Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I am unable to access my firewall and windows update service is not running. May be related to prior malware. What can I do?


  • Please log in to reply
10 replies to this topic

#1 sperk11

sperk11

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:43 AM

Posted 21 August 2012 - 09:15 PM

Mod Edit;Moved to the Am I Infected forum~ boopme

I have been unable to turn on my firewall (or make any adjustments to the settings whatsoever). When clicking advanced firewall settings I get the error code 0x6D9. When I try to check for updates, I get the message that "Windows Update cannot currently check for updates, because the service is not running. You may need to restart your computer." I think both issues might be related to malware that was previously removed. Any thoughts?? I would really appreciate any help whatsoever! Thanks in advance.

Edited by boopme, 21 August 2012 - 09:30 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 21 August 2012 - 09:16 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 sperk11

sperk11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:43 AM

Posted 22 August 2012 - 10:39 AM

@narenxp: Thanks so much for your quick response!

Here is the report from TDSSkiller:

23:03:50.0377 7932 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
23:03:50.0835 7932 ============================================================
23:03:50.0835 7932 Current date / time: 2012/08/21 23:03:50.0835
23:03:50.0835 7932 SystemInfo:
23:03:50.0835 7932
23:03:50.0836 7932 OS Version: 6.1.7601 ServicePack: 1.0
23:03:50.0836 7932 Product type: Workstation
23:03:50.0836 7932 ComputerName: PERK-PC
23:03:50.0836 7932 UserName: Perk
23:03:50.0836 7932 Windows directory: C:\Windows
23:03:50.0836 7932 System windows directory: C:\Windows
23:03:50.0836 7932 Running under WOW64
23:03:50.0836 7932 Processor architecture: Intel x64
23:03:50.0836 7932 Number of processors: 4
23:03:50.0836 7932 Page size: 0x1000
23:03:50.0836 7932 Boot type: Normal boot
23:03:50.0836 7932 ============================================================
23:03:51.0615 7932 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:03:51.0623 7932 ============================================================
23:03:51.0623 7932 \Device\Harddisk0\DR0:
23:03:51.0623 7932 MBR partitions:
23:03:51.0623 7932 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
23:03:51.0623 7932 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x1B465170
23:03:51.0623 7932 ============================================================
23:03:51.0642 7932 C: <-> \Device\Harddisk0\DR0\Partition2
23:03:51.0642 7932 ============================================================
23:03:51.0642 7932 Initialize success
23:03:51.0642 7932 ============================================================
23:04:23.0507 8312 ============================================================
23:04:23.0507 8312 Scan started
23:04:23.0507 8312 Mode: Manual; TDLFS;
23:04:23.0507 8312 ============================================================
23:04:23.0710 8312 ================ Scan system memory ========================
23:04:23.0710 8312 System memory - ok
23:04:23.0710 8312 ================ Scan services =============================
23:04:23.0817 8312 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
23:04:23.0820 8312 !SASCORE - ok
23:04:23.0992 8312 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:04:23.0997 8312 1394ohci - ok
23:04:24.0023 8312 [ 627371B2D48F64CECC4D019114FB140D ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
23:04:24.0025 8312 Acceler - ok
23:04:24.0064 8312 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:04:24.0071 8312 ACPI - ok
23:04:24.0116 8312 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:04:24.0118 8312 AcpiPmi - ok
23:04:24.0225 8312 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:04:24.0228 8312 AdobeARMservice - ok
23:04:24.0342 8312 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:04:24.0349 8312 AdobeFlashPlayerUpdateSvc - ok
23:04:24.0394 8312 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:04:24.0406 8312 adp94xx - ok
23:04:24.0441 8312 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:04:24.0448 8312 adpahci - ok
23:04:24.0476 8312 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:04:24.0481 8312 adpu320 - ok
23:04:24.0564 8312 [ B11C71B29FA69E4586F9B65560E6604D ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
23:04:24.0596 8312 AdvancedSystemCareService5 - ok
23:04:24.0629 8312 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:04:24.0631 8312 AeLookupSvc - ok
23:04:24.0640 8312 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
23:04:24.0642 8312 AERTFilters - ok
23:04:24.0693 8312 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
23:04:24.0709 8312 AFD - ok
23:04:24.0753 8312 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:04:24.0756 8312 agp440 - ok
23:04:24.0778 8312 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
23:04:24.0781 8312 ALG - ok
23:04:24.0814 8312 [ 94FD0314DFC8E6DDC32FE4500B68559F ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe
23:04:24.0816 8312 AlienFusionService - ok
23:04:24.0833 8312 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
23:04:24.0835 8312 aliide - ok
23:04:24.0851 8312 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
23:04:24.0854 8312 amdide - ok
23:04:24.0865 8312 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:04:24.0868 8312 AmdK8 - ok
23:04:24.0891 8312 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:04:24.0893 8312 AmdPPM - ok
23:04:24.0928 8312 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:04:24.0931 8312 amdsata - ok
23:04:24.0947 8312 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:04:24.0952 8312 amdsbs - ok
23:04:24.0996 8312 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:04:24.0998 8312 amdxata - ok
23:04:25.0036 8312 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
23:04:25.0039 8312 AppID - ok
23:04:25.0053 8312 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:04:25.0054 8312 AppIDSvc - ok
23:04:25.0093 8312 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
23:04:25.0095 8312 Appinfo - ok
23:04:25.0155 8312 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:04:25.0158 8312 Apple Mobile Device - ok
23:04:25.0187 8312 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
23:04:25.0190 8312 arc - ok
23:04:25.0199 8312 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:04:25.0203 8312 arcsas - ok
23:04:25.0223 8312 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:04:25.0226 8312 AsyncMac - ok
23:04:25.0244 8312 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
23:04:25.0246 8312 atapi - ok
23:04:25.0301 8312 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:04:25.0316 8312 AudioEndpointBuilder - ok
23:04:25.0341 8312 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:04:25.0351 8312 AudioSrv - ok
23:04:25.0562 8312 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
23:04:25.0684 8312 AVGIDSAgent - ok
23:04:25.0726 8312 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
23:04:25.0728 8312 AVGIDSDriver - ok
23:04:25.0734 8312 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
23:04:25.0735 8312 AVGIDSFilter - ok
23:04:25.0769 8312 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
23:04:25.0770 8312 AVGIDSHA - ok
23:04:25.0809 8312 [ 59955B4C288DD2A8B9FD2CD5158355C5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
23:04:25.0812 8312 Avgldx64 - ok
23:04:25.0834 8312 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
23:04:25.0835 8312 Avgmfx64 - ok
23:04:25.0851 8312 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
23:04:25.0853 8312 Avgrkx64 - ok
23:04:25.0873 8312 [ 1BEE674AD792B1C63BB0DAC5FA724B23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
23:04:25.0875 8312 Avgtdia - ok
23:04:25.0917 8312 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
23:04:25.0922 8312 avgwd - ok
23:04:25.0964 8312 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:04:25.0967 8312 AxInstSV - ok
23:04:25.0999 8312 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:04:26.0008 8312 b06bdrv - ok
23:04:26.0027 8312 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:04:26.0033 8312 b57nd60a - ok
23:04:26.0148 8312 [ 68B86DD9D455A6A8DE6D13C84FB5CE31 ] BackupService C:\Users\Perk\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe
23:04:26.0151 8312 BackupService - ok
23:04:26.0183 8312 [ 5C0F919666954885D7760DFFE4B29A25 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
23:04:26.0184 8312 BCM42RLY - ok
23:04:26.0271 8312 [ BAB887A2B2786310A966881F074F4A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
23:04:26.0302 8312 BCM43XX - ok
23:04:26.0330 8312 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
23:04:26.0332 8312 BDESVC - ok
23:04:26.0342 8312 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
23:04:26.0343 8312 Beep - ok
23:04:26.0437 8312 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
23:04:26.0451 8312 BFE - ok
23:04:26.0483 8312 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:04:26.0485 8312 blbdrive - ok
23:04:26.0520 8312 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:04:26.0524 8312 Bonjour Service - ok
23:04:26.0557 8312 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:04:26.0559 8312 bowser - ok
23:04:26.0577 8312 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:04:26.0580 8312 BrFiltLo - ok
23:04:26.0589 8312 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:04:26.0591 8312 BrFiltUp - ok
23:04:26.0630 8312 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
23:04:26.0631 8312 Browser - ok
23:04:26.0654 8312 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:04:26.0659 8312 Brserid - ok
23:04:26.0697 8312 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:04:26.0700 8312 BrSerWdm - ok
23:04:26.0716 8312 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:04:26.0717 8312 BrUsbMdm - ok
23:04:26.0726 8312 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:04:26.0728 8312 BrUsbSer - ok
23:04:26.0742 8312 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:04:26.0744 8312 BTHMODEM - ok
23:04:26.0758 8312 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
23:04:26.0760 8312 bthserv - ok
23:04:26.0771 8312 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:04:26.0774 8312 cdfs - ok
23:04:26.0808 8312 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:04:26.0811 8312 cdrom - ok
23:04:26.0844 8312 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
23:04:26.0847 8312 CertPropSvc - ok
23:04:26.0858 8312 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:04:26.0862 8312 circlass - ok
23:04:26.0922 8312 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
23:04:26.0926 8312 CLFS - ok
23:04:26.0987 8312 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:04:26.0990 8312 clr_optimization_v2.0.50727_32 - ok
23:04:27.0037 8312 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:04:27.0041 8312 clr_optimization_v2.0.50727_64 - ok
23:04:27.0117 8312 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:04:27.0121 8312 clr_optimization_v4.0.30319_32 - ok
23:04:27.0153 8312 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:04:27.0156 8312 clr_optimization_v4.0.30319_64 - ok
23:04:27.0169 8312 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:04:27.0171 8312 CmBatt - ok
23:04:27.0193 8312 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:04:27.0196 8312 cmdide - ok
23:04:27.0238 8312 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
23:04:27.0248 8312 CNG - ok
23:04:27.0275 8312 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:04:27.0276 8312 Compbatt - ok
23:04:27.0313 8312 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:04:27.0314 8312 CompositeBus - ok
23:04:27.0323 8312 COMSysApp - ok
23:04:27.0341 8312 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:04:27.0349 8312 crcdisk - ok
23:04:27.0389 8312 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:04:27.0393 8312 CryptSvc - ok
23:04:27.0420 8312 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
23:04:27.0424 8312 CtClsFlt - ok
23:04:27.0475 8312 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:04:27.0483 8312 DcomLaunch - ok
23:04:27.0509 8312 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
23:04:27.0515 8312 defragsvc - ok
23:04:27.0550 8312 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:04:27.0553 8312 DfsC - ok
23:04:27.0594 8312 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
23:04:27.0602 8312 Dhcp - ok
23:04:27.0621 8312 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
23:04:27.0623 8312 discache - ok
23:04:27.0639 8312 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:04:27.0643 8312 Disk - ok
23:04:27.0871 8312 [ 214CF29D013B96B8AAA0C31682349D92 ] DisplayLinkService C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
23:04:27.0927 8312 DisplayLinkService - ok
23:04:27.0948 8312 [ 5D5B9E1E45B1EB727EFEAB0F44C7E4EF ] dlkmd C:\Windows\system32\drivers\dlkmd.sys
23:04:27.0952 8312 dlkmd - ok
23:04:27.0973 8312 [ B701A03D4C256A288D89D615E139CB7C ] dlkmdldr C:\Windows\system32\drivers\dlkmdldr.sys
23:04:27.0974 8312 dlkmdldr - ok
23:04:28.0008 8312 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:04:28.0011 8312 Dnscache - ok
23:04:28.0045 8312 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
23:04:28.0049 8312 dot3svc - ok
23:04:28.0088 8312 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
23:04:28.0091 8312 DPS - ok
23:04:28.0114 8312 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:04:28.0115 8312 drmkaud - ok
23:04:28.0159 8312 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:04:28.0185 8312 DXGKrnl - ok
23:04:28.0212 8312 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
23:04:28.0214 8312 EapHost - ok
23:04:28.0312 8312 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:04:28.0409 8312 ebdrv - ok
23:04:28.0458 8312 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
23:04:28.0461 8312 EFS - ok
23:04:28.0513 8312 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:04:28.0538 8312 ehRecvr - ok
23:04:28.0559 8312 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
23:04:28.0563 8312 ehSched - ok
23:04:28.0593 8312 [ F21A07780BBD64ADEF872F50E8CE2E75 ] ElRawDisk C:\Windows\system32\drivers\ElRawDsk.sys
23:04:28.0594 8312 ElRawDisk - ok
23:04:28.0621 8312 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:04:28.0630 8312 elxstor - ok
23:04:28.0656 8312 [ E47D9D7E6E53892FC97282482F4AE307 ] EMSC C:\Windows\system32\DRIVERS\EMSC.SYS
23:04:28.0658 8312 EMSC - ok
23:04:28.0681 8312 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:04:28.0683 8312 ErrDev - ok
23:04:28.0712 8312 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
23:04:28.0718 8312 EventSystem - ok
23:04:28.0739 8312 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
23:04:28.0743 8312 exfat - ok
23:04:28.0777 8312 [ 2C1D443E14F376E8331F52F135DCA9EF ] FACAP C:\Windows\system32\DRIVERS\facap.sys
23:04:28.0782 8312 FACAP - ok
23:04:28.0880 8312 [ 53E30A6E86AA93C0FFC0BC0439E3E636 ] FAService C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe
23:04:28.0949 8312 FAService - ok
23:04:28.0968 8312 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:04:28.0973 8312 fastfat - ok
23:04:29.0023 8312 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
23:04:29.0047 8312 Fax - ok
23:04:29.0062 8312 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:04:29.0064 8312 fdc - ok
23:04:29.0083 8312 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
23:04:29.0086 8312 fdPHost - ok
23:04:29.0093 8312 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
23:04:29.0095 8312 FDResPub - ok
23:04:29.0114 8312 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:04:29.0116 8312 FileInfo - ok
23:04:29.0132 8312 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:04:29.0134 8312 Filetrace - ok
23:04:29.0151 8312 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:04:29.0153 8312 flpydisk - ok
23:04:29.0193 8312 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:04:29.0199 8312 FltMgr - ok
23:04:29.0265 8312 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
23:04:29.0284 8312 FontCache - ok
23:04:29.0334 8312 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:04:29.0337 8312 FontCache3.0.0.0 - ok
23:04:29.0360 8312 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:04:29.0363 8312 FsDepends - ok
23:04:29.0405 8312 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:04:29.0406 8312 Fs_Rec - ok
23:04:29.0445 8312 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:04:29.0449 8312 fvevol - ok
23:04:29.0467 8312 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:04:29.0470 8312 gagp30kx - ok
23:04:29.0500 8312 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:04:29.0502 8312 GEARAspiWDM - ok
23:04:29.0554 8312 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
23:04:29.0581 8312 gpsvc - ok
23:04:29.0597 8312 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:04:29.0600 8312 hcw85cir - ok
23:04:29.0641 8312 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:04:29.0645 8312 HDAudBus - ok
23:04:29.0662 8312 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:04:29.0664 8312 HidBatt - ok
23:04:29.0684 8312 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:04:29.0688 8312 HidBth - ok
23:04:29.0706 8312 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:04:29.0709 8312 HidIr - ok
23:04:29.0732 8312 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
23:04:29.0734 8312 hidserv - ok
23:04:29.0747 8312 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
23:04:29.0748 8312 HidUsb - ok
23:04:29.0789 8312 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:04:29.0793 8312 hkmsvc - ok
23:04:29.0834 8312 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:04:29.0840 8312 HomeGroupListener - ok
23:04:29.0855 8312 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:04:29.0859 8312 HomeGroupProvider - ok
23:04:29.0929 8312 [ 8E6EE43CB60DD1198FDA213C33B24D9D ] HPLinkUpZeroC C:\Program Files (x86)\Hewlett-Packard\HP LinkUp Sender\LinkUpZeroC.exe
23:04:29.0933 8312 HPLinkUpZeroC - ok
23:04:29.0964 8312 [ 121E16708A1C8C1FF342011E5481D6B0 ] hprg C:\Windows\system32\DRIVERS\hprg.sys
23:04:29.0967 8312 hprg - ok
23:04:29.0984 8312 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:04:29.0988 8312 HpSAMD - ok
23:04:30.0027 8312 [ 81FC369485C12837DE3D708B7C8FDA7D ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
23:04:30.0028 8312 HTCAND64 - ok
23:04:30.0113 8312 [ 5C8BC8A28798FD010E7ABC4E0D588CAA ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
23:04:30.0116 8312 HTCMonitorService - ok
23:04:30.0178 8312 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:04:30.0203 8312 HTTP - ok
23:04:30.0232 8312 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:04:30.0234 8312 hwpolicy - ok
23:04:30.0273 8312 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:04:30.0276 8312 i8042prt - ok
23:04:30.0315 8312 [ 42E00996DFC13C46366689C0EA8ABC5E ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:04:30.0321 8312 iaStor - ok
23:04:30.0355 8312 [ 48362E5DB5CB2C000C514EE1F3890ACD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
23:04:30.0357 8312 IAStorDataMgrSvc - ok
23:04:30.0390 8312 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:04:30.0400 8312 iaStorV - ok
23:04:30.0458 8312 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
23:04:30.0462 8312 IDriverT - ok
23:04:30.0531 8312 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:04:30.0563 8312 idsvc - ok
23:04:30.0844 8312 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
23:04:31.0111 8312 igfx - ok
23:04:31.0141 8312 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:04:31.0143 8312 iirsp - ok
23:04:31.0187 8312 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
23:04:31.0206 8312 IKEEXT - ok
23:04:31.0228 8312 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
23:04:31.0231 8312 Impcd - ok
23:04:31.0248 8312 [ A4A87C2F228DD2AC93DAE94E103792D3 ] InstallFilterService C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
23:04:31.0249 8312 InstallFilterService - ok
23:04:31.0300 8312 [ 0ADF714079AE174A39D69036143E4C50 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:04:31.0342 8312 IntcAzAudAddService - ok
23:04:31.0357 8312 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
23:04:31.0362 8312 IntcDAud - ok
23:04:31.0403 8312 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
23:04:31.0405 8312 intelide - ok
23:04:31.0426 8312 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:04:31.0430 8312 intelppm - ok
23:04:31.0461 8312 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:04:31.0466 8312 IPBusEnum - ok
23:04:31.0504 8312 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:04:31.0509 8312 IpFilterDriver - ok
23:04:31.0539 8312 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:04:31.0542 8312 IPMIDRV - ok
23:04:31.0562 8312 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:04:31.0564 8312 IPNAT - ok
23:04:31.0633 8312 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:04:31.0648 8312 iPod Service - ok
23:04:31.0709 8312 [ 02DEF37AB75E0032C50724646F708DE8 ] iPodDrv C:\Windows\system32\drivers\iPodDrv.sys
23:04:31.0710 8312 iPodDrv - ok
23:04:31.0728 8312 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:04:31.0730 8312 IRENUM - ok
23:04:31.0745 8312 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:04:31.0748 8312 isapnp - ok
23:04:31.0771 8312 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:04:31.0774 8312 iScsiPrt - ok
23:04:31.0796 8312 [ 1EA84FC4DF200FF77A823078532123BF ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
23:04:31.0800 8312 JMCR - ok
23:04:31.0818 8312 [ 0B585D18C93379227FA2A645181A6DA2 ] johci C:\Windows\system32\DRIVERS\johci.sys
23:04:31.0820 8312 johci - ok
23:04:31.0830 8312 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
23:04:31.0832 8312 kbdclass - ok
23:04:31.0847 8312 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
23:04:31.0850 8312 kbdhid - ok
23:04:31.0867 8312 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
23:04:31.0870 8312 KeyIso - ok
23:04:31.0901 8312 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:04:31.0905 8312 KSecDD - ok
23:04:31.0944 8312 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:04:31.0949 8312 KSecPkg - ok
23:04:31.0977 8312 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:04:31.0980 8312 ksthunk - ok
23:04:32.0017 8312 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
23:04:32.0025 8312 KtmRm - ok
23:04:32.0044 8312 [ 9C46A5421DE9D116C47155317CABB522 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
23:04:32.0047 8312 L1C - ok
23:04:32.0089 8312 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
23:04:32.0094 8312 LanmanServer - ok
23:04:32.0121 8312 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:04:32.0130 8312 LanmanWorkstation - ok
23:04:32.0179 8312 [ 0A7D6ED578D85F0C35353424EE3F5245 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
23:04:32.0181 8312 LHidFilt - ok
23:04:32.0190 8312 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:04:32.0192 8312 lltdio - ok
23:04:32.0214 8312 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:04:32.0220 8312 lltdsvc - ok
23:04:32.0234 8312 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:04:32.0236 8312 lmhosts - ok
23:04:32.0252 8312 [ 6542E2E6DB58118FBB1B82A68CE3AFF9 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
23:04:32.0253 8312 LMouFilt - ok
23:04:32.0279 8312 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:04:32.0283 8312 LSI_FC - ok
23:04:32.0294 8312 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:04:32.0297 8312 LSI_SAS - ok
23:04:32.0319 8312 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:04:32.0322 8312 LSI_SAS2 - ok
23:04:32.0341 8312 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:04:32.0345 8312 LSI_SCSI - ok
23:04:32.0366 8312 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
23:04:32.0370 8312 luafv - ok
23:04:32.0410 8312 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:04:32.0411 8312 MBAMProtector - ok
23:04:32.0469 8312 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
23:04:32.0481 8312 MBAMService - ok
23:04:32.0548 8312 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:04:32.0554 8312 Mcx2Svc - ok
23:04:32.0578 8312 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:04:32.0581 8312 megasas - ok
23:04:32.0608 8312 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:04:32.0615 8312 MegaSR - ok
23:04:32.0689 8312 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
23:04:32.0694 8312 Microsoft Office Groove Audit Service - ok
23:04:32.0729 8312 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
23:04:32.0733 8312 MMCSS - ok
23:04:32.0751 8312 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
23:04:32.0753 8312 Modem - ok
23:04:32.0770 8312 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:04:32.0772 8312 monitor - ok
23:04:32.0803 8312 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
23:04:32.0805 8312 mouclass - ok
23:04:32.0829 8312 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:04:32.0831 8312 mouhid - ok
23:04:32.0871 8312 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:04:32.0874 8312 mountmgr - ok
23:04:32.0905 8312 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
23:04:32.0909 8312 mpio - ok
23:04:32.0930 8312 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:04:32.0933 8312 mpsdrv - ok
23:04:33.0005 8312 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:04:33.0031 8312 MpsSvc - ok
23:04:33.0069 8312 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:04:33.0073 8312 MRxDAV - ok
23:04:33.0107 8312 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:04:33.0111 8312 mrxsmb - ok
23:04:33.0155 8312 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:04:33.0163 8312 mrxsmb10 - ok
23:04:33.0187 8312 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:04:33.0190 8312 mrxsmb20 - ok
23:04:33.0206 8312 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
23:04:33.0207 8312 msahci - ok
23:04:33.0234 8312 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:04:33.0237 8312 msdsm - ok
23:04:33.0259 8312 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
23:04:33.0264 8312 MSDTC - ok
23:04:33.0290 8312 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:04:33.0292 8312 Msfs - ok
23:04:33.0302 8312 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:04:33.0303 8312 mshidkmdf - ok
23:04:33.0315 8312 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:04:33.0317 8312 msisadrv - ok
23:04:33.0342 8312 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:04:33.0346 8312 MSiSCSI - ok
23:04:33.0352 8312 msiserver - ok
23:04:33.0370 8312 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:04:33.0371 8312 MSKSSRV - ok
23:04:33.0386 8312 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:04:33.0387 8312 MSPCLOCK - ok
23:04:33.0402 8312 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:04:33.0403 8312 MSPQM - ok
23:04:33.0445 8312 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:04:33.0453 8312 MsRPC - ok
23:04:33.0505 8312 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:04:33.0508 8312 mssmbios - ok
23:04:33.0549 8312 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:04:33.0551 8312 MSTEE - ok
23:04:33.0572 8312 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:04:33.0575 8312 MTConfig - ok
23:04:33.0592 8312 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
23:04:33.0595 8312 Mup - ok
23:04:33.0655 8312 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
23:04:33.0665 8312 napagent - ok
23:04:33.0686 8312 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:04:33.0692 8312 NativeWifiP - ok
23:04:33.0730 8312 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
23:04:33.0756 8312 NDIS - ok
23:04:33.0774 8312 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:04:33.0776 8312 NdisCap - ok
23:04:33.0794 8312 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:04:33.0796 8312 NdisTapi - ok
23:04:33.0833 8312 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:04:33.0836 8312 Ndisuio - ok
23:04:33.0877 8312 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:04:33.0880 8312 NdisWan - ok
23:04:33.0916 8312 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:04:33.0919 8312 NDProxy - ok
23:04:33.0938 8312 [ B6CBA9A0403E2C1A9EA03C33A4932E89 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
23:04:33.0942 8312 Net Driver HPZ12 - ok
23:04:33.0951 8312 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:04:33.0953 8312 NetBIOS - ok
23:04:33.0991 8312 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:04:33.0996 8312 NetBT - ok
23:04:34.0009 8312 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
23:04:34.0011 8312 Netlogon - ok
23:04:34.0040 8312 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
23:04:34.0046 8312 Netman - ok
23:04:34.0070 8312 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
23:04:34.0074 8312 netprofm - ok
23:04:34.0094 8312 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:04:34.0097 8312 NetTcpPortSharing - ok
23:04:34.0110 8312 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:04:34.0113 8312 nfrd960 - ok
23:04:34.0156 8312 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:04:34.0161 8312 NlaSvc - ok
23:04:34.0171 8312 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:04:34.0173 8312 Npfs - ok
23:04:34.0190 8312 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
23:04:34.0193 8312 nsi - ok
23:04:34.0204 8312 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:04:34.0205 8312 nsiproxy - ok
23:04:34.0290 8312 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:04:34.0334 8312 Ntfs - ok
23:04:34.0353 8312 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
23:04:34.0354 8312 Null - ok
23:04:34.0599 8312 [ 9F6ADE7EC1D5480AD1EF370859B26D5A ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:04:34.0866 8312 nvlddmkm - ok
23:04:34.0903 8312 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:04:34.0907 8312 nvraid - ok
23:04:34.0921 8312 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:04:34.0924 8312 nvstor - ok
23:04:34.0948 8312 [ 628167D7E894807EF883A13E34172C3C ] nvsvc C:\Windows\system32\nvvsvc.exe
23:04:34.0951 8312 nvsvc - ok
23:04:35.0007 8312 [ 1681E56145A43C0F1EDA60618D7AFD60 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
23:04:35.0033 8312 nvUpdatusService - ok
23:04:35.0050 8312 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:04:35.0052 8312 nv_agp - ok
23:04:35.0083 8312 [ 226D2C0E1AA9040646D6B158FD344046 ] OA002Afx C:\Windows\system32\Drivers\OA002Afx.sys
23:04:35.0086 8312 OA002Afx - ok
23:04:35.0106 8312 [ 706F5504AF9F28C8641DAB5EDDFDE03B ] OA002Ufd C:\Windows\system32\DRIVERS\OA002Ufd.sys
23:04:35.0110 8312 OA002Ufd - ok
23:04:35.0138 8312 [ 2CE066ADCA145892715F1DF163D879DA ] OA002Vid C:\Windows\system32\DRIVERS\OA002Vid.sys
23:04:35.0143 8312 OA002Vid - ok
23:04:35.0203 8312 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:04:35.0214 8312 odserv - ok
23:04:35.0243 8312 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:04:35.0245 8312 ohci1394 - ok
23:04:35.0279 8312 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:04:35.0282 8312 ose - ok
23:04:35.0322 8312 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:04:35.0331 8312 p2pimsvc - ok
23:04:35.0358 8312 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
23:04:35.0371 8312 p2psvc - ok
23:04:35.0393 8312 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:04:35.0397 8312 Parport - ok
23:04:35.0434 8312 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:04:35.0436 8312 partmgr - ok
23:04:35.0459 8312 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:04:35.0463 8312 PcaSvc - ok
23:04:35.0503 8312 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
23:04:35.0508 8312 pci - ok
23:04:35.0529 8312 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
23:04:35.0531 8312 pciide - ok
23:04:35.0557 8312 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:04:35.0562 8312 pcmcia - ok
23:04:35.0582 8312 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
23:04:35.0584 8312 pcw - ok
23:04:35.0613 8312 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:04:35.0625 8312 PEAUTH - ok
23:04:35.0710 8312 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:04:35.0713 8312 PerfHost - ok
23:04:35.0777 8312 [ BD24E98E6546ADF6A31A41485483EB6C ] Pharos Systems ComTaskMaster C:\PROGRA~2\PHAROS~1\Core\CTskMstr.exe
23:04:35.0780 8312 Pharos Systems ComTaskMaster - ok
23:04:35.0841 8312 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
23:04:35.0874 8312 pla - ok
23:04:35.0916 8312 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:04:35.0923 8312 PlugPlay - ok
23:04:35.0948 8312 [ 35CCB20B0D730B7764D049463E4B2AC5 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
23:04:35.0951 8312 Pml Driver HPZ12 - ok
23:04:35.0962 8312 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:04:35.0965 8312 PNRPAutoReg - ok
23:04:35.0974 8312 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:04:35.0978 8312 PNRPsvc - ok
23:04:36.0017 8312 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:04:36.0021 8312 PolicyAgent - ok
23:04:36.0045 8312 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
23:04:36.0049 8312 Power - ok
23:04:36.0084 8312 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:04:36.0086 8312 PptpMiniport - ok
23:04:36.0108 8312 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:04:36.0110 8312 Processor - ok
23:04:36.0152 8312 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
23:04:36.0161 8312 ProfSvc - ok
23:04:36.0183 8312 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:04:36.0186 8312 ProtectedStorage - ok
23:04:36.0231 8312 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:04:36.0235 8312 Psched - ok
23:04:36.0298 8312 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:04:36.0337 8312 ql2300 - ok
23:04:36.0360 8312 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:04:36.0364 8312 ql40xx - ok
23:04:36.0394 8312 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
23:04:36.0400 8312 QWAVE - ok
23:04:36.0409 8312 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:04:36.0413 8312 QWAVEdrv - ok
23:04:36.0449 8312 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:04:36.0451 8312 RasAcd - ok
23:04:36.0470 8312 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:04:36.0472 8312 RasAgileVpn - ok
23:04:36.0483 8312 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
23:04:36.0487 8312 RasAuto - ok
23:04:36.0525 8312 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:04:36.0527 8312 Rasl2tp - ok
23:04:36.0565 8312 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
23:04:36.0575 8312 RasMan - ok
23:04:36.0597 8312 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:04:36.0601 8312 RasPppoe - ok
23:04:36.0621 8312 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:04:36.0624 8312 RasSstp - ok
23:04:36.0652 8312 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:04:36.0658 8312 rdbss - ok
23:04:36.0676 8312 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:04:36.0679 8312 rdpbus - ok
23:04:36.0703 8312 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:04:36.0705 8312 RDPCDD - ok
23:04:36.0719 8312 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:04:36.0721 8312 RDPENCDD - ok
23:04:36.0737 8312 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:04:36.0738 8312 RDPREFMP - ok
23:04:36.0778 8312 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:04:36.0784 8312 RDPWD - ok
23:04:36.0836 8312 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:04:36.0843 8312 rdyboost - ok
23:04:36.0875 8312 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:04:36.0880 8312 RemoteAccess - ok
23:04:36.0898 8312 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:04:36.0904 8312 RemoteRegistry - ok
23:04:36.0992 8312 [ EBBD14CE72371722BC2AA0236AE9B3BA ] rgsender C:\Program Files (x86)\Hewlett-Packard\Remote Graphics Sender\rgsendersvc.exe
23:04:37.0002 8312 rgsender - ok
23:04:37.0019 8312 RimUsb - ok
23:04:37.0043 8312 [ C903D49655B4AAE46673F0AAA6BE0F58 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
23:04:37.0045 8312 RimVSerPort - ok
23:04:37.0058 8312 [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
23:04:37.0060 8312 ROOTMODEM - ok
23:04:37.0080 8312 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:04:37.0084 8312 RpcEptMapper - ok
23:04:37.0109 8312 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
23:04:37.0112 8312 RpcLocator - ok
23:04:37.0159 8312 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
23:04:37.0167 8312 RpcSs - ok
23:04:37.0199 8312 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:04:37.0202 8312 rspndr - ok
23:04:37.0211 8312 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
23:04:37.0214 8312 SamSs - ok
23:04:37.0314 8312 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
23:04:37.0316 8312 SASDIFSV - ok
23:04:37.0349 8312 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
23:04:37.0351 8312 SASKUTIL - ok
23:04:37.0391 8312 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:04:37.0395 8312 sbp2port - ok
23:04:37.0418 8312 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:04:37.0423 8312 SCardSvr - ok
23:04:37.0464 8312 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:04:37.0466 8312 scfilter - ok
23:04:37.0540 8312 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
23:04:37.0561 8312 Schedule - ok
23:04:37.0603 8312 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
23:04:37.0605 8312 SCPolicySvc - ok
23:04:37.0643 8312 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:04:37.0648 8312 SDRSVC - ok
23:04:37.0667 8312 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:04:37.0669 8312 secdrv - ok
23:04:37.0713 8312 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
23:04:37.0717 8312 seclogon - ok
23:04:37.0743 8312 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
23:04:37.0747 8312 SENS - ok
23:04:37.0770 8312 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:04:37.0775 8312 SensrSvc - ok
23:04:37.0803 8312 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:04:37.0805 8312 Serenum - ok
23:04:37.0823 8312 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:04:37.0826 8312 Serial - ok
23:04:37.0848 8312 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:04:37.0850 8312 sermouse - ok
23:04:37.0912 8312 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
23:04:37.0917 8312 SessionEnv - ok
23:04:37.0962 8312 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:04:37.0964 8312 sffdisk - ok
23:04:37.0982 8312 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:04:37.0984 8312 sffp_mmc - ok
23:04:37.0999 8312 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:04:38.0000 8312 sffp_sd - ok
23:04:38.0023 8312 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:04:38.0026 8312 sfloppy - ok
23:04:38.0102 8312 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
23:04:38.0138 8312 SftService - ok
23:04:38.0205 8312 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:04:38.0221 8312 ShellHWDetection - ok
23:04:38.0242 8312 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:04:38.0245 8312 SiSRaid2 - ok
23:04:38.0269 8312 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:04:38.0272 8312 SiSRaid4 - ok
23:04:38.0291 8312 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:04:38.0295 8312 Smb - ok
23:04:38.0350 8312 [ BA57E12F86478CEDBEF4CE9F1C8E3195 ] snapman C:\Windows\system32\DRIVERS\snapman.sys
23:04:38.0352 8312 snapman - ok
23:04:38.0384 8312 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:04:38.0386 8312 SNMPTRAP - ok
23:04:38.0401 8312 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
23:04:38.0402 8312 spldr - ok
23:04:38.0445 8312 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
23:04:38.0451 8312 Spooler - ok
23:04:38.0571 8312 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
23:04:38.0678 8312 sppsvc - ok
23:04:38.0698 8312 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:04:38.0703 8312 sppuinotify - ok
23:04:38.0752 8312 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
23:04:38.0763 8312 srv - ok
23:04:38.0801 8312 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:04:38.0812 8312 srv2 - ok
23:04:38.0842 8312 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:04:38.0847 8312 srvnet - ok
23:04:38.0873 8312 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:04:38.0879 8312 SSDPSRV - ok
23:04:38.0902 8312 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:04:38.0907 8312 SstpSvc - ok
23:04:38.0928 8312 [ C568FDB21CE77A44FD166F28F104AC46 ] stdflt C:\Windows\system32\DRIVERS\stdfltn.sys
23:04:38.0930 8312 stdflt - ok
23:04:38.0957 8312 Steam Client Service - ok
23:04:38.0975 8312 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:04:38.0980 8312 stexstor - ok
23:04:39.0038 8312 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
23:04:39.0061 8312 stisvc - ok
23:04:39.0085 8312 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
23:04:39.0088 8312 swenum - ok
23:04:39.0124 8312 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
23:04:39.0137 8312 swprv - ok
23:04:39.0176 8312 [ BE2B928DE9AF2848289DB7A54C7E2398 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
23:04:39.0183 8312 SynTP - ok
23:04:39.0275 8312 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
23:04:39.0320 8312 SysMain - ok
23:04:39.0361 8312 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:04:39.0366 8312 TabletInputService - ok
23:04:39.0408 8312 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:04:39.0416 8312 TapiSrv - ok
23:04:39.0440 8312 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
23:04:39.0447 8312 TBS - ok
23:04:39.0530 8312 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:04:39.0593 8312 Tcpip - ok
23:04:39.0656 8312 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:04:39.0677 8312 TCPIP6 - ok
23:04:39.0727 8312 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:04:39.0729 8312 tcpipreg - ok
23:04:39.0758 8312 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:04:39.0760 8312 TDPIPE - ok
23:04:39.0806 8312 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:04:39.0808 8312 TDTCP - ok
23:04:39.0861 8312 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:04:39.0864 8312 tdx - ok
23:04:39.0882 8312 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
23:04:39.0885 8312 TermDD - ok
23:04:39.0938 8312 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
23:04:39.0963 8312 TermService - ok
23:04:39.0985 8312 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
23:04:39.0990 8312 Themes - ok
23:04:40.0028 8312 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
23:04:40.0029 8312 THREADORDER - ok
23:04:40.0044 8312 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
23:04:40.0047 8312 TrkWks - ok
23:04:40.0107 8312 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:04:40.0111 8312 TrustedInstaller - ok
23:04:40.0169 8312 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:04:40.0171 8312 tssecsrv - ok
23:04:40.0192 8312 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:04:40.0195 8312 TsUsbFlt - ok
23:04:40.0234 8312 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:04:40.0238 8312 tunnel - ok
23:04:40.0258 8312 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:04:40.0261 8312 uagp35 - ok
23:04:40.0307 8312 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:04:40.0314 8312 udfs - ok
23:04:40.0360 8312 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:04:40.0364 8312 UI0Detect - ok
23:04:40.0392 8312 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:04:40.0395 8312 uliagpkx - ok
23:04:40.0450 8312 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
23:04:40.0452 8312 umbus - ok
23:04:40.0478 8312 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:04:40.0480 8312 UmPass - ok
23:04:40.0512 8312 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
23:04:40.0521 8312 upnphost - ok
23:04:40.0560 8312 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
23:04:40.0562 8312 USBAAPL64 - ok
23:04:40.0595 8312 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:04:40.0599 8312 usbaudio - ok
23:04:40.0634 8312 [ C73CB90E6A2FF90FD02451A8DFC6AF8A ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
23:04:40.0636 8312 usbbus - ok
23:04:40.0673 8312 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:04:40.0676 8312 usbccgp - ok
23:04:40.0727 8312 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:04:40.0731 8312 usbcir - ok
23:04:40.0765 8312 [ 856CE1F23785369BB5A2DE0AEDAD0AA7 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
23:04:40.0767 8312 UsbDiag - ok
23:04:40.0786 8312 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
23:04:40.0789 8312 usbehci - ok
23:04:40.0833 8312 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:04:40.0840 8312 usbhub - ok
23:04:40.0857 8312 [ F81055629778D33C9317B32E4D2B58DB ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
23:04:40.0859 8312 USBModem - ok
23:04:40.0899 8312 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:04:40.0901 8312 usbohci - ok
23:04:40.0920 8312 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:04:40.0922 8312 usbprint - ok
23:04:40.0953 8312 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:04:40.0956 8312 USBSTOR - ok
23:04:40.0994 8312 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:04:40.0997 8312 usbuhci - ok
23:04:41.0017 8312 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
23:04:41.0020 8312 usbvideo - ok
23:04:41.0038 8312 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
23:04:41.0042 8312 UxSms - ok
23:04:41.0058 8312 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
23:04:41.0060 8312 VaultSvc - ok
23:04:41.0073 8312 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:04:41.0074 8312 vdrvroot - ok
23:04:41.0126 8312 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
23:04:41.0134 8312 vds - ok
23:04:41.0153 8312 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:04:41.0155 8312 vga - ok
23:04:41.0172 8312 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
23:04:41.0174 8312 VgaSave - ok
23:04:41.0199 8312 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:04:41.0202 8312 vhdmp - ok
23:04:41.0219 8312 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
23:04:41.0221 8312 viaide - ok
23:04:41.0244 8312 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:04:41.0245 8312 volmgr - ok
23:04:41.0288 8312 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:04:41.0292 8312 volmgrx - ok
23:04:41.0308 8312 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:04:41.0313 8312 volsnap - ok
23:04:41.0330 8312 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:04:41.0333 8312 vsmraid - ok
23:04:41.0395 8312 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
23:04:41.0433 8312 VSS - ok
23:04:41.0461 8312 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:04:41.0464 8312 vwifibus - ok
23:04:41.0485 8312 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:04:41.0488 8312 vwififlt - ok
23:04:41.0521 8312 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
23:04:41.0532 8312 W32Time - ok
23:04:41.0557 8312 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:04:41.0559 8312 WacomPen - ok
23:04:41.0580 8312 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:04:41.0582 8312 WANARP - ok
23:04:41.0590 8312 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:04:41.0592 8312 Wanarpv6 - ok
23:04:41.0635 8312 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:04:41.0658 8312 WatAdminSvc - ok
23:04:41.0730 8312 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
23:04:41.0768 8312 wbengine - ok
23:04:41.0789 8312 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:04:41.0796 8312 WbioSrvc - ok
23:04:41.0851 8312 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:04:41.0877 8312 wcncsvc - ok
23:04:41.0902 8312 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:04:41.0908 8312 WcsPlugInService - ok
23:04:41.0923 8312 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:04:41.0926 8312 Wd - ok
23:04:41.0968 8312 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:04:41.0988 8312 Wdf01000 - ok
23:04:42.0011 8312 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:04:42.0016 8312 WdiServiceHost - ok
23:04:42.0027 8312 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:04:42.0031 8312 WdiSystemHost - ok
23:04:42.0071 8312 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
23:04:42.0078 8312 WebClient - ok
23:04:42.0101 8312 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:04:42.0108 8312 Wecsvc - ok
23:04:42.0124 8312 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:04:42.0127 8312 wercplsupport - ok
23:04:42.0137 8312 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
23:04:42.0141 8312 WerSvc - ok
23:04:42.0152 8312 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:04:42.0153 8312 WfpLwf - ok
23:04:42.0184 8312 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
23:04:42.0187 8312 WimFltr - ok
23:04:42.0194 8312 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:04:42.0196 8312 WIMMount - ok
23:04:42.0258 8312 WinDefend - ok
23:04:42.0288 8312 WinHttpAutoProxySvc - ok
23:04:42.0348 8312 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:04:42.0355 8312 Winmgmt - ok
23:04:42.0451 8312 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
23:04:42.0547 8312 WinRM - ok
23:04:42.0625 8312 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:04:42.0627 8312 WinUsb - ok
23:04:42.0656 8312 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
23:04:42.0679 8312 Wlansvc - ok
23:04:42.0809 8312 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:04:42.0881 8312 wlidsvc - ok
23:04:42.0932 8312 [ A96D6C0613DCF84F2D07FAEB75663072 ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
23:04:42.0934 8312 wltrysvc - ok
23:04:42.0981 8312 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:04:42.0982 8312 WmiAcpi - ok
23:04:43.0013 8312 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:04:43.0018 8312 wmiApSrv - ok
23:04:43.0034 8312 WMPNetworkSvc - ok
23:04:43.0062 8312 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:04:43.0067 8312 WPCSvc - ok
23:04:43.0103 8312 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:04:43.0109 8312 WPDBusEnum - ok
23:04:43.0131 8312 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:04:43.0134 8312 ws2ifsl - ok
23:04:43.0162 8312 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
23:04:43.0164 8312 wscsvc - ok
23:04:43.0171 8312 WSearch - ok
23:04:43.0193 8312 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:04:43.0195 8312 WudfPf - ok
23:04:43.0241 8312 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:04:43.0244 8312 WUDFRd - ok
23:04:43.0280 8312 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:04:43.0283 8312 wudfsvc - ok
23:04:43.0303 8312 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
23:04:43.0308 8312 WwanSvc - ok
23:04:43.0331 8312 ================ Scan global ===============================
23:04:43.0363 8312 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:04:43.0402 8312 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
23:04:43.0411 8312 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
23:04:43.0427 8312 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:04:43.0459 8312 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:04:43.0462 8312 [Global] - ok
23:04:43.0463 8312 ================ Scan MBR ==================================
23:04:43.0479 8312 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
23:04:43.0934 8312 \Device\Harddisk0\DR0 - ok
23:04:43.0935 8312 ================ Scan VBR ==================================
23:04:43.0941 8312 [ EB4DC819F461BD50ACC0515178BF2E90 ] \Device\Harddisk0\DR0\Partition1
23:04:43.0944 8312 \Device\Harddisk0\DR0\Partition1 - ok
23:04:43.0974 8312 [ 6FDCFB52F07356C38469B99738CD33B7 ] \Device\Harddisk0\DR0\Partition2
23:04:43.0978 8312 \Device\Harddisk0\DR0\Partition2 - ok
23:04:43.0979 8312 ============================================================
23:04:43.0979 8312 Scan finished
23:04:43.0979 8312 ============================================================
23:04:43.0994 7772 Detected object count: 0
23:04:43.0994 7772 Actual detected object count: 0
23:30:16.0779 2856 Deinitialize success

And here is the aswMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-21 23:06:38
-----------------------------
23:06:38.880 OS Version: Windows x64 6.1.7601 Service Pack 1
23:06:38.880 Number of processors: 4 586 0x2502
23:06:38.882 ComputerName: PERK-PC UserName: Perk
23:06:40.067 Initialize success
23:07:27.444 AVAST engine defs: 12082100
23:07:42.847 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
23:07:42.854 Disk 0 Vendor: WDC_WD25 01.0 Size: 238475MB BusType: 3
23:07:42.895 Disk 0 MBR read successfully
23:07:42.901 Disk 0 MBR scan
23:07:42.910 Disk 0 Windows VISTA default MBR code
23:07:42.916 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
23:07:42.932 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 81920
23:07:42.948 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 223434 MB offset 30801920
23:07:42.963 Disk 0 scanning C:\Windows\system32\drivers
23:07:54.094 Service scanning
23:08:18.589 Modules scanning
23:08:18.613 Disk 0 trace - called modules:
23:08:18.642 ntoskrnl.exe CLASSPNP.SYS disk.sys stdfltn.sys ACPI.sys iaStor.sys hal.dll
23:08:18.986 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80075d3060]
23:08:18.995 3 CLASSPNP.SYS[fffff8800181f43f] -> nt!IofCallDriver -> [0xfffffa8007470ad0]
23:08:19.005 5 stdfltn.sys[fffff88001b19af2] -> nt!IofCallDriver -> [0xfffffa80055df5a0]
23:08:19.014 7 ACPI.sys[fffff88000e1a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0xfffffa80055e0050]
23:08:20.273 AVAST engine scan C:\Windows
23:08:22.343 AVAST engine scan C:\Windows\system32
23:12:19.510 AVAST engine scan C:\Windows\system32\drivers
23:12:40.493 AVAST engine scan C:\Users\Perk
23:18:12.020 AVAST engine scan C:\ProgramData
23:19:05.620 Scan finished successfully
23:20:53.748 Disk 0 MBR has been saved successfully to "C:\Users\Perk\Desktop\MBR.dat"
23:20:53.761 The log file has been saved successfully to "C:\Users\Perk\Desktop\aswMBR.txt"

As for the ESET Online Scanner, there was no list because no threats were found.

Hope this helps!

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 22 August 2012 - 11:05 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 sperk11

sperk11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:43 AM

Posted 22 August 2012 - 12:03 PM

Ok, here's the MiniToolBox log:


MiniToolBox by Farbar Version: 23-07-2012
Ran by Perk (administrator) on 22-08-2012 at 12:47:09
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

DW1520 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Atheros AR8132 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled
set interface interface="Local Area Connection" forwarding=disabled advertise=disabled mtu=1500 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Wireless Network Connection" forwarding=disabled advertise=disabled mtu=1500 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Perk-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.ma.comcast.net.

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : hsd1.ma.comcast.net.
Description . . . . . . . . . . . : DW1520 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : C4-46-19-25-7F-E8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::8cd8:476:e77a:155%11(Preferred)
IPv4 Address. . . . . . . . . . . : 10.0.0.12(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, August 21, 2012 8:05:59 PM
Lease Expires . . . . . . . . . . : Wednesday, August 29, 2012 12:33:27 PM
Default Gateway . . . . . . . . . : 10.0.0.1
DHCP Server . . . . . . . . . . . : 10.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 230966809
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-B8-83-3E-00-26-B9-E4-0B-FA
DNS Servers . . . . . . . . . . . : 75.75.75.75
75.75.76.76
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8132 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 00-26-B9-E4-0B-FA
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.neu.edu:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.westell.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: cdns01.comcast.net
Address: 75.75.75.75

Name: google.com
Addresses: 2607:f8b0:4006:802::1001
173.194.43.6
173.194.43.0
173.194.43.3
173.194.43.2
173.194.43.4
173.194.43.9
173.194.43.5
173.194.43.8
173.194.43.1
173.194.43.14
173.194.43.7


Pinging google.com [173.194.43.8] with 32 bytes of data:
Reply from 173.194.43.8: bytes=32 time=48ms TTL=50
Reply from 173.194.43.8: bytes=32 time=49ms TTL=50

Ping statistics for 173.194.43.8:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 48ms, Maximum = 49ms, Average = 48ms
Server: cdns01.comcast.net
Address: 75.75.75.75

Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=561ms TTL=46
Reply from 98.139.183.24: bytes=32 time=668ms TTL=47

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 561ms, Maximum = 668ms, Average = 614ms
Server: cdns01.comcast.net
Address: 75.75.75.75

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...c4 46 19 25 7f e8 ......DW1520 Wireless-N WLAN Half-Mini Card
10...00 26 b9 e4 0b fa ......Atheros AR8132 PCI-E Fast Ethernet Controller
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.0.0.1 10.0.0.12 25
10.0.0.0 255.255.255.0 On-link 10.0.0.12 281
10.0.0.12 255.255.255.255 On-link 10.0.0.12 281
10.0.0.255 255.255.255.255 On-link 10.0.0.12 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.0.0.12 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.0.0.12 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::8cd8:476:e77a:155/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/22/2012 11:36:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/22/2012 11:36:34 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/22/2012 11:36:33 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/22/2012 11:36:28 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/22/2012 11:25:29 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 34094892

Error: (08/22/2012 11:25:29 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 34094892

Error: (08/22/2012 11:25:29 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/22/2012 01:57:28 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14212

Error: (08/22/2012 01:57:28 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14212

Error: (08/22/2012 01:57:28 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (08/22/2012 00:04:42 AM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 10:08:08 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 08:44:27 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 08:43:58 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 08:39:18 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 08:24:46 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 08:24:44 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 08:24:00 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 08:23:29 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (08/21/2012 08:20:49 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.


Microsoft Office Sessions:
=========================
Error: (02/18/2012 07:33:17 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 2239186 seconds with 60 seconds of active time. This session ended with a crash.

Error: (12/26/2010 06:07:30 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 182814 seconds with 120 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.3)
64 Bit HP CIO Components Installer (Version: 7.2.7)
AccelerometerP11 (Version: 2.00.00.16)
Adobe Acrobat X Pro - English, Français, Deutsch (Version: 10.1.4)
Adobe AIR (Version: 2.0.3.13070)
Adobe Flash Player 10 Plugin (Version: 10.0.45.2)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Reader 9.5.2 (Version: 9.5.2)
Advanced Audio FX Engine (Version: 1.12.05)
Advanced SystemCare 5 (Version: 5.2.0)
Alienware On-Screen Display (Version: 0.0.0.12C)
Amazon Kindle
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
AVG 2012 (Version: 12.0.2197)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2197)
Banctec Service Agreement (Version: 2.0.0)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 3.21)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Command Center (Version: 2.5.50.0)
CyberLink Power2Go (Version: 6.1.3224)
CyberLink YouCam (Version: 2.0.3131)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software (Version: 9.4.60)
Dell DataSafe Local Backup (Version: 9.4.60)
Dell Webcam Central (Version: 1.40.05)
DisplayLink Core Software (Version: 5.6.31854.0)
DisplayLink iPad Software (Version: 5.6.31870.0)
doubleTwist (Version: 3.2.1.14961)
Dropbox (Version: 1.4.7)
DW WLAN Card Utility (Version: 5.60.48.18)
EMSC (Version: 0.0.0.22C)
EndNote X3 (Version: 13.0.0.4094)
eReg (Version: 1.20.138.34)
erLT (Version: 1.20.0137)
ESET Online Scanner v3
File Type Assistant
Free File Viewer 2011
FYZip 1.00 (Version: 1.00)
Google Chrome (Version: 21.0.1180.83)
Google Talk Plugin (Version: 3.4.2.8800)
HP LinkUp Sender (Version: 2.01.026)
HTC Sync Manager (Version: 1.0.39.1)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2119)
Intel® Rapid Storage Technology (Version: 9.5.6.1001)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 18 (64-bit) (Version: 6.0.180)
Java™ 6 Update 31 (Version: 6.0.310)
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual J# 2.0 Redistributable Package
Microsoft Visual J# 2.0 Redistributable Package (Version: 2.0.50727)
Monitor Webcam Driver (1.01.02.0804)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA Drivers (Version: 1.10.59.37)
NVIDIA Updatus (Version: 1.0.3)
Parallels runtime modules (Version: 1.00.0000)
Parallels USB Driver (Version: 6.00.15054)
Pharos
QuickTime (Version: 7.72.80.56)
R for Windows 2.13.2 (Version: 2.13.2)
Realtek High Definition Audio Driver (Version: 6.0.1.6083)
Remote Graphics Sender (Version: 5.4.5)
ResearchSoft Direct Export Helper
SnapAPI (Version: 3.0.306)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.5.1012)
Synaptics Pointing Device Driver (Version: 15.0.4.0)
Tansee iPhone Transfer (Version: 5.0.0.0)
TuneJack 5.4.1 (Version: 5.4.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Xvid Video Codec (Version: 1.3.2)

========================= Memory info: ===================================

Percentage of memory in use: 70%
Total physical RAM: 3893.86 MB
Available physical RAM: 1151.32 MB
Total Pagefile: 7785.91 MB
Available Pagefile: 3599.15 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.27 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:218.2 GB) (Free:145.59 GB) NTFS

========================= Users: ========================================

User accounts for \\PERK-PC

Administrator ASPNET Guest
Perk UpdatusUser


**** End of log ****

And here's the FSS log:

Farbar Service Scanner Version: 06-08-2012
Ran by Perk (administrator) on 22-08-2012 at 12:50:18
Running from "C:\Users\Perk\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend: "%ProgramFiles(x86)%\Windows Defender\mpsvc.dll".


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

And the AdwCleaner log:

# AdwCleaner v1.801 - Logfile created 08/22/2012 at 12:52:00
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Perk - PERK-PC
# Boot Mode : Normal
# Running from : C:\Users\Perk\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Freeze.com

***** [Registre - GUID] *****

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v21.0.1180.83

File : C:\Users\Perk\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [971 octets] - [22/08/2012 12:52:00]

########## EOF - C:\AdwCleaner[S1].txt - [1098 octets] ##########

Thanks again!

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 22 August 2012 - 12:48 PM

Malwarebytes log?

Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the FSS log

#7 sperk11

sperk11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:43 AM

Posted 22 August 2012 - 01:20 PM

Sorry, here is the Malewarebytes log:


Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.21.13

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Perk :: PERK-PC [administrator]

Protection: Enabled

8/22/2012 12:58:10 PM
mbam-log-2012-08-22 (12-58-10).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 367289
Time elapsed: 55 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

And here is the FSS log:

Farbar Service Scanner Version: 06-08-2012
Ran by Perk (administrator) on 22-08-2012 at 14:15:06
Running from "C:\Users\Perk\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend: "%ProgramFiles(x86)%\Windows Defender\mpsvc.dll".


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Firewall is working now! Thanks so much!

Windows update is still giving me the message "Windows Update cannot currently check for updates, because the service is not running. You may need to restart your computer", though.

#8 sperk11

sperk11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:43 AM

Posted 22 August 2012 - 01:23 PM

Also, here is the Windows Repair log:


Starting Repairs...
Start (8/22/2012 1:59:14 PM)

Reset Registry Permissions 01/03
HKEY_CURRENT_USER & Sub Keys
Start (8/22/2012 1:59:14 PM)
Done (8/22/2012 1:59:23 PM)

Reset Registry Permissions 02/03
HKEY_LOCAL_MACHINE & Sub Keys
Start (8/22/2012 1:59:24 PM)
Done (8/22/2012 2:01:06 PM)

Reset Registry Permissions 03/03
HKEY_CLASSES_ROOT & Sub Keys
Start (8/22/2012 2:01:06 PM)
Done (8/22/2012 2:03:50 PM)

Repair WMI
Start (8/22/2012 2:03:50 PM)
Step 01/03 - Deleting WMI Repository...
Step 02/03 - Rebuilding WMI Repository...
Step 03/03 - Registering WMI...
Invalid Global Switch. Invalid Global Switch. Done (8/22/2012 2:05:34 PM)

Repair Windows Firewall
Start (8/22/2012 2:05:34 PM)
The Windows Firewall service is not started.

More help is available by typing NET HELPMSG 3521.

The service name is invalid.

More help is available by typing NET HELPMSG 2185.

The service name is invalid.

More help is available by typing NET HELPMSG 2185.

Done (8/22/2012 2:05:49 PM)

Remove Policies Set By Infections
Start (8/22/2012 2:05:49 PM)
Done (8/22/2012 2:05:51 PM)

Repair Winsock & DNS Cache
Start (8/22/2012 2:05:51 PM)
Done (8/22/2012 2:06:06 PM)

Cleaning up empty logs...

All Selected Repairs Done.
Done (8/22/2012 2:06:06 PM)
Total Repair Time: 00:07:08


...YOU MUST RESTART YOUR SYSTEM...

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 22 August 2012 - 02:27 PM

Download

BITS
wuauserv

Launch them,click YES

Restart the PC,updates should work now


Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#10 sperk11

sperk11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:43 AM

Posted 22 August 2012 - 04:14 PM

All issues have been resolved!!! I cannot thank you enough!

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 22 August 2012 - 04:57 PM

You're most welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users