Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

error code:0x80070424


  • Please log in to reply
19 replies to this topic

#1 paul624

paul624

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 24 June 2012 - 01:59 PM

with that error message, I can not turn on firewall and when I go to action center it says it can not turn on windows security service center. do not appear ro have zero access rootkit,and run my trend micro, and 2 different malware programs but everything checks out ok. what can be causing this and how do I fix it? or should I stick with Zonealarm free that I downloaded for cover in the meantime? hear Microsoft's firewall is not really that good.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:01 PM

Posted 24 June 2012 - 02:14 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 paul624

paul624
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 25 June 2012 - 07:57 AM

Did all the above, here are the results:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-24 22:23:11
-----------------------------
22:23:11.095 OS Version: Windows x64 6.1.7601 Service Pack 1
22:23:11.096 Number of processors: 4 586 0x2A07
22:23:11.097 ComputerName: HOLLOWAY-PC UserName: holloway
22:23:25.022 Initialize success
22:25:13.980 AVAST engine defs: 12062401
22:42:22.351 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:42:22.352 Disk 0 Vendor: Size: 0MB BusType: 0
22:42:22.359 Disk 0 MBR read successfully
22:42:22.360 Disk 0 MBR scan
22:42:22.430 Disk 0 Windows 7 default MBR code
22:42:22.432 Disk 0 MBR hidden
22:42:22.434 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14336 MB offset 2048
22:42:22.450 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 29362176
22:42:22.471 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 939431 MB offset 29566976
22:42:22.530 Disk 0 scanning C:\Windows\system32\drivers
22:42:35.058 Service scanning
22:42:56.565 Modules scanning
22:42:56.570 Disk 0 trace - called modules:
22:42:56.592 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
22:42:56.595 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007e22790]
22:42:56.597 3 CLASSPNP.SYS[fffff88001c5143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80062d6050]
22:42:58.797 AVAST engine scan C:\Windows
22:43:02.909 AVAST engine scan C:\Windows\system32
22:47:14.123 AVAST engine scan C:\Windows\system32\drivers
22:47:45.606 AVAST engine scan C:\Users\holloway
23:17:46.123 AVAST engine scan C:\ProgramData
23:21:24.041 Scan finished successfully
23:21:46.904 Disk 0 MBR has been saved successfully to "C:\Users\holloway\Desktop\MBR.dat"
23:21:46.915 The log file has been saved successfully to "C:\Users\holloway\Desktop\aswMBR.txt"


22:20:53.0361 8924 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
22:20:54.0189 8924 ============================================================
22:20:54.0189 8924 Current date / time: 2012/06/24 22:20:54.0189
22:20:54.0189 8924 SystemInfo:
22:20:54.0189 8924
22:20:54.0189 8924 OS Version: 6.1.7601 ServicePack: 1.0
22:20:54.0189 8924 Product type: Workstation
22:20:54.0189 8924 ComputerName: HOLLOWAY-PC
22:20:54.0190 8924 UserName: holloway
22:20:54.0190 8924 Windows directory: C:\Windows
22:20:54.0190 8924 System windows directory: C:\Windows
22:20:54.0190 8924 Running under WOW64
22:20:54.0190 8924 Processor architecture: Intel x64
22:20:54.0190 8924 Number of processors: 4
22:20:54.0190 8924 Page size: 0x1000
22:20:54.0190 8924 Boot type: Normal boot
22:20:54.0190 8924 ============================================================
22:20:54.0629 8924 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:20:54.0677 8924 ============================================================
22:20:54.0677 8924 \Device\Harddisk0\DR0:
22:20:54.0677 8924 MBR partitions:
22:20:54.0677 8924 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
22:20:54.0677 8924 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x72AD3DB0
22:20:54.0677 8924 ============================================================
22:20:54.0706 8924 C: <-> \Device\Harddisk0\DR0\Partition1
22:20:54.0706 8924 ============================================================
22:20:54.0706 8924 Initialize success
22:20:54.0706 8924 ============================================================
22:53:13.0141 7860 ============================================================
22:53:13.0141 7860 Scan started
22:53:13.0141 7860 Mode: Manual; TDLFS;
22:53:13.0141 7860 ============================================================
22:53:13.0427 7860 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
22:53:13.0429 7860 !SASCORE - ok
22:53:13.0613 7860 .AVQWindowsMonitorService (5fb0c795698f75d0df71b31b20208cd2) C:\Program Files (x86)\Avanquest\Fix-It\AVQWinMonEngine.exe
22:53:13.0627 7860 .AVQWindowsMonitorService - ok
22:53:13.0851 7860 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
22:53:13.0859 7860 1394ohci - ok
22:53:13.0914 7860 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
22:53:13.0920 7860 ACPI - ok
22:53:13.0990 7860 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
22:53:13.0998 7860 AcpiPmi - ok
22:53:14.0138 7860 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:53:14.0147 7860 AdobeARMservice - ok
22:53:14.0296 7860 AdobeFlashPlayerUpdateSvc (f3cd7b20b27d1772c946df993ff3635c) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:53:14.0298 7860 AdobeFlashPlayerUpdateSvc - ok
22:53:14.0351 7860 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
22:53:14.0361 7860 adp94xx - ok
22:53:14.0441 7860 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
22:53:14.0516 7860 adpahci - ok
22:53:14.0538 7860 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
22:53:14.0544 7860 adpu320 - ok
22:53:14.0824 7860 AdvancedSystemCareService5 (96d6cdd0b32846e8cfbe592f4f32e608) C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
22:53:14.0870 7860 AdvancedSystemCareService5 - ok
22:53:14.0904 7860 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
22:53:14.0906 7860 AeLookupSvc - ok
22:53:14.0979 7860 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
22:53:14.0989 7860 AFD - ok
22:53:15.0052 7860 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
22:53:15.0060 7860 agp440 - ok
22:53:15.0084 7860 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
22:53:15.0094 7860 ALG - ok
22:53:15.0122 7860 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
22:53:15.0129 7860 aliide - ok
22:53:15.0141 7860 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
22:53:15.0149 7860 amdide - ok
22:53:15.0203 7860 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
22:53:15.0214 7860 AmdK8 - ok
22:53:15.0237 7860 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
22:53:15.0242 7860 AmdPPM - ok
22:53:15.0281 7860 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
22:53:15.0289 7860 amdsata - ok
22:53:15.0323 7860 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
22:53:15.0331 7860 amdsbs - ok
22:53:15.0339 7860 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
22:53:15.0341 7860 amdxata - ok
22:53:15.0465 7860 Amsp (1b7d1f0a0dfadbc797c16364792a7aa5) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
22:53:15.0468 7860 Amsp - ok
22:53:15.0538 7860 AOL ACS (85180cf88c5ebad73b452a43a004ca51) C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
22:53:15.0540 7860 AOL ACS - ok
22:53:15.0576 7860 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
22:53:15.0583 7860 AppID - ok
22:53:15.0617 7860 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
22:53:15.0624 7860 AppIDSvc - ok
22:53:15.0647 7860 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
22:53:15.0650 7860 Appinfo - ok
22:53:15.0767 7860 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:53:15.0776 7860 Apple Mobile Device - ok
22:53:15.0818 7860 AQFileRestore (9bfdf96146eb55f8f0d083756b21067b) C:\Windows\system32\DRIVERS\AQFileRestore.sys
22:53:15.0820 7860 AQFileRestore - ok
22:53:15.0891 7860 AQFileRestoreSrv (bdb729db47c86d2d9c84fc9d4fefb660) C:\Program Files (x86)\Avanquest\Fix-It\AQFileRestoreSrv.exe
22:53:15.0893 7860 AQFileRestoreSrv - ok
22:53:15.0912 7860 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
22:53:15.0917 7860 arc - ok
22:53:15.0942 7860 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
22:53:15.0953 7860 arcsas - ok
22:53:15.0974 7860 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
22:53:15.0981 7860 AsyncMac - ok
22:53:15.0997 7860 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
22:53:15.0999 7860 atapi - ok
22:53:16.0078 7860 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
22:53:16.0087 7860 AudioEndpointBuilder - ok
22:53:16.0092 7860 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
22:53:16.0098 7860 AudioSrv - ok
22:53:16.0486 7860 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
22:53:16.0511 7860 AxInstSV - ok
22:53:16.0631 7860 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
22:53:16.0658 7860 b06bdrv - ok
22:53:16.0689 7860 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
22:53:16.0700 7860 b57nd60a - ok
22:53:16.0827 7860 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
22:53:16.0846 7860 BDESVC - ok
22:53:16.0872 7860 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
22:53:16.0878 7860 Beep - ok
22:53:16.0984 7860 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
22:53:16.0991 7860 BFE - ok
22:53:17.0367 7860 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
22:53:17.0413 7860 BITS - ok
22:53:17.0462 7860 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
22:53:17.0465 7860 blbdrive - ok
22:53:17.0543 7860 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
22:53:17.0547 7860 Bonjour Service - ok
22:53:17.0618 7860 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
22:53:17.0621 7860 bowser - ok
22:53:17.0641 7860 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
22:53:17.0648 7860 BrFiltLo - ok
22:53:17.0661 7860 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
22:53:17.0668 7860 BrFiltUp - ok
22:53:17.0702 7860 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
22:53:17.0705 7860 Browser - ok
22:53:17.0739 7860 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
22:53:17.0747 7860 Brserid - ok
22:53:17.0757 7860 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
22:53:17.0763 7860 BrSerWdm - ok
22:53:17.0788 7860 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
22:53:17.0793 7860 BrUsbMdm - ok
22:53:17.0807 7860 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
22:53:17.0813 7860 BrUsbSer - ok
22:53:17.0835 7860 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
22:53:17.0842 7860 BTHMODEM - ok
22:53:17.0862 7860 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
22:53:17.0869 7860 bthserv - ok
22:53:17.0909 7860 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
22:53:17.0915 7860 cdfs - ok
22:53:18.0009 7860 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
22:53:18.0020 7860 cdrom - ok
22:53:18.0052 7860 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
22:53:18.0059 7860 CertPropSvc - ok
22:53:18.0081 7860 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
22:53:18.0086 7860 circlass - ok
22:53:18.0115 7860 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
22:53:18.0120 7860 CLFS - ok
22:53:18.0186 7860 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:53:18.0196 7860 clr_optimization_v2.0.50727_32 - ok
22:53:18.0231 7860 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:53:18.0239 7860 clr_optimization_v2.0.50727_64 - ok
22:53:18.0283 7860 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:53:18.0286 7860 clr_optimization_v4.0.30319_32 - ok
22:53:18.0310 7860 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:53:18.0313 7860 clr_optimization_v4.0.30319_64 - ok
22:53:18.0333 7860 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
22:53:18.0339 7860 CmBatt - ok
22:53:18.0352 7860 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
22:53:18.0359 7860 cmdide - ok
22:53:18.0416 7860 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
22:53:18.0426 7860 CNG - ok
22:53:18.0470 7860 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
22:53:18.0507 7860 Compbatt - ok
22:53:18.0549 7860 CompFilter64 (59d203c3f46f3ca536ecac0e084cd887) C:\Windows\system32\DRIVERS\lvbflt64.sys
22:53:18.0552 7860 CompFilter64 - ok
22:53:18.0578 7860 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
22:53:18.0583 7860 CompositeBus - ok
22:53:18.0588 7860 COMSysApp - ok
22:53:19.0548 7860 cphs (f08c6020e57f5e5bf2fd034db10bedfb) C:\Windows\SysWow64\IntelCpHeciSvc.exe
22:53:19.0622 7860 cphs - ok
22:53:19.0642 7860 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
22:53:19.0649 7860 crcdisk - ok
22:53:19.0695 7860 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
22:53:19.0700 7860 CryptSvc - ok
22:53:19.0919 7860 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:53:20.0013 7860 cvhsvc - ok
22:53:20.0098 7860 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
22:53:20.0121 7860 DcomLaunch - ok
22:53:20.0151 7860 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
22:53:20.0159 7860 defragsvc - ok
22:53:20.0214 7860 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
22:53:20.0217 7860 DfsC - ok
22:53:20.0250 7860 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
22:53:20.0264 7860 Dhcp - ok
22:53:20.0313 7860 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
22:53:20.0321 7860 discache - ok
22:53:20.0329 7860 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
22:53:20.0331 7860 Disk - ok
22:53:20.0366 7860 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
22:53:20.0374 7860 Dnscache - ok
22:53:20.0414 7860 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
22:53:20.0427 7860 dot3svc - ok
22:53:20.0454 7860 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
22:53:20.0470 7860 DPS - ok
22:53:20.0488 7860 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
22:53:20.0497 7860 drmkaud - ok
22:53:20.0565 7860 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
22:53:20.0600 7860 DXGKrnl - ok
22:53:20.0634 7860 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
22:53:20.0642 7860 EapHost - ok
22:53:20.0939 7860 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
22:53:21.0021 7860 ebdrv - ok
22:53:21.0218 7860 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
22:53:21.0237 7860 EFS - ok
22:53:21.0386 7860 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
22:53:21.0404 7860 ehRecvr - ok
22:53:21.0445 7860 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
22:53:21.0453 7860 ehSched - ok
22:53:21.0558 7860 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
22:53:21.0580 7860 elxstor - ok
22:53:21.0595 7860 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
22:53:21.0601 7860 ErrDev - ok
22:53:21.0638 7860 EtronHub3 (cfba28fab72e6a39add71d958f219648) C:\Windows\system32\Drivers\EtronHub3.sys
22:53:21.0641 7860 EtronHub3 - ok
22:53:21.0683 7860 EtronXHCI (0241ce183139ff15cea7234058ccf995) C:\Windows\system32\Drivers\EtronXHCI.sys
22:53:21.0712 7860 EtronXHCI - ok
22:53:21.0843 7860 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
22:53:21.0854 7860 EventSystem - ok
22:53:21.0922 7860 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
22:53:21.0930 7860 exfat - ok
22:53:21.0957 7860 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
22:53:21.0967 7860 fastfat - ok
22:53:22.0046 7860 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
22:53:22.0074 7860 Fax - ok
22:53:22.0099 7860 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
22:53:22.0106 7860 fdc - ok
22:53:22.0123 7860 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
22:53:22.0132 7860 fdPHost - ok
22:53:22.0170 7860 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
22:53:22.0181 7860 FDResPub - ok
22:53:22.0200 7860 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
22:53:22.0203 7860 FileInfo - ok
22:53:22.0389 7860 FileMonitor (060cc45cecae2feaff9c8c52d8fafaa8) C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
22:53:22.0391 7860 FileMonitor - ok
22:53:22.0432 7860 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
22:53:22.0469 7860 Filetrace - ok
22:53:22.0490 7860 Fix-It Task Manager - ok
22:53:22.0513 7860 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
22:53:22.0520 7860 flpydisk - ok
22:53:22.0544 7860 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
22:53:22.0548 7860 FltMgr - ok
22:53:22.0644 7860 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
22:53:22.0661 7860 FontCache - ok
22:53:22.0740 7860 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:53:22.0747 7860 FontCache3.0.0.0 - ok
22:53:22.0778 7860 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
22:53:22.0790 7860 FsDepends - ok
22:53:22.0810 7860 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
22:53:22.0818 7860 Fs_Rec - ok
22:53:22.0839 7860 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
22:53:22.0844 7860 fvevol - ok
22:53:22.0854 7860 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
22:53:22.0862 7860 gagp30kx - ok
22:53:22.0980 7860 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:53:22.0997 7860 GamesAppService - ok
22:53:23.0014 7860 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:53:23.0022 7860 GEARAspiWDM - ok
22:53:23.0525 7860 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
22:53:23.0548 7860 gpsvc - ok
22:53:23.0839 7860 GREGService (c9b2d1d3f86fd3673ef847def73b6f9e) C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe
22:53:23.0862 7860 GREGService - ok
22:53:23.0997 7860 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:53:24.0007 7860 gupdate - ok
22:53:24.0012 7860 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:53:24.0015 7860 gupdatem - ok
22:53:24.0064 7860 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:53:24.0074 7860 gusvc - ok
22:53:24.0264 7860 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
22:53:24.0312 7860 hcw85cir - ok
22:53:24.0401 7860 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
22:53:24.0411 7860 HdAudAddService - ok
22:53:24.0445 7860 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:53:24.0448 7860 HDAudBus - ok
22:53:24.0493 7860 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
22:53:24.0500 7860 HidBatt - ok
22:53:24.0581 7860 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
22:53:24.0588 7860 HidBth - ok
22:53:24.0775 7860 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
22:53:24.0811 7860 HidIr - ok
22:53:24.0985 7860 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
22:53:25.0021 7860 hidserv - ok
22:53:25.0125 7860 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
22:53:25.0132 7860 HidUsb - ok
22:53:25.0233 7860 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
22:53:25.0250 7860 hkmsvc - ok
22:53:26.0807 7860 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
22:53:26.0921 7860 HomeGroupListener - ok
22:53:27.0097 7860 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
22:53:27.0145 7860 HomeGroupProvider - ok
22:53:27.0714 7860 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
22:53:27.0764 7860 HpSAMD - ok
22:53:28.0618 7860 hrfsmrx (473be95788f20d41ed983e4850170d4e) C:\Windows\System32\Drivers\hrfsmrx.sys
22:53:28.0675 7860 hrfsmrx - ok
22:53:30.0236 7860 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
22:53:30.0349 7860 HTTP - ok
22:53:30.0483 7860 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
22:53:30.0490 7860 hwpolicy - ok
22:53:31.0069 7860 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
22:53:31.0150 7860 i8042prt - ok
22:53:31.0237 7860 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\Windows\system32\drivers\iaStor.sys
22:53:31.0242 7860 iaStor - ok
22:53:31.0566 7860 IAStorDataMgrSvc (8fff9083252c16fe3960173722605e9e) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:53:31.0572 7860 IAStorDataMgrSvc - ok
22:53:31.0762 7860 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
22:53:31.0804 7860 iaStorV - ok
22:53:32.0421 7860 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:53:32.0452 7860 IDriverT - ok
22:53:32.0837 7860 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:53:32.0898 7860 idsvc - ok
22:53:34.0734 7860 igfx (371d7f91c0d2314eb984a4a6cbeabc92) C:\Windows\system32\DRIVERS\igdkmd64.sys
22:53:34.0977 7860 igfx - ok
22:53:35.0933 7860 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
22:53:35.0939 7860 iirsp - ok
22:53:36.0309 7860 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
22:53:36.0370 7860 IKEEXT - ok
22:53:37.0185 7860 IMFservice (8ae99ebe30e8338907361018d9030835) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
22:53:37.0250 7860 IMFservice - ok
22:53:37.0650 7860 incdrm - ok
22:53:37.0655 7860 IntcAzAudAddService - ok
22:53:37.0809 7860 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
22:53:37.0847 7860 IntcDAud - ok
22:53:37.0999 7860 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
22:53:38.0015 7860 intelide - ok
22:53:38.0082 7860 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
22:53:38.0088 7860 intelppm - ok
22:53:38.0385 7860 IObitUnlocker (67f6d2a931f194396bda9b05690008d2) C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys
22:53:38.0400 7860 IObitUnlocker - ok
22:53:38.0462 7860 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
22:53:38.0479 7860 IPBusEnum - ok
22:53:38.0664 7860 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:53:38.0688 7860 IpFilterDriver - ok
22:53:38.0712 7860 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
22:53:38.0720 7860 IPMIDRV - ok
22:53:38.0788 7860 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
22:53:38.0797 7860 IPNAT - ok
22:53:38.0911 7860 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
22:53:38.0929 7860 iPod Service - ok
22:53:38.0946 7860 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
22:53:38.0953 7860 IRENUM - ok
22:53:39.0087 7860 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
22:53:39.0104 7860 isapnp - ok
22:53:39.0133 7860 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
22:53:39.0143 7860 iScsiPrt - ok
22:53:39.0249 7860 ISWKL (1152f8beb568f2f72f1c5c32a1f4e529) C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
22:53:39.0254 7860 ISWKL - ok
22:53:39.0347 7860 IswSvc (ef46ef3a790c42bba9b5afa2586448db) C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
22:53:39.0365 7860 IswSvc - ok
22:53:39.0384 7860 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
22:53:39.0388 7860 kbdclass - ok
22:53:39.0404 7860 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
22:53:39.0407 7860 kbdhid - ok
22:53:39.0427 7860 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:53:39.0445 7860 KeyIso - ok
22:53:39.0532 7860 KL1 (e656fe10d6d27794afa08136685a69e8) C:\Windows\system32\DRIVERS\kl1.sys
22:53:39.0542 7860 KL1 - ok
22:53:39.0601 7860 kl2 (d865dd8b0448e3f963d68c04c532858f) C:\Windows\system32\DRIVERS\kl2.sys
22:53:39.0608 7860 kl2 - ok
22:53:39.0696 7860 KLIF (055790d38d7ec73aef03e4aa7f67ba03) C:\Windows\system32\DRIVERS\klif.sys
22:53:39.0703 7860 KLIF - ok
22:53:39.0733 7860 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
22:53:39.0738 7860 KSecDD - ok
22:53:39.0753 7860 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
22:53:39.0756 7860 KSecPkg - ok
22:53:39.0805 7860 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
22:53:39.0812 7860 ksthunk - ok
22:53:39.0891 7860 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
22:53:39.0912 7860 KtmRm - ok
22:53:39.0979 7860 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
22:53:40.0001 7860 LanmanServer - ok
22:53:40.0032 7860 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
22:53:40.0057 7860 LanmanWorkstation - ok
22:53:40.0209 7860 Live Updater Service (b705c7097f9a0ec941d02dce7c7d426c) C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
22:53:40.0214 7860 Live Updater Service - ok
22:53:40.0259 7860 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
22:53:40.0268 7860 lltdio - ok
22:53:40.0343 7860 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
22:53:40.0364 7860 lltdsvc - ok
22:53:40.0379 7860 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
22:53:40.0391 7860 lmhosts - ok
22:53:40.0494 7860 LMS (50c7ce53ef461870410355f1f2e7d515) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:53:40.0504 7860 LMS - ok
22:53:40.0556 7860 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
22:53:40.0563 7860 LSI_FC - ok
22:53:40.0586 7860 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
22:53:40.0594 7860 LSI_SAS - ok
22:53:40.0615 7860 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
22:53:40.0628 7860 LSI_SAS2 - ok
22:53:40.0651 7860 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
22:53:40.0659 7860 LSI_SCSI - ok
22:53:40.0694 7860 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
22:53:40.0698 7860 luafv - ok
22:53:40.0785 7860 LVRS64 (0c85b2b6fb74b36a251792d45e0ef860) C:\Windows\system32\DRIVERS\lvrs64.sys
22:53:40.0804 7860 LVRS64 - ok
22:53:41.0373 7860 LVUVC64 (ff3a488924b0032b1a9ca6948c1fa9e8) C:\Windows\system32\DRIVERS\lvuvc64.sys
22:53:41.0461 7860 LVUVC64 - ok
22:53:43.0535 7860 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
22:53:43.0538 7860 MBAMProtector - ok
22:53:43.0748 7860 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:53:43.0765 7860 MBAMService - ok
22:53:43.0839 7860 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
22:53:43.0856 7860 Mcx2Svc - ok
22:53:43.0897 7860 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
22:53:43.0905 7860 megasas - ok
22:53:43.0935 7860 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
22:53:43.0946 7860 MegaSR - ok
22:53:43.0978 7860 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
22:53:43.0984 7860 MEIx64 - ok
22:53:44.0017 7860 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
22:53:44.0031 7860 MMCSS - ok
22:53:44.0048 7860 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
22:53:44.0055 7860 Modem - ok
22:53:44.0202 7860 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
22:53:44.0225 7860 monitor - ok
22:53:44.0439 7860 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
22:53:44.0462 7860 mouclass - ok
22:53:44.0586 7860 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
22:53:44.0608 7860 mouhid - ok
22:53:44.0963 7860 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
22:53:44.0985 7860 mountmgr - ok
22:53:45.0022 7860 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
22:53:45.0031 7860 mpio - ok
22:53:45.0064 7860 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
22:53:45.0072 7860 mpsdrv - ok
22:53:45.0504 7860 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
22:53:45.0552 7860 MpsSvc - ok
22:53:45.0599 7860 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
22:53:45.0616 7860 MRxDAV - ok
22:53:45.0675 7860 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:53:45.0680 7860 mrxsmb - ok
22:53:45.0700 7860 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:53:45.0704 7860 mrxsmb10 - ok
22:53:45.0714 7860 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:53:45.0728 7860 mrxsmb20 - ok
22:53:45.0779 7860 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
22:53:45.0787 7860 msahci - ok
22:53:45.0831 7860 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
22:53:45.0839 7860 msdsm - ok
22:53:45.0872 7860 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
22:53:45.0891 7860 MSDTC - ok
22:53:45.0912 7860 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
22:53:45.0915 7860 Msfs - ok
22:53:45.0925 7860 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
22:53:45.0933 7860 mshidkmdf - ok
22:53:45.0974 7860 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
22:53:45.0978 7860 msisadrv - ok
22:53:46.0032 7860 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
22:53:46.0049 7860 MSiSCSI - ok
22:53:46.0054 7860 msiserver - ok
22:53:46.0073 7860 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
22:53:46.0080 7860 MSKSSRV - ok
22:53:46.0115 7860 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
22:53:46.0122 7860 MSPCLOCK - ok
22:53:46.0132 7860 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
22:53:46.0140 7860 MSPQM - ok
22:53:46.0183 7860 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
22:53:46.0210 7860 MsRPC - ok
22:53:46.0244 7860 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
22:53:46.0262 7860 mssmbios - ok
22:53:46.0270 7860 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
22:53:46.0288 7860 MSTEE - ok
22:53:46.0321 7860 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
22:53:46.0328 7860 MTConfig - ok
22:53:46.0346 7860 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
22:53:46.0351 7860 Mup - ok
22:53:46.0395 7860 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
22:53:46.0420 7860 napagent - ok
22:53:46.0450 7860 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
22:53:46.0494 7860 NativeWifiP - ok
22:53:46.0538 7860 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
22:53:46.0547 7860 NDIS - ok
22:53:46.0567 7860 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
22:53:46.0578 7860 NdisCap - ok
22:53:46.0599 7860 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
22:53:46.0607 7860 NdisTapi - ok
22:53:46.0626 7860 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
22:53:46.0634 7860 Ndisuio - ok
22:53:46.0650 7860 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
22:53:46.0666 7860 NdisWan - ok
22:53:46.0963 7860 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
22:53:46.0990 7860 NDProxy - ok
22:53:47.0212 7860 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
22:53:47.0234 7860 NetBIOS - ok
22:53:47.0248 7860 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
22:53:47.0256 7860 NetBT - ok
22:53:47.0371 7860 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:53:47.0382 7860 Netlogon - ok
22:53:47.0459 7860 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
22:53:47.0493 7860 Netman - ok
22:53:47.0518 7860 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
22:53:47.0539 7860 netprofm - ok
22:53:47.0684 7860 netr28x (5758fd37bf31e759f8610311e4d08eca) C:\Windows\system32\DRIVERS\netr28x.sys
22:53:47.0765 7860 netr28x - ok
22:53:47.0884 7860 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:53:47.0892 7860 NetTcpPortSharing - ok
22:53:48.0030 7860 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
22:53:48.0037 7860 nfrd960 - ok
22:53:48.0079 7860 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
22:53:48.0098 7860 NlaSvc - ok
22:53:48.0125 7860 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
22:53:48.0129 7860 Npfs - ok
22:53:48.0147 7860 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
22:53:48.0164 7860 nsi - ok
22:53:48.0192 7860 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
22:53:48.0200 7860 nsiproxy - ok
22:53:48.0417 7860 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
22:53:48.0442 7860 Ntfs - ok
22:53:48.0637 7860 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
22:53:48.0645 7860 Null - ok
22:53:48.0698 7860 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
22:53:48.0715 7860 nvraid - ok
22:53:48.0738 7860 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
22:53:48.0756 7860 nvstor - ok
22:53:48.0819 7860 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
22:53:48.0830 7860 nv_agp - ok
22:53:49.0179 7860 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
22:53:49.0207 7860 ohci1394 - ok
22:53:50.0467 7860 OnlineStorageService (d4d6211ca403ac096ffa3fcb821a693d) C:\Program Files\Trend Micro SafeSync\hrfscore.exe
22:53:50.0594 7860 OnlineStorageService - ok
22:53:50.0691 7860 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:53:50.0701 7860 ose - ok
22:53:52.0784 7860 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:53:53.0053 7860 osppsvc - ok
22:53:54.0160 7860 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
22:53:54.0187 7860 p2pimsvc - ok
22:53:54.0296 7860 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
22:53:54.0315 7860 p2psvc - ok
22:53:54.0375 7860 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
22:53:54.0384 7860 Parport - ok
22:53:54.0427 7860 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
22:53:54.0431 7860 partmgr - ok
22:53:54.0451 7860 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
22:53:54.0469 7860 PcaSvc - ok
22:53:55.0281 7860 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
22:53:55.0302 7860 pci - ok
22:53:55.0363 7860 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
22:53:55.0371 7860 pciide - ok
22:53:55.0690 7860 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
22:53:55.0732 7860 pcmcia - ok
22:53:55.0776 7860 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
22:53:55.0785 7860 pcw - ok
22:53:55.0974 7860 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
22:53:56.0031 7860 PEAUTH - ok
22:53:56.0142 7860 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
22:53:56.0168 7860 PerfHost - ok
22:53:56.0327 7860 PGMTrusted (970ede327834433bfb4c3934c8cb9f03) C:\Program Files (x86)\Pogo Games\PGMTrusted.exe
22:53:56.0342 7860 PGMTrusted - ok
22:53:56.0571 7860 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
22:53:56.0616 7860 pla - ok
22:53:56.0682 7860 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
22:53:56.0723 7860 PlugPlay - ok
22:53:56.0852 7860 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
22:53:56.0869 7860 PNRPAutoReg - ok
22:53:57.0352 7860 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
22:53:57.0370 7860 PNRPsvc - ok
22:53:57.0643 7860 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
22:53:57.0676 7860 PolicyAgent - ok
22:53:57.0732 7860 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
22:53:57.0754 7860 Power - ok
22:53:57.0861 7860 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
22:53:57.0869 7860 PptpMiniport - ok
22:53:57.0891 7860 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
22:53:57.0897 7860 Processor - ok
22:53:57.0983 7860 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
22:53:58.0006 7860 ProfSvc - ok
22:53:58.0041 7860 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:53:58.0063 7860 ProtectedStorage - ok
22:53:58.0186 7860 ProtexisLicensing (f115af58abe5605d7d709cbfbd83f418) C:\Windows\SysWOW64\PSIService.exe
22:53:58.0209 7860 ProtexisLicensing - ok
22:53:58.0267 7860 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
22:53:58.0272 7860 Psched - ok
22:53:58.0323 7860 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
22:53:58.0327 7860 PxHlpa64 - ok
22:53:58.0415 7860 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
22:53:58.0434 7860 ql2300 - ok
22:53:58.0762 7860 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
22:53:58.0776 7860 ql40xx - ok
22:53:58.0870 7860 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
22:53:58.0890 7860 QWAVE - ok
22:53:58.0924 7860 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
22:53:58.0933 7860 QWAVEdrv - ok
22:53:58.0974 7860 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
22:53:58.0983 7860 RasAcd - ok
22:53:59.0014 7860 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
22:53:59.0021 7860 RasAgileVpn - ok
22:53:59.0054 7860 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
22:53:59.0072 7860 RasAuto - ok
22:53:59.0657 7860 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:53:59.0706 7860 Rasl2tp - ok
22:54:00.0011 7860 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
22:54:00.0046 7860 RasMan - ok
22:54:00.0065 7860 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
22:54:00.0073 7860 RasPppoe - ok
22:54:00.0092 7860 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
22:54:00.0102 7860 RasSstp - ok
22:54:00.0126 7860 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
22:54:00.0131 7860 rdbss - ok
22:54:00.0144 7860 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
22:54:00.0151 7860 rdpbus - ok
22:54:00.0162 7860 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:54:00.0170 7860 RDPCDD - ok
22:54:00.0201 7860 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
22:54:00.0210 7860 RDPENCDD - ok
22:54:00.0220 7860 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
22:54:00.0229 7860 RDPREFMP - ok
22:54:00.0312 7860 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
22:54:00.0324 7860 RDPWD - ok
22:54:00.0337 7860 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
22:54:00.0342 7860 rdyboost - ok
22:54:00.0535 7860 RegFilter (c3b79061634fbc3ba3379f557ad952c7) C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
22:54:00.0537 7860 RegFilter - ok
22:54:00.0576 7860 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
22:54:00.0603 7860 RemoteAccess - ok
22:54:00.0644 7860 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
22:54:00.0661 7860 RemoteRegistry - ok
22:54:01.0949 7860 RoxMediaDB10 (05fc44d32a144925eae45570029fd6e1) C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
22:54:02.0037 7860 RoxMediaDB10 - ok
22:54:02.0064 7860 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
22:54:02.0085 7860 RpcEptMapper - ok
22:54:02.0132 7860 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
22:54:02.0150 7860 RpcLocator - ok
22:54:02.0186 7860 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
22:54:02.0208 7860 RpcSs - ok
22:54:02.0325 7860 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
22:54:02.0334 7860 rspndr - ok
22:54:02.0387 7860 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
22:54:02.0392 7860 RTL8167 - ok
22:54:02.0492 7860 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:54:02.0508 7860 SamSs - ok
22:54:02.0639 7860 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
22:54:02.0644 7860 SASDIFSV - ok
22:54:02.0731 7860 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
22:54:02.0736 7860 SASKUTIL - ok
22:54:02.0761 7860 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
22:54:02.0770 7860 sbp2port - ok
22:54:02.0808 7860 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
22:54:02.0843 7860 SCardSvr - ok
22:54:02.0857 7860 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
22:54:02.0864 7860 scfilter - ok
22:54:02.0932 7860 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
22:54:02.0963 7860 Schedule - ok
22:54:02.0996 7860 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
22:54:03.0006 7860 SCPolicySvc - ok
22:54:03.0036 7860 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
22:54:03.0063 7860 SDRSVC - ok
22:54:03.0132 7860 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
22:54:03.0141 7860 secdrv - ok
22:54:03.0163 7860 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
22:54:03.0187 7860 seclogon - ok
22:54:03.0246 7860 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
22:54:03.0265 7860 SENS - ok
22:54:03.0313 7860 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
22:54:03.0333 7860 SensrSvc - ok
22:54:03.0347 7860 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
22:54:03.0357 7860 Serenum - ok
22:54:03.0382 7860 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
22:54:03.0391 7860 Serial - ok
22:54:03.0498 7860 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
22:54:03.0524 7860 sermouse - ok
22:54:03.0679 7860 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
22:54:03.0726 7860 SessionEnv - ok
22:54:03.0755 7860 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
22:54:03.0763 7860 sffdisk - ok
22:54:03.0814 7860 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
22:54:03.0820 7860 sffp_mmc - ok
22:54:03.0876 7860 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
22:54:03.0885 7860 sffp_sd - ok
22:54:03.0914 7860 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
22:54:03.0940 7860 sfloppy - ok
22:54:04.0191 7860 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
22:54:04.0219 7860 Sftfs - ok
22:54:05.0238 7860 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:54:05.0357 7860 sftlist - ok
22:54:06.0600 7860 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
22:54:06.0693 7860 Sftplay - ok
22:54:06.0723 7860 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
22:54:06.0727 7860 Sftredir - ok
22:54:06.0799 7860 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
22:54:06.0808 7860 Sftvol - ok
22:54:06.0831 7860 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:54:06.0841 7860 sftvsa - ok
22:54:06.0969 7860 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
22:54:06.0991 7860 ShellHWDetection - ok
22:54:07.0219 7860 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
22:54:07.0244 7860 SiSRaid2 - ok
22:54:07.0267 7860 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
22:54:07.0275 7860 SiSRaid4 - ok
22:54:07.0382 7860 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
22:54:07.0412 7860 SkypeUpdate - ok
22:54:07.0483 7860 SmartDefragDriver (dd0443bc6cc78a19fd399817f8c51401) C:\Windows\system32\Drivers\SmartDefragDriver.sys
22:54:07.0487 7860 SmartDefragDriver - ok
22:54:07.0554 7860 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
22:54:07.0563 7860 Smb - ok
22:54:07.0586 7860 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
22:54:07.0606 7860 SNMPTRAP - ok
22:54:07.0623 7860 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
22:54:07.0627 7860 spldr - ok
22:54:07.0663 7860 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
22:54:07.0688 7860 Spooler - ok
22:54:07.0938 7860 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
22:54:08.0023 7860 sppsvc - ok
22:54:08.0186 7860 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
22:54:08.0206 7860 sppuinotify - ok
22:54:08.0333 7860 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
22:54:08.0343 7860 srv - ok
22:54:08.0372 7860 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
22:54:08.0402 7860 srv2 - ok
22:54:08.0451 7860 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
22:54:08.0459 7860 srvnet - ok
22:54:08.0491 7860 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
22:54:08.0512 7860 SSDPSRV - ok
22:54:08.0555 7860 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
22:54:08.0575 7860 SstpSvc - ok
22:54:08.0620 7860 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
22:54:08.0633 7860 stexstor - ok
22:54:08.0909 7860 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
22:54:08.0954 7860 stisvc - ok
22:54:09.0082 7860 stllssvr (ff5eb78af7dfb68c2fb363537aaf753e) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
22:54:09.0100 7860 stllssvr - ok
22:54:09.0176 7860 SWDUMon (04cf20310145dec63d5387beaff77d9a) C:\Windows\system32\DRIVERS\SWDUMon.sys
22:54:09.0179 7860 SWDUMon - ok
22:54:09.0199 7860 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
22:54:09.0208 7860 swenum - ok
22:54:09.0584 7860 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
22:54:09.0621 7860 swprv - ok
22:54:09.0737 7860 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
22:54:09.0782 7860 SysMain - ok
22:54:10.0713 7860 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
22:54:10.0735 7860 TapiSrv - ok
22:54:11.0067 7860 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
22:54:11.0123 7860 TBS - ok
22:54:11.0418 7860 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
22:54:11.0447 7860 Tcpip - ok
22:54:11.0649 7860 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
22:54:11.0660 7860 TCPIP6 - ok
22:54:11.0828 7860 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
22:54:11.0837 7860 tcpipreg - ok
22:54:11.0876 7860 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
22:54:11.0885 7860 TDPIPE - ok
22:54:11.0913 7860 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
22:54:11.0923 7860 TDTCP - ok
22:54:11.0950 7860 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
22:54:11.0960 7860 tdx - ok
22:54:11.0978 7860 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
22:54:11.0984 7860 TermDD - ok
22:54:12.0073 7860 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
22:54:12.0119 7860 TermService - ok
22:54:12.0136 7860 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
22:54:12.0156 7860 Themes - ok
22:54:12.0194 7860 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
22:54:12.0212 7860 THREADORDER - ok
22:54:12.0299 7860 tmactmon (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\Windows\system32\DRIVERS\tmactmon.sys
22:54:12.0312 7860 tmactmon - ok
22:54:12.0351 7860 tmcomm (ab011c569487fd65c8944ddf8cbb2572) C:\Windows\system32\DRIVERS\tmcomm.sys
22:54:12.0363 7860 tmcomm - ok
22:54:12.0406 7860 tmeevw (1161f882b3cfa8076870a09924e0adc2) C:\Windows\system32\DRIVERS\tmeevw.sys
22:54:12.0410 7860 tmeevw - ok
22:54:12.0432 7860 tmevtmgr (8870a3d7305455b47adccd226f8e51bc) C:\Windows\system32\DRIVERS\tmevtmgr.sys
22:54:12.0443 7860 tmevtmgr - ok
22:54:12.0589 7860 tmnciesc (f0ae672ee91e7f1ef24644621b57ca7f) C:\Windows\system32\DRIVERS\tmnciesc.sys
22:54:12.0624 7860 tmnciesc - ok
22:54:12.0686 7860 tmtdi (065cb7d9278d778fb9ef62cead01433f) C:\Windows\system32\DRIVERS\tmtdi.sys
22:54:12.0691 7860 tmtdi - ok
22:54:12.0738 7860 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
22:54:12.0763 7860 TrkWks - ok
22:54:12.0965 7860 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
22:54:12.0994 7860 TrustedInstaller - ok
22:54:13.0058 7860 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:54:13.0069 7860 tssecsrv - ok
22:54:13.0117 7860 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
22:54:13.0130 7860 TsUsbFlt - ok
22:54:13.0169 7860 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
22:54:13.0176 7860 TsUsbGD - ok
22:54:13.0206 7860 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
22:54:13.0215 7860 tunnel - ok
22:54:13.0232 7860 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
22:54:13.0241 7860 uagp35 - ok
22:54:13.0490 7860 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
22:54:13.0523 7860 udfs - ok
22:54:13.0718 7860 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
22:54:13.0740 7860 UI0Detect - ok
22:54:13.0753 7860 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
22:54:13.0763 7860 uliagpkx - ok
22:54:13.0813 7860 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
22:54:13.0817 7860 umbus - ok
22:54:13.0858 7860 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
22:54:13.0879 7860 UmPass - ok
22:54:14.0035 7860 UMVPFSrv (67a95b9d129ed5399e7965cd09cf30e7) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
22:54:14.0039 7860 UMVPFSrv - ok
22:54:14.0613 7860 UNS (374ebda379a8f38e0cfc2211611e7167) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:54:14.0778 7860 UNS - ok
22:54:14.0959 7860 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
22:54:14.0990 7860 upnphost - ok
22:54:15.0146 7860 UrlFilter (401984715693b87fdf4f600fbbebd366) C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
22:54:15.0148 7860 UrlFilter - ok
22:54:15.0231 7860 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
22:54:15.0240 7860 USBAAPL64 - ok
22:54:15.0328 7860 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
22:54:15.0341 7860 usbaudio - ok
22:54:15.0369 7860 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
22:54:15.0374 7860 usbccgp - ok
22:54:15.0419 7860 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
22:54:15.0427 7860 usbcir - ok
22:54:15.0462 7860 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
22:54:15.0471 7860 usbehci - ok
22:54:15.0498 7860 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
22:54:15.0505 7860 usbhub - ok
22:54:15.0527 7860 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
22:54:15.0545 7860 usbohci - ok
22:54:15.0566 7860 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
22:54:15.0571 7860 usbprint - ok
22:54:15.0594 7860 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
22:54:15.0605 7860 usbscan - ok
22:54:15.0694 7860 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:54:15.0712 7860 USBSTOR - ok
22:54:15.0727 7860 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
22:54:15.0740 7860 usbuhci - ok
22:54:15.0803 7860 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
22:54:15.0826 7860 UxSms - ok
22:54:15.0862 7860 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:54:15.0875 7860 VaultSvc - ok
22:54:15.0914 7860 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
22:54:15.0925 7860 vdrvroot - ok
22:54:15.0967 7860 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
22:54:15.0994 7860 vds - ok
22:54:16.0042 7860 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
22:54:16.0050 7860 vga - ok
22:54:16.0063 7860 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
22:54:16.0074 7860 VgaSave - ok
22:54:16.0100 7860 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
22:54:16.0110 7860 vhdmp - ok
22:54:16.0128 7860 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
22:54:16.0137 7860 viaide - ok
22:54:16.0156 7860 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
22:54:16.0160 7860 volmgr - ok
22:54:16.0183 7860 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
22:54:16.0196 7860 volmgrx - ok
22:54:16.0318 7860 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
22:54:16.0336 7860 volsnap - ok
22:54:16.0402 7860 Vsdatant (239d8d72730226cd460bdc8ca0a23d43) C:\Windows\system32\DRIVERS\vsdatant.sys
22:54:16.0408 7860 Vsdatant - ok
22:54:16.0493 7860 vsmon - ok
22:54:16.0518 7860 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
22:54:16.0527 7860 vsmraid - ok
22:54:16.0675 7860 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
22:54:16.0725 7860 VSS - ok
22:54:16.0914 7860 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
22:54:16.0923 7860 vwifibus - ok
22:54:16.0946 7860 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
22:54:16.0956 7860 vwififlt - ok
22:54:16.0991 7860 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
22:54:17.0006 7860 vwifimp - ok
22:54:17.0071 7860 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
22:54:17.0101 7860 W32Time - ok
22:54:17.0118 7860 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
22:54:17.0128 7860 WacomPen - ok
22:54:17.0183 7860 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
22:54:17.0193 7860 WANARP - ok
22:54:17.0199 7860 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
22:54:17.0203 7860 Wanarpv6 - ok
22:54:17.0221 7860 wanatw (eceb715bece47e101ddec06b11126066) C:\Windows\system32\DRIVERS\wanatw64.sys
22:54:17.0226 7860 wanatw - ok
22:54:17.0347 7860 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
22:54:17.0380 7860 WatAdminSvc - ok
22:54:17.0459 7860 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
22:54:17.0500 7860 wbengine - ok
22:54:17.0600 7860 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
22:54:17.0629 7860 WbioSrvc - ok
22:54:18.0750 7860 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
22:54:18.0793 7860 wcncsvc - ok
22:54:18.0845 7860 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
22:54:18.0868 7860 WcsPlugInService - ok
22:54:18.0980 7860 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
22:54:18.0990 7860 Wd - ok
22:54:19.0089 7860 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
22:54:19.0099 7860 Wdf01000 - ok
22:54:19.0151 7860 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
22:54:19.0184 7860 WdiServiceHost - ok
22:54:19.0191 7860 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
22:54:19.0213 7860 WdiSystemHost - ok
22:54:19.0252 7860 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
22:54:19.0277 7860 WebClient - ok
22:54:19.0320 7860 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
22:54:19.0343 7860 Wecsvc - ok
22:54:19.0354 7860 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
22:54:19.0375 7860 wercplsupport - ok
22:54:19.0404 7860 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
22:54:19.0432 7860 WerSvc - ok
22:54:19.0462 7860 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
22:54:19.0470 7860 WfpLwf - ok
22:54:19.0489 7860 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
22:54:19.0501 7860 WIMMount - ok
22:54:19.0511 7860 WinHttpAutoProxySvc - ok
22:54:19.0592 7860 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
22:54:19.0601 7860 Winmgmt - ok
22:54:19.0895 7860 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
22:54:19.0961 7860 WinRM - ok
22:54:20.0366 7860 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
22:54:20.0373 7860 WinUsb - ok
22:54:20.0580 7860 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
22:54:20.0610 7860 Wlansvc - ok
22:54:20.0694 7860 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:54:20.0699 7860 wlcrasvc - ok
22:54:21.0067 7860 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:54:21.0160 7860 wlidsvc - ok
22:54:21.0362 7860 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
22:54:21.0367 7860 WmiAcpi - ok
22:54:21.0449 7860 WMPNetworkSvc - ok
22:54:21.0524 7860 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
22:54:21.0549 7860 WPCSvc - ok
22:54:21.0577 7860 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
22:54:21.0600 7860 WPDBusEnum - ok
22:54:21.0638 7860 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
22:54:21.0647 7860 ws2ifsl - ok
22:54:21.0652 7860 WSearch - ok
22:54:21.0916 7860 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
22:54:22.0010 7860 wuauserv - ok
22:54:22.0160 7860 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
22:54:22.0173 7860 WudfPf - ok
22:54:22.0963 7860 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:54:23.0013 7860 WUDFRd - ok
22:54:23.0413 7860 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
22:54:23.0438 7860 wudfsvc - ok
22:54:23.0476 7860 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
22:54:23.0507 7860 WwanSvc - ok
22:54:23.0547 7860 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
22:54:31.0341 7860 \Device\Harddisk0\DR0 - ok
22:54:31.0371 7860 Boot (0x1200) (c7e6f22c8c0781caa951123ce1e23175) \Device\Harddisk0\DR0\Partition0
22:54:31.0373 7860 \Device\Harddisk0\DR0\Partition0 - ok
22:54:31.0394 7860 Boot (0x1200) (a994c9a0cf4a5376a3d827b6e8dbd8ce) \Device\Harddisk0\DR0\Partition1
22:54:31.0397 7860 \Device\Harddisk0\DR0\Partition1 - ok
22:54:31.0397 7860 ============================================================
22:54:31.0397 7860 Scan finished
22:54:31.0397 7860 ============================================================
22:54:31.0406 6660 Detected object count: 0
22:54:31.0406 6660 Actual detected object count: 0


C:\Users\holloway\Documents\Downloads\CNET TechTracker\defragsetup.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\holloway\SafeSync(paul62460@aol.com)\Documents1\Documents (3)\Downloads\CNET TechTracker\defragsetup.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\holloway\SafeSync(paul62460@aol.com)\Pictures\Desktop\Computer Stuff\Windows_Defender.exe MSIL/Solimba application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:01 PM

Posted 25 June 2012 - 10:21 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

Farbar Service Scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

#5 paul624

paul624
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 25 June 2012 - 07:32 PM

Did the above also, here are the results:


MiniToolBox by Farbar Version: 25-06-2012
Ran by holloway (administrator) on 25-06-2012 at 18:11:31
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Could not flush the DNS Resolver Cache: Function failed during execution.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

802.11n Wireless LAN Card = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=128 icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : holloway-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 74-DE-2B-AD-0F-AA
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 38-60-77-9E-E3-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 802.11n Wireless LAN Card
Physical Address. . . . . . . . . : 74-DE-2B-AD-0F-AB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::4c02:c694:5de2:bf2c%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.126(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, June 25, 2012 10:54:21 AM
Lease Expires . . . . . . . . . . : Tuesday, June 26, 2012 10:54:25 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 192208427
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-39-32-6C-74-DE-2B-AD-0F-AB
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{9F998EA5-C88E-4CB8-A2F8-1D61B684F4FB}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{4A53F2A0-FAE5-4ADD-B087-14E6F928A5F9}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{4A5B024B-E449-4D40-AEAA-D80E9901962D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dsldevice
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4002:802::1003
173.194.37.73
173.194.37.78
173.194.37.64
173.194.37.65
173.194.37.66
173.194.37.67
173.194.37.68
173.194.37.69
173.194.37.70
173.194.37.71
173.194.37.72


Pinging google.com [173.194.37.72] with 32 bytes of data:
Reply from 173.194.37.72: bytes=32 time=18ms TTL=51
Reply from 173.194.37.72: bytes=32 time=19ms TTL=51

Ping statistics for 173.194.37.72:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 19ms, Average = 18ms
Server: dsldevice
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=146ms TTL=47
Reply from 72.30.38.140: bytes=32 time=108ms TTL=47

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 108ms, Maximum = 146ms, Average = 127ms
Server: dsldevice
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
===========================================================================
Interface List
17...74 de 2b ad 0f aa ......Microsoft Virtual WiFi Miniport Adapter
12...38 60 77 9e e3 42 ......Realtek PCIe GBE Family Controller
11...74 de 2b ad 0f ab ......802.11n Wireless LAN Card
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.126 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.126 281
192.168.0.126 255.255.255.255 On-link 192.168.0.126 281
192.168.0.255 255.255.255.255 On-link 192.168.0.126 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.126 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.126 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::4c02:c694:5de2:bf2c/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/25/2012 10:55:48 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/25/2012 10:50:47 AM) (Source: Application Hang) (User: )
Description: The program CCleaner64.exe version 3.20.0.1750 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 2984

Start Time: 01cd52e187d3ec51

Termination Time: 3

Application Path: C:\Program Files\CCleaner\CCleaner64.exe

Report Id: 15e143e6-bed5-11e1-8bcd-00038a000015

Error: (06/25/2012 01:05:34 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 11:01:54 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 11:01:34 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 11:01:34 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 11:01:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 11:01:22 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 10:15:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 10:15:51 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (06/25/2012 06:09:11 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (06/25/2012 06:09:11 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (06/25/2012 06:08:09 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (06/25/2012 06:08:09 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (06/25/2012 06:02:23 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (06/25/2012 06:02:23 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (06/25/2012 06:01:24 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (06/25/2012 06:01:24 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (06/25/2012 05:55:33 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (06/25/2012 05:55:33 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891


Microsoft Office Sessions:
=========================
Error: (06/25/2012 10:55:48 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/25/2012 10:50:47 AM) (Source: Application Hang)(User: )
Description: CCleaner64.exe3.20.0.1750298401cd52e187d3ec513C:\Program Files\CCleaner\CCleaner64.exe15e143e6-bed5-11e1-8bcd-00038a000015

Error: (06/25/2012 01:05:34 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (06/24/2012 11:01:54 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\holloway\Desktop\esetsmartinstaller_enu.exe

Error: (06/24/2012 11:01:34 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\holloway\Desktop\esetsmartinstaller_enu.exe

Error: (06/24/2012 11:01:34 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\holloway\Desktop\esetsmartinstaller_enu.exe

Error: (06/24/2012 11:01:23 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\holloway\Desktop\esetsmartinstaller_enu.exe

Error: (06/24/2012 11:01:22 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\holloway\Desktop\esetsmartinstaller_enu.exe

Error: (06/24/2012 10:15:58 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\holloway\Desktop\esetsmartinstaller_enu.exe

Error: (06/24/2012 10:15:51 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\holloway\Desktop\esetsmartinstaller_enu.exe


=========================== Installed Programs ============================

Adobe AIR (Version: 3.3.0.3650)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Advanced SystemCare 5 (Version: 5.3.0)
Agatha Christie - Death on the Nile (Version: 2.2.0.98)
AOL Registration
AOL Toolbar
AOL Uninstaller (Choose which Products to Remove)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Avery Template (Version: 2.0.0.0)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bonjour (Version: 3.0.0.10)
Build-a-lot 4 - Power Source (Version: 2.2.0.97)
CameraHelperMsi (Version: 13.31.1038.0)
CCleaner (Version: 3.20)
Child Clock-7 1.0
Chronicles of Albian (Version: 2.2.0.95)
Cisco Connect (Version: 1.4.11299.0)
CNET TechTracker (Version: 2.0.4)
Copy (Version: 5.31.0.150)
Coupon Printer for Windows (Version: 5.0.0.1)
Coupons.com Toolbar (Version: 6.6.0.19)
Cradle of Rome 2 (Version: 2.2.0.95)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DHTML Editing Component (Version: 6.02.0001)
Digital Clock GT-7 1.01
DirectX 9 Runtime (Version: 1.00.0000)
DocProc (Version: 3.1.0.0)
Download Updater (AOL LLC)
DVD Shrink 3.2
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
Etron USB3.0 Host Controller (Version: 0.103)
FCleaner 1.3.1.621
FileHippo.com Update Checker
Final Drive: Nitro (Version: 2.2.0.95)
Fix-It Utilities Professional (Version: 12.0.32.19)
Flying Balls-7 2.1
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Garmin USB Drivers (Version: 2.3.1.0)
Garmin WebUpdater (Version: 2.5.6)
Gateway Games (Version: 1.0.2.5)
Gateway Recovery Management (Version: 5.00.3502)
Gateway Registration (Version: 1.04.3503)
Gateway ScreenSaver (Version: 1.1.0225.2011)
Gateway Updater (Version: 1.02.3500)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
Hotkey Utility (Version: 2.05.3505)
HP Photo & Imaging 3.1 (Version: 3.1)
HP Product Detection (Version: 11.14.0001)
HP Update (Version: 5.003.001.001)
hpmdtab (Version: 2.0.470.1598)
HPSystemDiagnostics (Version: 1.5.0.0)
iCloud (Version: 1.0.2.17)
Identity Card (Version: 1.00.3501)
InstantShare (Version: 3.1.0.13)
InstantShareAlert (Version: 1.00.0000)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2353)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
IObit Malware Fighter (Version: 1.0)
IObit Unlocker (Version: 1.0)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Java™ 7 Update 5 (64-bit) (Version: 7.0.50)
Jewel Match 3 (Version: 2.2.0.97)
Jewel Quest Mysteries 2 Trail of the Midnight Heart (remove only)
Junk Mail filter update (Version: 15.4.3502.0922)
Logitech Vid HD (Version: 7.2 (7240))
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.31.1038.0)
LWS Gallery (Version: 13.31.1038.0)
LWS Help_main (Version: 13.31.1044.0)
LWS Launcher (Version: 13.31.1038.0)
LWS Motion Detection (Version: 13.30.1395.0)
LWS Pictures And Video (Version: 13.31.1038.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Video Mask Maker (Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (Version: 13.31.1038.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.31.1038.0)
Mahjongg dimensions
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Baseline Security Analyzer 2.2 (Version: 2.2.2170)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft PowerPoint Viewer (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nikon Message Center 2 (Version: 2.0.1)
Office Clock-7 4.02
Photo Clock-7 1.1
PhotoImpact Pro (Version: 1.00.0000)
Picture Control Utility (Version: 1.2.2)
Pogo Games (remove only)
QuickProjects (Version: 5.31.0.147)
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver (Version: 7.46.610.2011)
Registry Utilities Pro (Version: 3.1.15.12)
Rinse (Version: 1.255)
Rinse (Version: 1.911)
Roman Clock-VII 2.02
Roxio Activation Module (Version: 1.0)
Roxio Central Audio (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Easy LP to MP3 (Version: 10.3)
Roxio Easy LP to MP3 (Version: 10.3.104)
Roxio Easy LP to MP3 (Version: 3.8.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio Update Manager (Version: 6.0.0)
SE-ScreenSavers 1.12.1.80
SkinsHP1 (Version: 5.31.0.147)
SkinsHP2 (Version: 5.31.0.147)
Skype Click to Call (Version: 5.11.9874)
Skype™ 5.10 (Version: 5.10.114)
SlimDrivers (Version: 2.2.20441)
Smart Defrag 2 (Version: 2.4)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Station Clock-7 1.1
SUPERAntiSpyware (Version: 5.1.1002)
Times Reader (Version: 2.055)
Torchlight (Version: 2.2.0.97)
TrayApp (Version: 5.31.0.147)
Trend Micro SafeSync (Version: 5.0.0.1775)
Trend Micro Titanium (Version: 5.00)
Trend Micro Titanium Maximum Security 2012 (Version: 5.2)
Uninstall AOL Emergency Connect Utility 1.0
Unload (Version: 3.1.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition
Update for Microsoft Outlook Social Connector (KB2583935)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update Installer for WildTangent Games App
VD64Inst (Version: 1.00.0000)
ViewNX 2 (Version: 2.1.2)
Viewpoint Media Player
Virtual Villagers 5 - New Believers (Version: 2.2.0.97)
WebReg (Version: 5.31.0.147)
Welcome Center (Version: 1.02.3503)
WildTangent Games App (Gateway Games) (Version: 4.0.5.14)
WildTangent Games App (Version: 4.0.6.14)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0)
Windows Live (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Wipe 2012.07
ZoneAlarm Antivirus (Version: 10.2.057.000)
ZoneAlarm Firewall (Version: 10.2.057.000)
ZoneAlarm Free Antivirus + Firewall (Version: 10.2.057.000)
ZoneAlarm LTD Toolbar
ZoneAlarm Security (Version: 10.2.057.000)
Zuma's Revenge (Version: 2.2.0.97)

========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 6048.28 MB
Available physical RAM: 3118.54 MB
Total Pagefile: 6304.28 MB
Available Pagefile: 3015.1 MB
Total Virtual: 4095.88 MB
Available Virtual: 3971.8 MB

========================= Partitions: =====================================

1 Drive c: (Gateway) (Fixed) (Total:917.41 GB) (Free:784.84 GB) NTFS

========================= Users: ========================================

User accounts for \\HOLLOWAY-PC

Administrator ASPNET Guest
holloway


**** End of log ****



Farbar Service Scanner Version: 25-06-2012 01
Ran by holloway (administrator) on 25-06-2012 at 18:16:02
Running from "C:\Users\holloway\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G5236NVM"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is set to Disabled. The default start type is Auto.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Destination is offline
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.25.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
holloway :: HOLLOWAY-PC [administrator]

Protection: Enabled

6/25/2012 6:08:14 PM
mbam-log-2012-06-25 (18-08-14).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 401525
Time elapsed: 59 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


When I try and have firewall use recommended settings it just goes nowhere, no error message nothing. All I still get is that Security Service center can not be turned on.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:01 PM

Posted 25 June 2012 - 09:57 PM

Create a restore point before trying this

Download

wscsvc

Launch them ,click YES when you get UAC prompt

restart the PC

Press Windows+R key and type

regedit and click ok

go to

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess

Right click on it-permissions

Click on ADD and type

Everyone and click ok

Now Click on Everyone

Below you have permission for users

Select full control and click ok

start windows firewall service ,security center service

Post the new FSS log

Good luck

Edited by narenxp, 25 June 2012 - 10:05 PM.


#7 paul624

paul624
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 26 June 2012 - 08:15 AM

Here is the FSS log. WSSC still won't turn on nor Windows Defender, however Firewall does now. Should I disable ZoneAlarm firewall?


Farbar Service Scanner Version: 25-06-2012 01
Ran by holloway (administrator) on 26-06-2012 at 09:08:02
Running from "C:\Users\holloway\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is set to Disabled. The default start type is Auto.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Destination is offline
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:01 PM

Posted 26 June 2012 - 10:22 AM

Download

defender

Launch it,restart the PC

What happens when you turn on security center service?

Windows firewall is enough

Edited by narenxp, 26 June 2012 - 10:22 AM.


#9 paul624

paul624
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 26 June 2012 - 01:17 PM

Action Center is okay now, Windows defender has timeout error code: 0x800705b4. Do I need Defender when I have Trend Micro Titanium Maximum Security?

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:01 PM

Posted 26 June 2012 - 01:29 PM

You dont need windows defender

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 paul624

paul624
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 26 June 2012 - 05:33 PM

Trend Micro is telling me not to download TFC, "they have confirmed that that website can transmit malicious software or has been involved in online scams or fraud."

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:01 PM

Posted 26 June 2012 - 05:40 PM

You can ignore it.TFC is safe and false positive

#13 paul624

paul624
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 27 June 2012 - 09:04 AM

Tried to turn off system restore but the screen kept freezing. Ran TFC anyways and rebooted, will that be a problem?

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:01 PM

Posted 27 June 2012 - 01:07 PM

No :thumbup2:

#15 paul624

paul624
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 28 June 2012 - 08:58 AM

If that is all, I greatly appreciate all your help and prefer not to say till next time, hopefully there won't be a next time.
Is it okay to use two firewalls? If not which is better, Windows or ZoneAlarm?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users