Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Not getting internet - Virus attack


  • Please log in to reply
12 replies to this topic

#1 Anil P.K

Anil P.K

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 21 April 2012 - 02:18 PM

Hi,

My Computer was attacked by Virus and after that I am not getting internet. I have used malwarebytes and Super Antispyware. It seems like my registry is infected and the services related to networking is disabled. I am not able to start those services as well.

My folders are hidden and I think Virus is not completely gone. Temp folder is getting filled and it shows memory error at times.

When I start Computer Browser service, it gives error as "Error 1060: The Specified service doesn't exist"

I really need help to connect to internet.

Regards
Anil

Edit: Moved topic from AntiVirus, Firewall and Privacy Products and Protection Methods to the more appropriate forum. ~ Animal

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:13 PM

Posted 21 April 2012 - 09:16 PM

Welcome aboard Posted Image

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

====================================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 Anil P.K

Anil P.K
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 23 April 2012 - 01:35 AM

Please find the Malware logs below

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.04.08

Windows 7 x86 NTFS
Internet Explorer 9.0.8112.16421
Anil :: ANIL-PC [administrator]

4/22/2012 11:18:08 PM
mbam-log-2012-04-22 (23-18-08).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 250994
Time elapsed: 7 minute(s), 2 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 29
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1E0DE227-5CE4-4EA3-AB0C-8B03E1AA76BC} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45dd-9B68-D6A12C30E5D7} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCR\sp (TrojanProxy.Agent) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin (PUP.MyWebSearch) -> Quarantined and deleted successfully.

Registry Values Detected: 4
HKLM\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources|f3PopularScreensavers (PUP.MyWebSearch) -> Data: C:\Program Files\MyWebSearch\bar\1.bin\F3SCRCTR.DLL -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost|netsvc (TrojanProxy.Agent) -> Data: SPService^-^ -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform|FunWebProducts (PUP.MyWebSearch) -> Data: -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dplaysvr (Trojan.QHost.BG) -> Data: C:\Windows\system32\config\systemprofile\AppData\Local\dplaysvr.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:13 PM

Posted 23 April 2012 - 06:07 PM

Go on....

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 Anil P.K

Anil P.K
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 23 April 2012 - 09:41 PM

Farbar Service Scanner Version: 16-04-2012
Ran by Anil (administrator) on 23-04-2012 at 19:33:21
Running from "C:\Users\Anil\Desktop"
Microsoft Windows 7 Ultimate N (X86)
Boot Mode: Nerwork
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

tdx Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open tdx registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open tdx registry key. The service key does not exist.


Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is OK.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
Attention! C:\Windows\system32\Drivers\tdx.sys is missing.
C:\Windows\system32\Drivers\tcpip.sys
[2011-11-11 11:06] - [2011-09-29 08:43] - 1285488 ____A (Microsoft Corporation) 56C198AC82EFA622DD93E9E43575F79C

C:\Windows\system32\dnsrslvr.dll
[2011-06-07 22:43] - [2011-03-02 22:29] - 0132608 ____A (Microsoft Corporation) B15BE77A2BACF9C3177D27518AFE26A9

C:\Windows\system32\mpssvc.dll
[2009-07-13 16:53] - [2009-07-13 18:15] - 0565760 ____A (Microsoft Corporation) 5CD996CECF45CBC3E8D109C86B82D69E

C:\Windows\system32\bfe.dll
[2009-07-13 16:54] - [2009-07-13 18:14] - 0493568 ____A (Microsoft Corporation) 85AC71C045CEB054ED48A7841AAE0C11

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll
[2009-07-13 16:23] - [2009-07-13 18:16] - 0125952 ____A (Microsoft Corporation) 5FD90ABDBFAEE85986802622CBB03446

C:\Windows\system32\vssvc.exe
[2009-07-13 16:24] - [2009-07-13 18:14] - 1025536 ____A (Microsoft Corporation) 7EA2BCD94D9CFAF4C556F5CC94532A6C

C:\Windows\system32\wscsvc.dll
[2011-02-23 21:11] - [2010-12-20 22:38] - 0073728 ____A (Microsoft Corporation) A661A76333057B383A06E65F0073222F

C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll
[2009-07-13 17:15] - [2009-07-13 18:16] - 1912832 ____A (Microsoft Corporation) A33408CC036F9C08142B11BE5E93F0A1

C:\Windows\system32\qmgr.dll
[2009-07-13 16:30] - [2009-07-13 18:16] - 0589312 ____A (Microsoft Corporation) 53F476476F55A27F580661BDE09C4EC4

C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****


MiniToolBox by Farbar Version: 18-01-2012
Ran by Anil (administrator) on 23-04-2012 at 19:34:51
Microsoft Windows 7 Ultimate N (X86)
Boot Mode: Nerwork
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================


94.63.147.16 www.google.com
94.63.147.17 www.bing.com


========================= IP Configuration: ================================

Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Connected)
Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Anil-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Peer-Peer
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection
Physical Address. . . . . . . . . : 00-1B-77-4C-8F-8F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5441:7037:b28f:a2ed%12(Preferred)
Autoconfiguration IPv4 Address. . : 169.254.162.237(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Disabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : us.ad.wellpoint.com
Description . . . . . . . . . . . : Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 00-13-A9-CA-65-50
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{56F530F1-8A01-484F-B8E7-7E30BA05ED80}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.socal.rr.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable Microsoft 6To4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Ping request could not find host google.com. Please check the name and try again.
Server: UnKnown
Address: 192.168.1.1

Ping request could not find host yahoo.com. Please check the name and try again.
Server: UnKnown
Address: 192.168.1.1

Ping request could not find host bleepingcomputer.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 1b 77 4c 8f 8f ......Intel® PRO/Wireless 3945ABG Network Connection
11...00 13 a9 ca 65 50 ......Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller
1...........................Software Loopback Interface 1
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
15...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
16...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
17...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #3
22...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 169.254.162.237 281
169.254.162.237 255.255.255.255 On-link 169.254.162.237 281
169.254.255.255 255.255.255.255 On-link 169.254.162.237 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 169.254.162.237 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 169.254.162.237 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
12 281 fe80::/64 On-link
12 281 fe80::5441:7037:b28f:a2ed/128
On-link
1 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134512] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134512] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/21/2012 00:42:00 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/21/2012 00:40:08 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (04/17/2012 09:20:43 PM) (Source: Windows Backup) (User: )
Description: The backup was not successful. The error is: Windows Backup failed while determining libraries location of one of the users included in backup. (0x81000031).

Error: (04/12/2012 02:36:46 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {00847d00-2eb6-4af7-ba07-f730bfc3adc6}

Error: (04/10/2012 04:25:56 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/10/2012 04:24:44 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (04/09/2012 01:34:41 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
Could not query the status of the EventSystem service.

System Error:
A system shutdown is in progress.
.

Error: (04/08/2012 11:37:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/08/2012 11:35:34 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (04/08/2012 11:04:22 PM) (Source: Windows Backup) (User: )
Description: The backup was not successful. The error is: Windows Backup failed while determining libraries location of one of the users included in backup. (0x81000031).


System errors:
=============
Error: (04/23/2012 00:19:42 PM) (Source: Service Control Manager) (User: )
Description: The WinHTTP Web Proxy Auto-Discovery Service service depends on the DHCP Client service which failed to start because of the following error:
%%1075

Error: (04/23/2012 00:19:42 PM) (Source: Service Control Manager) (User: )
Description: The DHCP Client service depends the following service: Tdx. This service might not be installed.

Error: (04/23/2012 00:14:39 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (04/23/2012 00:14:39 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (04/23/2012 00:14:32 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (04/23/2012 00:14:24 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (04/23/2012 11:35:40 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AvgLdx86
AvgMfx86
AvgTdiX
discache
SASDIFSV
SASKUTIL
spldr
Wanarpv6

Error: (04/23/2012 11:35:37 AM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (04/23/2012 11:35:37 AM) (Source: Service Control Manager) (User: )
Description: The Net.Msmq Listener Adapter service depends on the Message Queuing service which failed to start because of the following error:
%%1068

Error: (04/23/2012 11:35:37 AM) (Source: Service Control Manager) (User: )
Description: The Message Queuing Triggers service depends on the Message Queuing service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (11/17/2011 07:25:40 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 22297 seconds with 240 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Adobe AIR (Version: 1.5.2.8870)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.55)
Adobe Photoshop Elements 8.0 (Version: 8.0)
Adobe Reader 9.2 (Version: 9.2.0)
Advanced SMTP Server
Advertising Center (Version: 0.0.0.2)
Akamai NetSession Interface Service
Ask Toolbar (Version: 1.5.2.0)
ASP.NET Provider Toolkit SQL Samples (Version: 1.0.0)
AVG Free 9.0
Citrix Presentation Server Client (Version: 10.100.55836)
Crystal Reports Basic for Visual Studio 2008 (Version: 10.5.0.0)
DivX Plus Web Player (Version: 2.0.0)
Google Talk (remove only)
Google Talk Plugin (Version: 2.8.5.6620)
HijackThis 1.99.1 (Version: 1.99.1)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1930)
Java™ 6 Update 17 (Version: 6.0.170)
Junk Mail filter update (Version: 14.0.8089.726)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Compact Framework 2.0 SP2 (Version: 2.0.7045)
Microsoft .NET Compact Framework 3.5 (Version: 3.5.7283)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Device Emulator version 3.0 - ENU (Version: 9.0.21022)
Microsoft Document Explorer 2008
Microsoft Document Explorer 2008 (Version: 9.0.21022)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.4 (Version: 2.0.3008.0)
Microsoft Office Live Meeting 2007 (Version: 8.0.6362.149)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 12.0.6423.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000)
Microsoft Office Visual Web Developer 2007 (Version: 12.0.4518.1066)
Microsoft Office Visual Web Developer MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft Silverlight 2 SDK (Version: 2.0.31005.0)
Microsoft Silverlight Tools for Visual Studio 2008 SP1 - ENU (Version: 9.0.30729.146)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (Version: 9.00.1399.06)
Microsoft SQL Server 2008
Microsoft SQL Server 2008 Browser (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Management Objects (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Management Studio (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Policies (Version: 10.1.2531.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.1.2531.0)
Microsoft SQL Server Compact 3.5 for Devices ENU (Version: 3.5.5386.0)
Microsoft SQL Server Compact 3.5 SP1 Design Tools English (Version: 3.5.5692.0)
Microsoft SQL Server Compact 3.5 SP1 English (Version: 3.5.5692.0)
Microsoft SQL Server Compact 3.5 SP1 Query Tools English (Version: 3.5.5692.0)
Microsoft SQL Server Database Publishing Wizard 1.3 (Version: 10.0.1600.22)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
Microsoft Visual Studio 2008 Professional Edition - ENU
Microsoft Visual Studio 2008 Professional Edition - ENU (Version: 9.0.30729)
Microsoft Visual Studio 2008 Professional Edition - ENU Service Pack 1 (KB945140) (Version: 1)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.30729)
Microsoft Visual Studio Web Authoring Component (Version: 12.0.4518.1066)
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools - enu (Version: 3.5.21022)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (Version: 6.1.5288.17011)
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (Version: 6.1.5288.17011)
Microsoft Windows SDK for Visual Studio 2008 SP1 Tools (Version: 6.1.5294.17011)
Microsoft Windows SDK for Visual Studio 2008 SP1 Win32 Tools (Version: 6.1.5294.17011)
Mozilla Firefox (3.6b4) (Version: 3.6b4 (en-US))
MSDN Library for Visual Studio 2008 - ENU (Version: 9.0)
MSDN Library for Visual Studio 2008 - ENU (Version: 9.0.21022)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 9 Lite
Nero ControlCenter (Version: 9.0.0.1)
Nero Installer (Version: 4.4.9.0)
Nero Online Upgrade (Version: 1.3.0.0)
Nero StartSmart (Version: 9.4.31.100)
neroxml (Version: 1.0.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Paint.NET v3.5.1 (Version: 3.51.0)
ParetoLogic DriverCure (Version: 1.6.1.0)
ParetoLogic FileCure (Version: 1.0.2.0)
PC Antivirus
PC Tools Registry Mechanic 11.0 (Version: 11.0)
RealPlayer
RegClean Pro (Version: 6.21)
RegCure Pro (Version: 3.1.0.0)
Reliance Netconnect - Broadband+ (Version: 11.030.01.04.114)
Service Pack 1 for SQL Server 2008 (KB968369) (Version: 10.1.2531.0)
Sony Media Manager 2.2 (Version: 2.2.93)
Sony Vegas 7.0 (Version: 7.0.151)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
SUPERAntiSpyware (Version: 5.0.1146)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2597970) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Microsoft Visual Studio 2008 Professional Edition - ENU (KB956453) (Version: 1)
Update for Microsoft Visual Studio Web Authoring Component (KB945140)
VC Runtimes MSI (Version: 9.0.21022)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Visual C++ 2008 IA64 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 IA64 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x64 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x64 Runtime - (v9.0.30729.4148) (Version: 9.0.30729.4148)
Visual C++ 2008 x64 Runtime - (v9.0.30729.6161) (Version: 9.0.30729.6161)
Visual C++ 2008 x64 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x64 Runtime - v9.0.30729.4148 (Version: 9.0.30729.4148)
Visual C++ 2008 x64 Runtime - v9.0.30729.6161 (Version: 9.0.30729.6161)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - (v9.0.30729.4148) (Version: 9.0.30729.4148)
Visual C++ 2008 x86 Runtime - (v9.0.30729.6161) (Version: 9.0.30729.6161)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x86 Runtime - v9.0.30729.4148 (Version: 9.0.30729.4148)
Visual C++ 2008 x86 Runtime - v9.0.30729.6161 (Version: 9.0.30729.6161)
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime (Version: 9.0.30729)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (Version: 1)
Web Page Maker V3.12
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8098.930)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Family Safety (Version: 14.0.8093.805)
Windows Live ID Sign-in Assistant (Version: 6.500.3146.0)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Mobile 5.0 SDK R2 for Pocket PC (Version: 5.00.1700.5.14343.06)
Windows Mobile 5.0 SDK R2 for Smartphone (Version: 5.00.1700.5.14343.06)
WinZip 15.5 (Version: 15.5.9468)
WinZip Registry Optimizer (Version: 1.0)
Yahoo! Messenger

========================= Devices: ================================

Name: Mass Storage Controller
Description: Mass Storage Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: AVG Network Redirector
Description: AVG Network Redirector
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AvgTdiX
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


========================= Memory info: ===================================

Percentage of memory in use: 19%
Total physical RAM: 2038.16 MB
Available physical RAM: 1648.06 MB
Total Pagefile: 4076.33 MB
Available Pagefile: 3717.8 MB
Total Virtual: 2047.88 MB
Available Virtual: 1936.05 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:105.17 GB) (Free:46.94 GB) NTFS
3 Drive f: () (Removable) (Total:3.41 GB) (Free:0.29 GB) FAT32

========================= Users: ========================================

User accounts for \\ANIL-PC

Administrator Anil Guest
Test


**** End of log ****


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-23 19:36:37
-----------------------------
19:36:37.815 OS Version: Windows 6.1.7600
19:36:37.815 Number of processors: 2 586 0xF02
19:36:37.815 ComputerName: ANIL-PC UserName: Anil
19:36:38.595 Initialize success
19:36:44.975 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2
19:36:44.975 Disk 0 Vendor: Hitachi_HTS541612J9SA00 SBDOC74P Size: 114473MB BusType: 3
19:36:44.975 Disk 0 MBR read successfully
19:36:44.975 Disk 0 MBR scan
19:36:44.991 Disk 0 TDL4@MBR code has been found
19:36:44.991 Disk 0 Windows 7 default MBR code found via API
19:36:44.991 Disk 0 MBR hidden
19:36:45.007 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 6766 MB offset 2048
19:36:45.022 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 107705 MB offset 13858816
19:36:45.022 Disk 0 MBR [TDL4] **ROOTKIT**
19:36:45.053 Disk 0 trace - called modules:
19:36:45.053 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x84bcf49f]<<
19:36:45.069 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x849fe030]
19:36:45.069 3 CLASSPNP.SYS[8818659e] -> nt!IofCallDriver -> [0x84946328]
19:36:45.085 5 ACPI.sys[87c333b2] -> nt!IofCallDriver -> \IdeDeviceP1T0L0-2[0x84947030]
19:36:45.100 \Driver\atapi[0x84bf8138] -> IRP_MJ_CREATE -> 0x84bcf49f
19:36:45.116 Scan finished successfully
19:37:02.494 Disk 0 MBR has been saved successfully to "C:\Users\Anil\Desktop\MBR.dat"
19:37:02.526 The log file has been saved successfully to "C:\Users\Anil\Desktop\aswMBR.txt"

#6 Anil P.K

Anil P.K
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 23 April 2012 - 09:42 PM

Securitycheck.exe site is blocked by Mcafee. So I am not able to download it

#7 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:13 PM

Posted 23 April 2012 - 09:45 PM

Disable McAfee and download Security Check anyway.

Then, we have a lot of issues.

Let's start with a rootkit....

Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#8 Anil P.K

Anil P.K
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 24 April 2012 - 12:16 AM

22:08:30.0087 1592 TDSS rootkit removing tool 2.7.32.0 Apr 23 2012 19:12:34
22:08:30.0103 1592 ============================================================
22:08:30.0103 1592 Current date / time: 2012/04/23 22:08:30.0103
22:08:30.0103 1592 SystemInfo:
22:08:30.0103 1592
22:08:30.0103 1592 OS Version: 6.1.7600 ServicePack: 0.0
22:08:30.0103 1592 Product type: Workstation
22:08:30.0103 1592 ComputerName: ANIL-PC
22:08:30.0103 1592 UserName: Anil
22:08:30.0103 1592 Windows directory: C:\Windows
22:08:30.0103 1592 System windows directory: C:\Windows
22:08:30.0103 1592 Processor architecture: Intel x86
22:08:30.0103 1592 Number of processors: 2
22:08:30.0103 1592 Page size: 0x1000
22:08:30.0103 1592 Boot type: Safe boot with network
22:08:30.0103 1592 ============================================================
22:08:31.0538 1592 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:08:31.0538 1592 Drive \Device\Harddisk1\DR3 - Size: 0xDA9FFE00 (3.42 Gb), SectorSize: 0x200, Cylinders: 0x1BD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:08:31.0554 1592 ============================================================
22:08:31.0554 1592 \Device\Harddisk0\DR0:
22:08:31.0554 1592 MBR partitions:
22:08:31.0554 1592 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xD37800, BlocksNum 0xD25CBB0
22:08:31.0554 1592 \Device\Harddisk1\DR3:
22:08:31.0554 1592 MBR partitions:
22:08:31.0554 1592 \Device\Harddisk1\DR3\Partition0: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x6D4FC0
22:08:31.0554 1592 ============================================================
22:08:31.0585 1592 C: <-> \Device\Harddisk0\DR0\Partition0
22:08:31.0585 1592 ============================================================
22:08:31.0585 1592 Initialize success
22:08:31.0585 1592 ============================================================
22:09:15.0078 1992 ============================================================
22:09:15.0078 1992 Scan started
22:09:15.0078 1992 Mode: Manual;
22:09:15.0078 1992 ============================================================
22:09:15.0499 1992 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
22:09:15.0499 1992 !SASCORE - ok
22:09:15.0780 1992 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
22:09:15.0796 1992 1394ohci - ok
22:09:15.0827 1992 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
22:09:15.0842 1992 ACPI - ok
22:09:15.0874 1992 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
22:09:15.0874 1992 AcpiPmi - ok
22:09:15.0952 1992 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
22:09:15.0967 1992 adp94xx - ok
22:09:15.0998 1992 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
22:09:16.0014 1992 adpahci - ok
22:09:16.0045 1992 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
22:09:16.0061 1992 adpu320 - ok
22:09:16.0108 1992 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
22:09:16.0108 1992 AeLookupSvc - ok
22:09:16.0186 1992 AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys
22:09:16.0201 1992 AFD - ok
22:09:16.0248 1992 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
22:09:16.0248 1992 agp440 - ok
22:09:16.0295 1992 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
22:09:16.0295 1992 aic78xx - ok
22:09:16.0966 1992 Akamai (1125c7d9fb8898015829c387c1bc87c7) c:\program files\common files\akamai/netsession_win_6c825ce.dll
22:09:16.0966 1992 Suspicious file (Hidden): c:\program files\common files\akamai/netsession_win_6c825ce.dll. md5: 1125c7d9fb8898015829c387c1bc87c7
22:09:16.0981 1992 Akamai ( HiddenFile.Multi.Generic ) - warning
22:09:16.0981 1992 Akamai - detected HiddenFile.Multi.Generic (1)
22:09:17.0215 1992 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
22:09:17.0215 1992 ALG - ok
22:09:17.0309 1992 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
22:09:17.0309 1992 aliide - ok
22:09:17.0340 1992 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
22:09:17.0340 1992 amdagp - ok
22:09:17.0371 1992 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
22:09:17.0371 1992 amdide - ok
22:09:17.0418 1992 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
22:09:17.0418 1992 AmdK8 - ok
22:09:17.0449 1992 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
22:09:17.0449 1992 AmdPPM - ok
22:09:17.0512 1992 amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\Windows\system32\drivers\amdsata.sys
22:09:17.0512 1992 amdsata - ok
22:09:17.0558 1992 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
22:09:17.0558 1992 amdsbs - ok
22:09:17.0590 1992 amdxata (869e67d66be326a5a9159fba8746fa70) C:\Windows\system32\drivers\amdxata.sys
22:09:17.0590 1992 amdxata - ok
22:09:17.0683 1992 AppHostSvc (ba494509ccd115197450f3ce5b76d7cc) C:\Windows\system32\inetsrv\apphostsvc.dll
22:09:17.0683 1992 AppHostSvc - ok
22:09:17.0746 1992 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
22:09:17.0746 1992 AppID - ok
22:09:17.0792 1992 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
22:09:17.0792 1992 AppIDSvc - ok
22:09:17.0824 1992 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
22:09:17.0824 1992 Appinfo - ok
22:09:17.0933 1992 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
22:09:17.0933 1992 AppMgmt - ok
22:09:17.0995 1992 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
22:09:17.0995 1992 arc - ok
22:09:18.0026 1992 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
22:09:18.0026 1992 arcsas - ok
22:09:18.0151 1992 aspnet_state (39cdcb109bf200cc8a05b9c7e6272d11) C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:09:18.0151 1992 aspnet_state - ok
22:09:18.0182 1992 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
22:09:18.0182 1992 AsyncMac - ok
22:09:18.0229 1992 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
22:09:18.0229 1992 atapi - ok
22:09:18.0338 1992 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
22:09:18.0338 1992 AudioEndpointBuilder - ok
22:09:18.0354 1992 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
22:09:18.0354 1992 Audiosrv - ok
22:09:18.0557 1992 AVG Security Toolbar Service (d45b7995761253a92ab071d576114f28) C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
22:09:18.0557 1992 AVG Security Toolbar Service - ok
22:09:18.0682 1992 avg9wd (c4d15594db5be042d3346ea58df87d89) C:\Program Files\AVG\AVG9\avgwdsvc.exe
22:09:18.0682 1992 avg9wd - ok
22:09:18.0744 1992 AvgLdx86 - ok
22:09:18.0806 1992 AvgMfx86 (80ff2b1b7eeda966394f0baa895bbf4b) C:\Windows\System32\Drivers\avgmfx86.sys
22:09:18.0806 1992 AvgMfx86 - ok
22:09:18.0869 1992 AvgTdiX (9a7a93388f503a34e7339ae7f9997449) C:\Windows\System32\Drivers\avgtdix.sys
22:09:18.0869 1992 AvgTdiX - ok
22:09:18.0947 1992 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
22:09:18.0947 1992 AxInstSV - ok
22:09:19.0009 1992 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
22:09:19.0025 1992 b06bdrv - ok
22:09:19.0072 1992 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
22:09:19.0072 1992 b57nd60x - ok
22:09:19.0118 1992 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
22:09:19.0118 1992 BDESVC - ok
22:09:19.0134 1992 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
22:09:19.0134 1992 Beep - ok
22:09:19.0290 1992 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\System32\qmgr.dll
22:09:19.0352 1992 BITS - ok
22:09:19.0399 1992 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
22:09:19.0415 1992 blbdrive - ok
22:09:19.0477 1992 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys
22:09:19.0477 1992 bowser - ok
22:09:19.0508 1992 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:09:19.0508 1992 BrFiltLo - ok
22:09:19.0524 1992 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:09:19.0524 1992 BrFiltUp - ok
22:09:19.0571 1992 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
22:09:19.0571 1992 Browser - ok
22:09:19.0618 1992 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
22:09:19.0633 1992 Brserid - ok
22:09:19.0680 1992 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
22:09:19.0680 1992 BrSerWdm - ok
22:09:19.0696 1992 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
22:09:19.0696 1992 BrUsbMdm - ok
22:09:19.0711 1992 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
22:09:19.0711 1992 BrUsbSer - ok
22:09:19.0742 1992 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
22:09:19.0742 1992 BTHMODEM - ok
22:09:19.0805 1992 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
22:09:19.0805 1992 bthserv - ok
22:09:19.0852 1992 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
22:09:19.0852 1992 cdfs - ok
22:09:19.0898 1992 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
22:09:19.0914 1992 cdrom - ok
22:09:19.0976 1992 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
22:09:19.0976 1992 CertPropSvc - ok
22:09:20.0008 1992 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
22:09:20.0008 1992 circlass - ok
22:09:20.0054 1992 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
22:09:20.0054 1992 CLFS - ok
22:09:20.0148 1992 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:09:20.0148 1992 clr_optimization_v2.0.50727_32 - ok
22:09:20.0304 1992 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:09:20.0366 1992 clr_optimization_v4.0.30319_32 - ok
22:09:20.0398 1992 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
22:09:20.0413 1992 CmBatt - ok
22:09:20.0444 1992 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
22:09:20.0444 1992 cmdide - ok
22:09:20.0569 1992 CNG (36c252e474b2ffa0f0fbbff20d92a640) C:\Windows\system32\Drivers\cng.sys
22:09:20.0585 1992 CNG - ok
22:09:20.0616 1992 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
22:09:20.0616 1992 Compbatt - ok
22:09:20.0647 1992 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
22:09:20.0647 1992 CompositeBus - ok
22:09:20.0663 1992 COMSysApp - ok
22:09:20.0678 1992 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
22:09:20.0678 1992 crcdisk - ok
22:09:20.0741 1992 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll
22:09:20.0741 1992 CryptSvc - ok
22:09:20.0850 1992 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
22:09:20.0866 1992 CSC - ok
22:09:20.0928 1992 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll
22:09:20.0944 1992 CscService - ok
22:09:21.0037 1992 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
22:09:21.0053 1992 DcomLaunch - ok
22:09:21.0115 1992 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
22:09:21.0115 1992 defragsvc - ok
22:09:21.0224 1992 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys
22:09:21.0224 1992 DfsC - ok
22:09:21.0302 1992 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
22:09:21.0302 1992 Dhcp - ok
22:09:21.0349 1992 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
22:09:21.0349 1992 discache - ok
22:09:21.0396 1992 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
22:09:21.0412 1992 Disk - ok
22:09:21.0427 1992 Dnscache (b15be77a2bacf9c3177d27518afe26a9) C:\Windows\System32\dnsrslvr.dll
22:09:21.0427 1992 Dnscache - ok
22:09:21.0490 1992 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
22:09:21.0490 1992 dot3svc - ok
22:09:21.0552 1992 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
22:09:21.0552 1992 DPS - ok
22:09:21.0614 1992 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
22:09:21.0614 1992 drmkaud - ok
22:09:21.0739 1992 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys
22:09:21.0755 1992 DXGKrnl - ok
22:09:21.0802 1992 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
22:09:21.0802 1992 EapHost - ok
22:09:22.0254 1992 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
22:09:22.0316 1992 ebdrv - ok
22:09:22.0519 1992 EFS (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\System32\lsass.exe
22:09:22.0519 1992 EFS - ok
22:09:22.0675 1992 ehRecvr (1697c39978cd69f6fbc15302edcece1f) C:\Windows\ehome\ehRecvr.exe
22:09:22.0691 1992 ehRecvr - ok
22:09:22.0738 1992 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
22:09:22.0738 1992 ehSched - ok
22:09:22.0862 1992 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
22:09:22.0878 1992 elxstor - ok
22:09:22.0909 1992 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
22:09:22.0909 1992 ErrDev - ok
22:09:23.0018 1992 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
22:09:23.0018 1992 EventSystem - ok
22:09:23.0050 1992 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
22:09:23.0050 1992 exfat - ok
22:09:23.0065 1992 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
22:09:23.0081 1992 fastfat - ok
22:09:23.0190 1992 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
22:09:23.0190 1992 Fax - ok
22:09:23.0221 1992 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
22:09:23.0221 1992 fdc - ok
22:09:23.0268 1992 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
22:09:23.0268 1992 fdPHost - ok
22:09:23.0284 1992 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
22:09:23.0284 1992 FDResPub - ok
22:09:23.0330 1992 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
22:09:23.0330 1992 FileInfo - ok
22:09:23.0346 1992 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
22:09:23.0346 1992 Filetrace - ok
22:09:23.0549 1992 FLEXnet Licensing Service (abedfd48ac042c6aaad32452e77217a1) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:09:23.0564 1992 FLEXnet Licensing Service - ok
22:09:23.0580 1992 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
22:09:23.0580 1992 flpydisk - ok
22:09:23.0674 1992 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
22:09:23.0674 1992 FltMgr - ok
22:09:23.0814 1992 FontCache (7fe4995528a7529a761875151ee3d512) C:\Windows\system32\FntCache.dll
22:09:23.0830 1992 FontCache - ok
22:09:23.0923 1992 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:09:23.0923 1992 FontCache3.0.0.0 - ok
22:09:23.0954 1992 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
22:09:23.0954 1992 FsDepends - ok
22:09:23.0986 1992 fssfltr (b74b0578fd1d3f897e95f2a2b69ea051) C:\Windows\system32\DRIVERS\fssfltr.sys
22:09:23.0986 1992 fssfltr - ok
22:09:24.0188 1992 fsssvc (206ad9a89bf05dfa1621f1fc7b82592d) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
22:09:24.0188 1992 fsssvc - ok
22:09:24.0220 1992 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
22:09:24.0220 1992 Fs_Rec - ok
22:09:24.0344 1992 ftpsvc (17a1b1eb87cbbd4c69404686938a950e) C:\Windows\system32\inetsrv\ftpsvc.dll
22:09:24.0344 1992 ftpsvc - ok
22:09:24.0422 1992 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
22:09:24.0422 1992 fvevol - ok
22:09:24.0485 1992 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
22:09:24.0485 1992 gagp30kx - ok
22:09:24.0563 1992 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
22:09:24.0578 1992 gpsvc - ok
22:09:24.0610 1992 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
22:09:24.0610 1992 hcw85cir - ok
22:09:24.0734 1992 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
22:09:24.0750 1992 HdAudAddService - ok
22:09:24.0797 1992 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:09:24.0797 1992 HDAudBus - ok
22:09:24.0828 1992 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
22:09:24.0828 1992 HidBatt - ok
22:09:24.0859 1992 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
22:09:24.0859 1992 HidBth - ok
22:09:24.0906 1992 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
22:09:24.0906 1992 HidIr - ok
22:09:24.0937 1992 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
22:09:24.0937 1992 hidserv - ok
22:09:25.0015 1992 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
22:09:25.0015 1992 HidUsb - ok
22:09:25.0062 1992 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
22:09:25.0078 1992 hkmsvc - ok
22:09:25.0109 1992 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
22:09:25.0109 1992 HomeGroupListener - ok
22:09:25.0187 1992 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
22:09:25.0187 1992 HomeGroupProvider - ok
22:09:25.0218 1992 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
22:09:25.0234 1992 HpSAMD - ok
22:09:25.0327 1992 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
22:09:25.0327 1992 HTTP - ok
22:09:25.0405 1992 hwdatacard (1720966d9c7ea5e2d78b6db92d2f9171) C:\Windows\system32\DRIVERS\ewusbmdm.sys
22:09:25.0405 1992 hwdatacard - ok
22:09:25.0436 1992 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
22:09:25.0436 1992 hwpolicy - ok
22:09:25.0483 1992 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
22:09:25.0483 1992 i8042prt - ok
22:09:25.0546 1992 iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\Windows\system32\drivers\iaStorV.sys
22:09:25.0561 1992 iaStorV - ok
22:09:25.0842 1992 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:09:25.0858 1992 idsvc - ok
22:09:26.0762 1992 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:09:26.0934 1992 igfx - ok
22:09:27.0137 1992 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
22:09:27.0137 1992 iirsp - ok
22:09:27.0199 1992 IISADMIN (fc9735b66850cf8aebbc1e207ecb2ad8) C:\Windows\system32\inetsrv\inetinfo.exe
22:09:27.0199 1992 IISADMIN - ok
22:09:27.0340 1992 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
22:09:27.0355 1992 IKEEXT - ok
22:09:27.0402 1992 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
22:09:27.0402 1992 intelide - ok
22:09:27.0449 1992 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
22:09:27.0449 1992 intelppm - ok
22:09:27.0480 1992 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
22:09:27.0480 1992 IPBusEnum - ok
22:09:27.0511 1992 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:09:27.0511 1992 IpFilterDriver - ok
22:09:27.0558 1992 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
22:09:27.0558 1992 IPMIDRV - ok
22:09:27.0605 1992 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
22:09:27.0605 1992 IPNAT - ok
22:09:27.0636 1992 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
22:09:27.0636 1992 IRENUM - ok
22:09:27.0667 1992 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
22:09:27.0667 1992 isapnp - ok
22:09:27.0745 1992 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
22:09:27.0761 1992 iScsiPrt - ok
22:09:27.0823 1992 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:09:27.0823 1992 kbdclass - ok
22:09:27.0854 1992 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
22:09:27.0854 1992 kbdhid - ok
22:09:27.0901 1992 KeyIso (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
22:09:27.0901 1992 KeyIso - ok
22:09:27.0964 1992 KSecDD (0263364acb9c834ace52fb85c2c064ec) C:\Windows\system32\Drivers\ksecdd.sys
22:09:27.0979 1992 KSecDD - ok
22:09:28.0026 1992 KSecPkg (27391db553be2a4e2b0adeea2873b2af) C:\Windows\system32\Drivers\ksecpkg.sys
22:09:28.0026 1992 KSecPkg - ok
22:09:28.0104 1992 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
22:09:28.0104 1992 KtmRm - ok
22:09:28.0166 1992 kwandlfp - ok
22:09:28.0229 1992 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\Windows\system32\srvsvc.dll
22:09:28.0229 1992 LanmanServer - ok
22:09:28.0291 1992 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
22:09:28.0307 1992 LanmanWorkstation - ok
22:09:28.0354 1992 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
22:09:28.0354 1992 lltdio - ok
22:09:28.0416 1992 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
22:09:28.0416 1992 lltdsvc - ok
22:09:28.0463 1992 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
22:09:28.0463 1992 lmhosts - ok
22:09:28.0510 1992 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
22:09:28.0510 1992 LSI_FC - ok
22:09:28.0525 1992 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
22:09:28.0525 1992 LSI_SAS - ok
22:09:28.0556 1992 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:09:28.0556 1992 LSI_SAS2 - ok
22:09:28.0588 1992 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:09:28.0588 1992 LSI_SCSI - ok
22:09:28.0603 1992 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
22:09:28.0603 1992 luafv - ok
22:09:28.0681 1992 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
22:09:28.0681 1992 MBAMProtector - ok
22:09:28.0884 1992 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
22:09:28.0884 1992 MBAMService - ok
22:09:28.0978 1992 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
22:09:28.0978 1992 Mcx2Svc - ok
22:09:29.0024 1992 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
22:09:29.0024 1992 megasas - ok
22:09:29.0087 1992 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
22:09:29.0102 1992 MegaSR - ok
22:09:29.0212 1992 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
22:09:29.0227 1992 Microsoft Office Groove Audit Service - ok
22:09:29.0274 1992 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
22:09:29.0274 1992 MMCSS - ok
22:09:29.0290 1992 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
22:09:29.0290 1992 Modem - ok
22:09:29.0336 1992 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
22:09:29.0336 1992 monitor - ok
22:09:29.0383 1992 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
22:09:29.0383 1992 mouclass - ok
22:09:29.0430 1992 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
22:09:29.0430 1992 mouhid - ok
22:09:29.0461 1992 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
22:09:29.0461 1992 mountmgr - ok
22:09:29.0524 1992 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
22:09:29.0524 1992 mpio - ok
22:09:29.0570 1992 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
22:09:29.0570 1992 mpsdrv - ok
22:09:29.0648 1992 MQAC (2cdfbbd7fddc262c690dd7d02bc0bd32) C:\Windows\system32\drivers\mqac.sys
22:09:29.0648 1992 MQAC - ok
22:09:29.0664 1992 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
22:09:29.0664 1992 MRxDAV - ok
22:09:29.0742 1992 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:09:29.0742 1992 mrxsmb - ok
22:09:29.0789 1992 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:09:29.0789 1992 mrxsmb10 - ok
22:09:29.0836 1992 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:09:29.0836 1992 mrxsmb20 - ok
22:09:29.0867 1992 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
22:09:29.0867 1992 msahci - ok
22:09:29.0898 1992 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
22:09:29.0898 1992 msdsm - ok
22:09:29.0960 1992 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
22:09:29.0976 1992 MSDTC - ok
22:09:30.0023 1992 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
22:09:30.0023 1992 Msfs - ok
22:09:30.0038 1992 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
22:09:30.0038 1992 mshidkmdf - ok
22:09:30.0116 1992 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
22:09:30.0116 1992 msisadrv - ok
22:09:30.0163 1992 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
22:09:30.0163 1992 MSiSCSI - ok
22:09:30.0179 1992 msiserver - ok
22:09:30.0194 1992 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
22:09:30.0194 1992 MSKSSRV - ok
22:09:30.0241 1992 MSMQ (e582b9e88ef4980c3b76276620fe667b) C:\Windows\system32\mqsvc.exe
22:09:30.0241 1992 MSMQ - ok
22:09:30.0397 1992 MSMQTriggers (51ff65db7e43c871591c246bc518a182) C:\Windows\system32\mqtgsvc.exe
22:09:30.0397 1992 MSMQTriggers - ok
22:09:30.0413 1992 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
22:09:30.0413 1992 MSPCLOCK - ok
22:09:30.0428 1992 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
22:09:30.0428 1992 MSPQM - ok
22:09:30.0475 1992 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
22:09:30.0475 1992 MsRPC - ok
22:09:30.0491 1992 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
22:09:30.0491 1992 mssmbios - ok
22:09:30.0662 1992 MSSQL$SQLEXPRESS - ok
22:09:30.0756 1992 MSSQLSERVER - ok
22:09:30.0834 1992 MSSQLServerADHelper (adaf062116b4e6d96e44d26486a87af6) c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
22:09:30.0865 1992 MSSQLServerADHelper - ok
22:09:30.0943 1992 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
22:09:30.0943 1992 MSSQLServerADHelper100 - ok
22:09:30.0990 1992 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
22:09:30.0990 1992 MSTEE - ok
22:09:31.0692 1992 msvsmon90 (5bb9b12a0c4685a13e81b44c7fe38b94) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe
22:09:31.0817 1992 msvsmon90 - ok
22:09:32.0051 1992 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
22:09:32.0051 1992 MTConfig - ok
22:09:32.0066 1992 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
22:09:32.0066 1992 Mup - ok
22:09:32.0160 1992 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
22:09:32.0160 1992 napagent - ok
22:09:32.0222 1992 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
22:09:32.0238 1992 NativeWifiP - ok
22:09:32.0347 1992 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
22:09:32.0363 1992 NDIS - ok
22:09:32.0394 1992 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
22:09:32.0394 1992 NdisCap - ok
22:09:32.0441 1992 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
22:09:32.0441 1992 NdisTapi - ok
22:09:32.0472 1992 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
22:09:32.0472 1992 Ndisuio - ok
22:09:32.0519 1992 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
22:09:32.0519 1992 NdisWan - ok
22:09:32.0519 1992 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
22:09:32.0519 1992 NDProxy - ok
22:09:32.0581 1992 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
22:09:32.0581 1992 NetBIOS - ok
22:09:32.0628 1992 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
22:09:32.0628 1992 NetBT - ok
22:09:32.0675 1992 Netlogon (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
22:09:32.0675 1992 Netlogon - ok
22:09:32.0784 1992 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
22:09:32.0784 1992 Netman - ok
22:09:32.0924 1992 NetMsmqActivator (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:09:32.0924 1992 NetMsmqActivator - ok
22:09:32.0924 1992 NetPipeActivator (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:09:32.0924 1992 NetPipeActivator - ok
22:09:32.0971 1992 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
22:09:32.0987 1992 netprofm - ok
22:09:32.0987 1992 NetTcpActivator (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:09:32.0987 1992 NetTcpActivator - ok
22:09:33.0002 1992 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:09:33.0002 1992 NetTcpPortSharing - ok
22:09:33.0642 1992 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
22:09:33.0782 1992 netw5v32 - ok
22:09:34.0048 1992 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
22:09:34.0048 1992 nfrd960 - ok
22:09:34.0126 1992 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
22:09:34.0126 1992 NlaSvc - ok
22:09:34.0188 1992 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
22:09:34.0188 1992 Npfs - ok
22:09:34.0219 1992 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
22:09:34.0219 1992 nsi - ok
22:09:34.0250 1992 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
22:09:34.0250 1992 nsiproxy - ok
22:09:34.0469 1992 Ntfs (187002ce05693c306f43c873f821381f) C:\Windows\system32\drivers\Ntfs.sys
22:09:34.0484 1992 Ntfs - ok
22:09:34.0734 1992 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
22:09:34.0734 1992 Null - ok
22:09:34.0781 1992 nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\Windows\system32\drivers\nvraid.sys
22:09:34.0781 1992 nvraid - ok
22:09:34.0828 1992 nvstor (4520b63899e867f354ee012d34e11536) C:\Windows\system32\drivers\nvstor.sys
22:09:34.0828 1992 nvstor - ok
22:09:34.0859 1992 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
22:09:34.0874 1992 nv_agp - ok
22:09:35.0030 1992 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:09:35.0046 1992 odserv - ok
22:09:35.0077 1992 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
22:09:35.0077 1992 ohci1394 - ok
22:09:35.0140 1992 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:09:35.0140 1992 ose - ok
22:09:35.0218 1992 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
22:09:35.0233 1992 p2pimsvc - ok
22:09:35.0280 1992 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
22:09:35.0296 1992 p2psvc - ok
22:09:35.0342 1992 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
22:09:35.0342 1992 Parport - ok
22:09:35.0358 1992 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
22:09:35.0374 1992 partmgr - ok
22:09:35.0389 1992 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
22:09:35.0389 1992 Parvdm - ok
22:09:35.0436 1992 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
22:09:35.0436 1992 PcaSvc - ok
22:09:35.0514 1992 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
22:09:35.0530 1992 pci - ok
22:09:35.0561 1992 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
22:09:35.0561 1992 pciide - ok
22:09:35.0592 1992 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
22:09:35.0592 1992 pcmcia - ok
22:09:36.0044 1992 PCToolsSSDMonitorSvc (40372dfc0d53b50a045fb843744294d4) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
22:09:36.0076 1992 PCToolsSSDMonitorSvc - ok
22:09:36.0107 1992 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
22:09:36.0122 1992 pcw - ok
22:09:36.0200 1992 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
22:09:36.0216 1992 PEAUTH - ok
22:09:36.0341 1992 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
22:09:36.0372 1992 PeerDistSvc - ok
22:09:36.0606 1992 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
22:09:36.0637 1992 pla - ok
22:09:36.0902 1992 PlugPlay (71def5ec79774c798342d0ea16e41780) C:\Windows\system32\umpnpmgr.dll
22:09:36.0902 1992 PlugPlay - ok
22:09:36.0934 1992 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
22:09:36.0934 1992 PNRPAutoReg - ok
22:09:37.0027 1992 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
22:09:37.0027 1992 PNRPsvc - ok
22:09:37.0105 1992 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
22:09:37.0105 1992 PolicyAgent - ok
22:09:37.0152 1992 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
22:09:37.0152 1992 Power - ok
22:09:37.0246 1992 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
22:09:37.0246 1992 PptpMiniport - ok
22:09:37.0261 1992 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
22:09:37.0261 1992 Processor - ok
22:09:37.0339 1992 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll
22:09:37.0339 1992 ProfSvc - ok
22:09:37.0386 1992 ProtectedStorage (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
22:09:37.0386 1992 ProtectedStorage - ok
22:09:37.0433 1992 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
22:09:37.0448 1992 Psched - ok
22:09:37.0495 1992 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\Windows\system32\Drivers\PxHelp20.sys
22:09:37.0495 1992 PxHelp20 - ok
22:09:37.0698 1992 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
22:09:37.0729 1992 ql2300 - ok
22:09:37.0994 1992 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
22:09:37.0994 1992 ql40xx - ok
22:09:38.0072 1992 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
22:09:38.0072 1992 QWAVE - ok
22:09:38.0104 1992 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
22:09:38.0104 1992 QWAVEdrv - ok
22:09:38.0119 1992 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
22:09:38.0119 1992 RasAcd - ok
22:09:38.0182 1992 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
22:09:38.0182 1992 RasAgileVpn - ok
22:09:38.0213 1992 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
22:09:38.0213 1992 RasAuto - ok
22:09:38.0244 1992 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:09:38.0244 1992 Rasl2tp - ok
22:09:38.0338 1992 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
22:09:38.0338 1992 RasMan - ok
22:09:38.0369 1992 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
22:09:38.0369 1992 RasPppoe - ok
22:09:38.0400 1992 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
22:09:38.0416 1992 RasSstp - ok
22:09:38.0462 1992 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
22:09:38.0478 1992 rdbss - ok
22:09:38.0509 1992 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
22:09:38.0509 1992 rdpbus - ok
22:09:38.0540 1992 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:09:38.0540 1992 RDPCDD - ok
22:09:38.0587 1992 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
22:09:38.0587 1992 RDPDR - ok
22:09:38.0634 1992 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
22:09:38.0634 1992 RDPENCDD - ok
22:09:38.0650 1992 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
22:09:38.0650 1992 RDPREFMP - ok
22:09:38.0712 1992 RDPWD (0399c725a9c95a6f1862b93f008ddf4a) C:\Windows\system32\drivers\RDPWD.sys
22:09:38.0712 1992 RDPWD - ok
22:09:38.0759 1992 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
22:09:38.0774 1992 rdyboost - ok
22:09:38.0821 1992 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
22:09:38.0821 1992 RemoteAccess - ok
22:09:38.0884 1992 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
22:09:38.0884 1992 RemoteRegistry - ok
22:09:38.0962 1992 RMCAST (b4090006a82eeb608c358ab5d37de85a) C:\Windows\system32\DRIVERS\RMCAST.sys
22:09:38.0962 1992 RMCAST - ok
22:09:39.0008 1992 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
22:09:39.0024 1992 RpcEptMapper - ok
22:09:39.0040 1992 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
22:09:39.0040 1992 RpcLocator - ok
22:09:39.0149 1992 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
22:09:39.0164 1992 RpcSs - ok
22:09:39.0227 1992 RsFx0103 (fd692c6ffade58f7c4c3c3c9a0ec35bd) C:\Windows\system32\DRIVERS\RsFx0103.sys
22:09:39.0227 1992 RsFx0103 - ok
22:09:39.0274 1992 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
22:09:39.0274 1992 rspndr - ok
22:09:39.0320 1992 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
22:09:39.0320 1992 s3cap - ok
22:09:39.0367 1992 SamSs (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
22:09:39.0367 1992 SamSs - ok
22:09:39.0492 1992 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
22:09:39.0492 1992 SASDIFSV - ok
22:09:39.0523 1992 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
22:09:39.0523 1992 SASKUTIL - ok
22:09:39.0586 1992 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
22:09:39.0586 1992 sbp2port - ok
22:09:39.0648 1992 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
22:09:39.0648 1992 SCardSvr - ok
22:09:39.0679 1992 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
22:09:39.0679 1992 scfilter - ok
22:09:39.0820 1992 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\Windows\system32\schedsvc.dll
22:09:39.0835 1992 Schedule - ok
22:09:39.0898 1992 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
22:09:39.0898 1992 SCPolicySvc - ok
22:09:39.0944 1992 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
22:09:39.0944 1992 SDRSVC - ok
22:09:39.0976 1992 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:09:39.0976 1992 secdrv - ok
22:09:40.0007 1992 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
22:09:40.0007 1992 seclogon - ok
22:09:40.0085 1992 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
22:09:40.0085 1992 SENS - ok
22:09:40.0116 1992 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
22:09:40.0132 1992 SensrSvc - ok
22:09:40.0147 1992 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
22:09:40.0147 1992 Serenum - ok
22:09:40.0178 1992 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
22:09:40.0178 1992 Serial - ok
22:09:40.0241 1992 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
22:09:40.0241 1992 sermouse - ok
22:09:40.0319 1992 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
22:09:40.0319 1992 SessionEnv - ok
22:09:40.0381 1992 SFEP (8b7c1768d2cde2e02e09a66563ddfd16) C:\Windows\system32\DRIVERS\SFEP.sys
22:09:40.0381 1992 SFEP - ok
22:09:40.0412 1992 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
22:09:40.0412 1992 sffdisk - ok
22:09:40.0428 1992 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
22:09:40.0428 1992 sffp_mmc - ok
22:09:40.0444 1992 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
22:09:40.0444 1992 sffp_sd - ok
22:09:40.0475 1992 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
22:09:40.0475 1992 sfloppy - ok
22:09:40.0522 1992 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
22:09:40.0537 1992 SharedAccess - ok
22:09:40.0646 1992 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
22:09:40.0646 1992 ShellHWDetection - ok
22:09:40.0678 1992 simptcp (f5aaa8cdda25b6387af590d676d25bad) C:\Windows\System32\tcpsvcs.exe
22:09:40.0693 1992 simptcp - ok
22:09:40.0709 1992 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
22:09:40.0709 1992 sisagp - ok
22:09:40.0740 1992 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:09:40.0756 1992 SiSRaid2 - ok
22:09:40.0802 1992 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
22:09:40.0802 1992 SiSRaid4 - ok
22:09:40.0865 1992 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
22:09:40.0865 1992 Smb - ok
22:09:41.0083 1992 SMTPMainService (826a6480fc484a70f09212d7d308a1ff) C:\Program Files\Advanced SMTP Server\SMTPListener.exe
22:09:41.0099 1992 SMTPMainService - ok
22:09:41.0146 1992 SNMP (007f394efb7bf80bf9999d9384cc272a) C:\Windows\System32\snmp.exe
22:09:41.0146 1992 SNMP - ok
22:09:41.0177 1992 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
22:09:41.0192 1992 SNMPTRAP - ok
22:09:41.0224 1992 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
22:09:41.0224 1992 spldr - ok
22:09:41.0286 1992 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\Windows\System32\spoolsv.exe
22:09:41.0286 1992 Spooler - ok
22:09:41.0863 1992 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
22:09:41.0910 1992 sppsvc - ok
22:09:42.0144 1992 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
22:09:42.0144 1992 sppuinotify - ok
22:09:42.0362 1992 SQLAgent$SQLEXPRESS (a687b5b326afcfcf182c4931d1ff9771) c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
22:09:42.0378 1992 SQLAgent$SQLEXPRESS - ok
22:09:42.0456 1992 SQLBrowser (b54b48f6d92423440c264e91225c5ff1) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
22:09:42.0456 1992 SQLBrowser - ok
22:09:42.0518 1992 SQLWriter (637a0f23f9012358e92e6f99835494d1) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
22:09:42.0518 1992 SQLWriter - ok
22:09:42.0659 1992 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys
22:09:42.0659 1992 srv - ok
22:09:42.0706 1992 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys
22:09:42.0721 1992 srv2 - ok
22:09:42.0768 1992 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
22:09:42.0768 1992 SrvHsfHDA - ok
22:09:42.0908 1992 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
22:09:42.0924 1992 SrvHsfV92 - ok
22:09:43.0018 1992 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
22:09:43.0033 1992 SrvHsfWinac - ok
22:09:43.0080 1992 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys
22:09:43.0080 1992 srvnet - ok
22:09:43.0142 1992 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
22:09:43.0142 1992 SSDPSRV - ok
22:09:43.0189 1992 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
22:09:43.0189 1992 SstpSvc - ok
22:09:43.0236 1992 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
22:09:43.0236 1992 stexstor - ok
22:09:43.0361 1992 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
22:09:43.0361 1992 StiSvc - ok
22:09:43.0423 1992 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
22:09:43.0423 1992 storflt - ok
22:09:43.0454 1992 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
22:09:43.0454 1992 storvsc - ok
22:09:43.0470 1992 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
22:09:43.0470 1992 swenum - ok
22:09:43.0517 1992 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
22:09:43.0532 1992 swprv - ok
22:09:43.0720 1992 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
22:09:43.0751 1992 SysMain - ok
22:09:43.0766 1992 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
22:09:43.0782 1992 TabletInputService - ok
22:09:43.0829 1992 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
22:09:43.0829 1992 TapiSrv - ok
22:09:43.0860 1992 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
22:09:43.0860 1992 TBS - ok
22:09:44.0078 1992 Tcpip (56c198ac82efa622dd93e9e43575f79c) C:\Windows\system32\drivers\tcpip.sys
22:09:44.0078 1992 Tcpip - ok
22:09:44.0437 1992 TCPIP6 (56c198ac82efa622dd93e9e43575f79c) C:\Windows\system32\DRIVERS\tcpip.sys
22:09:44.0453 1992 TCPIP6 - ok
22:09:44.0578 1992 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
22:09:44.0578 1992 tcpipreg - ok
22:09:44.0593 1992 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
22:09:44.0609 1992 TDPIPE - ok
22:09:44.0656 1992 TDTCP (7156308896d34ea75a582f9a09e50c17) C:\Windows\system32\drivers\tdtcp.sys
22:09:44.0671 1992 TDTCP - ok
22:09:44.0718 1992 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
22:09:44.0718 1992 TermDD - ok
22:09:44.0796 1992 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
22:09:44.0812 1992 TermService - ok
22:09:44.0858 1992 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
22:09:44.0858 1992 Themes - ok
22:09:44.0905 1992 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
22:09:44.0905 1992 THREADORDER - ok
22:09:44.0952 1992 TlntSvr (ce92b84ed806f1c5c340a51dfd3e49bc) C:\Windows\System32\tlntsvr.exe
22:09:44.0952 1992 TlntSvr - ok
22:09:44.0983 1992 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
22:09:44.0983 1992 TrkWks - ok
22:09:45.0077 1992 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
22:09:45.0077 1992 TrustedInstaller - ok
22:09:45.0139 1992 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:09:45.0139 1992 tssecsrv - ok
22:09:45.0186 1992 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
22:09:45.0186 1992 tunnel - ok
22:09:45.0233 1992 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
22:09:45.0233 1992 uagp35 - ok
22:09:45.0264 1992 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
22:09:45.0264 1992 udfs - ok
22:09:45.0311 1992 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
22:09:45.0311 1992 UI0Detect - ok
22:09:45.0373 1992 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
22:09:45.0373 1992 uliagpkx - ok
22:09:45.0404 1992 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
22:09:45.0404 1992 umbus - ok
22:09:45.0436 1992 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
22:09:45.0436 1992 UmPass - ok
22:09:45.0498 1992 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll
22:09:45.0514 1992 UmRdpService - ok
22:09:45.0576 1992 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
22:09:45.0576 1992 upnphost - ok
22:09:45.0638 1992 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
22:09:45.0638 1992 usbaudio - ok
22:09:45.0670 1992 usbccgp (c31ae588e403042632dc796cf09e30b0) C:\Windows\system32\DRIVERS\usbccgp.sys
22:09:45.0670 1992 usbccgp - ok
22:09:45.0701 1992 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
22:09:45.0701 1992 usbcir - ok
22:09:45.0732 1992 usbehci (e4c436d914768ce965d5e659ba7eebd8) C:\Windows\system32\DRIVERS\usbehci.sys
22:09:45.0732 1992 usbehci - ok
22:09:45.0794 1992 usbhub (bdcd7156ec37448f08633fd899823620) C:\Windows\system32\DRIVERS\usbhub.sys
22:09:45.0794 1992 usbhub - ok
22:09:45.0857 1992 usbohci (eb2d819a639015253c871cda09d91d58) C:\Windows\system32\drivers\usbohci.sys
22:09:45.0857 1992 usbohci - ok
22:09:45.0888 1992 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
22:09:45.0888 1992 usbprint - ok
22:09:45.0950 1992 USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:09:45.0950 1992 USBSTOR - ok
22:09:46.0013 1992 usbuhci (22480bf4e5a09192e5e30ba4dde79fa4) C:\Windows\system32\DRIVERS\usbuhci.sys
22:09:46.0013 1992 usbuhci - ok
22:09:46.0044 1992 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
22:09:46.0060 1992 UxSms - ok
22:09:46.0106 1992 VaultSvc (c2243ff9e9aad0c30e8b1a0914da15b6) C:\Windows\system32\lsass.exe
22:09:46.0106 1992 VaultSvc - ok
22:09:46.0138 1992 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
22:09:46.0138 1992 vdrvroot - ok
22:09:46.0231 1992 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
22:09:46.0247 1992 vds - ok
22:09:46.0278 1992 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
22:09:46.0278 1992 vga - ok
22:09:46.0294 1992 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
22:09:46.0309 1992 VgaSave - ok
22:09:46.0356 1992 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
22:09:46.0372 1992 vhdmp - ok
22:09:46.0403 1992 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
22:09:46.0403 1992 viaagp - ok
22:09:46.0434 1992 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
22:09:46.0450 1992 ViaC7 - ok
22:09:46.0481 1992 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
22:09:46.0481 1992 viaide - ok
22:09:46.0512 1992 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
22:09:46.0512 1992 vmbus - ok
22:09:46.0528 1992 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
22:09:46.0528 1992 VMBusHID - ok
22:09:46.0543 1992 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
22:09:46.0543 1992 volmgr - ok
22:09:46.0621 1992 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
22:09:46.0621 1992 volmgrx - ok
22:09:46.0699 1992 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
22:09:46.0699 1992 volsnap - ok
22:09:46.0762 1992 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
22:09:46.0762 1992 vsmraid - ok
22:09:46.0933 1992 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
22:09:46.0949 1992 VSS - ok
22:09:47.0198 1992 vToolbarUpdater10.2.0 (3080f1f093869a19fb3d1f0226c73809) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
22:09:47.0230 1992 vToolbarUpdater10.2.0 - ok
22:09:47.0464 1992 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
22:09:47.0464 1992 vwifibus - ok
22:09:47.0526 1992 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
22:09:47.0542 1992 W32Time - ok
22:09:47.0666 1992 W3SVC (a5ea12d6020709b1e7db7d5f00c46a86) C:\Windows\system32\inetsrv\iisw3adm.dll
22:09:47.0682 1992 W3SVC - ok
22:09:47.0713 1992 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
22:09:47.0713 1992 WacomPen - ok
22:09:47.0776 1992 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
22:09:47.0776 1992 WANARP - ok
22:09:47.0791 1992 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
22:09:47.0791 1992 Wanarpv6 - ok
22:09:47.0807 1992 WAS (a5ea12d6020709b1e7db7d5f00c46a86) C:\Windows\system32\inetsrv\iisw3adm.dll
22:09:47.0807 1992 WAS - ok
22:09:48.0010 1992 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
22:09:48.0041 1992 WatAdminSvc - ok
22:09:48.0446 1992 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
22:09:48.0478 1992 wbengine - ok
22:09:48.0509 1992 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
22:09:48.0524 1992 WbioSrvc - ok
22:09:48.0571 1992 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\Windows\System32\wcncsvc.dll
22:09:48.0571 1992 wcncsvc - ok
22:09:48.0602 1992 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
22:09:48.0602 1992 WcsPlugInService - ok
22:09:48.0665 1992 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
22:09:48.0665 1992 Wd - ok
22:09:48.0727 1992 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
22:09:48.0727 1992 Wdf01000 - ok
22:09:48.0790 1992 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
22:09:48.0790 1992 WdiServiceHost - ok
22:09:48.0790 1992 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
22:09:48.0805 1992 WdiSystemHost - ok
22:09:48.0883 1992 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\Windows\System32\webclnt.dll
22:09:48.0883 1992 WebClient - ok
22:09:48.0946 1992 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
22:09:48.0946 1992 Wecsvc - ok
22:09:48.0977 1992 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
22:09:48.0977 1992 wercplsupport - ok
22:09:49.0024 1992 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
22:09:49.0024 1992 WerSvc - ok
22:09:49.0070 1992 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
22:09:49.0070 1992 WfpLwf - ok
22:09:49.0102 1992 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
22:09:49.0102 1992 WIMMount - ok
22:09:49.0102 1992 WinHttpAutoProxySvc - ok
22:09:49.0195 1992 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
22:09:49.0195 1992 Winmgmt - ok
22:09:49.0414 1992 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
22:09:49.0445 1992 WinRM - ok
22:09:49.0554 1992 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
22:09:49.0554 1992 WinUsb - ok
22:09:49.0726 1992 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
22:09:49.0741 1992 Wlansvc - ok
22:09:50.0084 1992 wlidsvc (d9250b31b353ee3322c1cad411997e38) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:09:50.0100 1992 wlidsvc - ok
22:09:50.0365 1992 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:09:50.0365 1992 WmiAcpi - ok
22:09:50.0459 1992 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
22:09:50.0459 1992 wmiApSrv - ok
22:09:50.0677 1992 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
22:09:50.0708 1992 WMPNetworkSvc - ok
22:09:50.0927 1992 WMSVC (768eb4cf354b061dfd38c5569abf4c59) C:\Windows\system32\inetsrv\wmsvc.exe
22:09:50.0927 1992 WMSVC - ok
22:09:50.0958 1992 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
22:09:50.0958 1992 WPCSvc - ok
22:09:51.0052 1992 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
22:09:51.0052 1992 WPDBusEnum - ok
22:09:51.0192 1992 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
22:09:51.0192 1992 ws2ifsl - ok
22:09:51.0192 1992 WSearch - ok
22:09:51.0488 1992 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll
22:09:51.0504 1992 wuauserv - ok
22:09:51.0785 1992 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
22:09:51.0785 1992 WudfPf - ok
22:09:51.0816 1992 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:09:51.0816 1992 WUDFRd - ok
22:09:51.0878 1992 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
22:09:51.0878 1992 wudfsvc - ok
22:09:51.0925 1992 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
22:09:51.0941 1992 WwanSvc - ok
22:09:52.0003 1992 yukonw7 (b07c5b7efdf936ff93d4f540938725be) C:\Windows\system32\DRIVERS\yk62x86.sys
22:09:52.0019 1992 yukonw7 - ok
22:09:52.0034 1992 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
22:09:52.0081 1992 \Device\Harddisk0\DR0 - ok
22:09:52.0097 1992 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR3
22:10:00.0880 1992 \Device\Harddisk1\DR3 - ok
22:10:00.0895 1992 Boot (0x1200) (013cfda771511768d529f866cb594bdf) \Device\Harddisk0\DR0\Partition0
22:10:00.0895 1992 \Device\Harddisk0\DR0\Partition0 - ok
22:10:00.0895 1992 Boot (0x1200) (7cc0977089108db3879b666fb688c26c) \Device\Harddisk1\DR3\Partition0
22:10:00.0911 1992 \Device\Harddisk1\DR3\Partition0 - ok
22:10:00.0911 1992 ============================================================
22:10:00.0911 1992 Scan finished
22:10:00.0911 1992 ============================================================
22:10:00.0926 0108 Detected object count: 1
22:10:00.0926 0108 Actual detected object count: 1
22:13:33.0165 0108 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
22:13:33.0165 0108 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip



---------------------------------

Results of screen317's Security Check version 0.99.24
Windows 7 x86 (UAC is enabled)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
AVG Free 9.0
PC Antivirus
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Out of date HijackThis installed!
SUPERAntiSpyware
HijackThis 1.99.1
Java™ 6 Update 17
Out of date Java installed!
Mozilla Firefox (3.6b4.) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

``````````End of Log````````````

#9 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:13 PM

Posted 24 April 2012 - 08:09 PM

Please post new aswMBR log.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#10 Anil P.K

Anil P.K
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 24 April 2012 - 11:39 PM

Now I am not able to restart the system. it is showing error because of software or hardware change:-(. I am not able to restore the system

#11 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:13 PM

Posted 25 April 2012 - 09:01 PM

What is the EXACT error?
You can't start in normal or safe mode?

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#12 Anil P.K

Anil P.K
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:13 PM

Posted 26 April 2012 - 12:50 AM

Windows failed to start. A recent hardware or software change might be the cause. It is going to statup repair and system recovery also doesn't work

Windows failed to start. A recent hardware or software change might be the cause. It is going to statup repair and system recovery also doesn't work

#13 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,680 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:13 PM

Posted 26 April 2012 - 10:36 AM

Please Boot to the System Recovery Options
If you have Windows 7 installation disc, just insert a DVD to the drive, restart computer and it should load automatically (option two presented in the article).
It's possible also that your computer has a pre-installed recovery partition instead - in such a case use a method one (by pressing F8 before Windows starts loading)...
NOTE. If none of the above apply you can create System Repair Disc (link in "Option two") and boot from it.

On the System Recovery Options menu you will get the following options:

  • Startup Repair
  • System Restore
  • Windows Complete PC Restore
  • Windows Memory Diagnostic Tool
  • Command Prompt

Choose Command Prompt
You should see X:\SOURCES>...

Execute the following commands in bold.
Press Enter after every one of them.

bootrec /fixmbr (<--- there is a "space" after "bootrec")

bootrec /fixboot (<--- there is a "space" after "bootrec")

exit

Attempt to start computer normally.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users