Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer is connected but no browsers work


  • This topic is locked This topic is locked
15 replies to this topic

#1 deffpony

deffpony

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 21 May 2012 - 06:59 PM

My problem is that I cannot open anywebpages in any browser. My internet shows that it is connected though and the router works with other devices. It shows that I am recieving 100mps but still no internet.

I suspect that I have the google redirect virus but my only symptoms were getting spam and pop ups.

I was following a tutorial on how to remove it which involved editing my hosts file and internet settings. After I rebooted my internet no longer worked here is what I have done so far...

Fixed the hosts file to original.

Set internet options to default and made sure I wasnt connected to a proxy server.

Checked LAN properties and ensured that they are set to automatic.

I have ran several commands in the cmd window pretty much all the reset commands. Here is what I get with ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : Vinnie-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 6C-62-6D-EC-95-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a1e1:305:2e9e:9d2f%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, May 20, 2012 1:45:18 PM
Lease Expires . . . . . . . . . . : Thursday, June 27, 2148 2:03:58 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 241984109
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-16-D4-F9-6C-62-6D-EC-95-42

DNS Servers . . . . . . . . . . . : 192.168.2.1
75.75.75.75
75.75.76.76
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3cf5:37ad:3f57:fdfd(Pref
erred)
Link-local IPv6 Address . . . . . : fe80::3cf5:37ad:3f57:fdfd%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Ping results:

C:\Users\Vinnie>ping 192.168.2.2

Pinging 192.168.2.2 with 32 bytes of data:
Reply from 192.168.2.2: bytes=32 time<1ms TTL=128
Reply from 192.168.2.2: bytes=32 time<1ms TTL=128
Reply from 192.168.2.2: bytes=32 time<1ms TTL=128
Reply from 192.168.2.2: bytes=32 time<1ms TTL=128

Ping statistics for 192.168.2.2:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms

C:\Users\Vinnie>ping 192.168.2.1

Pinging 192.168.2.1 with 32 bytes of data:
Reply from 192.168.2.1: bytes=32 time=1ms TTL=64
Reply from 192.168.2.1: bytes=32 time<1ms TTL=64
Reply from 192.168.2.1: bytes=32 time<1ms TTL=64
Reply from 192.168.2.1: bytes=32 time<1ms TTL=64

Ping statistics for 192.168.2.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 1ms, Average = 0ms

I have also checked and I have no firewalls running. Im not sure if there is a way to double check but all my anit-virus programs arent running and windows firewall is off. I checked the processes in task manager for this

I have run the following cmd's with no luck

netsh int ip reset resetlog.txt
netsh int ipv4 reset reset.log
netsh int ipv4 reset reset.log
netsh winsock reset catalog

and sfc /scannow with no integrity violations

Someone please help me. I have no clue what to do

Edited by hamluis, 21 May 2012 - 08:33 PM.
Moved from Networking to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Sneakycyber

Sneakycyber

    Network Engineer


  • BC Advisor
  • 6,116 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ohio
  • Local time:05:46 AM

Posted 21 May 2012 - 08:27 PM

Your network is fine you are connected to the internet. The ip addressing is correct and all.of the pings were sucesssfull I will have a member from the malware team have a look. If you need further assistance when they clear you please have them pm me
Chad Mockensturm 
Network Engineer
Certified CompTia Network +, A +

#3 Sneakycyber

Sneakycyber

    Network Engineer


  • BC Advisor
  • 6,116 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ohio
  • Local time:05:46 AM

Posted 21 May 2012 - 08:30 PM

Your post has been flagged for The Malware team. Please allow them time to get to you. I will be monitoring the topic if there is a long delay.
Chad Mockensturm 
Network Engineer
Certified CompTia Network +, A +

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:46 AM

Posted 21 May 2012 - 08:38 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here


Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

#5 deffpony

deffpony
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 21 May 2012 - 11:12 PM

I am currently doing everything I have been instructed but due to the lack of internet I am unable to download the avast virus definitions

#6 deffpony

deffpony
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 21 May 2012 - 11:16 PM

TDSS LOG::::::::::::::::::::::::::::::
21:10:16.0906 3972 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
21:10:16.0928 3972 ============================================================
21:10:16.0928 3972 Current date / time: 2012/05/21 21:10:16.0928
21:10:16.0928 3972 SystemInfo:
21:10:16.0928 3972
21:10:16.0928 3972 OS Version: 6.1.7601 ServicePack: 1.0
21:10:16.0928 3972 Product type: Workstation
21:10:16.0928 3972 ComputerName: VINNIE-PC
21:10:16.0929 3972 UserName: Vinnie
21:10:16.0929 3972 Windows directory: C:\Windows
21:10:16.0929 3972 System windows directory: C:\Windows
21:10:16.0929 3972 Running under WOW64
21:10:16.0929 3972 Processor architecture: Intel x64
21:10:16.0929 3972 Number of processors: 4
21:10:16.0929 3972 Page size: 0x1000
21:10:16.0929 3972 Boot type: Normal boot
21:10:16.0929 3972 ============================================================
21:10:19.0591 3972 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:10:19.0605 3972 Drive \Device\Harddisk1\DR1 - Size: 0x2658AE0000 (153.39 Gb), SectorSize: 0x200, Cylinders: 0x4E37, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:10:19.0611 3972 Drive \Device\Harddisk2\DR2 - Size: 0x7A1D2200 (1.91 Gb), SectorSize: 0x200, Cylinders: 0xF9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:10:19.0615 3972 ============================================================
21:10:19.0615 3972 \Device\Harddisk0\DR0:
21:10:19.0615 3972 MBR partitions:
21:10:19.0615 3972 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E035C1
21:10:19.0615 3972 \Device\Harddisk1\DR1:
21:10:19.0615 3972 MBR partitions:
21:10:19.0615 3972 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x132C0A77
21:10:19.0615 3972 \Device\Harddisk2\DR2:
21:10:19.0617 3972 MBR partitions:
21:10:19.0617 3972 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x6, StartLBA 0xF5, BlocksNum 0x3D070B
21:10:19.0617 3972 ============================================================
21:10:19.0657 3972 C: <-> \Device\Harddisk0\DR0\Partition0
21:10:19.0666 3972 D: <-> \Device\Harddisk1\DR1\Partition0
21:10:19.0666 3972 ============================================================
21:10:19.0666 3972 Initialize success
21:10:19.0666 3972 ============================================================
21:10:28.0944 0488 ============================================================
21:10:28.0944 0488 Scan started
21:10:28.0944 0488 Mode: Manual; TDLFS;
21:10:28.0944 0488 ============================================================
21:10:32.0766 0488 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:10:32.0772 0488 !SASCORE - ok
21:10:33.0039 0488 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:10:33.0043 0488 1394ohci - ok
21:10:33.0088 0488 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:10:33.0091 0488 ACPI - ok
21:10:33.0095 0488 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:10:33.0096 0488 AcpiPmi - ok
21:10:33.0360 0488 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:10:33.0402 0488 AdobeARMservice - ok
21:10:34.0014 0488 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
21:10:34.0021 0488 adp94xx - ok
21:10:34.0093 0488 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
21:10:34.0097 0488 adpahci - ok
21:10:34.0152 0488 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
21:10:34.0155 0488 adpu320 - ok
21:10:34.0427 0488 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:10:34.0430 0488 AeLookupSvc - ok
21:10:34.0702 0488 AFD (d31dc7a16dea4a9baf179f3d6fbdb38c) C:\Windows\system32\drivers\afd.sys
21:10:34.0754 0488 AFD - ok
21:10:34.0875 0488 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:10:34.0876 0488 agp440 - ok
21:10:35.0197 0488 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:10:35.0238 0488 ALG - ok
21:10:35.0388 0488 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:10:35.0389 0488 aliide - ok
21:10:35.0421 0488 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:10:35.0422 0488 amdide - ok
21:10:35.0560 0488 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
21:10:35.0649 0488 AmdK8 - ok
21:10:35.0806 0488 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:10:35.0808 0488 AmdPPM - ok
21:10:35.0839 0488 amdsata (6ec6d772eae38dc17c14aed9b178d24b) C:\Windows\system32\drivers\amdsata.sys
21:10:35.0841 0488 amdsata - ok
21:10:35.0865 0488 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
21:10:35.0868 0488 amdsbs - ok
21:10:35.0883 0488 amdxata (1142a21db581a84ea5597b03a26ebaa0) C:\Windows\system32\drivers\amdxata.sys
21:10:35.0884 0488 amdxata - ok
21:10:35.0907 0488 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:10:35.0909 0488 AppID - ok
21:10:35.0939 0488 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:10:35.0940 0488 AppIDSvc - ok
21:10:35.0966 0488 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:10:35.0967 0488 Appinfo - ok
21:10:36.0091 0488 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:10:36.0093 0488 Apple Mobile Device - ok
21:10:36.0236 0488 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
21:10:36.0257 0488 AppMgmt - ok
21:10:36.0277 0488 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
21:10:36.0279 0488 arc - ok
21:10:36.0286 0488 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
21:10:36.0288 0488 arcsas - ok
21:10:36.0466 0488 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:10:36.0469 0488 aspnet_state - ok
21:10:36.0487 0488 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:10:36.0488 0488 AsyncMac - ok
21:10:36.0543 0488 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:10:36.0544 0488 atapi - ok
21:10:36.0651 0488 AtiPcie (e82e61f46d1336447f4deff8c074f13e) C:\Windows\system32\DRIVERS\AtiPcie64.sys
21:10:36.0652 0488 AtiPcie - ok
21:10:36.0744 0488 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:10:36.0841 0488 AudioEndpointBuilder - ok
21:10:36.0859 0488 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:10:36.0865 0488 AudioSrv - ok
21:10:36.0970 0488 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:10:36.0972 0488 AxInstSV - ok
21:10:37.0161 0488 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
21:10:37.0169 0488 b06bdrv - ok
21:10:37.0228 0488 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:10:37.0243 0488 b57nd60a - ok
21:10:37.0279 0488 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:10:37.0281 0488 BDESVC - ok
21:10:37.0297 0488 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:10:37.0298 0488 Beep - ok
21:10:37.0427 0488 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:10:37.0453 0488 BFE - ok
21:10:37.0567 0488 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
21:10:37.0599 0488 BITS - ok
21:10:37.0639 0488 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:10:37.0640 0488 blbdrive - ok
21:10:37.0703 0488 bowser (91ce0d3dc57dd377e690a2d324022b08) C:\Windows\system32\DRIVERS\bowser.sys
21:10:37.0704 0488 bowser - ok
21:10:37.0709 0488 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
21:10:37.0710 0488 BrFiltLo - ok
21:10:37.0714 0488 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
21:10:37.0715 0488 BrFiltUp - ok
21:10:37.0750 0488 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:10:37.0752 0488 BridgeMP - ok
21:10:37.0777 0488 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:10:37.0779 0488 Browser - ok
21:10:37.0974 0488 Browser Defender Update Service (c6b40dbc558a6cec5832c34a1854aa2a) C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe
21:10:37.0978 0488 Browser Defender Update Service - ok
21:10:38.0018 0488 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:10:38.0022 0488 Brserid - ok
21:10:38.0027 0488 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:10:38.0029 0488 BrSerWdm - ok
21:10:38.0033 0488 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:10:38.0035 0488 BrUsbMdm - ok
21:10:38.0039 0488 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:10:38.0040 0488 BrUsbSer - ok
21:10:38.0048 0488 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
21:10:38.0050 0488 BTHMODEM - ok
21:10:38.0082 0488 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:10:38.0084 0488 bthserv - ok
21:10:38.0097 0488 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:10:38.0098 0488 cdfs - ok
21:10:38.0161 0488 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:10:38.0164 0488 cdrom - ok
21:10:38.0199 0488 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:10:38.0201 0488 CertPropSvc - ok
21:10:38.0216 0488 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
21:10:38.0218 0488 circlass - ok
21:10:38.0259 0488 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:10:38.0264 0488 CLFS - ok
21:10:38.0329 0488 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:10:38.0332 0488 clr_optimization_v2.0.50727_32 - ok
21:10:38.0365 0488 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:10:38.0367 0488 clr_optimization_v2.0.50727_64 - ok
21:10:38.0594 0488 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:10:38.0694 0488 clr_optimization_v4.0.30319_32 - ok
21:10:38.0782 0488 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:10:38.0907 0488 clr_optimization_v4.0.30319_64 - ok
21:10:38.0959 0488 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
21:10:38.0961 0488 CmBatt - ok
21:10:38.0995 0488 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:10:38.0998 0488 cmdide - ok
21:10:39.0083 0488 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
21:10:39.0088 0488 CNG - ok
21:10:39.0105 0488 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
21:10:39.0106 0488 Compbatt - ok
21:10:39.0162 0488 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
21:10:39.0164 0488 CompositeBus - ok
21:10:39.0179 0488 COMSysApp - ok
21:10:39.0226 0488 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
21:10:39.0229 0488 crcdisk - ok
21:10:39.0277 0488 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
21:10:39.0280 0488 CryptSvc - ok
21:10:39.0322 0488 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
21:10:39.0348 0488 CSC - ok
21:10:39.0436 0488 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
21:10:39.0443 0488 CscService - ok
21:10:39.0606 0488 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:10:39.0613 0488 DcomLaunch - ok
21:10:39.0674 0488 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:10:39.0678 0488 defragsvc - ok
21:10:39.0711 0488 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:10:39.0713 0488 DfsC - ok
21:10:39.0737 0488 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:10:39.0741 0488 Dhcp - ok
21:10:39.0767 0488 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:10:39.0768 0488 discache - ok
21:10:39.0901 0488 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
21:10:39.0903 0488 Disk - ok
21:10:39.0931 0488 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys
21:10:39.0933 0488 dmvsc - ok
21:10:39.0982 0488 Dnscache (cd55f5355d8f55d44c9f4ed875705bd6) C:\Windows\System32\dnsrslvr.dll
21:10:39.0985 0488 Dnscache - ok
21:10:40.0066 0488 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:10:40.0070 0488 dot3svc - ok
21:10:40.0090 0488 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:10:40.0093 0488 DPS - ok
21:10:40.0155 0488 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:10:40.0156 0488 drmkaud - ok
21:10:40.0302 0488 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
21:10:40.0305 0488 dtsoftbus01 - ok
21:10:40.0542 0488 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:10:40.0547 0488 DXGKrnl - ok
21:10:40.0570 0488 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:10:40.0582 0488 EapHost - ok
21:10:41.0072 0488 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
21:10:41.0176 0488 ebdrv - ok
21:10:41.0346 0488 efavdrv - ok
21:10:41.0364 0488 EFS (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\System32\lsass.exe
21:10:41.0365 0488 EFS - ok
21:10:41.0480 0488 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:10:41.0488 0488 ehRecvr - ok
21:10:41.0594 0488 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:10:41.0605 0488 ehSched - ok
21:10:41.0787 0488 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
21:10:41.0793 0488 elxstor - ok
21:10:41.0814 0488 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:10:41.0815 0488 ErrDev - ok
21:10:41.0959 0488 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:10:41.0963 0488 EventSystem - ok
21:10:42.0167 0488 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:10:42.0170 0488 exfat - ok
21:10:42.0259 0488 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:10:42.0262 0488 fastfat - ok
21:10:42.0343 0488 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:10:42.0377 0488 Fax - ok
21:10:42.0382 0488 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
21:10:42.0384 0488 fdc - ok
21:10:42.0441 0488 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:10:42.0442 0488 fdPHost - ok
21:10:42.0456 0488 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:10:42.0458 0488 FDResPub - ok
21:10:42.0492 0488 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:10:42.0494 0488 FileInfo - ok
21:10:42.0639 0488 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:10:42.0640 0488 Filetrace - ok
21:10:42.0647 0488 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
21:10:42.0656 0488 flpydisk - ok
21:10:42.0690 0488 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:10:42.0693 0488 FltMgr - ok
21:10:42.0751 0488 FontCache (b4447f606bb19fd8ad0bafb59b90f5d9) C:\Windows\system32\FntCache.dll
21:10:42.0833 0488 FontCache - ok
21:10:42.0945 0488 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:10:42.0947 0488 FontCache3.0.0.0 - ok
21:10:43.0002 0488 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:10:43.0004 0488 FsDepends - ok
21:10:43.0035 0488 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
21:10:43.0036 0488 Fs_Rec - ok
21:10:43.0138 0488 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:10:43.0141 0488 fvevol - ok
21:10:43.0154 0488 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
21:10:43.0156 0488 gagp30kx - ok
21:10:43.0178 0488 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:10:43.0179 0488 GEARAspiWDM - ok
21:10:43.0237 0488 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:10:43.0268 0488 gpsvc - ok
21:10:43.0310 0488 grmnusb (2ed7ff3e1ada4092632393781518b3a7) C:\Windows\system32\drivers\grmnusb.sys
21:10:43.0312 0488 grmnusb - ok
21:10:43.0709 0488 Guard.Mail.ru (63b94e5f3063d6fd631b6bdca4a6f4ff) C:\Program Files (x86)\Mail.Ru\Guard\GuardMailRu.exe
21:10:43.0778 0488 Guard.Mail.ru - ok
21:10:43.0885 0488 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:10:43.0886 0488 hcw85cir - ok
21:10:43.0986 0488 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:10:43.0990 0488 HdAudAddService - ok
21:10:44.0047 0488 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:10:44.0049 0488 HDAudBus - ok
21:10:44.0055 0488 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
21:10:44.0056 0488 HidBatt - ok
21:10:44.0063 0488 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
21:10:44.0065 0488 HidBth - ok
21:10:44.0069 0488 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
21:10:44.0071 0488 HidIr - ok
21:10:44.0165 0488 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
21:10:44.0167 0488 hidserv - ok
21:10:44.0204 0488 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:10:44.0205 0488 HidUsb - ok
21:10:44.0373 0488 hitmanpro35 (44f92c1f913e582bef9cac66443c6230) C:\Windows\system32\drivers\hitmanpro36.sys
21:10:44.0387 0488 hitmanpro35 - ok
21:10:44.0460 0488 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:10:44.0463 0488 hkmsvc - ok
21:10:44.0730 0488 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:10:44.0772 0488 HomeGroupListener - ok
21:10:45.0028 0488 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:10:45.0085 0488 HomeGroupProvider - ok
21:10:45.0096 0488 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:10:45.0098 0488 HpSAMD - ok
21:10:45.0174 0488 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:10:45.0203 0488 HTTP - ok
21:10:45.0267 0488 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:10:45.0268 0488 hwpolicy - ok
21:10:45.0345 0488 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:10:45.0347 0488 i8042prt - ok
21:10:45.0428 0488 iaStorV (3df4395a7cf8b7a72a5f4606366b8c2d) C:\Windows\system32\drivers\iaStorV.sys
21:10:45.0432 0488 iaStorV - ok
21:10:45.0826 0488 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:10:45.0883 0488 idsvc - ok
21:10:45.0888 0488 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
21:10:45.0890 0488 iirsp - ok
21:10:46.0131 0488 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:10:46.0141 0488 IKEEXT - ok
21:10:46.0879 0488 IntcAzAudAddService (f2744fd54be1580be05916d1c755c92a) C:\Windows\system32\drivers\RTKVHD64.sys
21:10:46.0892 0488 IntcAzAudAddService - ok
21:10:47.0154 0488 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:10:47.0155 0488 intelide - ok
21:10:47.0213 0488 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
21:10:47.0215 0488 intelppm - ok
21:10:47.0284 0488 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:10:47.0286 0488 IPBusEnum - ok
21:10:47.0293 0488 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:10:47.0295 0488 IpFilterDriver - ok
21:10:47.0445 0488 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:10:47.0451 0488 iphlpsvc - ok
21:10:47.0457 0488 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:10:47.0471 0488 IPMIDRV - ok
21:10:47.0626 0488 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:10:47.0628 0488 IPNAT - ok
21:10:47.0762 0488 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
21:10:47.0771 0488 iPod Service - ok
21:10:47.0833 0488 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:10:47.0834 0488 IRENUM - ok
21:10:47.0845 0488 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:10:47.0847 0488 isapnp - ok
21:10:47.0877 0488 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:10:47.0881 0488 iScsiPrt - ok
21:10:48.0002 0488 JumpDesktop (be27bf5173fdcc81015b1aa1a71fbf8e) C:\Program Files (x86)\Jump Desktop\JumpService.exe
21:10:48.0003 0488 JumpDesktop - ok
21:10:48.0162 0488 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:10:48.0162 0488 kbdclass - ok
21:10:48.0217 0488 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:10:48.0219 0488 kbdhid - ok
21:10:48.0256 0488 KeyIso (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
21:10:48.0257 0488 KeyIso - ok
21:10:48.0280 0488 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
21:10:48.0281 0488 KSecDD - ok
21:10:48.0300 0488 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
21:10:48.0302 0488 KSecPkg - ok
21:10:48.0313 0488 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:10:48.0314 0488 ksthunk - ok
21:10:48.0376 0488 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:10:48.0423 0488 KtmRm - ok
21:10:48.0621 0488 L6TPrtDS (1107dd2b04a2c73ccbb614c12c70b775) C:\Windows\system32\Drivers\L6TPrtDS64.sys
21:10:48.0629 0488 L6TPrtDS - ok
21:10:48.0683 0488 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
21:10:48.0687 0488 LanmanServer - ok
21:10:48.0748 0488 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:10:48.0751 0488 LanmanWorkstation - ok
21:10:48.0823 0488 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:10:48.0825 0488 lltdio - ok
21:10:48.0847 0488 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:10:48.0852 0488 lltdsvc - ok
21:10:48.0865 0488 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:10:48.0866 0488 lmhosts - ok
21:10:48.0917 0488 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
21:10:48.0919 0488 LSI_FC - ok
21:10:48.0928 0488 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
21:10:48.0931 0488 LSI_SAS - ok
21:10:48.0937 0488 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
21:10:48.0939 0488 LSI_SAS2 - ok
21:10:49.0000 0488 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
21:10:49.0002 0488 LSI_SCSI - ok
21:10:49.0056 0488 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:10:49.0058 0488 luafv - ok
21:10:49.0219 0488 MAUSBFASTTRACK (f2643036b225ba4621a965434478f35e) C:\Windows\system32\DRIVERS\MAudioFastTrack.sys
21:10:49.0231 0488 MAUSBFASTTRACK - ok
21:10:49.0293 0488 MAUSBFASTTRACKPRO (066991e50a5cbbeefb2ec6880069cdb5) C:\Windows\system32\DRIVERS\MAudioFastTrackPro.sys
21:10:49.0294 0488 MAUSBFASTTRACKPRO - ok
21:10:49.0335 0488 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
21:10:49.0336 0488 MBAMProtector - ok
21:10:49.0484 0488 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:10:49.0490 0488 MBAMService - ok
21:10:49.0511 0488 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:10:49.0513 0488 Mcx2Svc - ok
21:10:49.0518 0488 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
21:10:49.0519 0488 megasas - ok
21:10:49.0536 0488 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
21:10:49.0539 0488 MegaSR - ok
21:10:49.0590 0488 MEMSWEEP2 (f9ce67e9e0226079b59107b649851f96) C:\Windows\system32\8D44.tmp
21:10:49.0591 0488 MEMSWEEP2 - ok
21:10:49.0659 0488 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:10:49.0661 0488 MMCSS - ok
21:10:49.0678 0488 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:10:49.0680 0488 Modem - ok
21:10:49.0691 0488 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:10:49.0692 0488 monitor - ok
21:10:49.0700 0488 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:10:49.0701 0488 mouclass - ok
21:10:49.0749 0488 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:10:49.0750 0488 mouhid - ok
21:10:49.0769 0488 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:10:49.0770 0488 mountmgr - ok
21:10:49.0781 0488 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:10:49.0783 0488 mpio - ok
21:10:49.0794 0488 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:10:49.0795 0488 mpsdrv - ok
21:10:49.0918 0488 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:10:49.0927 0488 MpsSvc - ok
21:10:49.0943 0488 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:10:49.0946 0488 MRxDAV - ok
21:10:49.0971 0488 mrxsmb (faf015b07e3a2874a790a39b7d2c579f) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:10:49.0973 0488 mrxsmb - ok
21:10:49.0997 0488 mrxsmb10 (08e2345df129082bcdffdc1440f9c00d) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:10:50.0001 0488 mrxsmb10 - ok
21:10:50.0015 0488 mrxsmb20 (108d87409c5812ef47d81e22843e8c9d) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:10:50.0016 0488 mrxsmb20 - ok
21:10:50.0021 0488 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:10:50.0022 0488 msahci - ok
21:10:50.0032 0488 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:10:50.0034 0488 msdsm - ok
21:10:50.0057 0488 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:10:50.0060 0488 MSDTC - ok
21:10:50.0069 0488 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:10:50.0071 0488 Msfs - ok
21:10:50.0090 0488 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:10:50.0091 0488 mshidkmdf - ok
21:10:50.0095 0488 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:10:50.0096 0488 msisadrv - ok
21:10:50.0115 0488 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:10:50.0118 0488 MSiSCSI - ok
21:10:50.0121 0488 msiserver - ok
21:10:50.0137 0488 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:10:50.0139 0488 MSKSSRV - ok
21:10:50.0151 0488 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:10:50.0152 0488 MSPCLOCK - ok
21:10:50.0155 0488 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:10:50.0157 0488 MSPQM - ok
21:10:50.0185 0488 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:10:50.0188 0488 MsRPC - ok
21:10:50.0200 0488 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
21:10:50.0201 0488 mssmbios - ok
21:10:50.0235 0488 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:10:50.0236 0488 MSTEE - ok
21:10:50.0260 0488 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
21:10:50.0261 0488 MTConfig - ok
21:10:50.0280 0488 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:10:50.0281 0488 Mup - ok
21:10:50.0599 0488 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:10:50.0684 0488 napagent - ok
21:10:50.0791 0488 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:10:50.0815 0488 NativeWifiP - ok
21:10:51.0133 0488 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:10:51.0142 0488 NDIS - ok
21:10:51.0202 0488 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:10:51.0203 0488 NdisCap - ok
21:10:51.0251 0488 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:10:51.0252 0488 NdisTapi - ok
21:10:51.0274 0488 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:10:51.0276 0488 Ndisuio - ok
21:10:51.0361 0488 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:10:51.0363 0488 NdisWan - ok
21:10:51.0392 0488 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:10:51.0393 0488 NDProxy - ok
21:10:51.0456 0488 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:10:51.0457 0488 NetBIOS - ok
21:10:51.0631 0488 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:10:51.0678 0488 NetBT - ok
21:10:51.0725 0488 Netlogon (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
21:10:51.0727 0488 Netlogon - ok
21:10:51.0917 0488 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:10:51.0922 0488 Netman - ok
21:10:52.0153 0488 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:10:52.0160 0488 NetMsmqActivator - ok
21:10:52.0185 0488 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:10:52.0187 0488 NetPipeActivator - ok
21:10:52.0345 0488 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:10:52.0351 0488 netprofm - ok
21:10:52.0355 0488 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:10:52.0356 0488 NetTcpActivator - ok
21:10:52.0360 0488 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:10:52.0362 0488 NetTcpPortSharing - ok
21:10:52.0464 0488 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
21:10:52.0465 0488 nfrd960 - ok
21:10:52.0511 0488 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:10:52.0531 0488 NlaSvc - ok
21:10:52.0581 0488 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:10:52.0583 0488 Npfs - ok
21:10:52.0659 0488 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:10:52.0673 0488 nsi - ok
21:10:52.0751 0488 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:10:52.0767 0488 nsiproxy - ok
21:10:52.0912 0488 Ntfs (05d78aa5cb5f3f5c31160bdb955d0b7c) C:\Windows\system32\drivers\Ntfs.sys
21:10:52.0929 0488 Ntfs - ok
21:10:53.0128 0488 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:10:53.0129 0488 Null - ok
21:10:53.0202 0488 nusb3hub (158ad24745bd85ba9be3c51c38f48c32) C:\Windows\system32\DRIVERS\nusb3hub.sys
21:10:53.0203 0488 nusb3hub - ok
21:10:53.0243 0488 nusb3xhc (d40a13b2c0891e218f9523b376955db6) C:\Windows\system32\DRIVERS\nusb3xhc.sys
21:10:53.0246 0488 nusb3xhc - ok
21:10:53.0336 0488 NVHDA (960e39a54e525df58cb29193147dffa1) C:\Windows\system32\drivers\nvhda64v.sys
21:10:53.0339 0488 NVHDA - ok
21:10:54.0403 0488 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:10:54.0464 0488 nvlddmkm - ok
21:10:54.0627 0488 nvraid (5d9fd91f3d38dc9da01e3cb5fa89cd48) C:\Windows\system32\drivers\nvraid.sys
21:10:54.0630 0488 nvraid - ok
21:10:54.0639 0488 nvstor (f7cd50fe7139f07e77da8ac8033d1832) C:\Windows\system32\drivers\nvstor.sys
21:10:54.0642 0488 nvstor - ok
21:10:54.0771 0488 nvsvc (32ff8ee6dcee5c0cb91ff892fb1ca364) C:\Windows\system32\nvvsvc.exe
21:10:54.0781 0488 nvsvc - ok
21:10:55.0188 0488 nvUpdatusService (bd012dc22c78be1071bc21eb125d782f) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:10:55.0302 0488 nvUpdatusService - ok
21:10:55.0467 0488 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:10:55.0469 0488 nv_agp - ok
21:10:55.0475 0488 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:10:55.0477 0488 ohci1394 - ok
21:10:55.0556 0488 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:10:55.0571 0488 ose - ok
21:10:55.0934 0488 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:10:55.0976 0488 p2pimsvc - ok
21:10:56.0072 0488 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:10:56.0082 0488 p2psvc - ok
21:10:56.0119 0488 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
21:10:56.0155 0488 Parport - ok
21:10:56.0191 0488 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:10:56.0192 0488 partmgr - ok
21:10:56.0238 0488 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:10:56.0242 0488 PcaSvc - ok
21:10:56.0277 0488 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:10:56.0280 0488 pci - ok
21:10:56.0295 0488 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:10:56.0296 0488 pciide - ok
21:10:56.0409 0488 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
21:10:56.0438 0488 pcmcia - ok
21:10:56.0491 0488 PCTCore (52fa4369e262b047ebd3a37155e30074) C:\Windows\system32\drivers\PCTCore64.sys
21:10:56.0495 0488 PCTCore - ok
21:10:56.0626 0488 pctDS (ff43e3b1687e4e2140de6349ea5c7372) C:\Windows\system32\drivers\pctDS64.sys
21:10:56.0631 0488 pctDS - ok
21:10:56.0733 0488 pctEFA (60e9a05852af7e9cb11237c00aee4ccf) C:\Windows\system32\drivers\pctEFA64.sys
21:10:56.0744 0488 pctEFA - ok
21:10:56.0804 0488 PCTSD (8da7df6075472233cc5a9734bf973b2e) C:\Windows\system32\Drivers\PCTSD64.sys
21:10:56.0805 0488 PCTSD - ok
21:10:56.0819 0488 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:10:56.0820 0488 pcw - ok
21:10:56.0994 0488 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:10:57.0044 0488 PEAUTH - ok
21:10:57.0244 0488 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
21:10:57.0258 0488 PeerDistSvc - ok
21:10:57.0359 0488 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:10:57.0437 0488 PerfHost - ok
21:10:57.0638 0488 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:10:57.0687 0488 pla - ok
21:10:57.0787 0488 PlugPlay (b806e50427511bcf4ad8e8239c3e25fa) C:\Windows\system32\umpnpmgr.dll
21:10:57.0806 0488 PlugPlay - ok
21:10:57.0824 0488 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:10:57.0826 0488 PNRPAutoReg - ok
21:10:57.0909 0488 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:10:57.0912 0488 PNRPsvc - ok
21:10:57.0971 0488 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:10:57.0981 0488 PolicyAgent - ok
21:10:58.0024 0488 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:10:58.0028 0488 Power - ok
21:10:58.0115 0488 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:10:58.0117 0488 PptpMiniport - ok
21:10:58.0127 0488 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
21:10:58.0129 0488 Processor - ok
21:10:58.0150 0488 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:10:58.0153 0488 ProfSvc - ok
21:10:58.0176 0488 ProtectedStorage (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
21:10:58.0177 0488 ProtectedStorage - ok
21:10:58.0207 0488 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:10:58.0209 0488 Psched - ok
21:10:58.0379 0488 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
21:10:58.0455 0488 ql2300 - ok
21:10:58.0524 0488 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
21:10:58.0527 0488 ql40xx - ok
21:10:58.0563 0488 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:10:58.0576 0488 QWAVE - ok
21:10:58.0588 0488 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:10:58.0590 0488 QWAVEdrv - ok
21:10:58.0600 0488 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:10:58.0601 0488 RasAcd - ok
21:10:58.0638 0488 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:10:58.0639 0488 RasAgileVpn - ok
21:10:58.0656 0488 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:10:58.0659 0488 RasAuto - ok
21:10:58.0688 0488 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:10:58.0690 0488 Rasl2tp - ok
21:10:58.0779 0488 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:10:58.0815 0488 RasMan - ok
21:10:58.0876 0488 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:10:58.0878 0488 RasPppoe - ok
21:10:59.0005 0488 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:10:59.0007 0488 RasSstp - ok
21:10:59.0169 0488 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:10:59.0172 0488 rdbss - ok
21:10:59.0231 0488 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:10:59.0232 0488 rdpbus - ok
21:10:59.0245 0488 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:10:59.0246 0488 RDPCDD - ok
21:10:59.0402 0488 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
21:10:59.0414 0488 RDPDR - ok
21:10:59.0454 0488 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:10:59.0455 0488 RDPENCDD - ok
21:10:59.0463 0488 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:10:59.0464 0488 RDPREFMP - ok
21:10:59.0540 0488 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
21:10:59.0542 0488 RdpVideoMiniport - ok
21:10:59.0596 0488 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
21:10:59.0599 0488 RDPWD - ok
21:10:59.0694 0488 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:10:59.0696 0488 rdyboost - ok
21:10:59.0788 0488 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:10:59.0790 0488 RemoteAccess - ok
21:10:59.0813 0488 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:10:59.0828 0488 RemoteRegistry - ok
21:10:59.0888 0488 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:10:59.0911 0488 RpcEptMapper - ok
21:10:59.0937 0488 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:10:59.0939 0488 RpcLocator - ok
21:10:59.0982 0488 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:10:59.0986 0488 RpcSs - ok
21:11:00.0028 0488 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:11:00.0030 0488 rspndr - ok
21:11:00.0189 0488 RTL8167 (9140db0911de035fed0a9a77a2d156ea) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:11:00.0193 0488 RTL8167 - ok
21:11:00.0220 0488 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
21:11:00.0221 0488 s3cap - ok
21:11:00.0275 0488 SamSs (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
21:11:00.0277 0488 SamSs - ok
21:11:00.0344 0488 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:11:00.0345 0488 SASDIFSV - ok
21:11:00.0352 0488 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:11:00.0353 0488 SASKUTIL - ok
21:11:00.0368 0488 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:11:00.0369 0488 sbp2port - ok
21:11:00.0406 0488 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:11:00.0410 0488 SCardSvr - ok
21:11:00.0476 0488 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys
21:11:00.0477 0488 SCDEmu - ok
21:11:00.0511 0488 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:11:00.0512 0488 scfilter - ok
21:11:00.0596 0488 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:11:00.0647 0488 Schedule - ok
21:11:00.0688 0488 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:11:00.0689 0488 SCPolicySvc - ok
21:11:00.0818 0488 sdAuxService (cadc6d185d8560a1ec266b0a97c4f153) C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe
21:11:00.0831 0488 sdAuxService - ok
21:11:01.0179 0488 sdCoreService (b895eccd553feebb424e80b5d239757c) C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe
21:11:01.0252 0488 sdCoreService - ok
21:11:01.0476 0488 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:11:01.0627 0488 SDRSVC - ok
21:11:01.0694 0488 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:11:01.0696 0488 secdrv - ok
21:11:01.0716 0488 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:11:01.0719 0488 seclogon - ok
21:11:01.0761 0488 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
21:11:01.0764 0488 SENS - ok
21:11:01.0789 0488 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:11:01.0791 0488 SensrSvc - ok
21:11:01.0847 0488 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:11:01.0849 0488 Serenum - ok
21:11:01.0960 0488 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:11:01.0962 0488 Serial - ok
21:11:02.0047 0488 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
21:11:02.0048 0488 sermouse - ok
21:11:02.0077 0488 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:11:02.0100 0488 SessionEnv - ok
21:11:02.0104 0488 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:11:02.0105 0488 sffdisk - ok
21:11:02.0109 0488 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:11:02.0111 0488 sffp_mmc - ok
21:11:02.0115 0488 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:11:02.0117 0488 sffp_sd - ok
21:11:02.0121 0488 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
21:11:02.0122 0488 sfloppy - ok
21:11:02.0265 0488 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:11:02.0270 0488 SharedAccess - ok
21:11:02.0332 0488 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:11:02.0337 0488 ShellHWDetection - ok
21:11:02.0405 0488 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
21:11:02.0407 0488 SiSRaid2 - ok
21:11:02.0425 0488 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
21:11:02.0427 0488 SiSRaid4 - ok
21:11:02.0517 0488 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
21:11:02.0519 0488 SkypeUpdate - ok
21:11:02.0537 0488 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:11:02.0539 0488 Smb - ok
21:11:02.0591 0488 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:11:02.0594 0488 SNMPTRAP - ok
21:11:02.0606 0488 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:11:02.0607 0488 spldr - ok
21:11:02.0649 0488 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:11:02.0656 0488 Spooler - ok
21:11:02.0982 0488 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:11:03.0103 0488 sppsvc - ok
21:11:03.0242 0488 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:11:03.0245 0488 sppuinotify - ok
21:11:03.0377 0488 srv (2098b8556d1cec2aca9a29cd479e3692) C:\Windows\system32\DRIVERS\srv.sys
21:11:03.0384 0488 srv - ok
21:11:03.0419 0488 srv2 (d0f73a42040f21f92fd314b42ac5c9e7) C:\Windows\system32\DRIVERS\srv2.sys
21:11:03.0484 0488 srv2 - ok
21:11:03.0527 0488 srvnet (2ba8f3250828ccdb4204ecf2c6f40b6a) C:\Windows\system32\DRIVERS\srvnet.sys
21:11:03.0555 0488 srvnet - ok
21:11:03.0583 0488 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:11:03.0608 0488 SSDPSRV - ok
21:11:03.0616 0488 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:11:03.0646 0488 SstpSvc - ok
21:11:03.0814 0488 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:11:03.0818 0488 Stereo Service - ok
21:11:03.0869 0488 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
21:11:03.0870 0488 stexstor - ok
21:11:03.0944 0488 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:11:04.0005 0488 stisvc - ok
21:11:04.0069 0488 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
21:11:04.0070 0488 storflt - ok
21:11:04.0103 0488 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
21:11:04.0105 0488 storvsc - ok
21:11:04.0129 0488 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
21:11:04.0130 0488 swenum - ok
21:11:04.0206 0488 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:11:04.0242 0488 swprv - ok
21:11:04.0299 0488 Synth3dVsc (c3a39c4079305480972d29c44b868c78) C:\Windows\system32\drivers\synth3dvsc.sys
21:11:04.0301 0488 Synth3dVsc - ok
21:11:04.0453 0488 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:11:04.0532 0488 SysMain - ok
21:11:04.0723 0488 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:11:04.0726 0488 TabletInputService - ok
21:11:04.0760 0488 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:11:04.0793 0488 TapiSrv - ok
21:11:04.0839 0488 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:11:04.0841 0488 TBS - ok
21:11:05.0074 0488 Tcpip (509383e505c973ed7534a06b3d19688d) C:\Windows\system32\drivers\tcpip.sys
21:11:05.0096 0488 Tcpip - ok
21:11:05.0375 0488 TCPIP6 (509383e505c973ed7534a06b3d19688d) C:\Windows\system32\DRIVERS\tcpip.sys
21:11:05.0384 0488 TCPIP6 - ok
21:11:05.0477 0488 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:11:05.0478 0488 tcpipreg - ok
21:11:05.0494 0488 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:11:05.0495 0488 TDPIPE - ok
21:11:05.0510 0488 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
21:11:05.0511 0488 TDTCP - ok
21:11:05.0531 0488 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:11:05.0533 0488 tdx - ok
21:11:05.0551 0488 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
21:11:05.0552 0488 TermDD - ok
21:11:05.0579 0488 terminpt (2b5bdff688ec9871d7ec5837833374e9) C:\Windows\system32\drivers\terminpt.sys
21:11:05.0581 0488 terminpt - ok
21:11:05.0632 0488 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:11:05.0676 0488 TermService - ok
21:11:05.0707 0488 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:11:05.0709 0488 Themes - ok
21:11:05.0739 0488 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:11:05.0740 0488 THREADORDER - ok
21:11:05.0872 0488 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:11:05.0876 0488 TrkWks - ok
21:11:05.0909 0488 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:11:05.0912 0488 TrustedInstaller - ok
21:11:05.0933 0488 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:11:05.0934 0488 tssecsrv - ok
21:11:05.0962 0488 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:11:05.0963 0488 TsUsbFlt - ok
21:11:05.0968 0488 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
21:11:05.0969 0488 TsUsbGD - ok
21:11:06.0002 0488 tsusbhub (e1748d04ae40118b62bc18ac86032192) C:\Windows\system32\drivers\tsusbhub.sys
21:11:06.0004 0488 tsusbhub - ok
21:11:06.0086 0488 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:11:06.0087 0488 tunnel - ok
21:11:06.0115 0488 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
21:11:06.0117 0488 uagp35 - ok
21:11:06.0211 0488 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:11:06.0215 0488 udfs - ok
21:11:06.0265 0488 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:11:06.0267 0488 UI0Detect - ok
21:11:06.0409 0488 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:11:06.0410 0488 uliagpkx - ok
21:11:06.0431 0488 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
21:11:06.0432 0488 umbus - ok
21:11:06.0435 0488 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
21:11:06.0437 0488 UmPass - ok
21:11:06.0468 0488 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
21:11:06.0471 0488 UmRdpService - ok
21:11:06.0505 0488 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:11:06.0526 0488 upnphost - ok
21:11:06.0560 0488 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
21:11:06.0562 0488 USBAAPL64 - ok
21:11:06.0640 0488 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
21:11:06.0642 0488 usbaudio - ok
21:11:06.0666 0488 usbccgp (481dff26b4dca8f4cbac1f7dce1d6829) C:\Windows\system32\DRIVERS\usbccgp.sys
21:11:06.0668 0488 usbccgp - ok
21:11:06.0705 0488 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:11:06.0707 0488 usbcir - ok
21:11:06.0727 0488 usbehci (74ee782b1d9c241efe425565854c661c) C:\Windows\system32\DRIVERS\usbehci.sys
21:11:06.0728 0488 usbehci - ok
21:11:06.0783 0488 usbfilter (b7037444dc5138fc7d3d3968b4de5c4b) C:\Windows\system32\DRIVERS\usbfilter.sys
21:11:06.0784 0488 usbfilter - ok
21:11:06.0816 0488 usbhub (dc96bd9ccb8403251bcf25047573558e) C:\Windows\system32\DRIVERS\usbhub.sys
21:11:06.0837 0488 usbhub - ok
21:11:06.0845 0488 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
21:11:06.0846 0488 usbohci - ok
21:11:06.0903 0488 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:11:06.0904 0488 usbprint - ok
21:11:06.0956 0488 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:11:06.0958 0488 usbscan - ok
21:11:07.0115 0488 USBSTOR (d76510cfa0fc09023077f22c2f979d86) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:11:07.0117 0488 USBSTOR - ok
21:11:07.0122 0488 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\drivers\usbuhci.sys
21:11:07.0123 0488 usbuhci - ok
21:11:07.0200 0488 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
21:11:07.0203 0488 usbvideo - ok
21:11:07.0232 0488 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:11:07.0245 0488 UxSms - ok
21:11:07.0302 0488 VaultSvc (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
21:11:07.0303 0488 VaultSvc - ok
21:11:07.0360 0488 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:11:07.0361 0488 vdrvroot - ok
21:11:07.0399 0488 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:11:07.0423 0488 vds - ok
21:11:07.0455 0488 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:11:07.0456 0488 vga - ok
21:11:07.0482 0488 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:11:07.0484 0488 VgaSave - ok
21:11:07.0486 0488 VGPU - ok
21:11:07.0502 0488 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:11:07.0518 0488 vhdmp - ok
21:11:07.0537 0488 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:11:07.0539 0488 viaide - ok
21:11:07.0605 0488 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
21:11:07.0608 0488 vmbus - ok
21:11:07.0640 0488 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
21:11:07.0642 0488 VMBusHID - ok
21:11:07.0650 0488 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:11:07.0651 0488 volmgr - ok
21:11:07.0682 0488 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:11:07.0719 0488 volmgrx - ok
21:11:07.0749 0488 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:11:07.0752 0488 volsnap - ok
21:11:07.0763 0488 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
21:11:07.0766 0488 vsmraid - ok
21:11:07.0894 0488 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:11:07.0978 0488 VSS - ok
21:11:08.0111 0488 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
21:11:08.0113 0488 vwifibus - ok
21:11:08.0244 0488 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:11:08.0250 0488 W32Time - ok
21:11:08.0283 0488 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
21:11:08.0284 0488 WacomPen - ok
21:11:08.0340 0488 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:11:08.0341 0488 WANARP - ok
21:11:08.0385 0488 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:11:08.0386 0488 Wanarpv6 - ok
21:11:08.0543 0488 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:11:08.0556 0488 WatAdminSvc - ok
21:11:08.0691 0488 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:11:08.0730 0488 wbengine - ok
21:11:08.0849 0488 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:11:08.0853 0488 WbioSrvc - ok
21:11:08.0918 0488 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:11:08.0950 0488 wcncsvc - ok
21:11:09.0001 0488 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:11:09.0004 0488 WcsPlugInService - ok
21:11:09.0029 0488 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
21:11:09.0031 0488 Wd - ok
21:11:09.0050 0488 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
21:11:09.0052 0488 WDC_SAM - ok
21:11:09.0185 0488 WDDMService (fa24fbe15a8036387ecc013d06094f3d) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
21:11:09.0187 0488 WDDMService - ok
21:11:09.0248 0488 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:11:09.0255 0488 Wdf01000 - ok
21:11:09.0273 0488 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:11:09.0275 0488 WdiServiceHost - ok
21:11:09.0278 0488 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:11:09.0280 0488 WdiSystemHost - ok
21:11:09.0315 0488 WDSmartWareBackgroundService (138ab06adbbf300aa804d7974a5aec82) C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
21:11:09.0316 0488 WDSmartWareBackgroundService - ok
21:11:09.0351 0488 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:11:09.0381 0488 WebClient - ok
21:11:09.0439 0488 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:11:09.0444 0488 Wecsvc - ok
21:11:09.0458 0488 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:11:09.0461 0488 wercplsupport - ok
21:11:09.0501 0488 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:11:09.0516 0488 WerSvc - ok
21:11:09.0551 0488 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:11:09.0552 0488 WfpLwf - ok
21:11:09.0564 0488 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:11:09.0565 0488 WIMMount - ok
21:11:09.0613 0488 WinDefend - ok
21:11:09.0620 0488 WinHttpAutoProxySvc - ok
21:11:09.0681 0488 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:11:09.0684 0488 Winmgmt - ok
21:11:09.0840 0488 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:11:09.0936 0488 WinRM - ok
21:11:10.0160 0488 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:11:10.0202 0488 WinUsb - ok
21:11:10.0519 0488 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:11:10.0562 0488 Wlansvc - ok
21:11:11.0641 0488 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:11:11.0734 0488 wlidsvc - ok
21:11:11.0928 0488 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:11:11.0929 0488 WmiAcpi - ok
21:11:12.0142 0488 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:11:12.0146 0488 wmiApSrv - ok
21:11:12.0165 0488 WMPNetworkSvc - ok
21:11:12.0191 0488 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:11:12.0194 0488 WPCSvc - ok
21:11:12.0228 0488 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:11:12.0239 0488 WPDBusEnum - ok
21:11:12.0252 0488 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:11:12.0253 0488 ws2ifsl - ok
21:11:12.0314 0488 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
21:11:12.0317 0488 wscsvc - ok
21:11:12.0320 0488 WSearch - ok
21:11:12.0626 0488 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
21:11:12.0775 0488 wuauserv - ok
21:11:12.0968 0488 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:11:12.0970 0488 WudfPf - ok
21:11:13.0034 0488 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:11:13.0037 0488 WUDFRd - ok
21:11:13.0079 0488 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:11:13.0082 0488 wudfsvc - ok
21:11:13.0213 0488 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:11:13.0253 0488 WwanSvc - ok
21:11:13.0290 0488 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:11:13.0901 0488 \Device\Harddisk0\DR0 - ok
21:11:13.0904 0488 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
21:11:13.0995 0488 \Device\Harddisk1\DR1 - ok
21:11:14.0001 0488 MBR (0x1B8) (06449e7c4af0550b77e260798769aa40) \Device\Harddisk2\DR2
21:11:14.0176 0488 \Device\Harddisk2\DR2 - ok
21:11:14.0180 0488 Boot (0x1200) (7c19b75431ee8d7873f03caacb59e0ef) \Device\Harddisk0\DR0\Partition0
21:11:14.0181 0488 \Device\Harddisk0\DR0\Partition0 - ok
21:11:14.0203 0488 Boot (0x1200) (5c5cafa5f284ca50f82837795222b198) \Device\Harddisk1\DR1\Partition0
21:11:14.0204 0488 \Device\Harddisk1\DR1\Partition0 - ok
21:11:14.0209 0488 Boot (0x1200) (5d533ad52b26c74b4975db9a45eae354) \Device\Harddisk2\DR2\Partition0
21:11:14.0210 0488 \Device\Harddisk2\DR2\Partition0 - ok
21:11:14.0211 0488 ============================================================
21:11:14.0211 0488 Scan finished
21:11:14.0211 0488 ============================================================
21:11:14.0223 3340 Detected object count: 0
21:11:14.0223 3340 Actual detected object count: 0


aswMBR LOG::::::::::::::::::::::::::::::::::

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-21 21:11:11
-----------------------------
21:11:11.286 OS Version: Windows x64 6.1.7601 Service Pack 1
21:11:11.286 Number of processors: 4 586 0x503
21:11:11.287 ComputerName: VINNIE-PC UserName: Vinnie
21:11:17.051 Initialize success
21:11:29.738 AVAST engine download error: 0
21:12:42.436 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
21:12:42.438 Disk 0 Vendor: WDC_WD20EARS-00MVWB0 51.0AB51 Size: 1907729MB BusType: 3
21:12:42.441 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP4T1L0-a
21:12:42.443 Disk 1 Vendor: HDS722516VLAT20 V34OA60A Size: 157066MB BusType: 3
21:12:42.445 Disk 2 \Device\Harddisk2\DR2 -> \Device\0000007c
21:12:42.448 Disk 2 Vendor: Size: 157066MB BusType: 0
21:12:42.485 Disk 0 MBR read successfully
21:12:42.489 Disk 0 MBR scan
21:12:42.491 Disk 0 Windows 7 default MBR code
21:12:42.494 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 1907718 MB offset 63
21:12:42.514 Disk 0 scanning C:\Windows\system32\drivers
21:12:48.407 Service scanning
21:13:03.265 Modules scanning
21:13:03.653 Disk 0 trace - called modules:
21:13:03.676 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
21:13:03.681 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800aa06790]
21:13:03.686 3 CLASSPNP.SYS[fffff88001b9643f] -> nt!IofCallDriver -> [0xfffffa800a90c8f0]
21:13:03.690 5 PCTCore64.sys[fffff8800110ea40] -> nt!IofCallDriver -> [0xfffffa800a9339b0]
21:13:03.695 7 ACPI.sys[fffff88000e6d7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800a9f5060]
21:13:03.702 Scan finished successfully
21:14:51.143 Disk 0 MBR has been saved successfully to "P:\MBR.dat"
21:14:51.187 The log file has been saved successfully to "P:\aswMBR.txt"


FSS LOG::::::::::::::::::::::::::::::::::::::::::::::::::
Farbar Service Scanner Version: 17-05-2012
Ran by Vinnie (administrator) on 21-05-2012 at 21:13:53
Running from "P:\"
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is blocked.
LAN connected.
Attempt to access Google IP returned error: Other errors
Attempt to access Yahoo IP returned error: Other errors


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2010-11-20 20:24] - [2010-11-20 20:24] - 0499712 ____A (Microsoft Corporation) D31DC7A16DEA4A9BAF179F3D6FBDB38C

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2010-11-20 20:24] - [2010-11-20 20:24] - 1924480 ____A (Microsoft Corporation) 509383E505C973ED7534A06B3D19688D

C:\Windows\System32\dnsrslvr.dll
[2010-11-20 20:24] - [2010-11-20 20:24] - 0183296 ____A (Microsoft Corporation) CD55F5355D8F55D44C9F4ED875705BD6

C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:46 AM

Posted 21 May 2012 - 11:18 PM

I was following a tutorial on how to remove it which involved editing my hosts file and internet settings. After I rebooted my internet no longer worked here is what I have done so far...

Can you try a system restore to previous point?

If that doesnt work,

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log

Click Go and post the result.

Edited by narenxp, 21 May 2012 - 11:21 PM.


#8 deffpony

deffpony
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 21 May 2012 - 11:29 PM

System restore did not help.

Minitoolbox log::::::::::::::::::::::


MiniToolBox by Farbar Version: 18-01-2012
Ran by Vinnie (administrator) on 21-05-2012 at 21:26:57
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Vinnie-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 6C-62-6D-EC-95-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a1e1:305:2e9e:9d2f%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.5(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, May 21, 2012 9:08:14 PM
Lease Expires . . . . . . . . . . : Friday, June 28, 2148 3:55:21 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 241984109
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-16-D4-F9-6C-62-6D-EC-95-42
DNS Servers . . . . . . . . . . . : 192.168.2.1
75.75.75.75
75.75.76.76
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3cf9:35c6:3f57:fdfa(Preferred)
Link-local IPv6 Address . . . . . : fe80::3cf9:35c6:3f57:fdfa%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 74.125.137.138
74.125.137.138

Ping request could not find host google.com. Please check the name and try again.
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 209.191.122.70
209.191.122.70

Ping request could not find host yahoo.com. Please check the name and try again.
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Ping request could not find host bleepingcomputer.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 2ms, Maximum = 6ms, Average = 4ms
===========================================================================
Interface List
11...6c 62 6d ec 95 42 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.5 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.5 276
192.168.2.5 255.255.255.255 On-link 192.168.2.5 276
192.168.2.255 255.255.255.255 On-link 192.168.2.5 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.5 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.5 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:3cf9:35c6:3f57:fdfa/128
On-link
11 276 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::3cf9:35c6:3f57:fdfa/128
On-link
11 276 fe80::a1e1:305:2e9e:9d2f/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/21/2012 09:09:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2012 09:08:16 PM) (Source: Winlogon) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (05/21/2012 05:03:25 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2012 05:01:55 PM) (Source: Winlogon) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (05/21/2012 03:41:27 PM) (Source: Google Update) (User: Vinnie)Vinnie
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/21/2012 03:03:47 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2012 03:02:28 PM) (Source: Winlogon) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (05/21/2012 06:41:26 AM) (Source: Google Update) (User: Vinnie)Vinnie
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/21/2012 03:41:26 AM) (Source: Google Update) (User: Vinnie)Vinnie
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/21/2012 00:41:26 AM) (Source: Google Update) (User: Vinnie)Vinnie
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7


System errors:
=============
Error: (05/21/2012 09:08:36 PM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (05/21/2012 09:08:15 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (05/21/2012 05:02:08 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (05/21/2012 05:02:06 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (05/21/2012 05:02:04 PM) (Source: DCOM) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (05/21/2012 05:02:04 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (05/21/2012 05:01:58 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (05/21/2012 05:01:57 PM) (Source: DCOM) (User: )
Description: 1084TermService{F9A874B6-F8A8-4D73-B5A8-AB610816828B}

Error: (05/21/2012 05:01:56 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
discache
PCTSD
SASDIFSV
SASKUTIL
SCDEmu
spldr
Wanarpv6

Error: (05/21/2012 05:01:54 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.


Microsoft Office Sessions:
=========================
Error: (05/21/2012 09:09:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2012 09:08:16 PM) (Source: Winlogon)(User: )
Description: 0x800700050x00000000

Error: (05/21/2012 05:03:25 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2012 05:01:55 PM) (Source: Winlogon)(User: )
Description: 0x800700050x00000000

Error: (05/21/2012 03:41:27 PM) (Source: Google Update)(User: Vinnie)Vinnie
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/21/2012 03:03:47 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/21/2012 03:02:28 PM) (Source: Winlogon)(User: )
Description: 0x800700050x00000000

Error: (05/21/2012 06:41:26 AM) (Source: Google Update)(User: Vinnie)Vinnie
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/21/2012 03:41:26 AM) (Source: Google Update)(User: Vinnie)Vinnie
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/21/2012 00:41:26 AM) (Source: Google Update)(User: Vinnie)Vinnie
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7


**** End of log ****

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:46 AM

Posted 22 May 2012 - 12:46 AM


Reset your router


Press Windows+R key and type

devmgmt.msc and click ok

Expand network adapters

Right click on your driver-Uninstall

Restart the PC

Windows should automatically install it on startup

Post the new FSS log

Do you remember what change you made to internet settings? Can you post the link to tutorial that you followed?

Edited by narenxp, 22 May 2012 - 12:47 AM.


#10 deffpony

deffpony
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 24 May 2012 - 09:17 PM

I dont remember the link for the tutorial. The most drastic change I made was the Host editing. Just making sure that there were no extra lines in my host file. I thought I had an extra line and I removed it but it was supposed to be there. I restored the file to the original setting and the internet still doesnt work.

The only other thing i changed was setting the internet options to reset and making sure that i wasnt using and other hosts.

I uninstalled my router and resstarted my computer. It re-installed the router and the internet still doesnt work. Im going to run fss log again now

#11 deffpony

deffpony
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 24 May 2012 - 09:20 PM

Farbar Service Scanner Version: 17-05-2012
Ran by Vinnie (administrator) on 24-05-2012 at 19:18:47
Running from "P:\"
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.


Connection Status:
==============
Localhost is blocked.
LAN connected.
Attempt to access Google IP returned error: Other errors
Attempt to access Yahoo IP returned error: Other errors


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2010-11-20 20:24] - [2010-11-20 20:24] - 0499712 ____A (Microsoft Corporation) D31DC7A16DEA4A9BAF179F3D6FBDB38C

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2010-11-20 20:24] - [2010-11-20 20:24] - 1924480 ____A (Microsoft Corporation) 509383E505C973ED7534A06B3D19688D

C:\Windows\System32\dnsrslvr.dll
[2010-11-20 20:24] - [2010-11-20 20:24] - 0183296 ____A (Microsoft Corporation) CD55F5355D8F55D44C9F4ED875705BD6

C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



Thank you so much for your help sorry for the late replies. I will do whatever it takes to not have to re-install windows.

#12 Sneakycyber

Sneakycyber

    Network Engineer


  • BC Advisor
  • 6,116 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ohio
  • Local time:05:46 AM

Posted 24 May 2012 - 09:28 PM

The DNS server didn't start so your computer cant resolve a domain name try this.

1. Click the Microsoft Vista Start logo in the bottom left corner of the screen
2. Click All Programs
3. Click Accessories
4. RIGHT-click on Command Prompt
5. Select Run As Administrator
6. In the command window type the following and then hit enter: ipconfig /flushdns
7. You will see the following confirmation:

Run Minitoolbox again

Edited by Sneakycyber, 24 May 2012 - 09:29 PM.

Chad Mockensturm 
Network Engineer
Certified CompTia Network +, A +

#13 deffpony

deffpony
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 24 May 2012 - 11:38 PM

I received the following error after trying ipconfig /flushdns

Could not flush the DNS Resolver Cache: Function failed during execution.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:46 AM

Posted 25 May 2012 - 05:37 AM

Localhost is blocked.

We need to check for malware

Read the guide here on preparing logs

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:46 AM

Posted 25 May 2012 - 05:37 AM

.

Edited by narenxp, 25 May 2012 - 10:25 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users