Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 Firewall error code: 0x80070424 as well as Firewall Service being Removed


  • Please log in to reply
15 replies to this topic

#1 Wishery

Wishery

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:05:46 AM

Posted 08 April 2012 - 11:22 AM

Hey BC community,

Note: I have never had a problem like this before, it has just started this week.

I play maplestory, and this program detected something wrong with my firewall. So I proceeded to my security settings and attempted to edit my firewall settings: turn it on/off and then this error code popped up:
Posted Image
So I tried to edit the other settings and the same error code came up each time.

After that came up SEVERAL TIMES, I went to a microsoft and other forums to search for help. They told me to go to this window:
Posted Image

And said to go to: Windows firewall and do something with it...but it's not there to do anything to? I really have NO IDEA what to do! It isn't effecting me that much, but when i start my Maplestory file up to reinstall it, it closes and it says this:
[04/08 01:54:15] Install Start
[04/08 01:54:16] User Temp Directory : C:\Users\Devin\AppData\Local\Temp
[04/08 01:54:16] Use CRC : false
[04/08 01:54:16] File Name : C:\Users\Devin\Desktop\MSSetupv108.exe
[04/08 01:54:16] Game Code : 33563155
[04/08 01:54:16] Cannot Regitster Firewall(C:\ProgramData\NexonUS\NGM\NGM.exe,Nexon Game Manager)
[04/08 01:54:16] ErrCode : 14000 - 404 - 0
[04/08 01:54:17] Install Path : C:\Nexon\MapleStory

I have downloaded microsoft anti virus things and they "cleaned up" my computer, but it still hasn't changed anything. Help?

Sincerely,
Devin

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:46 AM

Posted 08 April 2012 - 11:42 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 Nasu

Nasu

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:46 AM

Posted 06 August 2012 - 05:28 PM

Wow dude i downloaded today Vindictus and had problem with account auto-something and tried many things with friend to repair this about 2 hours and when reainstalling game found this error 14000 - 404 - 0 in .txt file which was appeared when started install (i couldn't install game because of it O_o [but its installing now]). I have the same error when starting firewall and didn't found good solution. When downloaded TDSSkiller found two files locked and hidden with default skip which are suspicious. Delete them?
Hidden: Akamai (netsession found somewhere)
And Locked: sptd (O_o i dont really know what it is)
Now im scanning with aswMBR i will edit post when ready...

edit: i don't know how to give log to you and copied this here :D


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-07 00:26:23
-----------------------------
00:26:23.982 OS Version: Windows 6.1.7601
00:26:23.982 Number of processors: 2 586 0xF0D
00:26:23.983 ComputerName: AUTO UserName:
00:26:24.375 Initialize success
00:26:26.118 AVAST engine defs: 12080601
00:26:31.532 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
00:26:31.536 Disk 0 Vendor: SAMSUNG_HD501LJ CR100-11 Size: 476810MB BusType: 3
00:26:31.540 Disk 5 \Device\Harddisk5\DR5 -> \Device\00000085
00:26:31.544 Disk 5 Vendor: Size: 476810MB BusType: 0
00:26:31.555 Disk 0 MBR read successfully
00:26:31.560 Disk 0 MBR scan
00:26:31.564 Disk 0 Windows 7 default MBR code
00:26:31.567 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100006 MB offset 63
00:26:31.571 Disk 0 Partition - 00 0F Extended LBA 376797 MB offset 204812685
00:26:31.588 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 180033 MB offset 204812748
00:26:31.592 Disk 0 Partition - 00 05 Extended 196764 MB offset 573520500
00:26:31.605 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 196764 MB offset 573520563
00:26:31.613 Disk 0 scanning sectors +976494960
00:26:31.686 Disk 0 scanning C:\Windows\system32\drivers
00:26:40.875 Service scanning
00:26:53.584 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
00:26:56.618 Modules scanning
00:27:02.453 Module: C:\Windows\System32\shlwapi.dll **SUSPICIOUS**
00:27:02.701 Module: C:\Windows\System32\urlmon.dll **SUSPICIOUS**
00:27:02.787 Module: C:\Windows\System32\usp10.dll **SUSPICIOUS**
00:27:02.870 Module: C:\Windows\System32\oleaut32.dll **SUSPICIOUS**
00:27:03.034 Module: C:\Windows\System32\kernel32.dll **SUSPICIOUS**
00:27:03.118 Module: C:\Windows\System32\imm32.dll **SUSPICIOUS**
00:27:03.828 Module: C:\Windows\System32\Wldap32.dll **SUSPICIOUS**
00:27:03.912 Module: C:\Windows\System32\user32.dll **SUSPICIOUS**
00:27:03.997 Module: C:\Windows\System32\wininet.dll **SUSPICIOUS**
00:27:04.185 Module: C:\Windows\System32\iertutil.dll **SUSPICIOUS**
00:27:04.342 Module: C:\Windows\System32\cfgmgr32.dll **SUSPICIOUS**
00:27:04.449 Module: C:\Windows\System32\crypt32.dll **SUSPICIOUS**
00:27:04.513 Module: C:\Windows\System32\wintrust.dll **SUSPICIOUS**
00:27:04.623 Module: C:\Windows\System32\KernelBase.dll **SUSPICIOUS**
00:27:04.662 Disk 0 trace - called modules:
00:27:04.683 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x9e7e91e8]<<
00:27:04.689 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x9e924030]
00:27:04.695 3 CLASSPNP.SYS[a510859e] -> nt!IofCallDriver -> [0x9e88a7e0]
00:27:04.701 5 ACPI.sys[a47af3b2] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0x9e88a030]
00:27:04.706 \Driver\atapi[0x9e877f38] -> IRP_MJ_CREATE -> 0x9e7e91e8
00:27:05.030 AVAST engine scan C:\Windows
00:27:07.627 AVAST engine scan C:\Windows\system32
00:28:32.651 AVAST engine scan C:\Windows\system32\drivers
00:28:41.113 AVAST engine scan C:\Users\Filip
00:37:21.667 AVAST engine scan C:\ProgramData
00:37:55.625 Scan finished successfully
00:40:46.514 Disk 0 MBR has been saved successfully to "C:\Users\Filip\Desktop\MBR.dat"
00:40:46.521 The log file has been saved successfully to "C:\Users\Filip\Desktop\aswMBR.txt"

Edited by Nasu, 06 August 2012 - 07:04 PM.


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:46 AM

Posted 07 August 2012 - 12:04 AM

ESET log?

#5 Nasu

Nasu

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:46 AM

Posted 07 August 2012 - 06:36 AM

You mean this TDSSkiller??
I don't know its good idea to copy every thing here xD
Here you go :)


13:34:04.0950 2832 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
13:34:05.0567 2832 ============================================================
13:34:05.0567 2832 Current date / time: 2012/08/07 13:34:05.0567
13:34:05.0567 2832 SystemInfo:
13:34:05.0567 2832
13:34:05.0567 2832 OS Version: 6.1.7601 ServicePack: 0.0
13:34:05.0568 2832 Product type: Workstation
13:34:05.0568 2832 ComputerName: AUTO
13:34:05.0568 2832 UserName: Filip
13:34:05.0568 2832 Windows directory: C:\Windows
13:34:05.0568 2832 System windows directory: C:\Windows
13:34:05.0568 2832 Processor architecture: Intel x86
13:34:05.0568 2832 Number of processors: 2
13:34:05.0568 2832 Page size: 0x1000
13:34:05.0568 2832 Boot type: Normal boot
13:34:05.0568 2832 ============================================================
13:34:07.0373 2832 Drive \Device\Harddisk0\DR0 - Size: 0x7468A05400 (465.63 Gb), SectorSize: 0x200, Cylinders: 0xED70, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:34:07.0469 2832 Drive \Device\Harddisk5\DR5 - Size: 0x1DC8D0800 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:34:07.0470 2832 ============================================================
13:34:07.0470 2832 \Device\Harddisk0\DR0:
13:34:07.0470 2832 MBR partitions:
13:34:07.0470 2832 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC35314E
13:34:07.0483 2832 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xC3531CC, BlocksNum 0x15FA08A8
13:34:07.0491 2832 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x222F3AB3, BlocksNum 0x1804E6BD
13:34:07.0491 2832 \Device\Harddisk5\DR5:
13:34:07.0492 2832 MBR partitions:
13:34:07.0492 2832 \Device\Harddisk5\DR5\Partition0: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xEE3FA1
13:34:07.0492 2832 ============================================================
13:34:07.0509 2832 C: <-> \Device\Harddisk0\DR0\Partition0
13:34:07.0561 2832 D: <-> \Device\Harddisk0\DR0\Partition1
13:34:07.0585 2832 E: <-> \Device\Harddisk0\DR0\Partition2
13:34:07.0586 2832 ============================================================
13:34:07.0586 2832 Initialize success
13:34:07.0586 2832 ============================================================
13:34:08.0306 3872 ============================================================
13:34:08.0306 3872 Scan started
13:34:08.0306 3872 Mode: Manual;
13:34:08.0306 3872 ============================================================
13:34:09.0662 3872 .EsetTrialReset - ok
13:34:09.0792 3872 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
13:34:09.0797 3872 1394ohci - ok
13:34:09.0815 3872 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
13:34:09.0819 3872 ACPI - ok
13:34:09.0823 3872 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
13:34:09.0824 3872 AcpiPmi - ok
13:34:09.0967 3872 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
13:34:09.0970 3872 AdobeARMservice - ok
13:34:09.0993 3872 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
13:34:10.0000 3872 adp94xx - ok
13:34:10.0018 3872 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
13:34:10.0022 3872 adpahci - ok
13:34:10.0031 3872 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
13:34:10.0033 3872 adpu320 - ok
13:34:10.0063 3872 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
13:34:10.0065 3872 AeLookupSvc - ok
13:34:10.0081 3872 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
13:34:10.0085 3872 AFD - ok
13:34:10.0099 3872 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
13:34:10.0101 3872 agp440 - ok
13:34:10.0115 3872 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
13:34:10.0117 3872 aic78xx - ok
13:34:10.0372 3872 Akamai (29584f02a43e427c4227e3b1d9ff1b22) c:\program files\common files\akamai/netsession_win_4f7fccd.dll
13:34:10.0372 3872 Suspicious file (Hidden): c:\program files\common files\akamai/netsession_win_4f7fccd.dll. md5: 29584f02a43e427c4227e3b1d9ff1b22
13:34:10.0383 3872 Akamai ( HiddenFile.Multi.Generic ) - warning
13:34:10.0383 3872 Akamai - detected HiddenFile.Multi.Generic (1)
13:34:10.0728 3872 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
13:34:10.0730 3872 ALG - ok
13:34:10.0925 3872 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
13:34:10.0939 3872 aliide - ok
13:34:10.0972 3872 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
13:34:10.0990 3872 amdagp - ok
13:34:10.0995 3872 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
13:34:10.0997 3872 amdide - ok
13:34:11.0201 3872 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
13:34:11.0204 3872 AmdK8 - ok
13:34:11.0247 3872 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
13:34:11.0257 3872 AmdPPM - ok
13:34:11.0267 3872 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
13:34:11.0269 3872 amdsata - ok
13:34:11.0365 3872 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
13:34:11.0383 3872 amdsbs - ok
13:34:11.0418 3872 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
13:34:11.0420 3872 amdxata - ok
13:34:11.0461 3872 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
13:34:11.0463 3872 AppID - ok
13:34:11.0485 3872 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
13:34:11.0487 3872 AppIDSvc - ok
13:34:11.0493 3872 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
13:34:11.0495 3872 Appinfo - ok
13:34:11.0504 3872 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
13:34:11.0506 3872 AppMgmt - ok
13:34:11.0533 3872 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
13:34:11.0535 3872 arc - ok
13:34:11.0543 3872 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
13:34:11.0546 3872 arcsas - ok
13:34:11.0752 3872 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
13:34:11.0755 3872 aspnet_state - ok
13:34:11.0797 3872 aswFsBlk (1c1f3d6dddc046c920c493a779649f66) C:\Windows\system32\drivers\aswFsBlk.sys
13:34:11.0798 3872 aswFsBlk - ok
13:34:11.0833 3872 aswMonFlt (a48d8015af2a0d8b4937613ffbfd28de) C:\Windows\system32\drivers\aswMonFlt.sys
13:34:11.0833 3872 aswMonFlt - ok
13:34:11.0861 3872 aswRdr (4a951beba9e49410cde478b6f6abb252) C:\Windows\System32\Drivers\aswrdr2.sys
13:34:11.0862 3872 aswRdr - ok
13:34:11.0945 3872 aswSnx (73dbcf808e00580f2a47f93dd9b03876) C:\Windows\system32\drivers\aswSnx.sys
13:34:11.0952 3872 aswSnx - ok
13:34:11.0991 3872 aswSP (6cbd7d3a33f498d09c831cdd732da2e0) C:\Windows\system32\drivers\aswSP.sys
13:34:11.0994 3872 aswSP - ok
13:34:12.0020 3872 aswTdi (7109a9aa551f37cd168c02368465957e) C:\Windows\system32\drivers\aswTdi.sys
13:34:12.0020 3872 aswTdi - ok
13:34:12.0052 3872 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
13:34:12.0053 3872 AsyncMac - ok
13:34:12.0058 3872 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
13:34:12.0058 3872 atapi - ok
13:34:12.0337 3872 athr (c910b8ebe20289565a55d9b8904e1563) C:\Windows\system32\DRIVERS\athr.sys
13:34:12.0362 3872 athr - ok
13:34:12.0693 3872 AudioEndpointBuilder (4a8b8f619604b30b2f221f30663007e8) C:\Windows\System32\Audiosrv.dll
13:34:12.0699 3872 AudioEndpointBuilder - ok
13:34:12.0706 3872 Audiosrv (4a8b8f619604b30b2f221f30663007e8) C:\Windows\System32\Audiosrv.dll
13:34:12.0709 3872 Audiosrv - ok
13:34:12.0899 3872 avast! Antivirus (2f7c0f3e39c45e0127fb78b2f18a41f3) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:34:12.0900 3872 avast! Antivirus - ok
13:34:12.0990 3872 AxInstSV (bbbfbb317b0d0c0c76d14b97a0201af7) C:\Windows\System32\AxInstSV.dll
13:34:13.0003 3872 AxInstSV - ok
13:34:13.0166 3872 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
13:34:13.0182 3872 b06bdrv - ok
13:34:13.0214 3872 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
13:34:13.0219 3872 b57nd60x - ok
13:34:13.0247 3872 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
13:34:13.0249 3872 BDESVC - ok
13:34:13.0253 3872 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
13:34:13.0254 3872 Beep - ok
13:34:13.0301 3872 BFE (05ec560a7e4fb26d56cc96eb54878cb4) C:\Windows\System32\bfe.dll
13:34:13.0307 3872 BFE - ok
13:34:13.0355 3872 BITS (e4657918af568fffadd24caa629ccf87) C:\Windows\System32\qmgr.dll
13:34:13.0362 3872 BITS - ok
13:34:13.0367 3872 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
13:34:13.0368 3872 blbdrive - ok
13:34:13.0374 3872 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
13:34:13.0376 3872 bowser - ok
13:34:13.0380 3872 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:34:13.0382 3872 BrFiltLo - ok
13:34:13.0386 3872 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:34:13.0387 3872 BrFiltUp - ok
13:34:13.0410 3872 Browser (7e14ed248176e6edee8f71a7c94db651) C:\Windows\System32\browser.dll
13:34:13.0413 3872 Browser - ok
13:34:13.0427 3872 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
13:34:13.0431 3872 Brserid - ok
13:34:13.0437 3872 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
13:34:13.0439 3872 BrSerWdm - ok
13:34:13.0446 3872 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
13:34:13.0447 3872 BrUsbMdm - ok
13:34:13.0453 3872 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
13:34:13.0455 3872 BrUsbSer - ok
13:34:13.0464 3872 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
13:34:13.0466 3872 BTHMODEM - ok
13:34:13.0484 3872 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
13:34:13.0486 3872 bthserv - ok
13:34:13.0492 3872 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
13:34:13.0494 3872 cdfs - ok
13:34:13.0502 3872 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
13:34:13.0504 3872 cdrom - ok
13:34:13.0518 3872 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
13:34:13.0520 3872 CertPropSvc - ok
13:34:13.0527 3872 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
13:34:13.0528 3872 circlass - ok
13:34:13.0545 3872 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
13:34:13.0548 3872 CLFS - ok
13:34:13.0725 3872 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:34:13.0728 3872 clr_optimization_v2.0.50727_32 - ok
13:34:14.0011 3872 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:34:14.0014 3872 clr_optimization_v4.0.30319_32 - ok
13:34:14.0036 3872 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
13:34:14.0038 3872 CmBatt - ok
13:34:14.0054 3872 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
13:34:14.0055 3872 cmdide - ok
13:34:14.0099 3872 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
13:34:14.0104 3872 CNG - ok
13:34:14.0130 3872 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
13:34:14.0132 3872 Compbatt - ok
13:34:14.0136 3872 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
13:34:14.0137 3872 CompositeBus - ok
13:34:14.0141 3872 COMSysApp - ok
13:34:14.0259 3872 cpuz135 (c2eb4539a4f6ab6edd01bdc191619975) C:\Windows\system32\drivers\cpuz135_x32.sys
13:34:14.0260 3872 cpuz135 - ok
13:34:14.0280 3872 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
13:34:14.0281 3872 crcdisk - ok
13:34:14.0311 3872 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll
13:34:14.0314 3872 CryptSvc - ok
13:34:14.0352 3872 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
13:34:14.0360 3872 DcomLaunch - ok
13:34:14.0382 3872 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
13:34:14.0386 3872 defragsvc - ok
13:34:14.0394 3872 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
13:34:14.0395 3872 DfsC - ok
13:34:14.0428 3872 Dhcp (10d71d49b3dacfd6cd7e83852f01b3e7) C:\Windows\system32\dhcpcore.dll
13:34:14.0432 3872 Dhcp - ok
13:34:14.0437 3872 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
13:34:14.0438 3872 discache - ok
13:34:14.0446 3872 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
13:34:14.0448 3872 Disk - ok
13:34:14.0473 3872 Dnscache (e89c8f2e12052c8ea273aadd516cd06b) C:\Windows\System32\dnsrslvr.dll
13:34:14.0477 3872 Dnscache - ok
13:34:14.0491 3872 dot3svc (93ea78df696d59df0052fd9f898e027a) C:\Windows\System32\dot3svc.dll
13:34:14.0495 3872 dot3svc - ok
13:34:14.0505 3872 DPS (264540776775db8c96a6407df0f89b58) C:\Windows\system32\dps.dll
13:34:14.0508 3872 DPS - ok
13:34:14.0512 3872 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
13:34:14.0514 3872 drmkaud - ok
13:34:14.0560 3872 DXGKrnl (39806cfeddcc55e686a49bccd2972f23) C:\Windows\System32\drivers\dxgkrnl.sys
13:34:14.0568 3872 DXGKrnl - ok
13:34:14.0610 3872 EagleXNt - ok
13:34:14.0633 3872 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
13:34:14.0636 3872 EapHost - ok
13:34:14.0979 3872 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
13:34:15.0011 3872 ebdrv - ok
13:34:15.0386 3872 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
13:34:15.0416 3872 EFS - ok
13:34:15.0693 3872 ehRecvr (8089a2d7b4f86600c4d0e204bb5759d9) C:\Windows\ehome\ehRecvr.exe
13:34:15.0702 3872 ehRecvr - ok
13:34:15.0712 3872 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
13:34:15.0714 3872 ehSched - ok
13:34:15.0847 3872 ekrn - ok
13:34:16.0050 3872 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
13:34:16.0059 3872 elxstor - ok
13:34:16.0064 3872 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
13:34:16.0066 3872 ErrDev - ok
13:34:16.0115 3872 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
13:34:16.0123 3872 EventSystem - ok
13:34:16.0149 3872 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
13:34:16.0153 3872 exfat - ok
13:34:16.0165 3872 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
13:34:16.0168 3872 fastfat - ok
13:34:16.0206 3872 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
13:34:16.0217 3872 Fax - ok
13:34:16.0231 3872 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
13:34:16.0232 3872 fdc - ok
13:34:16.0241 3872 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
13:34:16.0243 3872 fdPHost - ok
13:34:16.0248 3872 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
13:34:16.0251 3872 FDResPub - ok
13:34:16.0256 3872 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
13:34:16.0258 3872 FileInfo - ok
13:34:16.0263 3872 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
13:34:16.0265 3872 Filetrace - ok
13:34:16.0269 3872 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
13:34:16.0270 3872 flpydisk - ok
13:34:16.0283 3872 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
13:34:16.0285 3872 FltMgr - ok
13:34:16.0328 3872 FontCache (b6c3c0af5eb6a83dfa517792d24681a0) C:\Windows\system32\FntCache.dll
13:34:16.0334 3872 FontCache - ok
13:34:16.0495 3872 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:34:16.0504 3872 FontCache3.0.0.0 - ok
13:34:16.0511 3872 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
13:34:16.0513 3872 FsDepends - ok
13:34:16.0519 3872 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
13:34:16.0521 3872 Fs_Rec - ok
13:34:16.0543 3872 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
13:34:16.0546 3872 fvevol - ok
13:34:16.0552 3872 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
13:34:16.0554 3872 gagp30kx - ok
13:34:16.0590 3872 gpsvc (8bf4404669a64e078013f1383a1fc980) C:\Windows\System32\gpsvc.dll
13:34:16.0600 3872 gpsvc - ok
13:34:16.0645 3872 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
13:34:16.0646 3872 hamachi - ok
13:34:16.0882 3872 Hamachi2Svc (f31d7f8a7699575dbb3b3a3ab4aa6216) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
13:34:16.0896 3872 Hamachi2Svc - ok
13:34:17.0193 3872 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
13:34:17.0195 3872 hcw85cir - ok
13:34:17.0214 3872 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
13:34:17.0219 3872 HdAudAddService - ok
13:34:17.0235 3872 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
13:34:17.0237 3872 HDAudBus - ok
13:34:17.0242 3872 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
13:34:17.0244 3872 HidBatt - ok
13:34:17.0266 3872 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
13:34:17.0268 3872 HidBth - ok
13:34:17.0273 3872 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
13:34:17.0275 3872 HidIr - ok
13:34:17.0299 3872 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
13:34:17.0302 3872 hidserv - ok
13:34:17.0306 3872 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
13:34:17.0308 3872 HidUsb - ok
13:34:17.0341 3872 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
13:34:17.0345 3872 hkmsvc - ok
13:34:17.0362 3872 HomeGroupListener (334c22b649433f7e76199ede0476efd2) C:\Windows\system32\ListSvc.dll
13:34:17.0367 3872 HomeGroupListener - ok
13:34:17.0387 3872 HomeGroupProvider (633115d90a24ff403a9b50a7dc115f1e) C:\Windows\system32\provsvc.dll
13:34:17.0391 3872 HomeGroupProvider - ok
13:34:17.0398 3872 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
13:34:17.0400 3872 HpSAMD - ok
13:34:17.0423 3872 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
13:34:17.0430 3872 HTTP - ok
13:34:17.0434 3872 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
13:34:17.0436 3872 hwpolicy - ok
13:34:17.0443 3872 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
13:34:17.0445 3872 i8042prt - ok
13:34:17.0475 3872 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
13:34:17.0480 3872 iaStorV - ok
13:34:17.0614 3872 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:34:17.0619 3872 IDriverT - ok
13:34:17.0741 3872 idsvc (c9d4a75591c502ea1894395b0874451e) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:34:17.0755 3872 idsvc - ok
13:34:18.0016 3872 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
13:34:18.0019 3872 iirsp - ok
13:34:18.0077 3872 IKEEXT (920e1379a5393cd9ac6f975fd26ff570) C:\Windows\System32\ikeext.dll
13:34:18.0087 3872 IKEEXT - ok
13:34:18.0263 3872 IntcAzAudAddService (b35f19aff279e08b567b281fb2e94291) C:\Windows\system32\drivers\RTKVHDA.sys
13:34:18.0282 3872 IntcAzAudAddService - ok
13:34:18.0596 3872 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
13:34:18.0597 3872 intelide - ok
13:34:18.0604 3872 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
13:34:18.0605 3872 intelppm - ok
13:34:18.0631 3872 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
13:34:18.0634 3872 IPBusEnum - ok
13:34:18.0640 3872 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:34:18.0642 3872 IpFilterDriver - ok
13:34:18.0648 3872 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
13:34:18.0650 3872 IPMIDRV - ok
13:34:18.0657 3872 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
13:34:18.0659 3872 IPNAT - ok
13:34:18.0664 3872 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
13:34:18.0665 3872 IRENUM - ok
13:34:18.0671 3872 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
13:34:18.0673 3872 isapnp - ok
13:34:18.0696 3872 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
13:34:18.0699 3872 iScsiPrt - ok
13:34:18.0705 3872 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
13:34:18.0706 3872 kbdclass - ok
13:34:18.0712 3872 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
13:34:18.0713 3872 kbdhid - ok
13:34:18.0754 3872 kbfiltr (3eb803312987ff44265c87cb960df6ab) C:\Windows\system32\DRIVERS\kbfiltr.sys
13:34:18.0756 3872 kbfiltr - ok
13:34:18.0779 3872 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:34:18.0782 3872 KeyIso - ok
13:34:18.0788 3872 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
13:34:18.0790 3872 KSecDD - ok
13:34:18.0807 3872 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
13:34:18.0810 3872 KSecPkg - ok
13:34:18.0831 3872 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
13:34:18.0838 3872 KtmRm - ok
13:34:18.0876 3872 L1C (ed8227578b0a3a3f8545388fb11782c1) C:\Windows\system32\DRIVERS\L1C62x86.sys
13:34:18.0877 3872 L1C - ok
13:34:18.0916 3872 LanmanServer (dbaa0032d9e2373a6b8fd61283186d0c) C:\Windows\system32\srvsvc.dll
13:34:18.0927 3872 LanmanServer - ok
13:34:18.0950 3872 LanmanWorkstation (38f17310318083aaa8e47bc26a3beb99) C:\Windows\System32\wkssvc.dll
13:34:18.0958 3872 LanmanWorkstation - ok
13:34:18.0967 3872 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
13:34:18.0969 3872 lltdio - ok
13:34:18.0989 3872 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
13:34:18.0995 3872 lltdsvc - ok
13:34:18.0999 3872 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
13:34:19.0003 3872 lmhosts - ok
13:34:19.0013 3872 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
13:34:19.0015 3872 LSI_FC - ok
13:34:19.0021 3872 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
13:34:19.0024 3872 LSI_SAS - ok
13:34:19.0029 3872 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:34:19.0031 3872 LSI_SAS2 - ok
13:34:19.0038 3872 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:34:19.0040 3872 LSI_SCSI - ok
13:34:19.0047 3872 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
13:34:19.0049 3872 luafv - ok
13:34:19.0065 3872 Mcx2Svc (3a2c03fabfd077ec43ef8cb25b8b129c) C:\Windows\system32\Mcx2Svc.dll
13:34:19.0069 3872 Mcx2Svc - ok
13:34:19.0082 3872 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
13:34:19.0084 3872 megasas - ok
13:34:19.0098 3872 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
13:34:19.0102 3872 MegaSR - ok
13:34:19.0116 3872 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
13:34:19.0119 3872 MMCSS - ok
13:34:19.0125 3872 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
13:34:19.0127 3872 Modem - ok
13:34:19.0131 3872 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
13:34:19.0133 3872 monitor - ok
13:34:19.0138 3872 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
13:34:19.0140 3872 mouclass - ok
13:34:19.0145 3872 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
13:34:19.0146 3872 mouhid - ok
13:34:19.0153 3872 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
13:34:19.0155 3872 mountmgr - ok
13:34:19.0164 3872 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
13:34:19.0166 3872 mpio - ok
13:34:19.0172 3872 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
13:34:19.0174 3872 mpsdrv - ok
13:34:19.0259 3872 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
13:34:19.0268 3872 MpsSvc - ok
13:34:19.0277 3872 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
13:34:19.0279 3872 MRxDAV - ok
13:34:19.0287 3872 mrxsmb (f4a054be78af7f410129c4b64b07dc9b) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:34:19.0289 3872 mrxsmb - ok
13:34:19.0316 3872 mrxsmb10 (deffa295bd1895c6ed8e3078412ac60b) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:34:19.0320 3872 mrxsmb10 - ok
13:34:19.0329 3872 mrxsmb20 (24d76abe5dcad22f19d105f76fdf0ce1) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:34:19.0331 3872 mrxsmb20 - ok
13:34:19.0335 3872 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
13:34:19.0337 3872 msahci - ok
13:34:19.0474 3872 MSCSPTISRV (8e46a7bac823dd82d4fb2a34c3df4c1d) C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
13:34:19.0477 3872 MSCSPTISRV - ok
13:34:19.0485 3872 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
13:34:19.0487 3872 msdsm - ok
13:34:19.0512 3872 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
13:34:19.0517 3872 MSDTC - ok
13:34:19.0536 3872 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
13:34:19.0538 3872 Msfs - ok
13:34:19.0543 3872 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
13:34:19.0545 3872 mshidkmdf - ok
13:34:19.0550 3872 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
13:34:19.0551 3872 msisadrv - ok
13:34:19.0578 3872 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
13:34:19.0583 3872 MSiSCSI - ok
13:34:19.0586 3872 msiserver - ok
13:34:19.0594 3872 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
13:34:19.0595 3872 MSKSSRV - ok
13:34:19.0609 3872 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
13:34:19.0611 3872 MSPCLOCK - ok
13:34:19.0616 3872 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
13:34:19.0617 3872 MSPQM - ok
13:34:19.0628 3872 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
13:34:19.0631 3872 MsRPC - ok
13:34:19.0638 3872 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
13:34:19.0639 3872 mssmbios - ok
13:34:19.0644 3872 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
13:34:19.0646 3872 MSTEE - ok
13:34:19.0650 3872 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
13:34:19.0652 3872 MTConfig - ok
13:34:19.0683 3872 MTsensor (cbe71c122434805cb73ffb6619f60598) C:\Windows\system32\DRIVERS\ASACPI.sys
13:34:19.0684 3872 MTsensor - ok
13:34:19.0691 3872 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
13:34:19.0693 3872 Mup - ok
13:34:19.0728 3872 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
13:34:19.0736 3872 napagent - ok
13:34:19.0769 3872 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
13:34:19.0773 3872 NativeWifiP - ok
13:34:19.0912 3872 NBService (6d8fcdd5bb3b676ef58fa234073492c6) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
13:34:19.0923 3872 NBService - ok
13:34:19.0968 3872 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
13:34:19.0976 3872 NDIS - ok
13:34:19.0982 3872 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
13:34:19.0983 3872 NdisCap - ok
13:34:19.0988 3872 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
13:34:19.0989 3872 NdisTapi - ok
13:34:19.0998 3872 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
13:34:19.0999 3872 Ndisuio - ok
13:34:20.0007 3872 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
13:34:20.0010 3872 NdisWan - ok
13:34:20.0017 3872 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
13:34:20.0019 3872 NDProxy - ok
13:34:20.0028 3872 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
13:34:20.0030 3872 NetBIOS - ok
13:34:20.0048 3872 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:34:20.0051 3872 Netlogon - ok
13:34:20.0081 3872 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
13:34:20.0088 3872 Netman - ok
13:34:20.0295 3872 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:34:20.0299 3872 NetMsmqActivator - ok
13:34:20.0303 3872 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:34:20.0305 3872 NetPipeActivator - ok
13:34:20.0325 3872 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
13:34:20.0331 3872 netprofm - ok
13:34:20.0336 3872 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:34:20.0337 3872 NetTcpActivator - ok
13:34:20.0343 3872 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:34:20.0344 3872 NetTcpPortSharing - ok
13:34:20.0358 3872 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
13:34:20.0360 3872 nfrd960 - ok
13:34:20.0383 3872 NlaSvc (f169b66641c5494b7343c1484015ec02) C:\Windows\System32\nlasvc.dll
13:34:20.0389 3872 NlaSvc - ok
13:34:20.0541 3872 NMIndexingService (060daf68493ad7adf104413e5a62afa8) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
13:34:20.0544 3872 NMIndexingService - ok
13:34:20.0550 3872 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
13:34:20.0551 3872 Npfs - ok
13:34:20.0564 3872 npggsvc - ok
13:34:20.0583 3872 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
13:34:20.0587 3872 nsi - ok
13:34:20.0592 3872 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
13:34:20.0593 3872 nsiproxy - ok
13:34:20.0652 3872 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
13:34:20.0668 3872 Ntfs - ok
13:34:20.0958 3872 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
13:34:20.0960 3872 Null - ok
13:34:21.0001 3872 NVHDA (a0a9e53b4aac3c6534a063aba69bc19f) C:\Windows\system32\drivers\nvhda32v.sys
13:34:21.0002 3872 NVHDA - ok
13:34:21.0501 3872 nvlddmkm (afb33a823aabc112fc7bd62afbcdb0cd) C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:34:21.0567 3872 nvlddmkm - ok
13:34:21.0872 3872 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
13:34:21.0876 3872 nvraid - ok
13:34:21.0898 3872 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
13:34:21.0901 3872 nvstor - ok
13:34:21.0969 3872 NVSvc (782945716ad010ac3d41758e8e52c735) C:\Windows\system32\nvvsvc.exe
13:34:21.0983 3872 NVSvc - ok
13:34:22.0158 3872 nvUpdatusService (a974e5c310b9b00894070ceb055d467f) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
13:34:22.0170 3872 nvUpdatusService - ok
13:34:22.0473 3872 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
13:34:22.0475 3872 nv_agp - ok
13:34:22.0482 3872 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
13:34:22.0484 3872 ohci1394 - ok
13:34:22.0632 3872 PACSPTISVR (753a8f339f231d2b857e2ccd51a6e6ca) C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
13:34:22.0635 3872 PACSPTISVR - ok
13:34:22.0693 3872 PanService (01907300eb52206b06facb9608f369a9) C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
13:34:22.0704 3872 PanService - ok
13:34:22.0713 3872 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
13:34:22.0714 3872 Parport - ok
13:34:22.0720 3872 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
13:34:22.0722 3872 partmgr - ok
13:34:22.0726 3872 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
13:34:22.0728 3872 Parvdm - ok
13:34:22.0756 3872 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
13:34:22.0762 3872 PcaSvc - ok
13:34:22.0772 3872 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
13:34:22.0775 3872 pci - ok
13:34:22.0788 3872 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
13:34:22.0790 3872 pciide - ok
13:34:22.0811 3872 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
13:34:22.0814 3872 pcmcia - ok
13:34:22.0820 3872 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
13:34:22.0822 3872 pcw - ok
13:34:22.0847 3872 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
13:34:22.0854 3872 PEAUTH - ok
13:34:22.0895 3872 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
13:34:22.0911 3872 PeerDistSvc - ok
13:34:22.0999 3872 pla (1cdde2153d92a0deaa275cadff1b6df8) C:\Windows\system32\pla.dll
13:34:23.0022 3872 pla - ok
13:34:23.0269 3872 PlugPlay (081082c43bd76dfb9cdf314de3332799) C:\Windows\system32\umpnpmgr.dll
13:34:23.0282 3872 PlugPlay - ok
13:34:23.0392 3872 PnkBstrA (205e1b699fd3f2f9b036eea2ec30c620) C:\Windows\system32\PnkBstrA.exe
13:34:23.0400 3872 PnkBstrA - ok
13:34:23.0442 3872 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
13:34:23.0449 3872 PolicyAgent - ok
13:34:23.0461 3872 Power (e1ed96603ca24e4b73e7423075ffbca7) C:\Windows\system32\umpo.dll
13:34:23.0466 3872 Power - ok
13:34:23.0567 3872 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
13:34:23.0569 3872 PptpMiniport - ok
13:34:23.0593 3872 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
13:34:23.0596 3872 Processor - ok
13:34:23.0628 3872 ProfSvc (2f3121fa441b9886ddc635792b14ba91) C:\Windows\system32\profsvc.dll
13:34:23.0637 3872 ProfSvc - ok
13:34:23.0648 3872 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:34:23.0651 3872 ProtectedStorage - ok
13:34:23.0666 3872 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
13:34:23.0668 3872 Psched - ok
13:34:23.0710 3872 PxHelp20 (1962166e0ceb740704f30fa55ad3d509) C:\Windows\system32\Drivers\PxHelp20.sys
13:34:23.0712 3872 PxHelp20 - ok
13:34:23.0783 3872 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
13:34:23.0798 3872 ql2300 - ok
13:34:24.0101 3872 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
13:34:24.0104 3872 ql40xx - ok
13:34:24.0132 3872 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
13:34:24.0143 3872 QWAVE - ok
13:34:24.0150 3872 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
13:34:24.0152 3872 QWAVEdrv - ok
13:34:24.0156 3872 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
13:34:24.0158 3872 RasAcd - ok
13:34:24.0180 3872 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
13:34:24.0181 3872 RasAgileVpn - ok
13:34:24.0193 3872 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
13:34:24.0199 3872 RasAuto - ok
13:34:24.0206 3872 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:34:24.0208 3872 Rasl2tp - ok
13:34:24.0240 3872 RasMan (94c855404d69bd89069eda4b82a660f4) C:\Windows\System32\rasmans.dll
13:34:24.0247 3872 RasMan - ok
13:34:24.0254 3872 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
13:34:24.0257 3872 RasPppoe - ok
13:34:24.0264 3872 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
13:34:24.0265 3872 RasSstp - ok
13:34:24.0277 3872 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
13:34:24.0281 3872 rdbss - ok
13:34:24.0294 3872 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
13:34:24.0296 3872 rdpbus - ok
13:34:24.0300 3872 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:34:24.0301 3872 RDPCDD - ok
13:34:24.0314 3872 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
13:34:24.0317 3872 RDPDR - ok
13:34:24.0321 3872 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
13:34:24.0323 3872 RDPENCDD - ok
13:34:24.0332 3872 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
13:34:24.0333 3872 RDPREFMP - ok
13:34:24.0347 3872 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
13:34:24.0350 3872 RDPWD - ok
13:34:24.0360 3872 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
13:34:24.0364 3872 rdyboost - ok
13:34:24.0385 3872 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
13:34:24.0389 3872 RemoteAccess - ok
13:34:24.0410 3872 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
13:34:24.0417 3872 RemoteRegistry - ok
13:34:24.0438 3872 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
13:34:24.0443 3872 RpcEptMapper - ok
13:34:24.0467 3872 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
13:34:24.0470 3872 RpcLocator - ok
13:34:24.0496 3872 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
13:34:24.0501 3872 RpcSs - ok
13:34:24.0513 3872 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
13:34:24.0515 3872 rspndr - ok
13:34:24.0592 3872 RTCore32 (293a2a421fd8d064803d22a252b2de97) D:\Program Files\MSI Afterburner\RTCore32.sys
13:34:24.0593 3872 RTCore32 - ok
13:34:24.0628 3872 RTL8167 (0516998076ad894ae7e362c3110aa071) C:\Windows\system32\DRIVERS\Rt86win7.sys
13:34:24.0634 3872 RTL8167 - ok
13:34:24.0650 3872 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
13:34:24.0652 3872 s3cap - ok
13:34:24.0668 3872 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:34:24.0670 3872 SamSs - ok
13:34:24.0678 3872 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
13:34:24.0680 3872 sbp2port - ok
13:34:24.0703 3872 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
13:34:24.0709 3872 SCardSvr - ok
13:34:24.0714 3872 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
13:34:24.0716 3872 scfilter - ok
13:34:24.0756 3872 Schedule (6fda23a42458843051a8d2686e83f358) C:\Windows\system32\schedsvc.dll
13:34:24.0769 3872 Schedule - ok
13:34:24.0789 3872 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
13:34:24.0790 3872 SCPolicySvc - ok
13:34:24.0812 3872 SDRSVC (02df48767b2cf4d0c68ebb9eb87929ab) C:\Windows\System32\SDRSVC.dll
13:34:24.0818 3872 SDRSVC - ok
13:34:24.0828 3872 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
13:34:24.0830 3872 secdrv - ok
13:34:24.0845 3872 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
13:34:24.0850 3872 seclogon - ok
13:34:24.0860 3872 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
13:34:24.0865 3872 SENS - ok
13:34:24.0880 3872 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
13:34:24.0885 3872 SensrSvc - ok
13:34:24.0890 3872 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
13:34:24.0892 3872 Serenum - ok
13:34:24.0900 3872 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
13:34:24.0901 3872 Serial - ok
13:34:24.0908 3872 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
13:34:24.0910 3872 sermouse - ok
13:34:24.0927 3872 SessionEnv (5e83e114a5c2bf54e0d73dbb05b9bd2d) C:\Windows\system32\sessenv.dll
13:34:24.0933 3872 SessionEnv - ok
13:34:24.0938 3872 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
13:34:24.0939 3872 sffdisk - ok
13:34:24.0946 3872 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
13:34:24.0948 3872 sffp_mmc - ok
13:34:24.0953 3872 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
13:34:24.0955 3872 sffp_sd - ok
13:34:24.0967 3872 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
13:34:24.0969 3872 sfloppy - ok
13:34:25.0010 3872 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
13:34:25.0016 3872 SharedAccess - ok
13:34:25.0057 3872 ShellHWDetection (5586482cc6aff349bf0af823c419a3c1) C:\Windows\System32\shsvcs.dll
13:34:25.0065 3872 ShellHWDetection - ok
13:34:25.0072 3872 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
13:34:25.0074 3872 sisagp - ok
13:34:25.0079 3872 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:34:25.0081 3872 SiSRaid2 - ok
13:34:25.0096 3872 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
13:34:25.0098 3872 SiSRaid4 - ok
13:34:25.0184 3872 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files\Skype\Updater\Updater.exe
13:34:25.0188 3872 SkypeUpdate - ok
13:34:25.0198 3872 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
13:34:25.0201 3872 Smb - ok
13:34:25.0230 3872 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
13:34:25.0235 3872 SNMPTRAP - ok
13:34:25.0361 3872 SonicStage Back-End Service (977aaa4398d7d6fa65d973f5b3f54e40) C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
13:34:25.0365 3872 SonicStage Back-End Service - ok
13:34:25.0375 3872 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
13:34:25.0377 3872 spldr - ok
13:34:25.0423 3872 Spooler (ac30ccb26901298d2d82a29ded25d309) C:\Windows\System32\spoolsv.exe
13:34:25.0436 3872 Spooler - ok
13:34:25.0575 3872 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
13:34:25.0612 3872 sppsvc - ok
13:34:25.0862 3872 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
13:34:25.0873 3872 sppuinotify - ok
13:34:26.0017 3872 sptd (8ea0fd60a5b047e0c734d51aace531c9) C:\Windows\System32\Drivers\sptd.sys
13:34:26.0018 3872 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: 8ea0fd60a5b047e0c734d51aace531c9
13:34:26.0019 3872 sptd ( LockedFile.Multi.Generic ) - warning
13:34:26.0019 3872 sptd - detected LockedFile.Multi.Generic (1)
13:34:26.0158 3872 SPTISRV (e3e6c96b0ef4492c3c8fd0deef4e35a1) C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
13:34:26.0161 3872 SPTISRV - ok
13:34:26.0205 3872 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys
13:34:26.0211 3872 srv - ok
13:34:26.0235 3872 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys
13:34:26.0241 3872 srv2 - ok
13:34:26.0251 3872 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys
13:34:26.0253 3872 srvnet - ok
13:34:26.0282 3872 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
13:34:26.0289 3872 SSDPSRV - ok
13:34:26.0347 3872 SSScsiSV (756e371b3b86a3d3039926d32eac0e8d) C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
13:34:26.0350 3872 SSScsiSV - ok
13:34:26.0361 3872 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
13:34:26.0370 3872 SstpSvc - ok
13:34:26.0389 3872 Steam Client Service - ok
13:34:26.0505 3872 Stereo Service (c354621b6b94e10ae7f5cdbe745feb86) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:34:26.0512 3872 Stereo Service - ok
13:34:26.0519 3872 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
13:34:26.0522 3872 stexstor - ok
13:34:26.0564 3872 StiSvc (7765b3bf855e1c4d1c7c150d4a0d5730) C:\Windows\System32\wiaservc.dll
13:34:26.0580 3872 StiSvc - ok
13:34:26.0602 3872 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
13:34:26.0604 3872 storflt - ok
13:34:26.0610 3872 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
13:34:26.0612 3872 storvsc - ok
13:34:26.0617 3872 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
13:34:26.0618 3872 swenum - ok
13:34:26.0644 3872 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
13:34:26.0652 3872 swprv - ok
13:34:26.0723 3872 SysMain (d2df1dad13b5e2bfc571fca7c82cf6fa) C:\Windows\system32\sysmain.dll
13:34:26.0740 3872 SysMain - ok
13:34:26.0753 3872 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
13:34:26.0759 3872 TabletInputService - ok
13:34:26.0774 3872 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
13:34:26.0782 3872 TapiSrv - ok
13:34:26.0794 3872 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
13:34:26.0798 3872 TBS - ok
13:34:26.0948 3872 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys
13:34:26.0967 3872 Tcpip - ok
13:34:27.0310 3872 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys
13:34:27.0318 3872 TCPIP6 - ok
13:34:27.0608 3872 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
13:34:27.0611 3872 tcpipreg - ok
13:34:27.0629 3872 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
13:34:27.0631 3872 TDPIPE - ok
13:34:27.0636 3872 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
13:34:27.0638 3872 TDTCP - ok
13:34:27.0646 3872 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
13:34:27.0648 3872 tdx - ok
13:34:27.0654 3872 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
13:34:27.0655 3872 TermDD - ok
13:34:27.0688 3872 TermService (1f8297a6eeccbf9e1af7b3fe7714679b) C:\Windows\System32\termsrv.dll
13:34:27.0699 3872 TermService - ok
13:34:27.0712 3872 Themes (59cfda4eacb3788f8b17f87b49b0ac0e) C:\Windows\system32\themeservice.dll
13:34:27.0717 3872 Themes - ok
13:34:27.0733 3872 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
13:34:27.0736 3872 THREADORDER - ok
13:34:27.0749 3872 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
13:34:27.0755 3872 TrkWks - ok
13:34:27.0795 3872 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
13:34:27.0798 3872 TrustedInstaller - ok
13:34:27.0806 3872 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:34:27.0808 3872 tssecsrv - ok
13:34:27.0817 3872 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
13:34:27.0819 3872 tunnel - ok
13:34:27.0826 3872 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
13:34:27.0828 3872 uagp35 - ok
13:34:27.0849 3872 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
13:34:27.0853 3872 udfs - ok
13:34:27.0874 3872 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
13:34:27.0880 3872 UI0Detect - ok
13:34:27.0886 3872 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
13:34:27.0889 3872 uliagpkx - ok
13:34:27.0894 3872 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
13:34:27.0896 3872 umbus - ok
13:34:27.0900 3872 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
13:34:27.0902 3872 UmPass - ok
13:34:27.0920 3872 UmRdpService (1f1712605467b948993a92be3a065041) C:\Windows\System32\umrdp.dll
13:34:27.0928 3872 UmRdpService - ok
13:34:27.0953 3872 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
13:34:27.0961 3872 upnphost - ok
13:34:27.0992 3872 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
13:34:27.0994 3872 usbaudio - ok
13:34:28.0001 3872 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
13:34:28.0003 3872 usbccgp - ok
13:34:28.0011 3872 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
13:34:28.0013 3872 usbcir - ok
13:34:28.0019 3872 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
13:34:28.0021 3872 usbehci - ok
13:34:28.0034 3872 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
13:34:28.0038 3872 usbhub - ok
13:34:28.0044 3872 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
13:34:28.0045 3872 usbohci - ok
13:34:28.0062 3872 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
13:34:28.0064 3872 usbprint - ok
13:34:28.0075 3872 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:34:28.0077 3872 USBSTOR - ok
13:34:28.0083 3872 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
13:34:28.0084 3872 usbuhci - ok
13:34:28.0102 3872 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
13:34:28.0109 3872 UxSms - ok
13:34:28.0134 3872 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
13:34:28.0137 3872 VaultSvc - ok
13:34:28.0145 3872 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
13:34:28.0147 3872 vdrvroot - ok
13:34:28.0186 3872 vds (be807cc572a6e71b108f5318ff4e6850) C:\Windows\System32\vds.exe
13:34:28.0198 3872 vds - ok
13:34:28.0246 3872 VF0350Vfx (86326062a90494bdd79ce383511d7d69) C:\Windows\system32\DRIVERS\V0350VFx.sys
13:34:28.0247 3872 VF0350Vfx - ok
13:34:28.0277 3872 VF0350Vid (f9a3663065a897cec4a48c9854b35cd3) C:\Windows\system32\DRIVERS\V0350Vid.sys
13:34:28.0281 3872 VF0350Vid - ok
13:34:28.0286 3872 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
13:34:28.0289 3872 vga - ok
13:34:28.0296 3872 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
13:34:28.0297 3872 VgaSave - ok
13:34:28.0314 3872 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
13:34:28.0317 3872 vhdmp - ok
13:34:28.0324 3872 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
13:34:28.0326 3872 viaagp - ok
13:34:28.0333 3872 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
13:34:28.0335 3872 ViaC7 - ok
13:34:28.0341 3872 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
13:34:28.0343 3872 viaide - ok
13:34:28.0353 3872 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
13:34:28.0357 3872 vmbus - ok
13:34:28.0365 3872 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
13:34:28.0367 3872 VMBusHID - ok
13:34:28.0375 3872 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
13:34:28.0377 3872 volmgr - ok
13:34:28.0395 3872 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
13:34:28.0400 3872 volmgrx - ok
13:34:28.0414 3872 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
13:34:28.0418 3872 volsnap - ok
13:34:28.0436 3872 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
13:34:28.0440 3872 vsmraid - ok
13:34:28.0494 3872 VSS (cd6c81442635f0c49237b7ee7779ef80) C:\Windows\system32\vssvc.exe
13:34:28.0510 3872 VSS - ok
13:34:28.0515 3872 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
13:34:28.0516 3872 vwifibus - ok
13:34:28.0535 3872 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
13:34:28.0537 3872 vwififlt - ok
13:34:28.0552 3872 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
13:34:28.0562 3872 W32Time - ok
13:34:28.0569 3872 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
13:34:28.0571 3872 WacomPen - ok
13:34:28.0579 3872 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
13:34:28.0581 3872 WANARP - ok
13:34:28.0584 3872 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
13:34:28.0586 3872 Wanarpv6 - ok
13:34:28.0649 3872 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
13:34:28.0667 3872 wbengine - ok
13:34:28.0680 3872 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
13:34:28.0687 3872 WbioSrvc - ok
13:34:28.0716 3872 wcncsvc (d0f88aa11ee1a62bcc6d6a8a7783ca11) C:\Windows\System32\wcncsvc.dll
13:34:28.0724 3872 wcncsvc - ok
13:34:28.0730 3872 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
13:34:28.0736 3872 WcsPlugInService - ok
13:34:28.0821 3872 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
13:34:28.0823 3872 Wd - ok
13:34:28.0847 3872 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
13:34:28.0852 3872 Wdf01000 - ok
13:34:28.0868 3872 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
13:34:28.0874 3872 WdiServiceHost - ok
13:34:28.0877 3872 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
13:34:28.0884 3872 WdiSystemHost - ok
13:34:28.0896 3872 WebClient (92b5664f0c3fe9b19439471167641934) C:\Windows\System32\webclnt.dll
13:34:28.0904 3872 WebClient - ok
13:34:28.0924 3872 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
13:34:28.0931 3872 Wecsvc - ok
13:34:28.0940 3872 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
13:34:28.0947 3872 wercplsupport - ok
13:34:28.0954 3872 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
13:34:28.0961 3872 WerSvc - ok
13:34:28.0965 3872 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
13:34:28.0967 3872 WfpLwf - ok
13:34:28.0973 3872 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
13:34:28.0975 3872 WIMMount - ok
13:34:28.0993 3872 WinHttpAutoProxySvc - ok
13:34:29.0094 3872 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
13:34:29.0099 3872 Winmgmt - ok
13:34:29.0165 3872 WinRM (496cd815ac83398c9a4e80a0dd43ec47) C:\Windows\system32\WsmSvc.dll
13:34:29.0182 3872 WinRM - ok
13:34:29.0283 3872 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
13:34:29.0285 3872 WinUsb - ok
13:34:29.0339 3872 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
13:34:29.0353 3872 Wlansvc - ok
13:34:29.0527 3872 wlidsvc (5144ae67d60ec653f97ddf3feed29e77) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:34:29.0543 3872 wlidsvc - ok
13:34:29.0848 3872 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
13:34:29.0850 3872 WmiAcpi - ok
13:34:29.0940 3872 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
13:34:29.0943 3872 wmiApSrv - ok
13:34:30.0056 3872 WMPNetworkSvc (d6c43dfe63712b94af4280b1cd29e9a7) C:\Program Files\Windows Media Player\wmpnetwk.exe
13:34:30.0069 3872 WMPNetworkSvc - ok
13:34:30.0313 3872 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
13:34:30.0319 3872 WPCSvc - ok
13:34:30.0328 3872 WPDBusEnum (e6019b49399847c74bc5089824f94359) C:\Windows\system32\wpdbusenum.dll
13:34:30.0334 3872 WPDBusEnum - ok
13:34:30.0421 3872 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
13:34:30.0423 3872 ws2ifsl - ok
13:34:30.0428 3872 WSearch - ok
13:34:30.0541 3872 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
13:34:30.0565 3872 wuauserv - ok
13:34:30.0881 3872 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
13:34:30.0884 3872 WudfPf - ok
13:34:30.0909 3872 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:34:30.0913 3872 WUDFRd - ok
13:34:30.0943 3872 wudfsvc (441a9b4f586d85a0dbe2cec5e66a2fa7) C:\Windows\System32\WUDFSvc.dll
13:34:30.0949 3872 wudfsvc - ok
13:34:30.0969 3872 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
13:34:30.0977 3872 WwanSvc - ok
13:34:31.0004 3872 XDva394 - ok
13:34:31.0058 3872 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
13:34:31.0399 3872 \Device\Harddisk0\DR0 - ok
13:34:31.0405 3872 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk5\DR5
13:34:31.0413 3872 \Device\Harddisk5\DR5 - ok
13:34:31.0417 3872 Boot (0x1200) (ea3d64e62dccb26fd7dffe662d21db0e) \Device\Harddisk0\DR0\Partition0
13:34:31.0419 3872 \Device\Harddisk0\DR0\Partition0 - ok
13:34:31.0434 3872 Boot (0x1200) (8cbdd09284056fdfd26c2a49b47a3e81) \Device\Harddisk0\DR0\Partition1
13:34:31.0435 3872 \Device\Harddisk0\DR0\Partition1 - ok
13:34:31.0450 3872 Boot (0x1200) (e9775833b632bed562b0e501d66410b2) \Device\Harddisk0\DR0\Partition2
13:34:31.0452 3872 \Device\Harddisk0\DR0\Partition2 - ok
13:34:31.0457 3872 Boot (0x1200) (7850946bf23cdc38de22059075e0c0a0) \Device\Harddisk5\DR5\Partition0
13:34:31.0458 3872 \Device\Harddisk5\DR5\Partition0 - ok
13:34:31.0459 3872 ============================================================
13:34:31.0459 3872 Scan finished
13:34:31.0459 3872 ============================================================
13:34:31.0471 3152 Detected object count: 2
13:34:31.0471 3152 Actual detected object count: 2
13:34:39.0690 3152 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
13:34:39.0690 3152 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
13:34:39.0693 3152 sptd ( LockedFile.Multi.Generic ) - skipped by user
13:34:39.0693 3152 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:46 AM

Posted 07 August 2012 - 06:38 AM

Ok,Your last post was on

Posted 08 April 2012 - 11:22 AM

So let me know what are your current issues before running the tools

#7 Nasu

Nasu

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:46 AM

Posted 07 August 2012 - 06:51 AM

Sorry but this topic was made by Wishery mine two posts are actual from yesterday and today :)
But i will do what you want :)
I when i was installing game Vindictus there appeared temporary .txt like Wishery had with error 14000 - 404 - 0. Its not obviously the same but i had this error too. I googled it and only one topic with this error was here. I readed forum and saw the same problem what i have with firewall error 0x80070424 which prohibits me to do anything with firewall like run it or change settings. I didn't found any solution on google. There was tutorial to do something with registry but it didn't worked. And because i had the same problem which Wishery had i posted here for help :)) I'va hope you understood me bacause my english is terrible :))

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:46 AM

Posted 07 August 2012 - 06:53 AM

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

Edited by narenxp, 07 August 2012 - 06:54 AM.


#9 Nasu

Nasu

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:46 AM

Posted 07 August 2012 - 06:55 AM

Much to do :)) I take up the job :D Thanks for helpin when i do every thing i will edit this post :)

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:46 AM

Posted 07 August 2012 - 06:57 AM

Just wanted to make sure if system is clean before fixing firewall issue :thumbup2:

#11 Nasu

Nasu

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:46 AM

Posted 07 August 2012 - 09:50 AM

OK. Then... ESET:

C:\Program Files\Yontoo\YontooIEClient.dll a variant of Win32/Adware.Yontoo.A application cleaned by deleting - quarantined
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\ProgramData\WxDFastUpdater\ix_updater.exe Win32/GenUpdater application cleaned by deleting - quarantined
C:\ProgramData\WxDFastUpdater\runtime.dll Win32/GenUpdater application cleaned by deleting - quarantined
C:\Users\Filip\AppData\Local\Temp\yontoo.exe probably a variant of Win32/Adware.DZVACVG application cleaned by deleting - quarantined
C:\Users\Filip\AppData\Local\Temp\YontooIEClient.dll a variant of Win32/Adware.Yontoo.A application cleaned by deleting - quarantined
C:\Users\Filip\AppData\Local\Temp\YontooSetup-S.exe probably a variant of Win32/Adware.DHFRTZA application cleaned by deleting - quarantined

MBAM said it's OK.

Mini tool box:


MiniToolBox by Farbar Version: 23-07-2012
Ran by Filip (administrator) on 07-08-2012 at 16:45:15
Microsoft Windows 7 Ultimate (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Konfiguracja IP systemu Windows

Pomy˜lnie opr˘ľniono pami©† podr©cznĄ programu rozpoznawania nazw DNS.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Hamachi Network Interface = Hamachi (Connected)
Atheros AR5005G Wireless Network Adapter = Połączenie sieci bezprzewodowej 2 (Connected)
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Połączenie lokalne 2 (Media disconnected)


# ----------------------------------
# Konfiguracja IPv4
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=5.0.0.1 publish=Tak
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# Koniec konfiguracji IPv4



Konfiguracja IP systemu Windows

Nazwa hosta . . . . . . . . . . . : AUTO
Sufiks podstawowej domeny DNS . . :
Typ w©zˆa . . . . . . . . . . . . : Nieznany
Routing IP wˆĄczony . . . . . . . : Nie
Serwer WINS Proxy wˆĄczony. . . . : Nie

Karta Ethernet PoˆĄczenie lokalne 2:

Stan no˜nika . . . . . . . . . . .: No˜nik odˆĄczony
Sufiks DNS konkretnego poˆĄczenia :
Opis. . . . . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Adres fizyczny. . . . . . . . . . : 54-04-A6-59-74-77
DHCP wˆĄczone . . . . . . . . . . : Tak
Autokonfiguracja wˆĄczona . . . . : Tak

Karta bezprzewodowej sieci LAN PoˆĄczenie sieci bezprzewodowej 2:

Sufiks DNS konkretnego poˆĄczenia :
Opis. . . . . . . . . . . . . . . : Atheros AR5005G Wireless Network Adapter
Adres fizyczny. . . . . . . . . . : 00-1D-0F-B7-1C-45
DHCP wˆĄczone . . . . . . . . . . : Tak
Autokonfiguracja wˆĄczona . . . . : Tak
Adres IPv6 poˆĄczenia lokalnego . : fe80::498d:fd31:7fc2:b5de%17(Preferowane)
Adres IPv4. . . . . . . . . . . . . : 192.168.1.56(Preferowane)
Maska podsieci. . . . . . . . . . : 255.255.255.0
Dzierľawa uzyskana. . . . . . . . : 7 sierpnia 2012 16:22:22
Dzierľawa wygasa. . . . . . . . . : 9 sierpnia 2012 16:06:01
Brama domy˜lna. . . . . . . . . . : 192.168.1.52
Serwer DHCP . . . . . . . . . . . : 192.168.1.52
Identyfikator IAID DHCPv6 . . . . : 385883407
Identyfikator DUID klienta DHCPv6 : 00-01-00-01-16-3E-31-F2-00-1A-4D-39-8D-95
Serwery DNS . . . . . . . . . . . : 10.68.5.28
NetBIOS przez Tcpip . . . . . . . : WyˆĄczony

Karta Ethernet Hamachi:

Sufiks DNS konkretnego poˆĄczenia :
Opis. . . . . . . . . . . . . . . : Hamachi Network Interface
Adres fizyczny. . . . . . . . . . : 7A-79-05-8F-FC-CF
DHCP wˆĄczone . . . . . . . . . . : Tak
Autokonfiguracja wˆĄczona . . . . : Tak
Adres IPv6. . . . . . . . . . . . : 2620:9b::58f:fccf(Preferowane)
Adres IPv6 poˆĄczenia lokalnego . : fe80::9c6:922:a77f:cbb5%14(Preferowane)
Adres IPv4. . . . . . . . . . . . . : 5.143.252.207(Preferowane)
Maska podsieci. . . . . . . . . . : 255.0.0.0
Dzierľawa uzyskana. . . . . . . . : 7 sierpnia 2012 16:22:16
Dzierľawa wygasa. . . . . . . . . : 7 sierpnia 2013 16:24:23
Brama domy˜lna. . . . . . . . . . : 5.0.0.1
Serwer DHCP . . . . . . . . . . . : 5.0.0.1
Identyfikator IAID DHCPv6 . . . . : 427456873
Identyfikator DUID klienta DHCPv6 : 00-01-00-01-16-3E-31-F2-00-1A-4D-39-8D-95
Serwery DNS . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS przez Tcpip . . . . . . . : WyˆĄczony

Karta tunelowa isatap.{3539B5C5-BE95-49E1-A554-CEB0E96D3399}:

Stan no˜nika . . . . . . . . . . .: No˜nik odˆĄczony
Sufiks DNS konkretnego poˆĄczenia :
Opis. . . . . . . . . . . . . . . : Karta Microsoft ISATAP
Adres fizyczny. . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP wˆĄczone . . . . . . . . . . : Nie
Autokonfiguracja wˆĄczona . . . . : Tak

Karta tunelowa Teredo Tunneling Pseudo-Interface:

Stan no˜nika . . . . . . . . . . .: No˜nik odˆĄczony
Sufiks DNS konkretnego poˆĄczenia :
Opis. . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Adres fizyczny. . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP wˆĄczone . . . . . . . . . . : Nie
Autokonfiguracja wˆĄczona . . . . : Tak

Karta tunelowa isatap.{46397F92-ED83-4C95-A90B-0AC2BF9AFABD}:

Stan no˜nika . . . . . . . . . . .: No˜nik odˆĄczony
Sufiks DNS konkretnego poˆĄczenia :
Opis. . . . . . . . . . . . . . . : Karta Microsoft ISATAP #2
Adres fizyczny. . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP wˆĄczone . . . . . . . . . . : Nie
Autokonfiguracja wˆĄczona . . . . : Tak
Serwer: UnKnown
Address: 10.68.5.28

Nazwa: google.com
Addresses: 2a00:1450:4001:c01::8a
209.85.148.138
209.85.148.139
209.85.148.100
209.85.148.101
209.85.148.102
209.85.148.113


Badanie google.com [209.85.148.113] z 32 bajtami danych:
Odpowied« z 209.85.148.113: bajt˘w=32 czas=70ms TTL=53
Odpowied« z 209.85.148.113: bajt˘w=32 czas=65ms TTL=53

Statystyka badania ping dla 209.85.148.113:
Pakiety: Wysˆane = 2, Odebrane = 2, Utracone = 0
(0% straty),
Szacunkowy czas bˆĄdzenia pakiet˘w w millisekundach:
Minimum = 65 ms, Maksimum = 70 ms, Czas ˜redni = 67 ms
Serwer: UnKnown
Address: 10.68.5.28

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Badanie yahoo.com [72.30.38.140] z 32 bajtami danych:
Odpowied« z 72.30.38.140: bajt˘w=32 czas=242ms TTL=42
Odpowied« z 72.30.38.140: bajt˘w=32 czas=355ms TTL=42

Statystyka badania ping dla 72.30.38.140:
Pakiety: Wysˆane = 2, Odebrane = 2, Utracone = 0
(0% straty),
Szacunkowy czas bˆĄdzenia pakiet˘w w millisekundach:
Minimum = 242 ms, Maksimum = 355 ms, Czas ˜redni = 298 ms
Serwer: UnKnown
Address: 10.68.5.28

Nazwa: bleepingcomputer.com
Address: 208.43.87.2


Badanie bleepingcomputer.com [208.43.87.2] z 32 bajtami danych:
Odpowied« z 208.43.87.2: Host docelowy jest nieosiĄgalny.
Odpowied« z 208.43.87.2: Host docelowy jest nieosiĄgalny.

Statystyka badania ping dla 208.43.87.2:
Pakiety: Wysˆane = 2, Odebrane = 2, Utracone = 0
(0% straty),

Badanie 127.0.0.1 z 32 bajtami danych:
Odpowied« z 127.0.0.1: bajt˘w=32 czas<1 ms TTL=128
Odpowied« z 127.0.0.1: bajt˘w=32 czas<1 ms TTL=128

Statystyka badania ping dla 127.0.0.1:
Pakiety: Wysˆane = 2, Odebrane = 2, Utracone = 0
(0% straty),
Szacunkowy czas bˆĄdzenia pakiet˘w w millisekundach:
Minimum = 0 ms, Maksimum = 0 ms, Czas ˜redni = 0 ms
===========================================================================
Lista interfejs˘w
18...54 04 a6 59 74 77 ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
17...00 1d 0f b7 1c 45 ......Atheros AR5005G Wireless Network Adapter
14...7a 79 05 8f fc cf ......Hamachi Network Interface
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Karta Microsoft ISATAP
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
19...00 00 00 00 00 00 00 e0 Karta Microsoft ISATAP #2
===========================================================================

Tabela tras IPv4
===========================================================================
Aktywne trasy:
Miejsce docelowe w sieci Maska sieci Brama Interfejs Metryka
0.0.0.0 0.0.0.0 5.0.0.1 5.143.252.207 9256
0.0.0.0 0.0.0.0 192.168.1.52 192.168.1.56 25
5.0.0.0 255.0.0.0 On-link 5.143.252.207 9256
5.143.252.207 255.255.255.255 On-link 5.143.252.207 9256
5.255.255.255 255.255.255.255 On-link 5.143.252.207 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.56 281
192.168.1.56 255.255.255.255 On-link 192.168.1.56 281
192.168.1.255 255.255.255.255 On-link 192.168.1.56 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 5.143.252.207 9256
224.0.0.0 240.0.0.0 On-link 192.168.1.56 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 5.143.252.207 9256
255.255.255.255 255.255.255.255 On-link 192.168.1.56 281
===========================================================================
Trasy trwaˆe:
Adres sieciowy Maska sieci Adres bramy Metryka
0.0.0.0 0.0.0.0 5.0.0.1 Domy˜lne
===========================================================================

Tabela tras IPv6
===========================================================================
Aktywne trasy:
Je˜li Metryka Miejsce docelowe w sieci Brama
1 306 ::1/128 On-link
14 276 2620:9b::/96 On-link
14 276 2620:9b::58f:fccf/128 On-link
14 276 fe80::/64 On-link
17 281 fe80::/64 On-link
14 276 fe80::9c6:922:a77f:cbb5/128
On-link
17 281 fe80::498d:fd31:7fc2:b5de/128
On-link
1 306 ff00::/8 On-link
14 276 ff00::/8 On-link
17 281 ff00::/8 On-link
===========================================================================
Trasy trwaˆe:
Je˜li Metryka Miejsce docelowe w sieci Brama
0 4294967295 2620:9b::/96 On-link
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 03 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()
Catalog9 25 mswsock.dll [File Not found] ()
Catalog9 26 mswsock.dll [File Not found] ()
Catalog9 27 mswsock.dll [File Not found] ()
Catalog9 28 mswsock.dll [File Not found] ()
Catalog9 29 mswsock.dll [File Not found] ()
Catalog9 30 mswsock.dll [File Not found] ()
Catalog9 31 mswsock.dll [File Not found] ()
Catalog9 32 mswsock.dll [File Not found] ()
Catalog9 33 mswsock.dll [File Not found] ()
Catalog9 34 mswsock.dll [File Not found] ()
Catalog9 35 mswsock.dll [File Not found] ()
Catalog9 36 mswsock.dll [File Not found] ()
Catalog9 37 mswsock.dll [File Not found] ()
Catalog9 38 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/07/2012 04:15:37 AM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla "assemblyIdentity1". Błąd w pliku manifestu lub w pliku zasad "assemblyIdentity2" w wierszu assemblyIdentity3.
Wartość "*" atrybutu "language" elementu "assemblyIdentity" jest nieprawidłowa.

Error: (08/06/2012 09:55:45 PM) (Source: Application Error) (User: )
Description: Nazwa aplikacji powodującej błąd: Vindictus.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x4f98f24f
Nazwa modułu powodującego błąd: Vindictus.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x4f98f24f
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0008c730
Identyfikator procesu powodującego błąd: 0xdb4
Godzina uruchomienia aplikacji powodującej błąd: 0xVindictus.exe0
Ścieżka aplikacji powodującej błąd: Vindictus.exe1
Ścieżka modułu powodującego błąd: Vindictus.exe2
Identyfikator raportu: Vindictus.exe3

Error: (08/06/2012 09:55:41 PM) (Source: Application Error) (User: )
Description: Nazwa aplikacji powodującej błąd: Vindictus.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x4f98f24f
Nazwa modułu powodującego błąd: Vindictus.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x4f98f24f
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0008c730
Identyfikator procesu powodującego błąd: 0xd94
Godzina uruchomienia aplikacji powodującej błąd: 0xVindictus.exe0
Ścieżka aplikacji powodującej błąd: Vindictus.exe1
Ścieżka modułu powodującego błąd: Vindictus.exe2
Identyfikator raportu: Vindictus.exe3

Error: (08/06/2012 07:55:07 PM) (Source: Application Error) (User: )
Description: Nazwa aplikacji powodującej błąd: Vindictus.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x4f98f24f
Nazwa modułu powodującego błąd: Vindictus.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x4f98f24f
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0008c730
Identyfikator procesu powodującego błąd: 0x82c
Godzina uruchomienia aplikacji powodującej błąd: 0xVindictus.exe0
Ścieżka aplikacji powodującej błąd: Vindictus.exe1
Ścieżka modułu powodującego błąd: Vindictus.exe2
Identyfikator raportu: Vindictus.exe3

Error: (08/06/2012 05:50:52 PM) (Source: Application Hang) (User: )
Description: Program coolpro2.exe w wersji 2.1.3097.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: 6f8

Godzina rozpoczęcia: 01cd73ea94a581e5

Godzina zakończenia: 23

Ścieżka aplikacji: E:\Program Files\Cool Edit Pro 2\coolpro2.exe

Identyfikator raportu: 7ea83c2e-dfde-11e1-a601-5404a6597477

Error: (08/06/2012 05:46:00 PM) (Source: Application Hang) (User: )
Description: Program coolpro2.exe w wersji 2.1.3097.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: c88

Godzina rozpoczęcia: 01cd73e9f0e0a794

Godzina zakończenia: 15

Ścieżka aplikacji: E:\Program Files\Cool Edit Pro 2\coolpro2.exe

Identyfikator raportu: d0769eb9-dfdd-11e1-a601-5404a6597477

Error: (08/06/2012 05:41:25 PM) (Source: Application Hang) (User: )
Description: Program coolpro2.exe w wersji 2.1.3097.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: 348

Godzina rozpoczęcia: 01cd73e6f2cdc4ee

Godzina zakończenia: 33

Ścieżka aplikacji: E:\Program Files\Cool Edit Pro 2\coolpro2.exe

Identyfikator raportu: 1d29196e-dfdd-11e1-a601-5404a6597477

Error: (08/06/2012 01:31:13 AM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla "assemblyIdentity1". Błąd w pliku manifestu lub w pliku zasad "assemblyIdentity2" w wierszu assemblyIdentity3.
Wartość "*" atrybutu "language" elementu "assemblyIdentity" jest nieprawidłowa.

Error: (08/05/2012 05:10:41 AM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla "assemblyIdentity1". Błąd w pliku manifestu lub w pliku zasad "assemblyIdentity2" w wierszu assemblyIdentity3.
Wartość "*" atrybutu "language" elementu "assemblyIdentity" jest nieprawidłowa.

Error: (08/05/2012 00:46:58 AM) (Source: Application Error) (User: )
Description: Nazwa aplikacji powodującej błąd: bf3.exe, wersja: 1.3.0.0, sygnatura czasowa: 0x4fa421a5
Nazwa modułu powodującego błąd: bf3.exe, wersja: 1.3.0.0, sygnatura czasowa: 0x4fa421a5
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x00017ae0
Identyfikator procesu powodującego błąd: 0xd14
Godzina uruchomienia aplikacji powodującej błąd: 0xbf3.exe0
Ścieżka aplikacji powodującej błąd: bf3.exe1
Ścieżka modułu powodującego błąd: bf3.exe2
Identyfikator raportu: bf3.exe3


System errors:
=============
Error: (08/07/2012 04:23:37 PM) (Source: Service Control Manager) (User: )
Description: Usługa Pomoc TCP/IP NetBIOS zależy od następującej usługi: NetBT. Ta usługa może nie być zainstalowana.

Error: (08/07/2012 04:22:25 PM) (Source: Service Control Manager) (User: )
Description: Usługa Agent zasad IPsec zależy od usługi Podstawowy aparat filtrowania, której nie można uruchomić z powodu następującego błędu:
%%5

Error: (08/07/2012 04:22:24 PM) (Source: Service Control Manager) (User: )
Description: Usługa Moduły obsługi kluczy IPsec IKE i AuthIP zależy od usługi Podstawowy aparat filtrowania, której nie można uruchomić z powodu następującego błędu:
%%5

Error: (08/07/2012 04:22:23 PM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi ESET Service z powodu następującego błędu:
%%2

Error: (08/07/2012 04:22:22 PM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi Eset Trial Reset z powodu następującego błędu:
%%1053

Error: (08/07/2012 04:22:22 PM) (Source: Service Control Manager) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Eset Trial Reset.

Error: (08/07/2012 04:22:21 PM) (Source: Service Control Manager) (User: )
Description: Usługa Zapora systemu Windows zależy od usługi Podstawowy aparat filtrowania, której nie można uruchomić z powodu następującego błędu:
%%5

Error: (08/07/2012 04:22:21 PM) (Source: Service Control Manager) (User: )
Description: Usługa Podstawowy aparat filtrowania zakończyła działanie; wystąpił następujący błąd:
%%5

Error: (08/07/2012 04:22:20 PM) (Source: Service Control Manager) (User: )
Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu:
%%1058

Error: (08/07/2012 04:22:15 PM) (Source: Service Control Manager) (User: )
Description: Usługa Pomoc TCP/IP NetBIOS zależy od następującej usługi: NetBT. Ta usługa może nie być zainstalowana.


Microsoft Office Sessions:
=========================
Error: (08/07/2012 04:15:37 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files\WapSter\wapster aqq\System\DelZip179.dllc:\program files\WapSter\wapster aqq\System\DelZip179.dll8

Error: (08/06/2012 09:55:45 PM) (Source: Application Error)(User: )
Description: Vindictus.exe1.0.0.14f98f24fVindictus.exe1.0.0.14f98f24fc00000050008c730db401cd740d779257caE:\Program Files\Gry\Vindictus\Vindictus EU\en-EU\Vindictus.exeE:\Program Files\Gry\Vindictus\Vindictus EU\en-EU\Vindictus.exeb54051e8-e000-11e1-a601-5404a6597477

Error: (08/06/2012 09:55:41 PM) (Source: Application Error)(User: )
Description: Vindictus.exe1.0.0.14f98f24fVindictus.exe1.0.0.14f98f24fc00000050008c730d9401cd740d74f4719aE:\Program Files\Gry\Vindictus\Vindictus EU\en-EU\Vindictus.exeE:\Program Files\Gry\Vindictus\Vindictus EU\en-EU\Vindictus.exeb3307cfd-e000-11e1-a601-5404a6597477

Error: (08/06/2012 07:55:07 PM) (Source: Application Error)(User: )
Description: Vindictus.exe1.0.0.14f98f24fVindictus.exe1.0.0.14f98f24fc00000050008c73082c01cd73fc9d4e9771E:\Program Files\Gry\Vindictus\Vindictus EU\en-EU\Vindictus.exeE:\Program Files\Gry\Vindictus\Vindictus EU\en-EU\Vindictus.exedb1f5c52-dfef-11e1-a601-5404a6597477

Error: (08/06/2012 05:50:52 PM) (Source: Application Hang)(User: )
Description: coolpro2.exe2.1.3097.06f801cd73ea94a581e523E:\Program Files\Cool Edit Pro 2\coolpro2.exe7ea83c2e-dfde-11e1-a601-5404a6597477

Error: (08/06/2012 05:46:00 PM) (Source: Application Hang)(User: )
Description: coolpro2.exe2.1.3097.0c8801cd73e9f0e0a79415E:\Program Files\Cool Edit Pro 2\coolpro2.exed0769eb9-dfdd-11e1-a601-5404a6597477

Error: (08/06/2012 05:41:25 PM) (Source: Application Hang)(User: )
Description: coolpro2.exe2.1.3097.034801cd73e6f2cdc4ee33E:\Program Files\Cool Edit Pro 2\coolpro2.exe1d29196e-dfdd-11e1-a601-5404a6597477

Error: (08/06/2012 01:31:13 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files\WapSter\wapster aqq\System\DelZip179.dllc:\program files\WapSter\wapster aqq\System\DelZip179.dll8

Error: (08/05/2012 05:10:41 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files\WapSter\wapster aqq\System\DelZip179.dllc:\program files\WapSter\wapster aqq\System\DelZip179.dll8

Error: (08/05/2012 00:46:58 AM) (Source: Application Error)(User: )
Description: bf3.exe1.3.0.04fa421a5bf3.exe1.3.0.04fa421a5c000000500017ae0d1401cd729242891b3eE:\Program Files\Gry\Origin Games\Battlefield 3\bf3.exeE:\Program Files\Gry\Origin Games\Battlefield 3\bf3.exe4becd344-de86-11e1-8521-5404a6597477


=========================== Installed Programs ============================

Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.5 (Version: 11.5.7.609)
Akamai NetSession Interface
Aktualizacje NVIDIA 1.8.15 (Version: 1.8.15)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.2.43)
Atheros Driver Installation Program (Version: 9.0)
ATI Catalyst Install Manager (Version: 3.0.800.0)
avast! Free Antivirus (Version: 7.0.1456.0)
Bandisoft MPEG-1 Decoder
Batman Arkham City version 1.0 (Version: 1.0)
Battlefield 3™ (Version: 1.0.0.0)
Battlefield Heroes (Filip)
Battlelog Web Plugins (Version: 1.122.0)
BitTorrent (Version: 7.6.1)
Black and White
Blacklight Retribution (Version: 1.00.9500)
Camtasia Studio 7 (Version: 7.1.0)
Cheat Engine 6.1
Civilization V 1.0.1.348
Cool Edit Pro 2.1
Core Temp (Version: 0.99.7.0)
CPUID HWMonitor 1.17
Creative Live! Cam Video Chat or Video IM (VF0350) Driver (1.04.01.00)
DAEMON Tools Lite (Version: 4.41.3.0173)
Darkness 2 Repack
Detektor Winampa (Version: 1.0.0.1)
Diablo II
Diablo III (Version: 1.0.3.10485)
DirectDownloader
Dungeon Siege III
ESN Sonar (Version: 0.70.4)
Floris Mod Pack 2.5
Foreign Legion: Multi Massacre
FormatFactory 2.95 (Version: 2.95)
Fraps (remove only)
Google Chrome (Version: 21.0.1180.60)
GPU-Z (Version: 0.4.4)
Grand Theft Auto: Episodes from Liberty City (Version: 1.0.0002.135)
Guitar Pro 5.2
HashCheck Shell Extension (x86-32) (Version: 2.1.11.1)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 33 (Version: 6.0.330)
K-Lite Codec Pack 8.8.0 (Full) (Version: 8.8.0)
League of Legends (Version: 1.02.0000)
LogMeIn Hamachi (Version: 2.1.0.210)
Magic The Gathering - Duels of the Planeswalkers 2013
Malwarebytes Anti-Malware wersja 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile PLK Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended PLK Language Pack (Version: 4.0.30319)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (Version: 3.5.0.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office XP Professional (Version: 10.0.6626.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Mount&Blade Warband
MSI Afterburner 2.2.2 (Version: 2.2.2)
NapiProjekt (2.0.0.2151)
Need For Speed™ World (Version: 1.0.0.936)
Nero 7 Essentials (Version: 7.02.9491)
neroxml (Version: 1.0.0)
Nexon Game Manager
NVIDIA Install Application (Version: 2.1002.75.420)
NVIDIA Oprogramowanie systemu PhysX 9.12.0213 (Version: 9.12.0213)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0142)
NVIDIA Sterownik 3D Vision 301.42 (Version: 301.42)
NVIDIA Sterownik dźwięku HD 1.3.16.0 (Version: 1.3.16.0)
NVIDIA Sterownik graficzny 301.42 (Version: 301.42)
NVIDIA Sterownik kontrolera 3D Vision 301.42 (Version: 301.42)
NVIDIA Update Components (Version: 1.8.15)
OpenAL
OpenMG Limited Patch 4.7-07-14-05-01
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140)
Origin (Version: 8.5.0.4554)
Pandora Service
Panel sterowania NVIDIA 301.42 (Version: 301.42)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Port Royale 3 (Version: 1.0.0.0)
PunkBuster Services (Version: 0.991)
Real Alternative 2.0.2 (Version: 2.0.2)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.21.531.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6602)
Risen 2 Dark Waters
Roblox
Skype™ 5.9 (Version: 5.9.115)
Sniper Elite V2
SonicStage 4.3 (Version: 4.3)
Speccy (Version: 1.03.162)
Steam (Version: 1.0.0.0)
SubEdit-Player (Version: 4072)
Team Fortress 2
TeamSpeak 3 Client (Version: 3.0.8.1)
The KMPlayer (remove only)
The Secret World (Version: 1.0.0)
Tom Clancy's Ghost Recon Future Soldier (Version: 1.00)
Tom Clancys Ghost Recon Future Soldier version 1.02 (Version: 1.02)
Tropico 4 1.00 (Version: 1.00)
Ubisoft Game Launcher (Version: 1.0.0.0)
Vindictus EU
Virtual Piano 3.0
WapSter AQQ (Version: 2.4.1.60)
War Thunder: World of Planes version 1.0.0.0 (Version: 1.0.0.0)
Winamp (Version: 5.623 )
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
World of Tanks v.0.6.7
WxDFast Updater
Yacc 0.4.0.3 (Version: 0.4.0.3)
Yontoo 1.10.02 (Version: 1.10.02)

========================= Memory info: ===================================

Percentage of memory in use: 36%
Total physical RAM: 3327.12 MB
Available physical RAM: 2102.98 MB
Total Pagefile: 6652.52 MB
Available Pagefile: 5354.98 MB
Total Virtual: 2499.88 MB
Available Virtual: 2366.02 MB

========================= Partitions: =====================================

1 Drive c: (SYSTEM-R7) (Fixed) (Total:97.66 GB) (Free:55.24 GB) NTFS
2 Drive d: () (Fixed) (Total:175.81 GB) (Free:68.35 GB) NTFS
3 Drive e: () (Fixed) (Total:192.15 GB) (Free:53.3 GB) NTFS
10 Drive m: (KINGSTON) (Removable) (Total:7.44 GB) (Free:2.3 GB) FAT32

========================= Users: ========================================

Konta uľytkownik˘w dla \\AUTO

Administrator Filip Go˜†
UpdatusUser
Polecenie zostaˆo wykonane pomy˜lnie.


**** End of log ****


Wow you even have mine installed programs xDD
2 more things to do. Edit when ready.

EDIT1:

FSS:


Farbar Service Scanner Version: 06-08-2012
Ran by Filip (administrator) on 07-08-2012 at 16:53:06
Running from "D:\Pobrane"
Microsoft Windows 7 Ultimate (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.

bfe Service is not running. Checking service configuration:
The start type of bfe service is OK.
The ImagePath of bfe service is OK.
The ServiceDll of bfe service is OK.


Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is set to Disabled. The default start type is 3.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.


System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll
[2009-07-14 01:12] - [2010-06-04 09:51] - 0254464 ____A (Microsoft Corporation) 10D71D49B3DACFD6CD7E83852F01B3E7

C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll
[2009-07-14 01:12] - [2010-06-04 09:51] - 0132608 ____A (Microsoft Corporation) E89C8F2E12052C8EA273AADD516CD06B

C:\Windows\system32\mpssvc.dll
[2009-07-14 01:53] - [2009-07-14 03:15] - 0565760 ____A (Microsoft Corporation) 5CD996CECF45CBC3E8D109C86B82D69E

C:\Windows\system32\bfe.dll
[2009-07-14 01:54] - [2010-06-04 09:51] - 0494080 ____A (Microsoft Corporation) 05EC560A7E4FB26D56CC96EB54878CB4

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll
[2009-07-14 01:23] - [2010-06-04 09:53] - 0125952 ____A (Microsoft Corporation) 02DF48767B2CF4D0C68EBB9EB87929AB

C:\Windows\system32\vssvc.exe
[2009-07-14 01:24] - [2010-06-04 09:51] - 1025536 ____A (Microsoft Corporation) CD6C81442635F0C49237B7EE7779EF80

C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll
[2009-07-14 01:30] - [2010-06-04 09:53] - 0584704 ____A (Microsoft Corporation) E4657918AF568FFFADD24CAA629CCF87

C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****


EDIT2:

ADWcleaner



# AdwCleaner v1.800 - Logfile created 08/07/2012 at 16:55:16
# Updated 01/08/2012 by Xplode
# Operating system : Windows 7 Ultimate (32 bits)
# User : Filip - AUTO
# Running from : D:\Pobrane\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Program Files\Yontoo

***** [Registry] *****

Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\SOFTWARE\DT Soft
Key Deleted : HKLM\SOFTWARE\Freeze.com
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Tarma Installer

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.16562

[OK] Registry is clean.

-\\ Google Chrome v21.0.1180.60

File : C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Users\Gość\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [3096 octets] - [07/08/2012 16:55:16]

########## EOF - C:\AdwCleaner[S1].txt - [3224 octets] ##########

The end :))) I even coloured to help you find what you need :)

Edited by Nasu, 07 August 2012 - 10:04 AM.


#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:46 AM

Posted 07 August 2012 - 10:15 AM

Download

wscsvc
defender

Launch them ,click YES when you get UAC prompt

restart the PC


Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
reset file permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the FSS log

#13 Nasu

Nasu

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:46 AM

Posted 08 August 2012 - 10:34 AM

Ok theres a log ;)


Farbar Service Scanner Version: 06-08-2012
Ran by Filip (administrator) on 08-08-2012 at 17:33:31
Running from "D:\Pobrane"
Microsoft Windows 7 Ultimate (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.

bfe Service is not running. Checking service configuration:
The start type of bfe service is OK.
The ImagePath of bfe service is OK.
The ServiceDll of bfe service is OK.


Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is set to Disabled. The default start type is 3.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.


System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll
[2009-07-14 01:12] - [2010-06-04 09:51] - 0254464 ____A (Microsoft Corporation) 10D71D49B3DACFD6CD7E83852F01B3E7

C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll
[2009-07-14 01:12] - [2010-06-04 09:51] - 0132608 ____A (Microsoft Corporation) E89C8F2E12052C8EA273AADD516CD06B

C:\Windows\system32\mpssvc.dll
[2009-07-14 01:53] - [2009-07-14 03:15] - 0565760 ____A (Microsoft Corporation) 5CD996CECF45CBC3E8D109C86B82D69E

C:\Windows\system32\bfe.dll
[2009-07-14 01:54] - [2010-06-04 09:51] - 0494080 ____A (Microsoft Corporation) 05EC560A7E4FB26D56CC96EB54878CB4

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll
[2009-07-14 01:23] - [2010-06-04 09:53] - 0125952 ____A (Microsoft Corporation) 02DF48767B2CF4D0C68EBB9EB87929AB

C:\Windows\system32\vssvc.exe
[2009-07-14 01:24] - [2010-06-04 09:51] - 1025536 ____A (Microsoft Corporation) CD6C81442635F0C49237B7EE7779EF80

C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll
[2009-07-14 01:30] - [2010-06-04 09:53] - 0584704 ____A (Microsoft Corporation) E4657918AF568FFFADD24CAA629CCF87

C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:46 AM

Posted 08 August 2012 - 02:26 PM

Press Windows+ R key and type

regedit and click ok

go to

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE

&

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Sharedaccess


Right click on the keys-permissions

Click on ADD and type

Everyone and click ok

Now Click on Everyone

Below you have permission for users

Select full control and click ok

Press Windows+ R key and type

services.msc and click ok

start base filtering engine service and then windows firewall service

Post the new FSS log

#15 Nasu

Nasu

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:46 AM

Posted 08 August 2012 - 03:43 PM

Then ok on SharedAccess i had "everyone" and "full control" and after 10 minutes i found how is base filtering engine service in my language :DD but it was running and started firewall :)

Heres log:


Farbar Service Scanner Version: 06-08-2012
Ran by Filip (administrator) on 08-08-2012 at 22:41:48
Running from "D:\Pobrane"
Microsoft Windows 7 Ultimate (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is set to Disabled. The default start type is 3.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.


System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll
[2009-07-14 01:12] - [2010-06-04 09:51] - 0254464 ____A (Microsoft Corporation) 10D71D49B3DACFD6CD7E83852F01B3E7

C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll
[2009-07-14 01:12] - [2010-06-04 09:51] - 0132608 ____A (Microsoft Corporation) E89C8F2E12052C8EA273AADD516CD06B

C:\Windows\system32\mpssvc.dll
[2009-07-14 01:53] - [2009-07-14 03:15] - 0565760 ____A (Microsoft Corporation) 5CD996CECF45CBC3E8D109C86B82D69E

C:\Windows\system32\bfe.dll
[2009-07-14 01:54] - [2010-06-04 09:51] - 0494080 ____A (Microsoft Corporation) 05EC560A7E4FB26D56CC96EB54878CB4

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll
[2009-07-14 01:23] - [2010-06-04 09:53] - 0125952 ____A (Microsoft Corporation) 02DF48767B2CF4D0C68EBB9EB87929AB

C:\Windows\system32\vssvc.exe
[2009-07-14 01:24] - [2010-06-04 09:51] - 1025536 ____A (Microsoft Corporation) CD6C81442635F0C49237B7EE7779EF80

C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll
[2009-07-14 01:30] - [2010-06-04 09:53] - 0584704 ____A (Microsoft Corporation) E4657918AF568FFFADD24CAA629CCF87

C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****



And i can see firewall running again! :) Thanks a lot... i dont really know how to thank you :) I have to send you a bag of beer :D




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users