Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Registry Problems


  • Please log in to reply
11 replies to this topic

#1 JCxING

JCxING

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:24 PM

Posted 09 July 2012 - 08:51 PM

Hi all,

I have the same problems as the person in this thread http://www.bleepingcomputer.com/forums/topic438885.html

Tried following the advice given but was kind of on a wild goose chase.

Any help that is given would be mostly appreciated.

Cheers,
JC

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:24 PM

Posted 09 July 2012 - 10:15 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 JCxING

JCxING
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:24 PM

Posted 10 July 2012 - 09:32 AM

Thanks for taking your time out to look at this and sorry for taking a while to reply, had to wait for the ESET online scanner to finish. Here are the results.

06:27:17.0934 5756 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
06:27:18.0054 5756 ============================================================
06:27:18.0054 5756 Current date / time: 2012/07/10 06:27:18.0054
06:27:18.0054 5756 SystemInfo:
06:27:18.0054 5756
06:27:18.0054 5756 OS Version: 6.1.7601 ServicePack: 1.0
06:27:18.0054 5756 Product type: Workstation
06:27:18.0054 5756 ComputerName: JC-PC
06:27:18.0054 5756 UserName: JC
06:27:18.0054 5756 Windows directory: C:\Windows
06:27:18.0054 5756 System windows directory: C:\Windows
06:27:18.0055 5756 Running under WOW64
06:27:18.0055 5756 Processor architecture: Intel x64
06:27:18.0055 5756 Number of processors: 4
06:27:18.0055 5756 Page size: 0x1000
06:27:18.0055 5756 Boot type: Normal boot
06:27:18.0055 5756 ============================================================
06:27:18.0433 5756 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:27:18.0438 5756 ============================================================
06:27:18.0438 5756 \Device\Harddisk0\DR0:
06:27:18.0439 5756 MBR partitions:
06:27:18.0439 5756 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2400800, BlocksNum 0x32000
06:27:18.0439 5756 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2432800, BlocksNum 0x37F53000
06:27:18.0439 5756 ============================================================
06:27:18.0467 5756 C: <-> \Device\Harddisk0\DR0\Partition1
06:27:18.0467 5756 ============================================================
06:27:18.0467 5756 Initialize success
06:27:18.0467 5756 ============================================================
06:27:24.0553 3236 ============================================================
06:27:24.0553 3236 Scan started
06:27:24.0553 3236 Mode: Manual; TDLFS;
06:27:24.0553 3236 ============================================================
06:27:25.0284 3236 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
06:27:25.0286 3236 1394ohci - ok
06:27:25.0369 3236 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
06:27:25.0371 3236 ACPI - ok
06:27:25.0403 3236 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
06:27:25.0404 3236 AcpiPmi - ok
06:27:25.0554 3236 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
06:27:25.0555 3236 AdobeARMservice - ok
06:27:25.0635 3236 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
06:27:25.0638 3236 adp94xx - ok
06:27:25.0707 3236 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
06:27:25.0709 3236 adpahci - ok
06:27:25.0757 3236 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
06:27:25.0758 3236 adpu320 - ok
06:27:25.0799 3236 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
06:27:25.0799 3236 AeLookupSvc - ok
06:27:25.0907 3236 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
06:27:25.0909 3236 AFD - ok
06:27:25.0935 3236 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
06:27:25.0935 3236 agp440 - ok
06:27:25.0947 3236 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
06:27:25.0948 3236 ALG - ok
06:27:26.0015 3236 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
06:27:26.0015 3236 aliide - ok
06:27:26.0027 3236 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
06:27:26.0027 3236 amdide - ok
06:27:26.0049 3236 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
06:27:26.0050 3236 AmdK8 - ok
06:27:26.0058 3236 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
06:27:26.0058 3236 AmdPPM - ok
06:27:26.0075 3236 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
06:27:26.0076 3236 amdsata - ok
06:27:26.0113 3236 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
06:27:26.0115 3236 amdsbs - ok
06:27:26.0127 3236 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
06:27:26.0127 3236 amdxata - ok
06:27:26.0164 3236 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
06:27:26.0164 3236 AppID - ok
06:27:26.0202 3236 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
06:27:26.0203 3236 AppIDSvc - ok
06:27:26.0221 3236 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
06:27:26.0222 3236 Appinfo - ok
06:27:26.0391 3236 Apple Mobile Device (018857ead9a077a56aedfc0e5ef7a24a) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
06:27:26.0392 3236 Apple Mobile Device - ok
06:27:26.0417 3236 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
06:27:26.0418 3236 arc - ok
06:27:26.0443 3236 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
06:27:26.0444 3236 arcsas - ok
06:27:26.0556 3236 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
06:27:26.0556 3236 aspnet_state - ok
06:27:26.0584 3236 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
06:27:26.0585 3236 AsyncMac - ok
06:27:26.0610 3236 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
06:27:26.0610 3236 atapi - ok
06:27:26.0880 3236 athr (956bc6eb96aa09478bd897af8df55a62) C:\Windows\system32\DRIVERS\athrx.sys
06:27:26.0894 3236 athr - ok
06:27:27.0111 3236 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
06:27:27.0115 3236 AudioEndpointBuilder - ok
06:27:27.0127 3236 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
06:27:27.0130 3236 AudioSrv - ok
06:27:27.0543 3236 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
06:27:27.0577 3236 AVGIDSAgent - ok
06:27:27.0737 3236 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
06:27:27.0738 3236 AVGIDSDriver - ok
06:27:27.0779 3236 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
06:27:27.0780 3236 AVGIDSFilter - ok
06:27:27.0833 3236 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
06:27:27.0834 3236 AVGIDSHA - ok
06:27:27.0910 3236 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
06:27:27.0912 3236 Avgldx64 - ok
06:27:27.0956 3236 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
06:27:27.0957 3236 Avgmfx64 - ok
06:27:28.0015 3236 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
06:27:28.0016 3236 Avgrkx64 - ok
06:27:28.0092 3236 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
06:27:28.0094 3236 Avgtdia - ok
06:27:28.0231 3236 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
06:27:28.0232 3236 avgwd - ok
06:27:28.0275 3236 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
06:27:28.0276 3236 AxInstSV - ok
06:27:28.0360 3236 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
06:27:28.0363 3236 b06bdrv - ok
06:27:28.0433 3236 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
06:27:28.0434 3236 b57nd60a - ok
06:27:28.0475 3236 b57xdbd (a424cb46a145e5aabf15621550976df2) C:\Windows\system32\DRIVERS\b57xdbd.sys
06:27:28.0476 3236 b57xdbd - ok
06:27:28.0495 3236 b57xdmp (be4e6fd5a898812b85d5817ad9754a9f) C:\Windows\system32\DRIVERS\b57xdmp.sys
06:27:28.0495 3236 b57xdmp - ok
06:27:28.0542 3236 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
06:27:28.0543 3236 BDESVC - ok
06:27:28.0551 3236 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
06:27:28.0552 3236 Beep - ok
06:27:28.0633 3236 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
06:27:28.0639 3236 BITS - ok
06:27:28.0658 3236 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
06:27:28.0658 3236 blbdrive - ok
06:27:28.0785 3236 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
06:27:28.0787 3236 Bonjour Service - ok
06:27:28.0825 3236 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
06:27:28.0826 3236 bowser - ok
06:27:28.0840 3236 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
06:27:28.0840 3236 BrFiltLo - ok
06:27:28.0844 3236 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
06:27:28.0845 3236 BrFiltUp - ok
06:27:28.0879 3236 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
06:27:28.0880 3236 Browser - ok
06:27:28.0912 3236 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
06:27:28.0914 3236 Brserid - ok
06:27:28.0918 3236 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
06:27:28.0919 3236 BrSerWdm - ok
06:27:28.0922 3236 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
06:27:28.0923 3236 BrUsbMdm - ok
06:27:28.0930 3236 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
06:27:28.0931 3236 BrUsbSer - ok
06:27:28.0970 3236 bScsiMSa (0970d8b7151e9113bf8d44ce2e954df7) C:\Windows\system32\DRIVERS\bScsiMSa.sys
06:27:28.0971 3236 bScsiMSa - ok
06:27:29.0007 3236 bScsiSDa (0c1eee5af32402d306874b110de237ec) C:\Windows\system32\DRIVERS\bScsiSDa.sys
06:27:29.0008 3236 bScsiSDa - ok
06:27:29.0015 3236 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
06:27:29.0016 3236 BTHMODEM - ok
06:27:29.0036 3236 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
06:27:29.0037 3236 bthserv - ok
06:27:29.0070 3236 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
06:27:29.0071 3236 cdfs - ok
06:27:29.0095 3236 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
06:27:29.0096 3236 cdrom - ok
06:27:29.0130 3236 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
06:27:29.0131 3236 CertPropSvc - ok
06:27:29.0152 3236 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
06:27:29.0153 3236 circlass - ok
06:27:29.0191 3236 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
06:27:29.0193 3236 CLFS - ok
06:27:29.0257 3236 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:27:29.0257 3236 clr_optimization_v2.0.50727_32 - ok
06:27:29.0292 3236 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
06:27:29.0293 3236 clr_optimization_v2.0.50727_64 - ok
06:27:29.0369 3236 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:27:29.0371 3236 clr_optimization_v4.0.30319_32 - ok
06:27:29.0417 3236 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
06:27:29.0418 3236 clr_optimization_v4.0.30319_64 - ok
06:27:29.0452 3236 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
06:27:29.0453 3236 CmBatt - ok
06:27:29.0467 3236 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
06:27:29.0467 3236 cmdide - ok
06:27:29.0525 3236 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
06:27:29.0527 3236 CNG - ok
06:27:29.0557 3236 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
06:27:29.0557 3236 Compbatt - ok
06:27:29.0588 3236 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
06:27:29.0589 3236 CompositeBus - ok
06:27:29.0597 3236 COMSysApp - ok
06:27:29.0601 3236 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
06:27:29.0601 3236 crcdisk - ok
06:27:29.0649 3236 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
06:27:29.0650 3236 CryptSvc - ok
06:27:29.0711 3236 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
06:27:29.0714 3236 DcomLaunch - ok
06:27:29.0757 3236 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
06:27:29.0758 3236 defragsvc - ok
06:27:29.0820 3236 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
06:27:29.0821 3236 DfsC - ok
06:27:29.0857 3236 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
06:27:29.0859 3236 Dhcp - ok
06:27:29.0929 3236 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
06:27:29.0929 3236 discache - ok
06:27:29.0966 3236 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
06:27:29.0966 3236 Disk - ok
06:27:29.0992 3236 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
06:27:29.0993 3236 Dnscache - ok
06:27:30.0013 3236 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
06:27:30.0015 3236 dot3svc - ok
06:27:30.0029 3236 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
06:27:30.0030 3236 DPS - ok
06:27:30.0071 3236 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
06:27:30.0072 3236 drmkaud - ok
06:27:30.0216 3236 DrvAgent64 (1ed08a6264c5c92099d6d1dae5e8f530) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
06:27:30.0217 3236 DrvAgent64 - ok
06:27:30.0335 3236 DsiWMIService (9dd3a22f804697606c2b7ff9e912ff6b) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
06:27:30.0337 3236 DsiWMIService - ok
06:27:30.0448 3236 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
06:27:30.0454 3236 DXGKrnl - ok
06:27:30.0492 3236 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
06:27:30.0494 3236 EapHost - ok
06:27:30.0677 3236 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
06:27:30.0693 3236 ebdrv - ok
06:27:30.0824 3236 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
06:27:30.0824 3236 EFS - ok
06:27:30.0947 3236 EgisTec Ticket Service (5332ec2ba1c112bd4bb1f38127848fef) C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
06:27:30.0948 3236 EgisTec Ticket Service - ok
06:27:31.0039 3236 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
06:27:31.0043 3236 ehRecvr - ok
06:27:31.0086 3236 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
06:27:31.0087 3236 ehSched - ok
06:27:31.0192 3236 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
06:27:31.0194 3236 elxstor - ok
06:27:31.0330 3236 ePowerSvc (48425c93b6f36529707206e4fa680cf3) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
06:27:31.0334 3236 ePowerSvc - ok
06:27:31.0462 3236 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
06:27:31.0463 3236 ErrDev - ok
06:27:31.0525 3236 ETD (dbaa0c650c9549dc5c599d1e81dedaad) C:\Windows\system32\DRIVERS\ETD.sys
06:27:31.0526 3236 ETD - ok
06:27:31.0583 3236 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
06:27:31.0586 3236 EventSystem - ok
06:27:31.0618 3236 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
06:27:31.0619 3236 exfat - ok
06:27:31.0645 3236 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
06:27:31.0646 3236 fastfat - ok
06:27:31.0714 3236 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
06:27:31.0717 3236 Fax - ok
06:27:31.0731 3236 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
06:27:31.0732 3236 fdc - ok
06:27:31.0749 3236 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
06:27:31.0749 3236 fdPHost - ok
06:27:31.0765 3236 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
06:27:31.0767 3236 FDResPub - ok
06:27:31.0816 3236 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
06:27:31.0816 3236 FileInfo - ok
06:27:31.0832 3236 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
06:27:31.0832 3236 Filetrace - ok
06:27:31.0985 3236 FLEXnet Licensing Service (bb0667b0171b632b97ea759515476f07) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
06:27:31.0988 3236 FLEXnet Licensing Service - ok
06:27:32.0086 3236 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
06:27:32.0087 3236 flpydisk - ok
06:27:32.0904 3236 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
06:27:32.0905 3236 FltMgr - ok
06:27:33.0922 3236 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
06:27:33.0927 3236 FontCache - ok
06:27:34.0208 3236 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
06:27:34.0209 3236 FontCache3.0.0.0 - ok
06:27:34.0521 3236 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
06:27:34.0521 3236 FsDepends - ok
06:27:34.0565 3236 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
06:27:34.0570 3236 Fs_Rec - ok
06:27:35.0087 3236 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
06:27:35.0088 3236 fvevol - ok
06:27:35.0112 3236 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
06:27:35.0113 3236 gagp30kx - ok
06:27:35.0226 3236 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
06:27:35.0227 3236 GamesAppService - ok
06:27:35.0283 3236 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
06:27:35.0284 3236 GEARAspiWDM - ok
06:27:35.0392 3236 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
06:27:35.0396 3236 gpsvc - ok
06:27:35.0503 3236 GREGService (c9b2d1d3f86fd3673ef847def73b6f9e) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
06:27:35.0503 3236 GREGService - ok
06:27:35.0555 3236 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
06:27:35.0556 3236 hamachi - ok
06:27:35.0772 3236 Hamachi2Svc (21d24138b736983f6e23823e092e9428) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
06:27:35.0784 3236 Hamachi2Svc - ok
06:27:35.0918 3236 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
06:27:35.0919 3236 hcw85cir - ok
06:27:35.0985 3236 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
06:27:35.0986 3236 HdAudAddService - ok
06:27:36.0032 3236 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
06:27:36.0033 3236 HDAudBus - ok
06:27:36.0055 3236 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
06:27:36.0055 3236 HidBatt - ok
06:27:36.0079 3236 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
06:27:36.0080 3236 HidBth - ok
06:27:36.0087 3236 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
06:27:36.0088 3236 HidIr - ok
06:27:36.0117 3236 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
06:27:36.0118 3236 hidserv - ok
06:27:36.0148 3236 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
06:27:36.0149 3236 HidUsb - ok
06:27:36.0176 3236 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
06:27:36.0177 3236 hkmsvc - ok
06:27:36.0196 3236 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
06:27:36.0198 3236 HomeGroupListener - ok
06:27:36.0230 3236 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
06:27:36.0232 3236 HomeGroupProvider - ok
06:27:36.0257 3236 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
06:27:36.0258 3236 HpSAMD - ok
06:27:36.0326 3236 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
06:27:36.0330 3236 HTTP - ok
06:27:36.0342 3236 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
06:27:36.0342 3236 hwpolicy - ok
06:27:36.0364 3236 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
06:27:36.0364 3236 i8042prt - ok
06:27:36.0417 3236 iaStor (26cf4275034214ecedd8ec17b0a18a99) C:\Windows\system32\drivers\iaStor.sys
06:27:36.0419 3236 iaStor - ok
06:27:36.0520 3236 IAStorDataMgrSvc (e79a8e33bd136d14bae1fa20eb2ef124) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
06:27:36.0521 3236 IAStorDataMgrSvc - ok
06:27:36.0588 3236 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
06:27:36.0590 3236 iaStorV - ok
06:27:36.0708 3236 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
06:27:36.0712 3236 idsvc - ok
06:27:37.0400 3236 igfx (9937600a1584ff00565d5379eb4c9edb) C:\Windows\system32\DRIVERS\igdkmd64.sys
06:27:37.0454 3236 igfx - ok
06:27:37.0576 3236 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
06:27:37.0576 3236 iirsp - ok
06:27:37.0668 3236 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
06:27:37.0673 3236 IKEEXT - ok
06:27:37.0916 3236 IntcAzAudAddService (cb7dadef3d83fe2c12655a0bdcba99f2) C:\Windows\system32\drivers\RTKVHD64.sys
06:27:37.0929 3236 IntcAzAudAddService - ok
06:27:38.0083 3236 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
06:27:38.0084 3236 IntcDAud - ok
06:27:38.0106 3236 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
06:27:38.0106 3236 intelide - ok
06:27:38.0131 3236 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
06:27:38.0132 3236 intelppm - ok
06:27:38.0163 3236 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
06:27:38.0164 3236 IPBusEnum - ok
06:27:38.0183 3236 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:27:38.0184 3236 IpFilterDriver - ok
06:27:38.0203 3236 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
06:27:38.0204 3236 IPMIDRV - ok
06:27:38.0239 3236 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
06:27:38.0240 3236 IPNAT - ok
06:27:38.0373 3236 iPod Service (844b87302d856f8eb32a38c35969734a) C:\Program Files\iPod\bin\iPodService.exe
06:27:38.0377 3236 iPod Service - ok
06:27:38.0400 3236 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
06:27:38.0401 3236 IRENUM - ok
06:27:38.0421 3236 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
06:27:38.0422 3236 isapnp - ok
06:27:38.0457 3236 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
06:27:38.0459 3236 iScsiPrt - ok
06:27:38.0517 3236 k57nd60a (455b75c19bf3f1f2ee3ac10e1169826c) C:\Windows\system32\DRIVERS\k57nd60a.sys
06:27:38.0519 3236 k57nd60a - ok
06:27:38.0556 3236 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
06:27:38.0556 3236 kbdclass - ok
06:27:38.0583 3236 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
06:27:38.0583 3236 kbdhid - ok
06:27:38.0619 3236 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
06:27:38.0621 3236 KeyIso - ok
06:27:38.0643 3236 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
06:27:38.0644 3236 KSecDD - ok
06:27:38.0671 3236 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
06:27:38.0672 3236 KSecPkg - ok
06:27:38.0688 3236 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
06:27:38.0689 3236 ksthunk - ok
06:27:38.0745 3236 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
06:27:38.0747 3236 KtmRm - ok
06:27:38.0804 3236 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
06:27:38.0806 3236 LanmanServer - ok
06:27:38.0828 3236 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
06:27:38.0830 3236 LanmanWorkstation - ok
06:27:38.0901 3236 LicCtrlService (29fab5363138f6e322f4cd780ed9d337) C:\Windows\runservice.exe
06:27:38.0901 3236 LicCtrlService - ok
06:27:38.0966 3236 Live Updater Service (b705c7097f9a0ec941d02dce7c7d426c) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
06:27:38.0968 3236 Live Updater Service - ok
06:27:39.0010 3236 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
06:27:39.0011 3236 lltdio - ok
06:27:39.0065 3236 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
06:27:39.0067 3236 lltdsvc - ok
06:27:39.0078 3236 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
06:27:39.0079 3236 lmhosts - ok
06:27:39.0180 3236 LMS (50c7ce53ef461870410355f1f2e7d515) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
06:27:39.0182 3236 LMS - ok
06:27:39.0219 3236 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
06:27:39.0221 3236 LSI_FC - ok
06:27:39.0257 3236 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
06:27:39.0258 3236 LSI_SAS - ok
06:27:39.0281 3236 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
06:27:39.0282 3236 LSI_SAS2 - ok
06:27:39.0313 3236 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
06:27:39.0314 3236 LSI_SCSI - ok
06:27:39.0341 3236 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
06:27:39.0342 3236 luafv - ok
06:27:39.0379 3236 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
06:27:39.0379 3236 MBAMProtector - ok
06:27:39.0490 3236 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
06:27:39.0493 3236 MBAMService - ok
06:27:39.0517 3236 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
06:27:39.0518 3236 Mcx2Svc - ok
06:27:39.0537 3236 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
06:27:39.0537 3236 megasas - ok
06:27:39.0582 3236 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
06:27:39.0584 3236 MegaSR - ok
06:27:39.0634 3236 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
06:27:39.0635 3236 MEIx64 - ok
06:27:39.0731 3236 Microsoft SharePoint Workspace Audit Service - ok
06:27:39.0763 3236 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
06:27:39.0764 3236 MMCSS - ok
06:27:39.0790 3236 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
06:27:39.0791 3236 Modem - ok
06:27:39.0815 3236 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
06:27:39.0816 3236 monitor - ok
06:27:39.0875 3236 MotioninJoyXFilter (c030f9e822a057c1a7a9bb4ea3e8877e) C:\Windows\system32\DRIVERS\MijXfilt.sys
06:27:39.0876 3236 MotioninJoyXFilter - ok
06:27:39.0904 3236 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
06:27:39.0905 3236 mouclass - ok
06:27:39.0935 3236 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
06:27:39.0936 3236 mouhid - ok
06:27:39.0951 3236 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
06:27:39.0952 3236 mountmgr - ok
06:27:40.0058 3236 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
06:27:40.0059 3236 MozillaMaintenance - ok
06:27:40.0084 3236 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
06:27:40.0085 3236 mpio - ok
06:27:40.0124 3236 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
06:27:40.0125 3236 mpsdrv - ok
06:27:40.0151 3236 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
06:27:40.0152 3236 MRxDAV - ok
06:27:40.0182 3236 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
06:27:40.0183 3236 mrxsmb - ok
06:27:40.0227 3236 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
06:27:40.0229 3236 mrxsmb10 - ok
06:27:40.0293 3236 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
06:27:40.0294 3236 mrxsmb20 - ok
06:27:40.0322 3236 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
06:27:40.0322 3236 msahci - ok
06:27:40.0344 3236 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
06:27:40.0345 3236 msdsm - ok
06:27:40.0385 3236 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
06:27:40.0387 3236 MSDTC - ok
06:27:40.0420 3236 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
06:27:40.0421 3236 Msfs - ok
06:27:40.0434 3236 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
06:27:40.0434 3236 mshidkmdf - ok
06:27:40.0443 3236 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
06:27:40.0444 3236 msisadrv - ok
06:27:40.0489 3236 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
06:27:40.0491 3236 MSiSCSI - ok
06:27:40.0493 3236 msiserver - ok
06:27:40.0527 3236 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
06:27:40.0528 3236 MSKSSRV - ok
06:27:40.0542 3236 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
06:27:40.0543 3236 MSPCLOCK - ok
06:27:40.0551 3236 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
06:27:40.0551 3236 MSPQM - ok
06:27:40.0597 3236 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
06:27:40.0599 3236 MsRPC - ok
06:27:40.0639 3236 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
06:27:40.0640 3236 mssmbios - ok
06:27:40.0657 3236 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
06:27:40.0657 3236 MSTEE - ok
06:27:40.0672 3236 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
06:27:40.0673 3236 MTConfig - ok
06:27:40.0697 3236 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
06:27:40.0698 3236 Mup - ok
06:27:40.0710 3236 mwlPSDFilter (c009123b206c56854f4e88596035231d) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
06:27:40.0711 3236 mwlPSDFilter - ok
06:27:40.0737 3236 mwlPSDNServ (bf3739eeb9f008b1debac115089a53f8) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
06:27:40.0737 3236 mwlPSDNServ - ok
06:27:40.0757 3236 mwlPSDVDisk (38dd143d95e7a01b86f219dda9c28779) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
06:27:40.0757 3236 mwlPSDVDisk - ok
06:27:40.0818 3236 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
06:27:40.0821 3236 napagent - ok
06:27:40.0874 3236 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
06:27:40.0876 3236 NativeWifiP - ok
06:27:40.0967 3236 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
06:27:40.0972 3236 NDIS - ok
06:27:40.0990 3236 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
06:27:40.0991 3236 NdisCap - ok
06:27:41.0016 3236 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
06:27:41.0017 3236 NdisTapi - ok
06:27:41.0036 3236 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
06:27:41.0036 3236 Ndisuio - ok
06:27:41.0058 3236 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
06:27:41.0059 3236 NdisWan - ok
06:27:41.0073 3236 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
06:27:41.0074 3236 NDProxy - ok
06:27:41.0095 3236 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
06:27:41.0095 3236 NetBIOS - ok
06:27:41.0131 3236 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
06:27:41.0132 3236 NetBT - ok
06:27:41.0163 3236 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
06:27:41.0164 3236 Netlogon - ok
06:27:41.0224 3236 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
06:27:41.0226 3236 Netman - ok
06:27:41.0326 3236 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:27:41.0327 3236 NetMsmqActivator - ok
06:27:41.0330 3236 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:27:41.0332 3236 NetPipeActivator - ok
06:27:41.0371 3236 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
06:27:41.0374 3236 netprofm - ok
06:27:41.0378 3236 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:27:41.0379 3236 NetTcpActivator - ok
06:27:41.0381 3236 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:27:41.0384 3236 NetTcpPortSharing - ok
06:27:41.0436 3236 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
06:27:41.0437 3236 nfrd960 - ok
06:27:41.0480 3236 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
06:27:41.0482 3236 NlaSvc - ok
06:27:41.0575 3236 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files (x86)\Blaze Media Pro\NMSAccess32.exe
06:27:41.0576 3236 NMSAccess - ok
06:27:41.0858 3236 NOBU (5839a8027d6d324a7cd494051a96628c) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
06:27:41.0877 3236 NOBU - ok
06:27:42.0000 3236 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
06:27:42.0000 3236 Npfs - ok
06:27:42.0039 3236 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
06:27:42.0041 3236 nsi - ok
06:27:42.0055 3236 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
06:27:42.0055 3236 nsiproxy - ok
06:27:42.0179 3236 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
06:27:42.0187 3236 Ntfs - ok
06:27:42.0297 3236 NTI IScheduleSvc (d27a4546417ed7c4aea7b3420d4f1f50) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
06:27:42.0299 3236 NTI IScheduleSvc - ok
06:27:42.0430 3236 NTIDrvr (ee3ba1024594d5d09e314f206b94069e) C:\Windows\system32\drivers\NTIDrvr.sys
06:27:42.0431 3236 NTIDrvr - ok
06:27:42.0449 3236 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
06:27:42.0450 3236 Null - ok
06:27:42.0481 3236 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
06:27:42.0482 3236 nvraid - ok
06:27:42.0505 3236 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
06:27:42.0506 3236 nvstor - ok
06:27:42.0550 3236 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
06:27:42.0551 3236 nv_agp - ok
06:27:42.0567 3236 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
06:27:42.0568 3236 ohci1394 - ok
06:27:42.0660 3236 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:27:42.0661 3236 ose - ok
06:27:42.0987 3236 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
06:27:43.0010 3236 osppsvc - ok
06:27:43.0160 3236 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
06:27:43.0163 3236 p2pimsvc - ok
06:27:43.0210 3236 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
06:27:43.0213 3236 p2psvc - ok
06:27:43.0252 3236 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
06:27:43.0254 3236 Parport - ok
06:27:43.0280 3236 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
06:27:43.0281 3236 partmgr - ok
06:27:43.0356 3236 pbfilter (7c0582921913d00180ec2b8518ba135c) C:\Program Files\PeerBlock\pbfilter.sys
06:27:43.0357 3236 pbfilter - ok
06:27:43.0398 3236 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
06:27:43.0400 3236 PcaSvc - ok
06:27:43.0433 3236 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
06:27:43.0434 3236 pci - ok
06:27:43.0455 3236 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
06:27:43.0455 3236 pciide - ok
06:27:43.0488 3236 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
06:27:43.0490 3236 pcmcia - ok
06:27:43.0514 3236 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
06:27:43.0514 3236 pcw - ok
06:27:43.0572 3236 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
06:27:43.0575 3236 PEAUTH - ok
06:27:43.0668 3236 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
06:27:43.0669 3236 PerfHost - ok
06:27:43.0900 3236 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
06:27:43.0907 3236 pla - ok
06:27:43.0969 3236 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
06:27:43.0972 3236 PlugPlay - ok
06:27:43.0998 3236 PnkBstrA - ok
06:27:44.0006 3236 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
06:27:44.0007 3236 PNRPAutoReg - ok
06:27:44.0049 3236 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
06:27:44.0051 3236 PNRPsvc - ok
06:27:44.0116 3236 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
06:27:44.0119 3236 PolicyAgent - ok
06:27:44.0135 3236 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
06:27:44.0137 3236 Power - ok
06:27:44.0236 3236 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
06:27:44.0236 3236 PptpMiniport - ok
06:27:44.0256 3236 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
06:27:44.0257 3236 Processor - ok
06:27:44.0293 3236 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
06:27:44.0295 3236 ProfSvc - ok
06:27:44.0330 3236 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
06:27:44.0331 3236 ProtectedStorage - ok
06:27:44.0372 3236 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
06:27:44.0373 3236 Psched - ok
06:27:44.0490 3236 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
06:27:44.0498 3236 ql2300 - ok
06:27:44.0614 3236 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
06:27:44.0616 3236 ql40xx - ok
06:27:44.0660 3236 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
06:27:44.0663 3236 QWAVE - ok
06:27:44.0684 3236 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
06:27:44.0685 3236 QWAVEdrv - ok
06:27:44.0704 3236 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
06:27:44.0705 3236 RasAcd - ok
06:27:44.0743 3236 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
06:27:44.0744 3236 RasAgileVpn - ok
06:27:44.0759 3236 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
06:27:44.0760 3236 RasAuto - ok
06:27:44.0794 3236 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
06:27:44.0795 3236 Rasl2tp - ok
06:27:44.0842 3236 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
06:27:44.0845 3236 RasMan - ok
06:27:44.0871 3236 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
06:27:44.0872 3236 RasPppoe - ok
06:27:44.0895 3236 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
06:27:44.0896 3236 RasSstp - ok
06:27:44.0928 3236 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
06:27:44.0930 3236 rdbss - ok
06:27:44.0947 3236 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
06:27:44.0947 3236 rdpbus - ok
06:27:44.0961 3236 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
06:27:44.0961 3236 RDPCDD - ok
06:27:44.0982 3236 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
06:27:44.0982 3236 RDPENCDD - ok
06:27:45.0003 3236 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
06:27:45.0003 3236 RDPREFMP - ok
06:27:45.0055 3236 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
06:27:45.0056 3236 RDPWD - ok
06:27:45.0091 3236 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
06:27:45.0093 3236 rdyboost - ok
06:27:45.0143 3236 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
06:27:45.0145 3236 RemoteAccess - ok
06:27:45.0178 3236 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
06:27:45.0179 3236 RemoteRegistry - ok
06:27:45.0193 3236 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
06:27:45.0195 3236 RpcEptMapper - ok
06:27:45.0227 3236 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
06:27:45.0228 3236 RpcLocator - ok
06:27:45.0277 3236 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
06:27:45.0280 3236 RpcSs - ok
06:27:45.0313 3236 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
06:27:45.0314 3236 rspndr - ok
06:27:45.0352 3236 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
06:27:45.0353 3236 SamSs - ok
06:27:45.0377 3236 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
06:27:45.0378 3236 sbp2port - ok
06:27:45.0426 3236 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
06:27:45.0428 3236 SCardSvr - ok
06:27:45.0438 3236 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
06:27:45.0439 3236 scfilter - ok
06:27:45.0529 3236 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
06:27:45.0535 3236 Schedule - ok
06:27:45.0569 3236 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
06:27:45.0569 3236 SCPolicySvc - ok
06:27:45.0597 3236 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
06:27:45.0598 3236 sdbus - ok
06:27:45.0630 3236 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
06:27:45.0632 3236 SDRSVC - ok
06:27:45.0663 3236 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
06:27:45.0664 3236 secdrv - ok
06:27:45.0681 3236 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
06:27:45.0683 3236 seclogon - ok
06:27:45.0700 3236 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
06:27:45.0701 3236 SENS - ok
06:27:45.0729 3236 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
06:27:45.0730 3236 SensrSvc - ok
06:27:45.0752 3236 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
06:27:45.0752 3236 Serenum - ok
06:27:45.0778 3236 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
06:27:45.0779 3236 Serial - ok
06:27:45.0800 3236 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
06:27:45.0801 3236 sermouse - ok
06:27:45.0834 3236 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
06:27:45.0836 3236 SessionEnv - ok
06:27:45.0858 3236 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
06:27:45.0859 3236 sffdisk - ok
06:27:45.0872 3236 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
06:27:45.0872 3236 sffp_mmc - ok
06:27:45.0889 3236 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
06:27:45.0890 3236 sffp_sd - ok
06:27:45.0903 3236 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
06:27:45.0903 3236 sfloppy - ok
06:27:45.0949 3236 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
06:27:45.0952 3236 ShellHWDetection - ok
06:27:45.0996 3236 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
06:27:45.0997 3236 SiSRaid2 - ok
06:27:46.0024 3236 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
06:27:46.0025 3236 SiSRaid4 - ok
06:27:46.0125 3236 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
06:27:46.0126 3236 SkypeUpdate - ok
06:27:46.0169 3236 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
06:27:46.0170 3236 Smb - ok
06:27:46.0222 3236 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
06:27:46.0224 3236 SNMPTRAP - ok
06:27:46.0254 3236 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
06:27:46.0255 3236 spldr - ok
06:27:46.0303 3236 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
06:27:46.0306 3236 Spooler - ok
06:27:46.0476 3236 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
06:27:46.0493 3236 sppsvc - ok
06:27:46.0610 3236 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
06:27:46.0611 3236 sppuinotify - ok
06:27:46.0712 3236 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
06:27:46.0712 3236 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
06:27:46.0713 3236 sptd ( LockedFile.Multi.Generic ) - warning
06:27:46.0713 3236 sptd - detected LockedFile.Multi.Generic (1)
06:27:46.0769 3236 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
06:27:46.0771 3236 srv - ok
06:27:46.0801 3236 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
06:27:46.0803 3236 srv2 - ok
06:27:46.0829 3236 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
06:27:46.0830 3236 srvnet - ok
06:27:46.0870 3236 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
06:27:46.0872 3236 SSDPSRV - ok
06:27:46.0896 3236 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
06:27:46.0898 3236 SstpSvc - ok
06:27:46.0991 3236 Steam Client Service - ok
06:27:47.0021 3236 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
06:27:47.0022 3236 stexstor - ok
06:27:47.0101 3236 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
06:27:47.0105 3236 stisvc - ok
06:27:47.0124 3236 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
06:27:47.0124 3236 swenum - ok
06:27:47.0260 3236 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
06:27:47.0262 3236 SwitchBoard - ok
06:27:47.0355 3236 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
06:27:47.0358 3236 swprv - ok
06:27:47.0499 3236 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
06:27:47.0508 3236 SysMain - ok
06:27:47.0624 3236 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
06:27:47.0625 3236 TabletInputService - ok
06:27:47.0654 3236 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
06:27:47.0656 3236 TapiSrv - ok
06:27:47.0672 3236 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
06:27:47.0673 3236 TBS - ok
06:27:47.0867 3236 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
06:27:47.0876 3236 Tcpip - ok
06:27:48.0085 3236 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
06:27:48.0093 3236 TCPIP6 - ok
06:27:48.0172 3236 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
06:27:48.0172 3236 tcpipreg - ok
06:27:48.0199 3236 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
06:27:48.0200 3236 TDPIPE - ok
06:27:48.0227 3236 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
06:27:48.0228 3236 TDTCP - ok
06:27:48.0265 3236 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
06:27:48.0266 3236 tdx - ok
06:27:48.0284 3236 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
06:27:48.0285 3236 TermDD - ok
06:27:48.0362 3236 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
06:27:48.0366 3236 TermService - ok
06:27:48.0383 3236 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
06:27:48.0385 3236 Themes - ok
06:27:48.0416 3236 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
06:27:48.0417 3236 THREADORDER - ok
06:27:48.0440 3236 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
06:27:48.0442 3236 TrkWks - ok
06:27:48.0531 3236 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
06:27:48.0532 3236 TrustedInstaller - ok
06:27:48.0555 3236 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
06:27:48.0555 3236 tssecsrv - ok
06:27:48.0598 3236 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
06:27:48.0598 3236 TsUsbFlt - ok
06:27:48.0624 3236 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
06:27:48.0625 3236 TsUsbGD - ok
06:27:48.0668 3236 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
06:27:48.0669 3236 tunnel - ok
06:27:48.0723 3236 TurboB (fd24f98d2898be093fe926604be7db99) C:\Windows\system32\DRIVERS\TurboB.sys
06:27:48.0723 3236 TurboB - ok
06:27:48.0781 3236 TurboBoost (600b406a04d90f577fea8a88d7379f08) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
06:27:48.0782 3236 TurboBoost - ok
06:27:48.0802 3236 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
06:27:48.0803 3236 uagp35 - ok
06:27:48.0816 3236 UBHelper (a17d5e1a6df4eab0a480f2c490de4c9d) C:\Windows\system32\drivers\UBHelper.sys
06:27:48.0817 3236 UBHelper - ok
06:27:48.0855 3236 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
06:27:48.0856 3236 udfs - ok
06:27:48.0891 3236 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
06:27:48.0892 3236 UI0Detect - ok
06:27:48.0925 3236 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
06:27:48.0925 3236 uliagpkx - ok
06:27:48.0958 3236 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
06:27:48.0959 3236 umbus - ok
06:27:48.0971 3236 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
06:27:48.0972 3236 UmPass - ok
06:27:49.0246 3236 UNS (374ebda379a8f38e0cfc2211611e7167) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
06:27:49.0259 3236 UNS - ok
06:27:49.0405 3236 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
06:27:49.0408 3236 upnphost - ok
06:27:49.0482 3236 USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys
06:27:49.0482 3236 USBAAPL64 - ok
06:27:49.0514 3236 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
06:27:49.0515 3236 usbccgp - ok
06:27:49.0544 3236 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
06:27:49.0545 3236 usbcir - ok
06:27:49.0565 3236 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
06:27:49.0566 3236 usbehci - ok
06:27:49.0611 3236 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\drivers\usbhub.sys
06:27:49.0613 3236 usbhub - ok
06:27:49.0648 3236 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
06:27:49.0649 3236 usbohci - ok
06:27:49.0662 3236 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
06:27:49.0663 3236 usbprint - ok
06:27:49.0693 3236 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
06:27:49.0694 3236 USBSTOR - ok
06:27:49.0705 3236 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
06:27:49.0706 3236 usbuhci - ok
06:27:49.0736 3236 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
06:27:49.0738 3236 usbvideo - ok
06:27:49.0780 3236 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
06:27:49.0781 3236 UxSms - ok
06:27:49.0819 3236 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
06:27:49.0819 3236 VaultSvc - ok
06:27:49.0848 3236 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
06:27:49.0849 3236 vdrvroot - ok
06:27:49.0911 3236 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
06:27:49.0914 3236 vds - ok
06:27:49.0946 3236 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
06:27:49.0946 3236 vga - ok
06:27:49.0975 3236 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
06:27:49.0976 3236 VgaSave - ok
06:27:50.0015 3236 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
06:27:50.0016 3236 vhdmp - ok
06:27:50.0031 3236 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
06:27:50.0032 3236 viaide - ok
06:27:50.0056 3236 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
06:27:50.0057 3236 volmgr - ok
06:27:50.0103 3236 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
06:27:50.0104 3236 volmgrx - ok
06:27:50.0156 3236 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
06:27:50.0158 3236 volsnap - ok
06:27:50.0222 3236 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
06:27:50.0223 3236 vsmraid - ok
06:27:50.0406 3236 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
06:27:50.0415 3236 VSS - ok
06:27:50.0541 3236 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
06:27:50.0542 3236 vwifibus - ok
06:27:50.0577 3236 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
06:27:50.0578 3236 vwififlt - ok
06:27:50.0606 3236 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
06:27:50.0611 3236 W32Time - ok
06:27:50.0637 3236 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
06:27:50.0638 3236 WacomPen - ok
06:27:50.0671 3236 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
06:27:50.0672 3236 WANARP - ok
06:27:50.0680 3236 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
06:27:50.0681 3236 Wanarpv6 - ok
06:27:50.0804 3236 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
06:27:50.0811 3236 WatAdminSvc - ok
06:27:50.0902 3236 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
06:27:50.0910 3236 wbengine - ok
06:27:51.0023 3236 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
06:27:51.0025 3236 WbioSrvc - ok
06:27:51.0059 3236 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
06:27:51.0061 3236 wcncsvc - ok
06:27:51.0085 3236 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
06:27:51.0087 3236 WcsPlugInService - ok
06:27:51.0128 3236 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
06:27:51.0130 3236 Wd - ok
06:27:51.0191 3236 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
06:27:51.0194 3236 Wdf01000 - ok
06:27:51.0222 3236 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
06:27:51.0224 3236 WdiServiceHost - ok
06:27:51.0229 3236 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
06:27:51.0231 3236 WdiSystemHost - ok
06:27:51.0259 3236 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
06:27:51.0262 3236 WebClient - ok
06:27:51.0295 3236 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
06:27:51.0297 3236 Wecsvc - ok
06:27:51.0317 3236 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
06:27:51.0319 3236 wercplsupport - ok
06:27:51.0358 3236 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
06:27:51.0360 3236 WerSvc - ok
06:27:51.0426 3236 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
06:27:51.0426 3236 WfpLwf - ok
06:27:51.0443 3236 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
06:27:51.0444 3236 WIMMount - ok
06:27:51.0457 3236 WinHttpAutoProxySvc - ok
06:27:51.0506 3236 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
06:27:51.0508 3236 Winmgmt - ok
06:27:51.0652 3236 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
06:27:51.0663 3236 WinRM - ok
06:27:51.0871 3236 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
06:27:51.0872 3236 WinUsb - ok
06:27:51.0976 3236 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
06:27:51.0983 3236 Wlansvc - ok
06:27:52.0056 3236 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
06:27:52.0058 3236 wlcrasvc - ok
06:27:52.0229 3236 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
06:27:52.0241 3236 wlidsvc - ok
06:27:52.0385 3236 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
06:27:52.0386 3236 WmiAcpi - ok
06:27:52.0465 3236 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
06:27:52.0466 3236 wmiApSrv - ok
06:27:52.0526 3236 WMPNetworkSvc - ok
06:27:52.0556 3236 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
06:27:52.0558 3236 WPCSvc - ok
06:27:52.0580 3236 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
06:27:52.0582 3236 WPDBusEnum - ok
06:27:52.0612 3236 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
06:27:52.0613 3236 ws2ifsl - ok
06:27:52.0623 3236 WSearch - ok
06:27:52.0789 3236 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
06:27:52.0803 3236 wuauserv - ok
06:27:52.0931 3236 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
06:27:52.0932 3236 WudfPf - ok
06:27:52.0992 3236 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
06:27:52.0993 3236 WUDFRd - ok
06:27:53.0022 3236 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
06:27:53.0023 3236 wudfsvc - ok
06:27:53.0059 3236 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
06:27:53.0062 3236 WwanSvc - ok
06:27:53.0218 3236 X6va005 - ok
06:27:53.0308 3236 X6va009 - ok
06:27:53.0392 3236 xusb21 (9176c0822faa649e45121875be32f5d2) C:\Windows\system32\DRIVERS\xusb21.sys
06:27:53.0393 3236 xusb21 - ok
06:27:53.0443 3236 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
06:27:53.0897 3236 \Device\Harddisk0\DR0 - ok
06:27:53.0902 3236 Boot (0x1200) (2611070dba045c588b0c529116232830) \Device\Harddisk0\DR0\Partition0
06:27:53.0904 3236 \Device\Harddisk0\DR0\Partition0 - ok
06:27:53.0940 3236 Boot (0x1200) (b17558f300d5250fadc19b75a5b27c33) \Device\Harddisk0\DR0\Partition1
06:27:53.0942 3236 \Device\Harddisk0\DR0\Partition1 - ok
06:27:53.0942 3236 ============================================================
06:27:53.0942 3236 Scan finished
06:27:53.0942 3236 ============================================================
06:27:53.0954 6936 Detected object count: 1
06:27:53.0954 6936 Actual detected object count: 1
06:27:58.0722 6936 sptd ( LockedFile.Multi.Generic ) - skipped by user
06:27:58.0722 6936 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
06:28:01.0023 5728 Deinitialize success




aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-10 02:29:50
-----------------------------
02:29:50.648 OS Version: Windows x64 6.1.7601 Service Pack 1
02:29:50.648 Number of processors: 4 586 0x2A07
02:29:50.649 ComputerName: JC-PC UserName: JC
02:29:52.094 Initialize success
02:30:32.997 AVAST engine defs: 12070901
02:31:25.793 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
02:31:25.796 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
02:31:25.815 Disk 0 MBR read successfully
02:31:25.817 Disk 0 MBR scan
02:31:25.820 Disk 0 Windows 7 default MBR code
02:31:25.824 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 18432 MB offset 2048
02:31:25.844 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 37750784
02:31:25.856 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 458406 MB offset 37955584
02:31:25.872 Disk 0 scanning C:\Windows\system32\drivers
02:31:33.052 Service scanning
02:31:56.789 Modules scanning
02:31:56.797 Disk 0 trace - called modules:
02:31:56.813 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys spye.sys
02:31:57.147 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800a3b1060]
02:31:57.152 3 CLASSPNP.SYS[fffff88001a5143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007e36050]
02:31:58.486 AVAST engine scan C:\Windows
02:32:01.198 AVAST engine scan C:\Windows\system32
02:34:54.022 AVAST engine scan C:\Windows\system32\drivers
02:35:10.980 AVAST engine scan C:\Users\JC
02:37:36.475 Disk 0 MBR has been saved successfully to "C:\Users\JC\Desktop\MBR.dat"
02:37:36.480 The log file has been saved successfully to "C:\Users\JC\Desktop\aswMBR.txt"







ESET online scanner came back with no threats.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:24 PM

Posted 10 July 2012 - 01:51 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

#5 JCxING

JCxING
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:24 PM

Posted 10 July 2012 - 03:54 PM

Here you go

MiniToolBox by Farbar Version: 25-06-2012
Ran by JC (administrator) on 10-07-2012 at 21:48:17
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 3dns.adobe.com 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com activate.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com adobe-dns-3.adobe.com adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com practivate.adobe practivate.adobe.com practivate.adobe.newoa practivate.adobe.ntp practivate.adobe.ipp ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com
127.0.0.1 www.adobeereg.com wwis-dubc1-vip60.adobe.com www.wip.adobe.com www.wip1.adobe.com
127.0.0.1 www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com wwis-dubc1-vip60.adobe.com crl.verisign.net CRL.VERISIGN.NET ood.opsource.net

========================= IP Configuration: ================================

Atheros AR5B97 Wireless Network Adapter = Wireless Network Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=5.0.0.1 publish=Yes
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : JC-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5B97 Wireless Network Adapter
Physical Address. . . . . . . . . : 38-59-F9-C7-9D-44
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::92:8096:63bc:bab0%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.105(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 08 July 2012 14:10:06
Lease Expires . . . . . . . . . . : 17 July 2012 20:14:14
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 389569017
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-2A-4A-2C-DC-0E-A1-02-3E-83
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : DC-0E-A1-02-3E-83
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hamachi Network Interface
Physical Address. . . . . . . . . : 7A-79-05-6B-E2-F6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2620:9b::56b:e2f6(Preferred)
Link-local IPv6 Address . . . . . : fe80::c0cb:c577:8aae:cc4e%16(Preferred)
IPv4 Address. . . . . . . . . . . : 5.107.226.246(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : 08 July 2012 14:10:05
Lease Expires . . . . . . . . . . : 10 July 2013 20:14:10
Default Gateway . . . . . . . . . : 5.0.0.1
DHCP Server . . . . . . . . . . . : 5.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 444234126
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-2A-4A-2C-DC-0E-A1-02-3E-83
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{C671DD30-A245-4DA5-BF73-5BE291EA97EB}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C73DEADD-35E1-42DE-ADDB-3BCD5FA9AF33}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2D354F33-412B-4746-916B-D93389455A7C}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dir-615
Address: 192.168.0.1

Name: google.com
Addresses: 2a00:1450:4009:805::1009
173.194.34.166
173.194.34.164
173.194.34.165
173.194.34.169
173.194.34.174
173.194.34.163
173.194.34.168
173.194.34.167
173.194.34.161
173.194.34.160
173.194.34.162


Pinging google.com [173.194.34.165] with 32 bytes of data:
Reply from 173.194.34.165: bytes=32 time=20ms TTL=55
Reply from 173.194.34.165: bytes=32 time=14ms TTL=54

Ping statistics for 173.194.34.165:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 20ms, Average = 17ms
Server: dir-615
Address: 192.168.0.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=134ms TTL=50
Reply from 98.139.183.24: bytes=32 time=142ms TTL=50

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 134ms, Maximum = 142ms, Average = 138ms
Server: dir-615
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...38 59 f9 c7 9d 44 ......Atheros AR5B97 Wireless Network Adapter
11...dc 0e a1 02 3e 83 ......Broadcom NetLink ™ Gigabit Ethernet
16...7a 79 05 6b e2 f6 ......Hamachi Network Interface
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 5.0.0.1 5.107.226.246 9256
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.105 25
5.0.0.0 255.0.0.0 On-link 5.107.226.246 9256
5.107.226.246 255.255.255.255 On-link 5.107.226.246 9256
5.255.255.255 255.255.255.255 On-link 5.107.226.246 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.105 281
192.168.0.105 255.255.255.255 On-link 192.168.0.105 281
192.168.0.255 255.255.255.255 On-link 192.168.0.105 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 5.107.226.246 9256
224.0.0.0 240.0.0.0 On-link 192.168.0.105 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 5.107.226.246 9256
255.255.255.255 255.255.255.255 On-link 192.168.0.105 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 5.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
16 276 2620:9b::/96 On-link
16 276 2620:9b::56b:e2f6/128 On-link
16 276 fe80::/64 On-link
12 281 fe80::/64 On-link
12 281 fe80::92:8096:63bc:bab0/128
On-link
16 276 fe80::c0cb:c577:8aae:cc4e/128
On-link
1 306 ff00::/8 On-link
16 276 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/10/2012 07:36:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7052

Error: (07/10/2012 07:36:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7052

Error: (07/10/2012 07:36:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/10/2012 07:36:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6053

Error: (07/10/2012 07:36:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6053

Error: (07/10/2012 07:36:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/10/2012 07:36:13 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5055

Error: (07/10/2012 07:36:13 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5055

Error: (07/10/2012 07:36:13 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/10/2012 07:36:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4056


System errors:
=============
Error: (07/10/2012 08:14:16 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/10/2012 08:14:16 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/10/2012 08:14:15 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/10/2012 08:14:15 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/10/2012 07:34:56 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/10/2012 07:34:56 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/10/2012 07:34:56 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/10/2012 07:34:56 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/10/2012 06:55:37 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/10/2012 06:55:37 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891


Microsoft Office Sessions:
=========================
Error: (07/10/2012 07:36:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7052

Error: (07/10/2012 07:36:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7052

Error: (07/10/2012 07:36:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/10/2012 07:36:14 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6053

Error: (07/10/2012 07:36:14 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6053

Error: (07/10/2012 07:36:14 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/10/2012 07:36:13 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5055

Error: (07/10/2012 07:36:13 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5055

Error: (07/10/2012 07:36:13 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/10/2012 07:36:12 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4056


=========================== Installed Programs ============================

??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? (Version: 15.4.5722.2)
???? (Version: 1.00.0000)
???? ??? Windows Live (Version: 15.4.3502.0922)
???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? (Version: 15.4.5722.2)
???? ????????? (Version: 1.00.0000)
???? Windows Live (Version: 15.4.3502.0922)
?????? ??????? ?? Windows Live (Version: 15.4.3502.0922)
??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ??????????? (Version: 15.4.5722.2)
??????? Windows Live Mesh ActiveX ??? (Version: 15.4.5722.2)
???????? ?????????? Windows Live (Version: 15.4.3502.0922)
????????? ActiveX ?? Windows Live Mesh ????????????????????????? (???) (Version: 15.4.5722.2)
?????????? Windows Live (Version: 15.4.3502.0922)
??????????? ?? Windows Live (Version: 15.4.3502.0922)
Acer Backup Manager (Version: 3.0.0.100)
Acer Crystal Eye Webcam (Version: 1.5.2406.00)
Acer ePower Management (Version: 6.00.3008)
Acer eRecovery Management (Version: 5.00.3502)
Acer Games (Version: 1.0.2.5)
Acer Registration (Version: 1.04.3503)
Acer ScreenSaver (Version: 1.1.0913.2011)
Acer Updater (Version: 1.02.3500)
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (Version: 15.4.5722.2)
ActiveX ???????? ?? Windows Live Mesh ?? ?????????? ?????? (Version: 15.4.5722.2)
Adobe AIR (Version: 2.5.1.17730)
Adobe Community Help (Version: 3.4.980)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.3.300.257)
Adobe Photoshop CS5.1 (Version: 12.1)
Adobe Reader X (10.1.3) MUI (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
Agatha Christie - Death on the Nile (Version: 2.2.0.98)
Aika Online: Epic II (Version: 20111209)
America's Army 3
Apple Application Support (Version: 1.4.0)
Apple Mobile Device Support (Version: 3.3.0.69)
Apple Software Update (Version: 2.1.2.120)
ArmA 2 Free Uninstall
Art Effects for PDR10 (Version: 2.0)
µTorrent (Version: 3.1.0)
Aurora 3D Text & Logo Maker version 12.02.09 (Version: 12.02.09)
AutoUpdate (Version: 1.1)
AVG 2012 (Version: 12.0.2195)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2195)
Backup Manager V3 (Version: 3.0.0.100)
BattlEye (A2Free) Uninstall
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Blaze Media Pro (Version: 9.10)
Bonjour (Version: 2.0.4.0)
Boxing Manager
Broadcom Card Reader Driver Installer (Version: 14.8.2.2)
Broadcom NetLink Controller (Version: 14.8.4.1)
Chuzzle Deluxe (Version: 2.2.0.95)
clear.fi (Version: 1.0.1517_36458)
clear.fi (Version: 1.0.2024.00)
clear.fi (Version: 9.0.8026)
clear.fi Client (Version: 1.00.3500)
Cnc4WorldBuilder (Version: 1.0)
Command and Conquer 4: Tiberian Twilight
Contrôle ActiveX Windows Live Mesh pour connexions ŕ distance (Version: 15.4.5722.2)
Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)
Control ActiveX del Windows Live Mesh per a connexions remotes (Version: 15.4.5722.2)
Control ActiveX Windows Live Mesh pentru conexiuni la distan?a (Version: 15.4.5722.2)
Controle ActiveX do Windows Live Mesh para Conexőes Remotas (Version: 15.4.5722.2)
Controlo ActiveX do Windows Live Mesh para Ligaçőes Remotas (Version: 15.4.5722.2)
ConvertHelper 2.2
Crazy Chicken Kart 2 (Version: 2.2.0.97)
Creative ALchemy Universal
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Toolbar (Version: 1.1.0.0283)
Defcon v1.43 en-AU rtl
DH Driver Cleaner Professional Edition (Version: Version 1.5)
DivX Codec (Version: 6.8.2)
Dolby Advanced Audio v2 (Version: 7.2.7000.7)
Driver Tool (Version: 8.0.1)
DriverAgent by eSupport.com
eBay Worldwide (Version: 2.2.0409)
ERUNT 1.1j
ESET Online Scanner v3
ETDWare PS/2-X64 8.0.6.3_WHQL (Version: 8.0.6.3)
Europa Universalis III
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
FATE (Version: 2.2.0.97)
Final Drive: Nitro (Version: 2.2.0.95)
FM Genie Scout 12 version 1.1 (Version: 1.1)
FMRTE (Version: 5.0.2)
FMRTE 5.2.5 (Version: 5.2.5)
Football Manager 2012
Football Manager 2012 Editor
Football Manager 2012 Resource Archiver
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsluge polaczen zdalnych (Version: 15.4.5722.2)
Fotogalerija Windows Live (Version: 15.4.3502.0922)
Freeciv 2.3.1 (GTK+ client)
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
Galeria fotografii uslugi Windows Live (Version: 15.4.3502.0922)
Galeria fotogrŕfica del Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galerie foto Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Game Booster 3 (Version: 3.3)
GameSalad Creator (Version: 0.9.92)
Garena Plus (Version: 2011)
Half-Life 2
Half-Life 2: Deathmatch
Hattrick Ranking (Version: 4.30.0)
HOI2 Doomsday Armageddon 1.2
Ht-History 0.1.15.0 (Version: 0.1.15.0)
Identity Card (Version: 1.00.3501)
Insaniquarium Deluxe (Version: 2.2.0.97)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2418)
Intel® Rapid Storage Technology (Version: 10.5.0.1026)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
iPhoneBrowser (Version: 1.9.3)
iTunes (Version: 10.1.0.54)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Jewel Match 3 (Version: 2.2.0.97)
Jewel Quest Solitaire (Version: 2.2.0.95)
John Deere Drive Green (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Kobo (Version: 1.9)
Kontrola Windows Live Mesh ActiveX za daljinske veze (Version: 15.4.5722.2)
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (Version: 15.4.5722.2)
Launch Manager (Version: 5.1.7)
Left 4 Dead 2 Standalone Patch™ (Version: 5.3)
LogMeIn Hamachi (Version: 2.1.0.210)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Medieval II Total War (Version: 1.03.000)
Medieval II Total War : Kingdoms : Americas (Version: 1.05.000)
Medieval II Total War : Kingdoms : Britannia (Version: 1.05.000)
Medieval II Total War : Kingdoms : Crusades (Version: 1.05.000)
Medieval II Total War : Kingdoms : Teutonic (Version: 1.05.000)
Mega Manager (Version: 3.5.1.0)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Plus! 5 (Version: 5.11.0.760)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual J# .NET Redistributable Package 1.1 (Version: 1.1.4322)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MotioninJoy Gamepad tool 0.7.1001 (Version: 0.7.1001)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Mystery of Mortlake Mansion (Version: 2.2.0.98)
MyWinLocker (Version: 4.0.14.27)
MyWinLocker 4 (Version: 4.0.14.27)
MyWinLocker Suite (Version: 4.0.14.18)
Need for Speed Underground 2
newsXpresso (Version: 1.0.0.40)
Norton Online Backup (Version: 2.1.17869)
NTI Media Maker 9 (Version: 9.0.2.8942)
NVIDIA PhysX (Version: 9.10.0129)
Opera 11.61 (Version: 11.61.1250)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená pripojení (Version: 15.4.5722.2)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (Version: 15.4.5722.2)
PCSX2 - Playstation 2 Emulator
PDF Settings CS5 (Version: 10.0)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
Plugin Extended Players v1.2 (Version: 1.2)
Poczta uslugi Windows Live (Version: 15.4.3502.0922)
Podstawowe programy Windows Live (Version: 15.4.3502.0922)
Polar Bowler (Version: 2.2.0.97)
Pošta Windows Live (Version: 15.4.3502.0922)
PunkBuster Services (Version: 0.991)
QuickTime (Version: 7.68.75.0)
Raccolta foto di Windows Live (Version: 15.4.3502.0922)
Realtek High Definition Audio Driver (Version: 6.0.1.6438)
S?????? f?t???af??? t?? Windows Live (Version: 15.4.3502.0922)
San10 (Version: 1.00.0000)
San10PK (Version: 1.00.0000)
Semper Fi 1.0
Shredder (Version: 2.0.8.9)
Skype™ 5.8 (Version: 5.8.158)
Slingo Deluxe (Version: 2.2.0.95)
Spybot - Search & Destroy (Version: 1.6.2)
St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? (Version: 15.4.5722.2)
Steam (Version: 1.0.0.0)
swMSM (Version: 12.0.0.1)
Sword of the Stars II Lords of Winter
System Requirements Lab CYRI (Version: 4.5.1.0)
System Requirements Lab for Intel (Version: 4.5.3.0)
Team Fortress 2
Torchlight (Version: 2.2.0.97)
Ubisoft Game Launcher (Version: 1.0.0.0)
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update Installer for WildTangent Games App
Uzak Baglantilar Için Windows Live Mesh ActiveX Denetimi (Version: 15.4.5722.2)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.97)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Wedding Dash (Version: 2.2.0.95)
Welcome Center (Version: 1.02.3503)
WildTangent Games App (Acer Games) (Version: 4.0.5.14)
Windows Live ??? (Version: 15.4.3502.0922)
Windows Live ???? (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Fotótár (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live Fotogalleri (Version: 15.4.3502.0922)
Windows Live Fotogaléria (Version: 15.4.3502.0922)
Windows Live Fotograf Galerisi (Version: 15.4.3502.0922)
Windows Live Galeria de Fotos (Version: 15.4.3502.0922)
Windows Live Galerija fotografija (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (Version: 15.4.5722.2)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-vezérlo távoli kapcsolatokhoz (Version: 15.4.5722.2)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Temel Parçalar (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Liven asennustyökalu (Version: 15.4.3502.0922)
Windows Liven sähköposti (Version: 15.4.3502.0922)
Windows Liven valokuvavalikoima (Version: 15.4.3502.0922)
WinRAR 4.10 beta 5 (64-bit) (Version: 4.10.5)
Wolfenstein - Enemy Territory
Xvid Video Codec (Version: 1.3.2)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 47%
Total physical RAM: 8043.86 MB
Available physical RAM: 4250.9 MB
Total Pagefile: 16085.91 MB
Available Pagefile: 12099.92 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.82 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:447.66 GB) (Free:204.97 GB) NTFS
2 Drive d: (FM2012) (CDROM) (Total:1.57 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\JC-PC

Administrator ASPNET Guest
JC


**** End of log ****





Farbar Service Scanner Version: 08-07-2012
Ran by JC (administrator) on 10-07-2012 at 21:53:34
Running from "C:\Users\JC\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of MpsSvc. The value does not exist.
Checking ImagePath: ATTENTION!=====> Unable to retrieve ImagePath of MpsSvc. The value does not exist.
Unable to retrieve ServiceDll of MpsSvc. The value does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:24 PM

Posted 10 July 2012 - 07:01 PM

Create a restore point before trying this

Download

MpsSvc
BFE
wscsvc
defender


Launch them ,click YES when you get UAC prompt

restart the PC and post the new FSS log

Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

reset registry permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the FSS log

Edited by narenxp, 10 July 2012 - 07:07 PM.


#7 JCxING

JCxING
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:24 PM

Posted 10 July 2012 - 07:29 PM

Farbar Service Scanner Version: 08-07-2012
Ran by JC (administrator) on 11-07-2012 at 01:15:40
Running from "C:\Users\JC\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.

bfe Service is not running. Checking service configuration:
The start type of bfe service is OK.
The ImagePath of bfe service is OK.
The ServiceDll of bfe service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend: "%ProgramFiles(x86)%\Windows Defender\mpsvc.dll".


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


Farbar Service Scanner Version: 08-07-2012
Ran by JC (administrator) on 11-07-2012 at 01:28:23
Running from "C:\Users\JC\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend: "%ProgramFiles(x86)%\Windows Defender\mpsvc.dll".


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:24 PM

Posted 10 July 2012 - 07:37 PM

Any current issues?

#9 JCxING

JCxING
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:24 PM

Posted 10 July 2012 - 08:14 PM

Lol whoops, forgot to say it's working perfectly. Also Windows Firewall is back to it's best. Thanks narenxp, you are a lifesaver!

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:24 PM

Posted 10 July 2012 - 08:46 PM

Grt :thumbup2:

Remove all the tools used by us

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 JCxING

JCxING
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:24 PM

Posted 11 July 2012 - 09:59 AM

Done, done and done :) Thank you again my friend. Your advice was fantastic!!

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:24 PM

Posted 11 July 2012 - 01:08 PM

You're most welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users