)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Photoshop Elements 9 (Version: 9.0)
Adobe Photoshop.com Inspiration Browser (Version: 3.07)
Adobe Reader X (10.1.1) MUI (Version: 10.1.1)
Advanced Audio FX Engine (Version: 1.12.05)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2114)
AVG 2012 (Version: 2012.0.1913)
AVG PC Tuneup (Version: 10.0.0.27)
Bamboo (Version: 5.2.5-5)
Bamboo Dock (Version: 4.0)
Bamboo Dock (Version: 4.0.0)
Banctec Service Agreement (Version: 2.0.0)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Blackhawk Striker 2 (Version: 2.2.0.95)
Bonjour (Version: 3.0.0.10)
Bounce Symphony (Version: 2.2.0.95)
BufferChm (Version: 140.0.212.000)
Build-a-lot 2 (Version: 2.2.0.95)
C4700 (Version: 140.0.690.000)
Cake Mania (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Combined Community Codec Pack 2011-11-11 (Version: 2011.11.11.0)
Complete Care Business Service Agreement (Version: 2.0.0)
Consumer In-Home Service Agreement (Version: 2.0.0)
Coupon Printer for Windows (Version: 5.0.0.0)
Cozi (Version: 1.0.6505.38692)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.47)
Dell DataSafe Online (Version: 2.1.19634)
Dell Digital Delivery (Version: 1.7.4501.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell MusicStage (Version: 1.5.201.0)
Dell PhotoStage (Version: 1.5.0.65)
Dell Stage (Version: 1.5.201.0)
Dell Support Center (Version: 3.1.5907.23)
Dell Touchpad (Version: 7.1209.101.204)
Dell VideoStage (Version: 1.2.0.1712)
Dell Webcam Central (Version: 2.00.44)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
DirectX 9 Runtime (Version: 1.00.0000)
Dora's World Adventure (Version: 2.2.0.95)
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
Escape Whisper Valley ™ (Version: 2.2.0.95)
ESET Online Scanner v3
Facebook Video Calling 1.1.1.1 (Version: 1.1.1)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.95)
Final Drive Fury (Version: 2.2.0.95)
Final Drive Nitro (Version: 2.2.0.95)
GPBaseService2 (Version: 140.0.211.000)
High-Definition Video Playback (Version: 7.3.10000.0.0)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart C4700 All-in-One Driver Software 14.0 Rel. 6 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.002.002.002)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
IDT Audio (Version: 1.0.6324.0)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1118)
Intel® Processor Graphics (Version: 8.15.10.2361)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.0.0587)
Intel® PROSet/Wireless WiFi Software (Version: 14.2.0000)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
Intel® WiDi (Version: 2.1.41.0)
Intel® Wireless Display
iTunes (Version: 10.5.2.11)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (64-bit) (Version: 6.0.270)
Java™ 6 Update 27 (Version: 6.0.270)
Jewel Quest (Version: 2.2.0.95)
Jewel Quest Solitaire 2 (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Livestream Procaster (Version: 20.2.0)
Luxor (Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
MarketResearch (Version: 140.0.212.000)
Media Go (Version: 2.0.317)
Media Go Video Playback Engine 1.84.111.07020 (Version: 1.84.111.07020)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mozilla Firefox 10.0.2 (x86 en-US) (Version: 10.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Namco All-Stars PAC-MAN (Version: 2.2.0.95)
Nero 10 Movie ThemePack Basic (Version: 10.2.10200.0.0)
Nero Control Center 10 (Version: 10.6.12500.0.5)
Nero ControlCenter 10 Help (CHM) (Version: 10.2.10800)
Nero Core Components 10 (Version: 2.0.20000.9.12)
Nero Update (Version: 1.0.0018)
Network64 (Version: 140.0.215.000)
Paint.NET v3.5.10 (Version: 3.60.0)
Penguins! (Version: 2.2.0.95)
PhotoShowExpress (Version: 2.0.063)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
PlayStation®Network Downloader (Version: 2.07.00849)
PlayStation®Store (Version: 4.5.16.13625)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
Premium Service Agreement (Version: 2.0.0)
PS_AIO_06_C4700_SW_Min (Version: 140.0.690.000)
QualxServ Service Agreement (Version: 2.0.0)
Quickset64 (Version: 10.09.25)
QuickTransfer (Version: 140.0.98.000)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek Ethernet Controller Driver (Version: 7.31.1025.2010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30126)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.32.0)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Samantha Swift (Version: 2.2.0.95)
Scan (Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
Skype™ 5.5 (Version: 5.5.119)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.213.000)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Spybot - Search & Destroy (Version: 1.6.2)
Status (Version: 140.0.212.000)
SyncUP (Version: 1.10.11100.8.106)
SyncUP (Version: 10.2.15400)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
TrustedID (Version: 5.0)
TrustedID IDMonitor Identity Protection (Version: 1.1.0)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
uTorrentBar Toolbar (Version: 6.8.2.0)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
WebReg (Version: 140.0.212.017)
WebTablet FB Plugin (Version: 2.0.0.1)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
Wedding Dash - Ready, Aim, Love! (Version: 2.2.0.95)
WildTangent Games (Version: 1.0.2.5)
WildTangent Games App (Dell Games) (Version: 4.0.5.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.01 (32-bit) (Version: 4.01.0)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 68%
Total physical RAM: 4003.18 MB
Available physical RAM: 1245.13 MB
Total Pagefile: 8004.55 MB
Available Pagefile: 4993.13 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.48 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:380.87 GB) NTFS

========================= Users: ========================================

User accounts for \\MEW-PC

Administrator Guest Mew


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:27 AM

Posted 27 February 2012 - 01:40 PM

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

#7 AMew

AMew
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 27 February 2012 - 02:22 PM

Farbar Service Scanner Version: 22-02-2012
Ran by Mew (administrator) on 27-02-2012 at 13:21:20
Running from "C:\Users\Mew\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:27 AM

Posted 27 February 2012 - 04:06 PM

To be on safer side before running registry fixes i would suggest you to

Download

http://www.snapfiles.com/get/erunt.html

Install it and backup your registry to C:/Windows/erdnt

Now Download the registry files

http://www.mediafire.com/?317ea53a883288d

http://www.mediafire.com/?z6aw8j7997qa7j9

http://www.mediafire.com/?3g2d9ijwwe5aa75

http://www.mediafire.com/?vujckeuo1repw9v


Launch them one by one,click YES when you get a prompt

Launch and import them to registry

If it opens as a notepad,right click on them

Click on OPEN WITH

Click on BROWSE

navigate to C:/WINDOWS and select REGEDIT and click ok

Now you should get a UAC prompt,click YES

Restart your PC

Now,open RUN and type

regedit and click ok

go to

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE

Right click on it-permissions

Click on ADD and type

Everyone and click ok

Now Click on Everyone

Below you have permission for users

Select full control and click ok


Now,open RUN and type

services.msc and click ok

start base filtering engine service and then windows firewall service

Post the new FSS log

Edited by narenxp, 27 February 2012 - 04:07 PM.


#9 AMew

AMew
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 28 February 2012 - 10:21 AM

I couldn't do the following step:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE

Right click on it-permissions

Click on ADD and type

Everyone and click ok

Now Click on Everyone

Below you have permission for users

Select full control and click ok


No such folder exists. I looked in the System folder as well but nothing like that was there.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:27 AM

Posted 28 February 2012 - 10:59 AM

No such folder exists. I looked in the System folder as well but nothing like that was there.


Did you add the registry keys properly?

looks like the registry keys opened as notepad

If it opens as a notepad,right click on them

Click on OPEN WITH

Click on BROWSE

navigate to C:/WINDOWS and select REGEDIT and click ok

Click YES

Restart the PC and follow the instructions

#11 AMew

AMew
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 28 February 2012 - 12:13 PM

Did as you said and also restarted
Got these errors upon restart in addition to a few more that look similar to the last two errors:
Posted Image

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:27 AM

Posted 28 February 2012 - 01:38 PM

Got these errors upon restart in addition to a few more that look similar to the last two errors:

ignore it ,this error is due to registry backup

Create a restore point

http://windows.microsoft.com/en-IN/windows7/Create-a-restore-point

and continue with previous instructions

#13 AMew

AMew
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 28 February 2012 - 02:41 PM

Now,open RUN and type

services.msc and click ok

start base filtering engine service and then windows firewall service

Post the new FSS log


Could not start either.


Error messages:
Posted Image

Posted Image

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:27 AM

Posted 28 February 2012 - 03:24 PM

Please follow my instructions carefully,You did not do this step

Now,open RUN and type

regedit and click ok

go to

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE

Right click on it-permissions

Click on ADD and type

Everyone and click ok

Now Click on Everyone

Below you have permission for users

Select full control and click ok

Edited by narenxp, 28 February 2012 - 03:24 PM.


#15 AMew

AMew
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 28 February 2012 - 04:35 PM

No, I did do that step, and then I did the next step and got those errors.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users