Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Not able to start Windows Firewall


  • Please log in to reply
15 replies to this topic

#1 AAKV

AAKV

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 10 September 2012 - 07:58 PM

Hi all,

Lent my laptop to one of my friends and was infected by a virus. (I should've removed admin rights for my user before giving it to him). Lot of suspicious redirections and ads. Scanned using MSSE and found a Trojan. Removed it. It wouldn't stop the redirects though. Found that hosts file was hijacked and restored it. Solved the redirection problem. Yay!! But I still can't get the firewall running. FSS reports some dlls missing even though I can see them there.

Hope someone can help. Here's the log.

=========
Farbar Service Scanner Version: 06-08-2012
Ran by Administrator (administrator) on 11-09-2012 at 11:55:42
Running from "D:\Users\Rockgod\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Disabled. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========

ATTENTION!=====> \Windows\System32\nsisvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\nsiproxy.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\dhcpcore.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\afd.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\tdx.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\Drivers\tcpip.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\dnsrslvr.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\mpssvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\bfe.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\mpsdrv.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\SDRSVC.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\vssvc.exe FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wscsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wbem\WMIsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wuaueng.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\qmgr.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\es.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\cryptsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Program Files\Windows Defender\MpSvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\ipnathlp.dll FILE IS MISSING.


ATTENTION!=====> \Windows\System32\svchost.exe FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\rpcss.dll FILE IS MISSING AND SHOULD BE RESTORED.



**** End of log ****
==========

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:33 AM

Posted 10 September 2012 - 09:02 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 AAKV

AAKV
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 11 September 2012 - 07:04 AM

Thanks Naren for the response. The logs for the scans are shown below.

TDSSKiller

14:01:06.0754 0932 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
14:01:08.0095 0932 ============================================================
14:01:08.0095 0932 Current date / time: 2012/09/11 14:01:08.0095
14:01:08.0095 0932 SystemInfo:
14:01:08.0095 0932
14:01:08.0095 0932 OS Version: 6.1.7601 ServicePack: 1.0
14:01:08.0095 0932 Product type: Workstation
14:01:08.0095 0932 ComputerName: ZION2
14:01:08.0111 0932 UserName: Administrator
14:01:08.0111 0932 Windows directory: C:\Windows
14:01:08.0111 0932 System windows directory: C:\Windows
14:01:08.0111 0932 Running under WOW64
14:01:08.0111 0932 Processor architecture: Intel x64
14:01:08.0111 0932 Number of processors: 8
14:01:08.0111 0932 Page size: 0x1000
14:01:08.0111 0932 Boot type: Normal boot
14:01:08.0111 0932 ============================================================
14:01:08.0844 0932 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:01:08.0860 0932 ============================================================
14:01:08.0860 0932 \Device\Harddisk0\DR0:
14:01:08.0860 0932 MBR partitions:
14:01:08.0860 0932 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
14:01:08.0860 0932 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x780063B
14:01:08.0875 0932 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x9560800, BlocksNum 0x32A00000
14:01:08.0891 0932 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x3BF61000, BlocksNum 0x63FD800
14:01:08.0922 0932 ============================================================
14:01:08.0985 0932 C: <-> \Device\Harddisk0\DR0\Partition2
14:01:09.0016 0932 D: <-> \Device\Harddisk0\DR0\Partition3
14:01:09.0063 0932 G: <-> \Device\Harddisk0\DR0\Partition4
14:01:09.0063 0932 ============================================================
14:01:09.0063 0932 Initialize success
14:01:09.0063 0932 ============================================================
14:01:30.0091 3948 ============================================================
14:01:30.0091 3948 Scan started
14:01:30.0091 3948 Mode: Manual; TDLFS;
14:01:30.0091 3948 ============================================================
14:01:30.0622 3948 ================ Scan system memory ========================
14:01:30.0622 3948 System memory - ok
14:01:30.0622 3948 ================ Scan services =============================
14:01:30.0903 3948 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:01:30.0918 3948 1394ohci - ok
14:01:31.0012 3948 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:01:31.0012 3948 ACPI - ok
14:01:31.0027 3948 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:01:31.0027 3948 AcpiPmi - ok
14:01:31.0183 3948 [ 047BD1EB681453A7FE492A71802AC9F3 ] AdobeActiveFileMonitor10.0 C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
14:01:31.0183 3948 AdobeActiveFileMonitor10.0 - ok
14:01:31.0324 3948 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:01:31.0324 3948 AdobeARMservice - ok
14:01:31.0511 3948 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:01:31.0511 3948 AdobeFlashPlayerUpdateSvc - ok
14:01:31.0589 3948 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:01:31.0605 3948 adp94xx - ok
14:01:31.0667 3948 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:01:31.0683 3948 adpahci - ok
14:01:31.0714 3948 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:01:31.0714 3948 adpu320 - ok
14:01:31.0745 3948 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:01:31.0745 3948 AeLookupSvc - ok
14:01:31.0870 3948 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
14:01:31.0870 3948 AERTFilters - ok
14:01:31.0948 3948 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
14:01:31.0963 3948 AFD - ok
14:01:32.0026 3948 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:01:32.0026 3948 agp440 - ok
14:01:32.0057 3948 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:01:32.0073 3948 ALG - ok
14:01:32.0104 3948 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:01:32.0119 3948 aliide - ok
14:01:32.0135 3948 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
14:01:32.0135 3948 amdide - ok
14:01:32.0197 3948 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:01:32.0213 3948 AmdK8 - ok
14:01:32.0260 3948 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:01:32.0260 3948 AmdPPM - ok
14:01:32.0369 3948 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:01:32.0369 3948 amdsata - ok
14:01:32.0416 3948 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:01:32.0431 3948 amdsbs - ok
14:01:32.0463 3948 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:01:32.0463 3948 amdxata - ok
14:01:32.0541 3948 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
14:01:32.0541 3948 AppID - ok
14:01:32.0572 3948 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:01:32.0572 3948 AppIDSvc - ok
14:01:32.0634 3948 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:01:32.0650 3948 Appinfo - ok
14:01:32.0759 3948 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:01:32.0759 3948 Apple Mobile Device - ok
14:01:32.0853 3948 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:01:32.0853 3948 arc - ok
14:01:32.0884 3948 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:01:32.0884 3948 arcsas - ok
14:01:33.0055 3948 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:01:33.0055 3948 aspnet_state - ok
14:01:33.0087 3948 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:01:33.0087 3948 AsyncMac - ok
14:01:33.0149 3948 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
14:01:33.0149 3948 atapi - ok
14:01:33.0274 3948 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:01:33.0289 3948 AudioEndpointBuilder - ok
14:01:33.0305 3948 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:01:33.0321 3948 AudioSrv - ok
14:01:33.0352 3948 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:01:33.0367 3948 AxInstSV - ok
14:01:33.0445 3948 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:01:33.0461 3948 b06bdrv - ok
14:01:33.0570 3948 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:01:33.0570 3948 b57nd60a - ok
14:01:33.0633 3948 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:01:33.0633 3948 BDESVC - ok
14:01:33.0664 3948 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:01:33.0664 3948 Beep - ok
14:01:33.0757 3948 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
14:01:33.0757 3948 BFE - ok
14:01:33.0867 3948 [ 1B63F2B7CA6B5290CC124CDD07520BC9 ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
14:01:33.0867 3948 BingDesktopUpdate - ok
14:01:33.0929 3948 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
14:01:33.0945 3948 BITS - ok
14:01:34.0007 3948 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:01:34.0007 3948 blbdrive - ok
14:01:34.0163 3948 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service D:\Program Files\Bonjour\mDNSResponder.exe
14:01:34.0179 3948 Bonjour Service - ok
14:01:34.0225 3948 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:01:34.0225 3948 bowser - ok
14:01:34.0257 3948 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:01:34.0257 3948 BrFiltLo - ok
14:01:34.0303 3948 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:01:34.0303 3948 BrFiltUp - ok
14:01:34.0350 3948 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
14:01:34.0350 3948 Browser - ok
14:01:34.0381 3948 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:01:34.0397 3948 Brserid - ok
14:01:34.0397 3948 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:01:34.0397 3948 BrSerWdm - ok
14:01:34.0428 3948 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:01:34.0428 3948 BrUsbMdm - ok
14:01:34.0475 3948 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:01:34.0475 3948 BrUsbSer - ok
14:01:34.0553 3948 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
14:01:34.0553 3948 BthEnum - ok
14:01:34.0600 3948 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:01:34.0600 3948 BTHMODEM - ok
14:01:34.0662 3948 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
14:01:34.0662 3948 BthPan - ok
14:01:34.0740 3948 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
14:01:34.0740 3948 BTHPORT - ok
14:01:34.0818 3948 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:01:34.0818 3948 bthserv - ok
14:01:34.0896 3948 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
14:01:34.0896 3948 BTHUSB - ok
14:01:34.0943 3948 [ 7A2CE8C1BF4DAA1F2766E21E9CA11078 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
14:01:34.0943 3948 btwampfl - ok
14:01:34.0990 3948 [ A75BF6802A967F5AACECC3C67FEBDF55 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
14:01:34.0990 3948 btwaudio - ok
14:01:35.0037 3948 [ D895DC213EDBDA5FCC53AAD1F1E0E63B ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
14:01:35.0037 3948 btwavdt - ok
14:01:35.0317 3948 [ 692F8648D7686D91E34A65AC698019D8 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
14:01:35.0333 3948 btwdins - ok
14:01:35.0349 3948 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
14:01:35.0364 3948 btwl2cap - ok
14:01:35.0364 3948 [ 6D7AA2BDE0135599C5F230D69DB3B420 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
14:01:35.0364 3948 btwrchid - ok
14:01:35.0489 3948 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:01:35.0489 3948 cdfs - ok
14:01:35.0551 3948 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:01:35.0551 3948 cdrom - ok
14:01:35.0645 3948 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
14:01:35.0661 3948 CertPropSvc - ok
14:01:35.0707 3948 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:01:35.0707 3948 circlass - ok
14:01:35.0785 3948 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:01:35.0801 3948 CLFS - ok
14:01:35.0895 3948 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:01:35.0910 3948 clr_optimization_v2.0.50727_32 - ok
14:01:35.0957 3948 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:01:35.0973 3948 clr_optimization_v2.0.50727_64 - ok
14:01:36.0051 3948 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:01:36.0066 3948 clr_optimization_v4.0.30319_32 - ok
14:01:36.0113 3948 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:01:36.0113 3948 clr_optimization_v4.0.30319_64 - ok
14:01:36.0160 3948 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:01:36.0175 3948 CmBatt - ok
14:01:36.0207 3948 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:01:36.0207 3948 cmdide - ok
14:01:36.0285 3948 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
14:01:36.0285 3948 CNG - ok
14:01:36.0347 3948 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:01:36.0347 3948 Compbatt - ok
14:01:36.0425 3948 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:01:36.0425 3948 CompositeBus - ok
14:01:36.0441 3948 COMSysApp - ok
14:01:36.0487 3948 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:01:36.0487 3948 crcdisk - ok
14:01:36.0597 3948 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:01:36.0597 3948 CryptSvc - ok
14:01:36.0706 3948 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
14:01:36.0706 3948 CtClsFlt - ok
14:01:36.0862 3948 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
14:01:36.0877 3948 cvhsvc - ok
14:01:36.0924 3948 [ 1CA90212A99DB6975C344826D11055C9 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
14:01:36.0924 3948 dc3d - ok
14:01:36.0987 3948 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:01:37.0002 3948 DcomLaunch - ok
14:01:37.0065 3948 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:01:37.0065 3948 defragsvc - ok
14:01:37.0143 3948 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:01:37.0143 3948 DfsC - ok
14:01:37.0205 3948 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
14:01:37.0205 3948 Dhcp - ok
14:01:37.0299 3948 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:01:37.0299 3948 discache - ok
14:01:37.0361 3948 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:01:37.0408 3948 Disk - ok
14:01:37.0455 3948 [ 676108C4E3AA6F6B34633748BD0BEBD9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:01:37.0455 3948 Dnscache - ok
14:01:37.0579 3948 DockLoginService - ok
14:01:37.0611 3948 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:01:37.0626 3948 dot3svc - ok
14:01:37.0657 3948 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
14:01:37.0657 3948 DPS - ok
14:01:37.0704 3948 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:01:37.0720 3948 drmkaud - ok
14:01:37.0782 3948 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:01:37.0798 3948 DXGKrnl - ok
14:01:37.0845 3948 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:01:37.0845 3948 EapHost - ok
14:01:37.0938 3948 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:01:37.0954 3948 ebdrv - ok
14:01:37.0985 3948 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
14:01:38.0001 3948 EFS - ok
14:01:38.0110 3948 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:01:38.0110 3948 ehRecvr - ok
14:01:38.0157 3948 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:01:38.0157 3948 ehSched - ok
14:01:38.0203 3948 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:01:38.0219 3948 elxstor - ok
14:01:38.0250 3948 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:01:38.0250 3948 ErrDev - ok
14:01:38.0328 3948 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:01:38.0328 3948 EventSystem - ok
14:01:38.0453 3948 [ B56D9602DB5FE1C116B1CA5EFD8E2E50 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
14:01:38.0469 3948 EvtEng - ok
14:01:38.0500 3948 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:01:38.0500 3948 exfat - ok
14:01:38.0547 3948 [ 2C1D443E14F376E8331F52F135DCA9EF ] FACAP C:\Windows\system32\DRIVERS\facap.sys
14:01:38.0547 3948 FACAP - ok
14:01:38.0562 3948 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:01:38.0562 3948 fastfat - ok
14:01:38.0718 3948 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
14:01:38.0734 3948 Fax - ok
14:01:38.0749 3948 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:01:38.0749 3948 fdc - ok
14:01:38.0781 3948 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:01:38.0781 3948 fdPHost - ok
14:01:38.0781 3948 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:01:38.0796 3948 FDResPub - ok
14:01:38.0796 3948 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:01:38.0796 3948 FileInfo - ok
14:01:38.0827 3948 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:01:38.0827 3948 Filetrace - ok
14:01:38.0843 3948 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:01:38.0843 3948 flpydisk - ok
14:01:38.0874 3948 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:01:38.0874 3948 FltMgr - ok
14:01:38.0937 3948 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
14:01:38.0952 3948 FontCache - ok
14:01:39.0030 3948 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:01:39.0030 3948 FontCache3.0.0.0 - ok
14:01:39.0046 3948 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:01:39.0046 3948 FsDepends - ok
14:01:39.0108 3948 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:01:39.0108 3948 Fs_Rec - ok
14:01:39.0139 3948 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:01:39.0139 3948 fvevol - ok
14:01:39.0186 3948 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:01:39.0202 3948 gagp30kx - ok
14:01:39.0264 3948 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:01:39.0264 3948 GEARAspiWDM - ok
14:01:39.0327 3948 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
14:01:39.0327 3948 GoToAssist - ok
14:01:39.0405 3948 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
14:01:39.0420 3948 gpsvc - ok
14:01:39.0529 3948 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:01:39.0529 3948 gusvc - ok
14:01:39.0561 3948 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:01:39.0561 3948 hcw85cir - ok
14:01:39.0623 3948 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
14:01:39.0623 3948 HDAudBus - ok
14:01:39.0670 3948 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
14:01:39.0685 3948 HECIx64 - ok
14:01:39.0717 3948 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:01:39.0717 3948 HidBatt - ok
14:01:39.0748 3948 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:01:39.0748 3948 HidBth - ok
14:01:39.0826 3948 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:01:39.0826 3948 HidIr - ok
14:01:39.0873 3948 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
14:01:39.0873 3948 hidserv - ok
14:01:39.0919 3948 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:01:39.0919 3948 HidUsb - ok
14:01:39.0982 3948 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:01:39.0997 3948 hkmsvc - ok
14:01:40.0060 3948 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:01:40.0060 3948 HomeGroupListener - ok
14:01:40.0153 3948 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:01:40.0153 3948 HomeGroupProvider - ok
14:01:40.0247 3948 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:01:40.0247 3948 HpSAMD - ok
14:01:40.0309 3948 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:01:40.0325 3948 HTTP - ok
14:01:40.0356 3948 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:01:40.0356 3948 hwpolicy - ok
14:01:40.0419 3948 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:01:40.0419 3948 i8042prt - ok
14:01:40.0450 3948 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
14:01:40.0465 3948 iaStor - ok
14:01:40.0621 3948 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:01:40.0621 3948 IAStorDataMgrSvc - ok
14:01:40.0668 3948 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:01:40.0668 3948 iaStorV - ok
14:01:40.0762 3948 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:01:40.0777 3948 idsvc - ok
14:01:40.0809 3948 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:01:40.0809 3948 iirsp - ok
14:01:40.0871 3948 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
14:01:40.0887 3948 IKEEXT - ok
14:01:40.0933 3948 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
14:01:40.0933 3948 Impcd - ok
14:01:41.0011 3948 [ 491DADCC74327FABC85E0AB80AF8F204 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:01:41.0043 3948 IntcAzAudAddService - ok
14:01:41.0089 3948 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
14:01:41.0089 3948 intelide - ok
14:01:41.0136 3948 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:01:41.0136 3948 intelppm - ok
14:01:41.0214 3948 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:01:41.0214 3948 IPBusEnum - ok
14:01:41.0261 3948 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:01:41.0261 3948 IpFilterDriver - ok
14:01:41.0277 3948 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:01:41.0277 3948 IPMIDRV - ok
14:01:41.0308 3948 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:01:41.0323 3948 IPNAT - ok
14:01:41.0448 3948 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service D:\Program Files\iPod\bin\iPodService.exe
14:01:41.0464 3948 iPod Service - ok
14:01:41.0495 3948 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:01:41.0495 3948 IRENUM - ok
14:01:41.0511 3948 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:01:41.0511 3948 isapnp - ok
14:01:41.0542 3948 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:01:41.0542 3948 iScsiPrt - ok
14:01:41.0729 3948 [ 9C6F3F69163133FB8E56AC4A6E163452 ] ISODrive d:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
14:01:41.0760 3948 ISODrive - ok
14:01:41.0823 3948 [ 08ED99A8271CF0B808C595D88ECEE779 ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
14:01:41.0823 3948 JMCR - ok
14:01:41.0854 3948 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:01:41.0854 3948 kbdclass - ok
14:01:41.0885 3948 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:01:41.0885 3948 kbdhid - ok
14:01:41.0916 3948 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
14:01:41.0916 3948 KeyIso - ok
14:01:41.0947 3948 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:01:41.0963 3948 KSecDD - ok
14:01:41.0979 3948 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:01:41.0979 3948 KSecPkg - ok
14:01:41.0994 3948 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:01:41.0994 3948 ksthunk - ok
14:01:42.0088 3948 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:01:42.0088 3948 KtmRm - ok
14:01:42.0135 3948 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:01:42.0166 3948 LanmanServer - ok
14:01:42.0244 3948 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:01:42.0259 3948 LanmanWorkstation - ok
14:01:42.0400 3948 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:01:42.0415 3948 lltdio - ok
14:01:42.0462 3948 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:01:42.0462 3948 lltdsvc - ok
14:01:42.0509 3948 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:01:42.0525 3948 lmhosts - ok
14:01:42.0571 3948 [ 23D990150D56B670A62B21B9ABDD45EE ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:01:42.0587 3948 LMS - ok
14:01:42.0665 3948 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:01:42.0665 3948 LSI_FC - ok
14:01:42.0665 3948 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:01:42.0665 3948 LSI_SAS - ok
14:01:42.0712 3948 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:01:42.0712 3948 LSI_SAS2 - ok
14:01:42.0712 3948 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:01:42.0712 3948 LSI_SCSI - ok
14:01:42.0743 3948 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:01:42.0743 3948 luafv - ok
14:01:42.0821 3948 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
14:01:42.0821 3948 MBAMProtector - ok
14:01:42.0821 3948 MBAMService - ok
14:01:42.0930 3948 [ 485405DE203E88B3FE4294A2EA48D7EE ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.271\McCHSvc.exe
14:01:42.0946 3948 McComponentHostService - ok
14:01:42.0961 3948 McMPFSvc - ok
14:01:43.0102 3948 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:01:43.0102 3948 Mcx2Svc - ok
14:01:43.0117 3948 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:01:43.0117 3948 megasas - ok
14:01:43.0133 3948 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:01:43.0149 3948 MegaSR - ok
14:01:43.0289 3948 Microsoft SharePoint Workspace Audit Service - ok
14:01:43.0351 3948 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:01:43.0414 3948 MMCSS - ok
14:01:43.0429 3948 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:01:43.0429 3948 Modem - ok
14:01:43.0461 3948 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:01:43.0461 3948 monitor - ok
14:01:43.0492 3948 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:01:43.0492 3948 mouclass - ok
14:01:43.0523 3948 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:01:43.0523 3948 mouhid - ok
14:01:43.0585 3948 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:01:43.0585 3948 mountmgr - ok
14:01:43.0663 3948 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:01:43.0679 3948 MozillaMaintenance - ok
14:01:43.0726 3948 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
14:01:43.0726 3948 MpFilter - ok
14:01:43.0773 3948 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:01:43.0773 3948 mpio - ok
14:01:43.0788 3948 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:01:43.0788 3948 mpsdrv - ok
14:01:43.0851 3948 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:01:43.0866 3948 MpsSvc - ok
14:01:43.0913 3948 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:01:43.0913 3948 MRxDAV - ok
14:01:43.0944 3948 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:01:43.0944 3948 mrxsmb - ok
14:01:43.0991 3948 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:01:43.0991 3948 mrxsmb10 - ok
14:01:44.0022 3948 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:01:44.0038 3948 mrxsmb20 - ok
14:01:44.0053 3948 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:01:44.0053 3948 msahci - ok
14:01:44.0085 3948 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:01:44.0085 3948 msdsm - ok
14:01:44.0131 3948 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:01:44.0131 3948 MSDTC - ok
14:01:44.0178 3948 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:01:44.0178 3948 Msfs - ok
14:01:44.0209 3948 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:01:44.0209 3948 mshidkmdf - ok
14:01:44.0225 3948 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:01:44.0225 3948 msisadrv - ok
14:01:44.0256 3948 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:01:44.0272 3948 MSiSCSI - ok
14:01:44.0272 3948 msiserver - ok
14:01:44.0319 3948 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:01:44.0319 3948 MSKSSRV - ok
14:01:44.0397 3948 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc d:\Program Files\Microsoft Security Client\MsMpEng.exe
14:01:44.0397 3948 MsMpSvc - ok
14:01:44.0443 3948 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:01:44.0443 3948 MSPCLOCK - ok
14:01:44.0475 3948 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:01:44.0475 3948 MSPQM - ok
14:01:44.0584 3948 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:01:44.0584 3948 MsRPC - ok
14:01:44.0615 3948 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:01:44.0615 3948 mssmbios - ok
14:01:44.0646 3948 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:01:44.0646 3948 MSTEE - ok
14:01:44.0693 3948 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:01:44.0709 3948 MTConfig - ok
14:01:44.0755 3948 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:01:44.0755 3948 Mup - ok
14:01:44.0818 3948 [ A9BC2302FBDF52C8AF4E2FC966288D21 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
14:01:44.0833 3948 MyWiFiDHCPDNS - ok
14:01:44.0865 3948 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
14:01:44.0880 3948 napagent - ok
14:01:44.0958 3948 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:01:44.0958 3948 NativeWifiP - ok
14:01:45.0005 3948 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
14:01:45.0021 3948 NDIS - ok
14:01:45.0036 3948 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:01:45.0052 3948 NdisCap - ok
14:01:45.0114 3948 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:01:45.0114 3948 NdisTapi - ok
14:01:45.0145 3948 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:01:45.0145 3948 Ndisuio - ok
14:01:45.0177 3948 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:01:45.0177 3948 NdisWan - ok
14:01:45.0223 3948 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:01:45.0223 3948 NDProxy - ok
14:01:45.0286 3948 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
14:01:45.0286 3948 Netaapl - ok
14:01:45.0348 3948 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:01:45.0348 3948 NetBIOS - ok
14:01:45.0379 3948 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:01:45.0395 3948 NetBT - ok
14:01:45.0395 3948 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
14:01:45.0395 3948 Netlogon - ok
14:01:45.0473 3948 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:01:45.0489 3948 Netman - ok
14:01:45.0598 3948 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:01:45.0613 3948 NetMsmqActivator - ok
14:01:45.0645 3948 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:01:45.0660 3948 NetPipeActivator - ok
14:01:45.0676 3948 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:01:45.0691 3948 netprofm - ok
14:01:45.0691 3948 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:01:45.0691 3948 NetTcpActivator - ok
14:01:45.0723 3948 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:01:45.0723 3948 NetTcpPortSharing - ok
14:01:45.0894 3948 [ 18555F48844C2861D9DCE8F2B7223AE5 ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
14:01:45.0957 3948 NETw5s64 - ok
14:01:46.0035 3948 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:01:46.0050 3948 nfrd960 - ok
14:01:46.0081 3948 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:01:46.0081 3948 NisDrv - ok
14:01:46.0128 3948 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv d:\Program Files\Microsoft Security Client\NisSrv.exe
14:01:46.0191 3948 NisSrv - ok
14:01:46.0253 3948 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:01:46.0253 3948 NlaSvc - ok
14:01:46.0393 3948 [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc C:\Windows\SysWOW64\nlssrv32.exe
14:01:46.0393 3948 nlsX86cc - ok
14:01:46.0487 3948 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:01:46.0487 3948 Npfs - ok
14:01:46.0518 3948 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:01:46.0518 3948 nsi - ok
14:01:46.0534 3948 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:01:46.0549 3948 nsiproxy - ok
14:01:46.0659 3948 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:01:46.0705 3948 Ntfs - ok
14:01:46.0768 3948 [ 317020D31F1696334679B9D0416EB62E ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
14:01:46.0768 3948 NuidFltr - ok
14:01:46.0799 3948 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:01:46.0799 3948 Null - ok
14:01:46.0877 3948 [ D584ABB6A308933A5F72B46C9E5A783F ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
14:01:46.0877 3948 nusb3hub - ok
14:01:46.0924 3948 [ 345B9C04E2036DA4346E3249A5BDFD06 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
14:01:46.0924 3948 nusb3xhc - ok
14:01:47.0002 3948 [ 857FB74754EBFF94EE3AD40788740916 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
14:01:47.0002 3948 NVHDA - ok
14:01:47.0251 3948 [ 5B87B16D2781982E32BAB6D359034C37 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:01:47.0439 3948 nvlddmkm - ok
14:01:47.0517 3948 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:01:47.0517 3948 nvraid - ok
14:01:47.0532 3948 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:01:47.0532 3948 nvstor - ok
14:01:47.0595 3948 [ E0978D69D66403BEB006BED61B27B883 ] nvsvc C:\Windows\system32\nvvsvc.exe
14:01:47.0610 3948 nvsvc - ok
14:01:47.0673 3948 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:01:47.0673 3948 nv_agp - ok
14:01:47.0688 3948 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:01:47.0688 3948 ohci1394 - ok
14:01:47.0766 3948 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:01:47.0766 3948 ose - ok
14:01:47.0969 3948 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc D:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:01:48.0187 3948 osppsvc - ok
14:01:48.0234 3948 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:01:48.0250 3948 p2pimsvc - ok
14:01:48.0312 3948 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:01:48.0328 3948 p2psvc - ok
14:01:48.0375 3948 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:01:48.0390 3948 Parport - ok
14:01:48.0421 3948 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:01:48.0437 3948 partmgr - ok
14:01:48.0468 3948 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:01:48.0468 3948 PcaSvc - ok
14:01:48.0515 3948 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
14:01:48.0515 3948 pci - ok
14:01:48.0546 3948 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
14:01:48.0546 3948 pciide - ok
14:01:48.0562 3948 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:01:48.0562 3948 pcmcia - ok
14:01:48.0593 3948 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:01:48.0593 3948 pcw - ok
14:01:48.0671 3948 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:01:48.0687 3948 PEAUTH - ok
14:01:48.0749 3948 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:01:48.0749 3948 PerfHost - ok
14:01:48.0843 3948 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
14:01:48.0874 3948 pla - ok
14:01:48.0952 3948 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:01:48.0967 3948 PlugPlay - ok
14:01:48.0999 3948 PnkBstrA - ok
14:01:49.0030 3948 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:01:49.0030 3948 PNRPAutoReg - ok
14:01:49.0061 3948 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:01:49.0077 3948 PNRPsvc - ok
14:01:49.0123 3948 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
14:01:49.0123 3948 Point64 - ok
14:01:49.0155 3948 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:01:49.0155 3948 PolicyAgent - ok
14:01:49.0217 3948 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:01:49.0217 3948 Power - ok
14:01:49.0279 3948 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:01:49.0279 3948 PptpMiniport - ok
14:01:49.0295 3948 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:01:49.0295 3948 Processor - ok
14:01:49.0357 3948 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
14:01:49.0357 3948 ProfSvc - ok
14:01:49.0373 3948 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:01:49.0373 3948 ProtectedStorage - ok
14:01:49.0420 3948 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:01:49.0420 3948 Psched - ok
14:01:49.0498 3948 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
14:01:49.0498 3948 PxHlpa64 - ok
14:01:49.0529 3948 [ 0928BD20273625622722FE1DE5BBDE57 ] qicflt C:\Windows\system32\DRIVERS\qicflt.sys
14:01:49.0529 3948 qicflt - ok
14:01:49.0669 3948 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:01:49.0701 3948 ql2300 - ok
14:01:49.0747 3948 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:01:49.0747 3948 ql40xx - ok
14:01:49.0841 3948 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:01:49.0841 3948 QWAVE - ok
14:01:49.0872 3948 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:01:49.0872 3948 QWAVEdrv - ok
14:01:49.0903 3948 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:01:49.0903 3948 RasAcd - ok
14:01:49.0966 3948 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:01:49.0966 3948 RasAgileVpn - ok
14:01:49.0981 3948 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:01:49.0997 3948 RasAuto - ok
14:01:50.0044 3948 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:01:50.0044 3948 Rasl2tp - ok
14:01:50.0091 3948 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
14:01:50.0106 3948 RasMan - ok
14:01:50.0122 3948 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:01:50.0122 3948 RasPppoe - ok
14:01:50.0137 3948 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:01:50.0137 3948 RasSstp - ok
14:01:50.0169 3948 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:01:50.0184 3948 rdbss - ok
14:01:50.0200 3948 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:01:50.0200 3948 rdpbus - ok
14:01:50.0231 3948 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:01:50.0231 3948 RDPCDD - ok
14:01:50.0247 3948 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:01:50.0247 3948 RDPENCDD - ok
14:01:50.0278 3948 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:01:50.0278 3948 RDPREFMP - ok
14:01:50.0325 3948 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:01:50.0325 3948 RDPWD - ok
14:01:50.0356 3948 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:01:50.0371 3948 rdyboost - ok
14:01:50.0481 3948 [ 0AA473966357C4A41B5EB19649EB6E5E ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
14:01:50.0496 3948 RegSrvc - ok
14:01:50.0543 3948 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:01:50.0543 3948 RemoteAccess - ok
14:01:50.0590 3948 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:01:50.0605 3948 RemoteRegistry - ok
14:01:50.0652 3948 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
14:01:50.0668 3948 RFCOMM - ok
14:01:50.0668 3948 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:01:50.0668 3948 RpcEptMapper - ok
14:01:50.0699 3948 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:01:50.0715 3948 RpcLocator - ok
14:01:50.0777 3948 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
14:01:50.0777 3948 RpcSs - ok
14:01:50.0839 3948 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:01:50.0839 3948 rspndr - ok
14:01:50.0933 3948 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
14:01:50.0933 3948 RTL8167 - ok
14:01:50.0949 3948 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
14:01:50.0949 3948 SamSs - ok
14:01:51.0011 3948 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:01:51.0011 3948 sbp2port - ok
14:01:51.0042 3948 SBRE - ok
14:01:51.0058 3948 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:01:51.0058 3948 SCardSvr - ok
14:01:51.0120 3948 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:01:51.0120 3948 scfilter - ok
14:01:51.0183 3948 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
14:01:51.0214 3948 Schedule - ok
14:01:51.0245 3948 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:01:51.0245 3948 SCPolicySvc - ok
14:01:51.0261 3948 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
14:01:51.0261 3948 sdbus - ok
14:01:51.0307 3948 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:01:51.0323 3948 SDRSVC - ok
14:01:51.0370 3948 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:01:51.0370 3948 secdrv - ok
14:01:51.0401 3948 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
14:01:51.0417 3948 seclogon - ok
14:01:51.0448 3948 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
14:01:51.0448 3948 SENS - ok
14:01:51.0479 3948 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:01:51.0479 3948 SensrSvc - ok
14:01:51.0526 3948 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:01:51.0526 3948 Serenum - ok
14:01:51.0557 3948 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:01:51.0557 3948 Serial - ok
14:01:51.0619 3948 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:01:51.0619 3948 sermouse - ok
14:01:51.0666 3948 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:01:51.0666 3948 SessionEnv - ok
14:01:51.0697 3948 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
14:01:51.0697 3948 sffdisk - ok
14:01:51.0760 3948 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:01:51.0760 3948 sffp_mmc - ok
14:01:51.0760 3948 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
14:01:51.0760 3948 sffp_sd - ok
14:01:51.0807 3948 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:01:51.0807 3948 sfloppy - ok
14:01:51.0900 3948 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
14:01:51.0916 3948 Sftfs - ok
14:01:51.0978 3948 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
14:01:51.0994 3948 sftlist - ok
14:01:52.0025 3948 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
14:01:52.0025 3948 Sftplay - ok
14:01:52.0041 3948 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
14:01:52.0041 3948 Sftredir - ok
14:01:52.0165 3948 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
14:01:52.0181 3948 SftService - ok
14:01:52.0197 3948 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
14:01:52.0197 3948 Sftvol - ok
14:01:52.0212 3948 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
14:01:52.0228 3948 sftvsa - ok
14:01:52.0290 3948 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:01:52.0290 3948 ShellHWDetection - ok
14:01:52.0321 3948 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:01:52.0337 3948 SiSRaid2 - ok
14:01:52.0368 3948 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:01:52.0368 3948 SiSRaid4 - ok
14:01:52.0462 3948 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
14:01:52.0462 3948 SkypeUpdate - ok
14:01:52.0493 3948 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:01:52.0493 3948 Smb - ok
14:01:52.0540 3948 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:01:52.0540 3948 SNMPTRAP - ok
14:01:52.0665 3948 [ 870D528F96F62F8C0784509FDCA85FF5 ] SplashtopRemoteService C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
14:01:52.0665 3948 SplashtopRemoteService - ok
14:01:52.0696 3948 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:01:52.0696 3948 spldr - ok
14:01:52.0805 3948 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
14:01:52.0836 3948 Spooler - ok
14:01:53.0039 3948 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
14:01:53.0055 3948 sppsvc - ok
14:01:53.0086 3948 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:01:53.0086 3948 sppuinotify - ok
14:01:53.0148 3948 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
14:01:53.0164 3948 srv - ok
14:01:53.0179 3948 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:01:53.0179 3948 srv2 - ok
14:01:53.0211 3948 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:01:53.0211 3948 srvnet - ok
14:01:53.0257 3948 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:01:53.0273 3948 SSDPSRV - ok
14:01:53.0289 3948 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:01:53.0289 3948 SstpSvc - ok
14:01:53.0382 3948 [ 1CFA4A1F3C7BB4C8F299E00428EB8677 ] SSUService C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
14:01:53.0382 3948 SSUService - ok
14:01:53.0445 3948 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys
14:01:53.0445 3948 stdcfltn - ok
14:01:53.0476 3948 Steam Client Service - ok
14:01:53.0569 3948 [ 8C37C35FB2D9692DDA0EDDBCA58BFE18 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:01:53.0569 3948 Stereo Service - ok
14:01:53.0616 3948 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:01:53.0632 3948 stexstor - ok
14:01:53.0694 3948 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
14:01:53.0710 3948 stisvc - ok
14:01:53.0757 3948 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:01:53.0757 3948 swenum - ok
14:01:53.0897 3948 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:01:53.0897 3948 SwitchBoard - ok
14:01:53.0959 3948 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:01:53.0975 3948 swprv - ok
14:01:54.0053 3948 [ 36F506C894E1EA59C65FAF6398BDF49A ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
14:01:54.0069 3948 SynTP - ok
14:01:54.0131 3948 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
14:01:54.0147 3948 SysMain - ok
14:01:54.0209 3948 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:01:54.0225 3948 TabletInputService - ok
14:01:54.0256 3948 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:01:54.0271 3948 TapiSrv - ok
14:01:54.0287 3948 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:01:54.0287 3948 TBS - ok
14:01:54.0381 3948 [ 912107716BAB424C7870E8E6AF5E07E1 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:01:54.0412 3948 Tcpip - ok
14:01:54.0427 3948 [ 912107716BAB424C7870E8E6AF5E07E1 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:01:54.0443 3948 TCPIP6 - ok
14:01:54.0474 3948 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:01:54.0474 3948 tcpipreg - ok
14:01:54.0505 3948 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:01:54.0505 3948 TDPIPE - ok
14:01:54.0568 3948 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:01:54.0568 3948 TDTCP - ok
14:01:54.0615 3948 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:01:54.0615 3948 tdx - ok
14:01:54.0646 3948 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:01:54.0646 3948 TermDD - ok
14:01:54.0724 3948 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
14:01:54.0739 3948 TermService - ok
14:01:54.0755 3948 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:01:54.0755 3948 Themes - ok
14:01:54.0786 3948 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:01:54.0802 3948 THREADORDER - ok
14:01:54.0942 3948 [ E319535A8124F25C1C9C5288CACF3101 ] TomTomHOMEService d:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
14:01:54.0942 3948 TomTomHOMEService - ok
14:01:55.0020 3948 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:01:55.0020 3948 TrkWks - ok
14:01:55.0145 3948 [ EA43DE1743C1BA0D2D17B8DB90C91D88 ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
14:01:55.0145 3948 truecrypt - ok
14:01:55.0223 3948 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:01:55.0239 3948 TrustedInstaller - ok
14:01:55.0270 3948 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:01:55.0270 3948 tssecsrv - ok
14:01:55.0379 3948 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:01:55.0379 3948 TsUsbFlt - ok
14:01:55.0457 3948 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:01:55.0457 3948 tunnel - ok
14:01:55.0535 3948 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
14:01:55.0535 3948 TurboB - ok
14:01:55.0644 3948 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
14:01:55.0675 3948 TurboBoost - ok
14:01:55.0707 3948 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:01:55.0707 3948 uagp35 - ok
14:01:55.0769 3948 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:01:55.0769 3948 udfs - ok
14:01:55.0800 3948 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:01:55.0816 3948 UI0Detect - ok
14:01:55.0847 3948 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:01:55.0847 3948 uliagpkx - ok
14:01:55.0925 3948 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:01:55.0925 3948 umbus - ok
14:01:55.0956 3948 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:01:55.0956 3948 UmPass - ok
14:01:56.0097 3948 [ CBDEE152D73200EE49031A26310B9D3E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:01:56.0128 3948 UNS - ok
14:01:56.0143 3948 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:01:56.0159 3948 upnphost - ok
14:01:56.0221 3948 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:01:56.0221 3948 USBAAPL64 - ok
14:01:56.0299 3948 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
14:01:56.0299 3948 usbaudio - ok
14:01:56.0331 3948 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:01:56.0331 3948 usbccgp - ok
14:01:56.0362 3948 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:01:56.0362 3948 usbcir - ok
14:01:56.0409 3948 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
14:01:56.0409 3948 usbehci - ok
14:01:56.0455 3948 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:01:56.0471 3948 usbhub - ok
14:01:56.0518 3948 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:01:56.0533 3948 usbohci - ok
14:01:56.0580 3948 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:01:56.0580 3948 usbprint - ok
14:01:56.0611 3948 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:01:56.0611 3948 usbscan - ok
14:01:56.0721 3948 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:01:56.0736 3948 USBSTOR - ok
14:01:56.0767 3948 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:01:56.0767 3948 usbuhci - ok
14:01:56.0877 3948 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
14:01:56.0877 3948 usbvideo - ok
14:01:56.0908 3948 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:01:56.0908 3948 UxSms - ok
14:01:56.0923 3948 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
14:01:56.0923 3948 VaultSvc - ok
14:01:56.0955 3948 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:01:56.0955 3948 vdrvroot - ok
14:01:57.0001 3948 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
14:01:57.0017 3948 vds - ok
14:01:57.0033 3948 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:01:57.0048 3948 vga - ok
14:01:57.0064 3948 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:01:57.0064 3948 VgaSave - ok
14:01:57.0095 3948 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:01:57.0111 3948 vhdmp - ok
14:01:57.0111 3948 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:01:57.0111 3948 viaide - ok
14:01:57.0204 3948 [ 21C96AA588D3993191761A08DBAABB15 ] vmm C:\Windows\system32\Drivers\vmm.sys
14:01:57.0220 3948 vmm - ok
14:01:57.0235 3948 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:01:57.0235 3948 volmgr - ok
14:01:57.0282 3948 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:01:57.0298 3948 volmgrx - ok
14:01:57.0329 3948 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:01:57.0329 3948 volsnap - ok
14:01:57.0391 3948 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:01:57.0391 3948 vsmraid - ok
14:01:57.0469 3948 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
14:01:57.0485 3948 VSS - ok
14:01:57.0516 3948 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:01:57.0516 3948 vwifibus - ok
14:01:57.0547 3948 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:01:57.0547 3948 vwififlt - ok
14:01:57.0563 3948 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
14:01:57.0579 3948 vwifimp - ok
14:01:57.0625 3948 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:01:57.0625 3948 W32Time - ok
14:01:57.0641 3948 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:01:57.0657 3948 WacomPen - ok
14:01:57.0688 3948 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:01:57.0688 3948 WANARP - ok
14:01:57.0703 3948 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:01:57.0703 3948 Wanarpv6 - ok
14:01:57.0766 3948 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:01:57.0781 3948 WatAdminSvc - ok
14:01:57.0844 3948 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
14:01:57.0859 3948 wbengine - ok
14:01:57.0891 3948 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:01:57.0906 3948 WbioSrvc - ok
14:01:57.0953 3948 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:01:57.0953 3948 wcncsvc - ok
14:01:57.0984 3948 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:01:58.0000 3948 WcsPlugInService - ok
14:01:58.0062 3948 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:01:58.0062 3948 Wd - ok
14:01:58.0109 3948 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
14:01:58.0109 3948 WDC_SAM - ok
14:01:58.0140 3948 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:01:58.0156 3948 Wdf01000 - ok
14:01:58.0171 3948 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:01:58.0171 3948 WdiServiceHost - ok
14:01:58.0171 3948 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:01:58.0171 3948 WdiSystemHost - ok
14:01:58.0203 3948 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:01:58.0218 3948 WebClient - ok
14:01:58.0265 3948 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:01:58.0265 3948 Wecsvc - ok
14:01:58.0312 3948 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:01:58.0312 3948 wercplsupport - ok
14:01:58.0359 3948 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:01:58.0374 3948 WerSvc - ok
14:01:58.0405 3948 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:01:58.0405 3948 WfpLwf - ok
14:01:58.0452 3948 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
14:01:58.0452 3948 WimFltr - ok
14:01:58.0468 3948 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:01:58.0468 3948 WIMMount - ok
14:01:58.0499 3948 WinDefend - ok
14:01:58.0515 3948 WinHttpAutoProxySvc - ok
14:01:58.0593 3948 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:01:58.0593 3948 Winmgmt - ok
14:01:58.0655 3948 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
14:01:58.0686 3948 WinRM - ok
14:01:58.0717 3948 [ FE88B288356E7B47B74B13372ADD906D ] winusb C:\Windows\system32\DRIVERS\WinUsb.sys
14:01:58.0717 3948 winusb - ok
14:01:58.0811 3948 [ F3EDC9909A02E6BCA863EB702D37B505 ] WinVNC4 d:\Program Files (x86)\RealVNC\VNC4\WinVNC4.exe
14:01:58.0827 3948 WinVNC4 - ok
14:01:58.0889 3948 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:01:58.0920 3948 Wlansvc - ok
14:01:58.0983 3948 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:01:58.0983 3948 wlcrasvc - ok
14:01:59.0139 3948 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:01:59.0170 3948 wlidsvc - ok
14:01:59.0248 3948 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:01:59.0248 3948 WmiAcpi - ok
14:01:59.0295 3948 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:01:59.0295 3948 wmiApSrv - ok
14:01:59.0341 3948 WMPNetworkSvc - ok
14:01:59.0419 3948 [ 83B6CA03C846FCD47F9883D77D1EB27B ] WMZuneComm d:\Program Files\Zune\WMZuneComm.exe
14:01:59.0466 3948 WMZuneComm - ok
14:01:59.0497 3948 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:01:59.0497 3948 WPCSvc - ok
14:01:59.0529 3948 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:01:59.0544 3948 WPDBusEnum - ok
14:01:59.0575 3948 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:01:59.0575 3948 ws2ifsl - ok
14:01:59.0607 3948 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
14:01:59.0622 3948 wscsvc - ok
14:01:59.0622 3948 WSearch - ok
14:01:59.0731 3948 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
14:01:59.0763 3948 wuauserv - ok
14:01:59.0794 3948 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:01:59.0794 3948 WudfPf - ok
14:01:59.0825 3948 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:01:59.0841 3948 WUDFRd - ok
14:01:59.0872 3948 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:01:59.0872 3948 wudfsvc - ok
14:01:59.0903 3948 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:01:59.0919 3948 WwanSvc - ok
14:02:00.0121 3948 [ 67B787C34FB2888D01B130AE007042D8 ] ZuneNetworkSvc d:\Program Files\Zune\ZuneNss.exe
14:02:00.0246 3948 ZuneNetworkSvc - ok
14:02:00.0309 3948 [ 4D89FC1C20CF655739EFAC5DA81A67BC ] ZuneWlanCfgSvc d:\Program Files\Zune\ZuneWlanCfgSvc.exe
14:02:00.0355 3948 ZuneWlanCfgSvc - ok
14:02:00.0402 3948 ================ Scan global ===============================
14:02:00.0433 3948 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:02:00.0480 3948 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
14:02:00.0480 3948 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
14:02:00.0527 3948 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:02:00.0558 3948 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:02:00.0558 3948 [Global] - ok
14:02:00.0558 3948 ================ Scan MBR ==================================
14:02:00.0574 3948 [ 8E734BD7AA1D4F7E9AF58DF495F6CF9E ] \Device\Harddisk0\DR0
14:02:00.0808 3948 \Device\Harddisk0\DR0 - ok
14:02:00.0808 3948 ================ Scan VBR ==================================
14:02:00.0808 3948 [ 8D524292D55A8B645515EE373233B30A ] \Device\Harddisk0\DR0\Partition1
14:02:00.0808 3948 \Device\Harddisk0\DR0\Partition1 - ok
14:02:00.0870 3948 [ 1EBAC779E9A487B5D14A0EEFC505F126 ] \Device\Harddisk0\DR0\Partition2
14:02:00.0870 3948 \Device\Harddisk0\DR0\Partition2 - ok
14:02:00.0870 3948 [ 6C5DBC33501DA36F8D96667B2320F7E1 ] \Device\Harddisk0\DR0\Partition3
14:02:00.0870 3948 \Device\Harddisk0\DR0\Partition3 - ok
14:02:00.0901 3948 [ 0B19DB57FCA4DA275E787FB54EBFB60F ] \Device\Harddisk0\DR0\Partition4
14:02:00.0901 3948 \Device\Harddisk0\DR0\Partition4 - ok
14:02:00.0901 3948 ============================================================
14:02:00.0901 3948 Scan finished
14:02:00.0901 3948 ============================================================
14:02:00.0917 4940 Detected object count: 0
14:02:00.0917 4940 Actual detected object count: 0
14:02:42.0186 5744 Deinitialize success


aswMBR

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-11 14:04:08
-----------------------------
14:04:08.348 OS Version: Windows x64 6.1.7601 Service Pack 1
14:04:08.348 Number of processors: 8 586 0x1E05
14:04:08.348 ComputerName: ZION2 UserName:
14:04:08.691 Initialize success
14:07:20.628 AVAST engine defs: 12091001
14:07:44.949 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
14:07:44.949 Disk 0 Vendor: SAMSUNG_ 2AK1 Size: 610480MB BusType: 3
14:07:44.964 Disk 0 MBR read successfully
14:07:44.964 Disk 0 MBR scan
14:07:44.980 Disk 0 unknown MBR code
14:07:44.980 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
14:07:44.995 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 80325
14:07:45.073 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 61440 MB offset 30800325
14:07:45.073 Disk 0 Partition - 00 0F Extended LBA 533999 MB offset 156633086
14:07:45.105 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 414720 MB offset 156633088
14:07:45.136 Disk 0 Partition - 00 05 Extended 51196 MB offset 1005979648
14:07:45.167 Disk 0 Partition 5 00 07 HPFS/NTFS NTFS 51195 MB offset 1005981696
14:07:45.198 Disk 0 Partition - 00 05 Extended 480 MB offset 1960177052
14:07:45.229 Disk 0 Partition 6 00 83 Linux 476 MB offset 1110839296
14:07:45.245 Disk 0 Partition - 00 05 Extended 1907 MB offset 2066011548
14:07:45.292 Disk 0 Partition 7 00 82 Linux swap 1906 MB offset 1111816192
14:07:45.323 Disk 0 Partition - 00 05 Extended 65695 MB offset 2070900738
14:07:45.339 Disk 0 Partition 8 00 83 Linux 65694 MB offset 1115721728
14:07:45.417 Disk 0 scanning C:\Windows\system32\drivers
14:08:03.809 Service scanning
14:08:39.595 Modules scanning
14:08:39.611 Disk 0 trace - called modules:
14:08:39.642 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys iaStor.sys hal.dll
14:08:39.642 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80066d6060]
14:08:39.658 3 CLASSPNP.SYS[fffff88001a8043f] -> nt!IofCallDriver -> [0xfffffa800653aa50]
14:08:39.673 5 stdcfltn.sys[fffff880017c9c52] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800636e050]
14:08:39.985 AVAST engine scan C:\Windows
14:08:42.513 AVAST engine scan C:\Windows\system32
14:13:36.725 AVAST engine scan C:\Windows\system32\drivers
14:13:57.457 AVAST engine scan C:\Users\Administrator
14:14:27.581 AVAST engine scan C:\ProgramData
14:20:03.739 Scan finished successfully
14:20:20.712 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
14:20:20.712 The log file has been saved successfully to "C:\aswMBR.txt"


ESET Log

D:\Users\Rockgod\Pictures\Misc\290 Master Optical Illusions\290 Master Optical Illusions\The GRANDMASTER Blackjack Robot [Freeware]\Grand Master Blackjack - ROBOT.exe Win32/PrimeCasino application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:33 AM

Posted 11 September 2012 - 07:05 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 AAKV

AAKV
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 11 September 2012 - 06:17 PM

Thanks again for the response.

Malwarebytes scan did not show any infections.

Mini Toolbox Log

MiniToolBox by Farbar Version: 23-07-2012
Ran by Administrator (administrator) on 12-09-2012 at 09:11:37
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


192.168.1.100 nas
192.168.1.1 router

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6200 AGN = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set subinterface interface=?$) subinterface=ethernet_9 mtu=1477


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Zion2
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 00-27-10-DF-15-B1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-27-10-DF-15-B1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6200 AGN
Physical Address. . . . . . . . . : 00-27-10-DF-15-B0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b83e:2073:e5eb:2289%19(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, 12 September 2012 9:02:19 AM
Lease Expires . . . . . . . . . . : Thursday, 13 September 2012 9:02:20 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 486549264
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-A5-A9-E8-F0-4D-A2-63-12-9F
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 1C-65-9D-AC-50-BE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F0-4D-A2-63-12-9F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {0CBA5CAE-C5E9-4F1B-945C-1B7337FAEE04}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{E1091FDD-7533-4099-BE81-0192E6EF5DCE}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{EF9FD404-B5BB-410B-B850-D65407472DF0}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {74BA93A4-2B07-4ADA-A80D-2ED152830449}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{0447DFBF-7220-4166-9AFF-A0AC52DC2813}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #8
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{AE9F09A4-2128-4204-AFC2-8CA6E25A9175}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #9
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{F994122B-8E9B-44FB-8DBE-85656F52C223}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #10
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2404:6800:4006:803::1007
74.125.237.104
74.125.237.105
74.125.237.110
74.125.237.96
74.125.237.97
74.125.237.98
74.125.237.99
74.125.237.100
74.125.237.101
74.125.237.102
74.125.237.103


Pinging google.com [74.125.237.103] with 32 bytes of data:
Reply from 74.125.237.103: bytes=32 time=36ms TTL=56
Reply from 74.125.237.103: bytes=32 time=37ms TTL=57

Ping statistics for 74.125.237.103:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 36ms, Maximum = 37ms, Average = 36ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=260ms TTL=51
Reply from 98.138.253.109: bytes=32 time=255ms TTL=52

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 255ms, Maximum = 260ms, Average = 257ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
21...00 27 10 df 15 b1 ......Microsoft Virtual WiFi Miniport Adapter #2
20...00 27 10 df 15 b1 ......Microsoft Virtual WiFi Miniport Adapter
19...00 27 10 df 15 b0 ......Intel® Centrino® Advanced-N 6200 AGN
12...1c 65 9d ac 50 be ......Bluetooth Device (Personal Area Network)
10...f0 4d a2 63 12 9f ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
26...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
23...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #8
25...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #9
29...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #10
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.7 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.7 281
192.168.1.7 255.255.255.255 On-link 192.168.1.7 281
192.168.1.255 255.255.255.255 On-link 192.168.1.7 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.7 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.7 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
19 281 fe80::/64 On-link
19 281 fe80::b83e:2073:e5eb:2289/128
On-link
1 306 ff00::/8 On-link
19 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 \Windows\SysWOW64\napinsp.dll [File Not found] ()
Catalog5 03 \Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 04 \Windows\SysWOW64\pnrpnsp.dll [File Not found] ()
Catalog5 05 \Windows\SysWOW64\wshbth.dll [File Not found] ()
Catalog5 06 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 07 \Windows\SysWOW64\winrnr.dll [File Not found] ()
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 02 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 03 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 04 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 05 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 06 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 07 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 08 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 09 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 10 \Windows\SysWOW64\mswsock.dll [File Not found] ()
Catalog9 11 \Windows\SysWOW64\mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 \Windows\System32\napinsp.dll [File Not found] ()
x64-Catalog5 03 \Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 04 \Windows\System32\pnrpnsp.dll [File Not found] ()
x64-Catalog5 05 \Windows\System32\wshbth.dll [File Not found] ()
x64-Catalog5 06 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 07 \Windows\System32\winrnr.dll [File Not found] ()
x64-Catalog5 08 D:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 02 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 03 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 04 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 05 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 06 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 07 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 08 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 09 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 10 \Windows\System32\mswsock.dll [File Not found] ()
x64-Catalog9 11 \Windows\System32\mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/12/2012 04:53:32 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (09/12/2012 04:06:44 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/12/2012 00:45:34 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.

System Error:
0xC0000039 (unresolvable).

Error: (09/12/2012 00:45:34 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.

System Error:
0xC0000039 (unresolvable).

Error: (09/11/2012 02:22:10 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/11/2012 02:22:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/11/2012 02:22:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/11/2012 02:22:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/11/2012 02:21:48 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/11/2012 09:05:30 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005


System errors:
=============
Error: (09/12/2012 09:03:49 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/12/2012 09:03:49 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/12/2012 09:02:50 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (09/12/2012 09:02:32 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/12/2012 09:02:31 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error:
%%1066

Error: (09/12/2012 09:01:57 AM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (09/12/2012 09:01:44 AM) (Source: Service Control Manager) (User: )
Description: The Dock Login Service service failed to start due to the following error:
%%2

Error: (09/12/2012 04:30:43 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because of an IO failure on volume C:.

Error: (09/12/2012 00:43:43 AM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.

Error: (09/12/2012 00:42:27 AM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.


Microsoft Office Sessions:
=========================
Error: (09/12/2012 04:53:32 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (09/12/2012 04:06:44 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestd:\Users\Rockgod\downloads\esetsmartinstaller_enu.exe

Error: (09/12/2012 00:45:34 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.

System Error:
0xC0000039 (unresolvable)

Error: (09/12/2012 00:45:34 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.

System Error:
0xC0000039 (unresolvable)

Error: (09/11/2012 02:22:10 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestD:\Users\Rockgod\Downloads\esetsmartinstaller_enu.exe

Error: (09/11/2012 02:22:05 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestD:\Users\Rockgod\Downloads\esetsmartinstaller_enu.exe

Error: (09/11/2012 02:22:05 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestD:\Users\Rockgod\Downloads\esetsmartinstaller_enu.exe

Error: (09/11/2012 02:22:05 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestD:\Users\Rockgod\Downloads\esetsmartinstaller_enu.exe

Error: (09/11/2012 02:21:48 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestD:\Users\Rockgod\Downloads\esetsmartinstaller_enu.exe

Error: (09/11/2012 09:05:30 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Ad-Aware Browsing Protection (Version: 1.0.0.5)
Adobe After Effects CS5.5 (Version: 10.5)
Adobe AIR (Version: 3.2.0.2070)
Adobe Community Help (Version: 3.5.23)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Photoshop Lightroom 4.1 64-bit (Version: 4.1.2)
Adobe Premiere Elements 10 (Version: 10.0)
Adobe Premiere Pro CS5.5 (Version: 5.5)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Story (Version: 1.0.571)
Advanced Audio FX Engine (Version: 1.12.05)
Amnesia: The Dark Descent
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
µTorrent (Version: 3.1.3)
Audacity 2.0
Battlelog Web Plugins (Version: 1.104.0)
Bing Desktop (Version: 1.0.45.0)
BioShock
Bonjour (Version: 3.0.0.10)
Bulkr (Version: 1.4)
Bulkr (Version: v1.4)
calibre (Version: 0.8.13)
Canon Easy-PhotoPrint EX
Canon IJ Network Tool
Canon MOV Decoder (Version: 1.5.0.7)
Canon MOV Encoder (Version: 1.3.1.3)
Canon MovieEdit Task for ZoomBrowser EX (Version: 3.4.1.9)
Canon MP Navigator EX 4.0
Canon MP495 series MP Drivers
Canon My Printer
Canon Solution Menu EX
Canon Utilities Digital Photo Professional 3.8 (Version: 3.8.1.0)
Canon Utilities EOS Utility (Version: 2.8.1.0)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities Picture Style Editor (Version: 1.7.0.0)
Canon Utilities WFT Utility (Version: 3.5.1.1)
Canon Utilities ZoomBrowser EX (Version: 6.5.1.15)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.3.0.4)
CDBurnerXP (Version: 4.3.8.2631)
Color Efex Pro 4 (Version: 4.0.0.2)
CutePDF Writer 2.8
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.48)
Dell DataSafe Online (Version: 1.2.0011)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Webcam Central (Version: 2.00.35)
Diablo III (Version: 1.0.3.10235)
Driver Manager (Version: 8.1)
e-tax 2011 (Version: 11.1.704)
Effects Suite 64-bit (Version: 10.0.1)
Elements 10 Organizer (Version: 10.0)
ESET Online Scanner v3
ESN Sonar (Version: 0.70.4)
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
FileZilla Client 3.5.3 (Version: 3.5.3)
Flickr Uploadr 3.2.1
Foxit Reader (Version: 4.3.1.118)
Foxit Reader (Version: 4.3.1.323)
Google Earth (Version: 6.0.1.2032)
Google Talk (remove only)
Google Talk Plugin (Version: 3.5.1.8982)
GoToAssist 8.0.0.514
Greenshot
HandBrake 0.9.6 (Version: 0.9.6)
HDR Efex Pro (Version: 1.2.0.3)
Hugin 2011.0.0 (Version: 2011.0.0 hg_0fd3e119979c)
iCloud (Version: 1.1.0.40)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® PROSet/Wireless WiFi Software (Version: 13.02.1000)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
Intel® Turbo Boost Technology Driver (Version: 01.02.00.1002)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Internet Explorer (Enable DEP)
Internode Monthly Usage Meter 8.1z
IP Filter Updater 0.3 (Version: 0.3)
IrfanView (remove only) (Version: 4.32)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 20 (Version: 6.0.200)
Java™ 6 Update 22 (64-bit) (Version: 6.0.220)
Java™ 6 Update 24 (Version: 6.0.240)
JMicron Flash Media Controller Driver (Version: 1.0.50.2)
Junk Mail filter update (Version: 15.4.3502.0922)
LAME v3.99.3 (for Windows)
Magic Bullet Suite 64-bit (Version: 11.1.2)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
McAfee Security Scan Plus (Version: 3.0.271.4)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Camera Codec Pack (Version: 16.0.0652.0621)
Microsoft Expression Blend 3 SDK (Version: 1.0.1343.0)
Microsoft Expression Blend 4 (Version: 4.0.20901.0)
Microsoft Expression Blend 4 Add-in for Adobe FXG Import (Version: 1.0.10901.0)
Microsoft Expression Blend SDK for .NET 4 (Version: 2.0.20525.0)
Microsoft Expression Blend SDK for Silverlight 4 (Version: 2.0.20525.0)
Microsoft Expression Blend SDK for Windows Phone 7 (Version: 2.0.20901.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Research Cliplets (Version: 1.0.2)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50826.0)
Microsoft Silverlight Tools for Visual Studio 2010 (Version: 10.0.30319.400)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Express for Windows Phone - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31119)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31124)
Microsoft Windows Phone 7 Developer Resources (Version: 7.0.7003.0)
Microsoft Windows Phone Developer Tools - ENU (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (ARP entry) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (Redists) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (Shared Components) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (Visual Studio) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 (XnaLiveProxy) (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 Documentation (Version: 4.0.20823.0)
Microsoft XNA Game Studio 4.0 Windows Phone Extensions (Version: 4.0.20823.0)
Microsoft XNA Game Studio Platform Tools (Version: 1.3.0.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 15.0 (x86 en-US) (Version: 15.0)
Mozilla Maintenance Service (Version: 15.0)
MP3 Cutter 1.1.1
Mp3 Music Editor v5.5.7
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Notepad++ (Version: 5.8.7)
NVIDIA 3D Vision Driver 266.39 (Version: 266.39)
NVIDIA Control Panel 266.39 (Version: 266.39)
NVIDIA Graphics Driver 266.39 (Version: 266.39)
NVIDIA HD Audio Driver 1.1.13.1 (Version: 1.1.13.1)
NVIDIA Install Application (Version: 2.265.39.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6639)
OpenAL
OpenOffice.org 3.2 (Version: 3.2.9502)
Opera 11.62 (Version: 11.62.1347)
Origin (Version: 8.3.1.9)
Paint.NET v3.5.8 (Version: 3.58.0)
PDF Settings CS6 (Version: 11.0)
Picasa 3 (Version: 3.8)
PRE10STI64Installer (Version: 1.0)
PunkBuster Services (Version: 0.988)
PuTTY version 0.60 (Version: 0.60)
PxMergeModule (Version: 1.00.0000)
Quickset64 (Version: 10.8.5)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver (Version: 6.0.1.6194)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.27.0)
Safari (Version: 5.34.57.2)
Sharpener Pro 3.0 (Version: 3.0.0.8)
Sid Meier's Civilization V
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.10 (Version: 5.10.116)
SmartSound Common Data (Version: 1.1.0)
SmartSound Premiere Elements 10 x64 Plugin (Version: 5.70.0001)
SmartSound Sonicfire Pro 5 (Version: 5.7.1)
Snapseed (Version: 1.1.0)
Splashtop Streamer (Version: 2.0.0.8)
StarCraft II (Version: 1.3.6.19269)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 15.1.4.0)
The KMPlayer (remove only)
The Poppit! Show
TomTom HOME 2.8.3.2499 (Version: 2.8.3.2499)
TomTom HOME Visual Studio Merge Modules (Version: 1.0.2)
TrueCrypt (Version: 7.0a)
UltraISO Premium V9.36
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Viveza 2 (Version: 2.0.0.7)
VLC media player 2.0.2 (Version: 2.0.2)
VNC Free Edition 4.1.3 (Version: 4.1.3)
WCF RIA Services V1.0 SP1 (Version: 4.1.60114.0)
WIDCOMM Bluetooth Software (Version: 6.3.0.6300)
Winamp (Version: 5.621 )
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
Windows Phone 7 Add-in for Visual Studio 2010 - ENU (Version: 10.0.30319)
Windows Phone Emulator x64 - ENU (Version: 10.0.30319)
WinRAR archiver
WinSCP 4.2.9 (Version: 4.2.9)
WPF Toolkit February 2010 (Version 3.5.50211.1) (Version: 3.5.50211.1)
Yahoo! Messenger
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)

========================= Devices: ================================

Name: Intel® Turbo Boost Technology Driver
Description: Intel® Turbo Boost Technology Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: Impcd
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: SBRE
Description: SBRE
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SBRE
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: ST Micro Accelerometer
Description: ST Micro Accelerometer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: ST Microelectronics
Service: Acceler
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


========================= Memory info: ===================================

Percentage of memory in use: 32%
Total physical RAM: 6076.38 MB
Available physical RAM: 4120.84 MB
Total Pagefile: 12150.95 MB
Available Pagefile: 10020.07 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.54 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:60 GB) (Free:14.06 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:405 GB) (Free:25.24 GB) NTFS
5 Drive g: () (Fixed) (Total:50 GB) (Free:8.72 GB) NTFS

========================= Users: ========================================

User accounts for \\ZION2

Administrator Guest Mcx1-ZION2
Rockgod

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================


**** End of log ****

FSS log

Farbar Service Scanner Version: 06-08-2012
Ran by Administrator (administrator) on 12-09-2012 at 09:15:15
Running from "D:\Users\Rockgod\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Disabled. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========

ATTENTION!=====> \Windows\System32\nsisvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\nsiproxy.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\dhcpcore.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\afd.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\tdx.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\Drivers\tcpip.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\dnsrslvr.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\mpssvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\bfe.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\mpsdrv.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\SDRSVC.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\vssvc.exe FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wscsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wbem\WMIsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wuaueng.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\qmgr.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\es.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\cryptsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Program Files\Windows Defender\MpSvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\ipnathlp.dll FILE IS MISSING.


ATTENTION!=====> \Windows\System32\svchost.exe FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\rpcss.dll FILE IS MISSING AND SHOULD BE RESTORED.



**** End of log ****

adware cleaner did not generate any log after restart. Is there a specific place it stores it logs?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:33 AM

Posted 11 September 2012 - 06:19 PM

Click on startmenu and type

cmd

Right click on it,run as administrator and run this command

sfc /scannow

After scan completes,restart the PC

Download a new copy of farbar service scanner and post the new log

#7 AAKV

AAKV
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 12 September 2012 - 05:12 AM

Ran sfc, rebooted the machine and here's the FSS log.

Farbar Service Scanner Version: 06-08-2012
Ran by Administrator (administrator) on 12-09-2012 at 20:08:15
Running from "D:\Users\Rockgod\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Disabled. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========

ATTENTION!=====> \Windows\System32\nsisvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\nsiproxy.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\dhcpcore.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\afd.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\tdx.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\Drivers\tcpip.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\dnsrslvr.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\mpssvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\bfe.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\drivers\mpsdrv.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\SDRSVC.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\vssvc.exe FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wscsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wbem\WMIsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\wuaueng.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\qmgr.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\es.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\cryptsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.

\Program Files\Windows Defender\MpSvc.dll => MD5 is legit

ATTENTION!=====> \Windows\System32\ipnathlp.dll FILE IS MISSING.


ATTENTION!=====> \Windows\System32\svchost.exe FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> \Windows\System32\rpcss.dll FILE IS MISSING AND SHOULD BE RESTORED.



**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:33 AM

Posted 12 September 2012 - 09:14 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#9 AAKV

AAKV
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 12 September 2012 - 09:54 AM

Thanks for your responses so far Naren.

Here's the log.

Rkill 2.3.11 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/13/2012 12:52:29 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* Advanced Explorer Setting Removed: HideIcons [HKCU]
* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\Administrator\Desktop\rkill\rkill-09-13-2012-12-52-44.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\.exe\shell found and deleted!


Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* Windows Firewall (MpsSvc) is not Running.
Startup Type set to: Automatic

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Disabled

* iphlpsvc [Missing Service]

* SharedAccess [Missing ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/13/2012 12:52:45 AM
Execution time: 0 hours(s), 0 minute(s), and 15 seconds(s)

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:33 AM

Posted 12 September 2012 - 10:27 AM

Do you have previous restore point before you were infected?

#11 AAKV

AAKV
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 12 September 2012 - 05:54 PM

No. I mean I had loads of them but I presume that the infection deleted them.

Seems like there's no hope for me :(

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:33 AM

Posted 12 September 2012 - 10:11 PM

Download

system look

Launch it and copy this script
:filefind
svchost.exe

Click on LOOK,post the generated log

Edited by narenxp, 12 September 2012 - 10:11 PM.


#13 AAKV

AAKV
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 13 September 2012 - 04:10 AM

Naren,

Here's the output

SystemLook 30.07.11 by jpshortstuff
Log created at 19:06 on 13/09/2012 by Administrator
Administrator - Elevation successful

========== filefind ==========

Searching for "svchost.exe"
C:\Windows\System32\svchost.exe --a---- 27136 bytes [23:31 13/07/2009] [01:39 14/07/2009] C78655BC80301D76ED4FEF1C1EA40A7D
C:\Windows\SysWOW64\svchost.exe --a---- 20992 bytes [23:19 13/07/2009] [01:14 14/07/2009] 54A47F6B5E09A77E61649109C6A08866
C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe --a---- 27136 bytes [23:31 13/07/2009] [01:39 14/07/2009] C78655BC80301D76ED4FEF1C1EA40A7D
C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe --a---- 20992 bytes [23:19 13/07/2009] [01:14 14/07/2009] 54A47F6B5E09A77E61649109C6A08866

-= EOF =-

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:33 AM

Posted 13 September 2012 - 04:31 AM

Files are actually there.Not sure why farbar scanner shows it as missing

Download

Sharedaccess

Launch it and click YES


Press Windows+R key and type

regedit and click ok

go to

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SharedAccess

Right click on it-permissions

Click on ADD and type

Everyone and click ok

Now Click on Everyone

Below you have permission for users

Select full control and click ok

Press Windows+R key and type

services.msc and click ok

Start windows firewall service

Any current issues before we wrap up?

#15 AAKV

AAKV
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 13 September 2012 - 06:30 AM

The firewall is up and running now. Thanks so much Naren for all your help!!

In a way, I'm glad that my laptop got infected. I got a chance to know about all these tools. If it isn't too much trouble, could you point me to tutorials where I can know more about this stuff?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users