Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

McAfee Firewall Will Not Stay On


  • Please log in to reply
26 replies to this topic

#1 TKI

TKI

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 09:39 AM

Hello,

I think I may have picked up an infection either Sunday or Monday. Monday, McAfee started alerting me that my firewall was not on. I tried several times to turn it on, but although it appears to be on, it isn't. When I go into the McAfee Security Center, the home page shows that the firewall is on, but when I go into the settings for the firewall, it shows its off. When I click the 'Turn On' button, it doesn't work.

I've also tried to turn on my Windows firewall, but it asks me to update my settings. When I click Use Recommended Settings, I get this error message: Windows Firewall cannot change some of your settings. Error code: 0x80070424

I believe I may have downloaded a virus by clicking through on a fake Adobe update. I think it may also have come with a McAfee download, but I can't remember. I believed this happened on Sunday or Monday.

I have tried a system restore in Safe Mode, but it has not helped. Also, the system restore showed restore points for last week the first time I used it to restore to a restore point Monday. Since then, it shows no other restore points.

I've run a scan with McAfee (fully updated), and it shows no infections. I've also run CCleaner and it shows no problems as well.

I run Windows 7 64bit.

This is my work laptop and I'm not comfortable using it until I get this situation fixed.

Thank you for your help.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 26 September 2012 - 09:42 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 10:29 AM

Thank you for your quick reply!! Will do it right now.

#4 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 10:34 AM

Here's the LOG for TDSSkiller

09:30:55.0137 1980 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
09:30:55.0622 1980 ============================================================
09:30:55.0622 1980 Current date / time: 2012/09/26 09:30:55.0622
09:30:55.0622 1980 SystemInfo:
09:30:55.0622 1980
09:30:55.0622 1980 OS Version: 6.1.7601 ServicePack: 1.0
09:30:55.0622 1980 Product type: Workstation
09:30:55.0623 1980 ComputerName: TEDDY-VAIO
09:30:55.0623 1980 UserName: Teddy
09:30:55.0623 1980 Windows directory: C:\Windows
09:30:55.0623 1980 System windows directory: C:\Windows
09:30:55.0623 1980 Running under WOW64
09:30:55.0623 1980 Processor architecture: Intel x64
09:30:55.0623 1980 Number of processors: 2
09:30:55.0623 1980 Page size: 0x1000
09:30:55.0623 1980 Boot type: Normal boot
09:30:55.0623 1980 ============================================================
09:30:55.0912 1980 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:30:55.0917 1980 Drive \Device\Harddisk3\DR3 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
09:30:55.0919 1980 ============================================================
09:30:55.0919 1980 \Device\Harddisk0\DR0:
09:30:55.0919 1980 MBR partitions:
09:30:55.0919 1980 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xE5F000, BlocksNum 0x32000
09:30:55.0919 1980 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xE91000, BlocksNum 0xDFEAAB0
09:30:55.0919 1980 \Device\Harddisk3\DR3:
09:30:55.0919 1980 MBR partitions:
09:30:55.0919 1980 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E07482
09:30:55.0919 1980 ============================================================
09:30:55.0922 1980 C: <-> \Device\Harddisk0\DR0\Partition2
09:30:56.0276 1980 D: <-> \Device\Harddisk3\DR3\Partition1
09:30:56.0276 1980 ============================================================
09:30:56.0276 1980 Initialize success
09:30:56.0276 1980 ============================================================
09:31:23.0506 1648 ============================================================
09:31:23.0506 1648 Scan started
09:31:23.0506 1648 Mode: Manual; TDLFS;
09:31:23.0506 1648 ============================================================
09:31:23.0889 1648 ================ Scan system memory ========================
09:31:23.0889 1648 System memory - ok
09:31:23.0889 1648 ================ Scan services =============================
09:31:23.0928 1648 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:31:23.0930 1648 1394ohci - ok
09:31:23.0937 1648 [ 769DB4F484957CC98153B3C1B5D1162F ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
09:31:23.0987 1648 ACDaemon - ok
09:31:23.0994 1648 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:31:23.0996 1648 ACPI - ok
09:31:23.0999 1648 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:31:24.0032 1648 AcpiPmi - ok
09:31:24.0037 1648 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:31:24.0037 1648 AdobeARMservice - ok
09:31:24.0066 1648 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:31:24.0068 1648 AdobeFlashPlayerUpdateSvc - ok
09:31:24.0077 1648 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
09:31:24.0087 1648 adp94xx - ok
09:31:24.0093 1648 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
09:31:24.0101 1648 adpahci - ok
09:31:24.0106 1648 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
09:31:24.0112 1648 adpu320 - ok
09:31:24.0117 1648 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:31:24.0119 1648 AeLookupSvc - ok
09:31:24.0127 1648 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
09:31:24.0161 1648 AFD - ok
09:31:24.0166 1648 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
09:31:24.0170 1648 agp440 - ok
09:31:24.0174 1648 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
09:31:24.0178 1648 ALG - ok
09:31:24.0181 1648 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
09:31:24.0185 1648 aliide - ok
09:31:24.0189 1648 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
09:31:24.0191 1648 amdide - ok
09:31:24.0195 1648 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
09:31:24.0198 1648 AmdK8 - ok
09:31:24.0203 1648 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:31:24.0206 1648 AmdPPM - ok
09:31:24.0210 1648 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:31:24.0246 1648 amdsata - ok
09:31:24.0252 1648 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
09:31:24.0258 1648 amdsbs - ok
09:31:24.0263 1648 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:31:24.0264 1648 amdxata - ok
09:31:24.0270 1648 [ 56BD886820C4AEDF493CFCDF1CCFB004 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
09:31:24.0307 1648 ApfiltrService - ok
09:31:24.0311 1648 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
09:31:24.0345 1648 AppID - ok
09:31:24.0349 1648 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:31:24.0352 1648 AppIDSvc - ok
09:31:24.0356 1648 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
09:31:24.0382 1648 Appinfo - ok
09:31:24.0388 1648 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:31:24.0389 1648 Apple Mobile Device - ok
09:31:24.0394 1648 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
09:31:24.0398 1648 AppMgmt - ok
09:31:24.0402 1648 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
09:31:24.0406 1648 arc - ok
09:31:24.0410 1648 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
09:31:24.0415 1648 arcsas - ok
09:31:24.0419 1648 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:31:24.0423 1648 AsyncMac - ok
09:31:24.0427 1648 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
09:31:24.0428 1648 atapi - ok
09:31:24.0438 1648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:31:24.0470 1648 AudioEndpointBuilder - ok
09:31:24.0478 1648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:31:24.0481 1648 AudioSrv - ok
09:31:24.0489 1648 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:31:24.0516 1648 AxInstSV - ok
09:31:24.0524 1648 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
09:31:24.0532 1648 b06bdrv - ok
09:31:24.0540 1648 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
09:31:24.0545 1648 b57nd60a - ok
09:31:24.0552 1648 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
09:31:24.0556 1648 BDESVC - ok
09:31:24.0559 1648 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
09:31:24.0563 1648 Beep - ok
09:31:24.0576 1648 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
09:31:24.0632 1648 BITS - ok
09:31:24.0636 1648 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
09:31:24.0641 1648 blbdrive - ok
09:31:24.0650 1648 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:31:24.0652 1648 Bonjour Service - ok
09:31:24.0657 1648 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:31:24.0658 1648 bowser - ok
09:31:24.0662 1648 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:31:24.0666 1648 BrFiltLo - ok
09:31:24.0670 1648 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:31:24.0674 1648 BrFiltUp - ok
09:31:24.0679 1648 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
09:31:24.0706 1648 Browser - ok
09:31:24.0715 1648 [ 703A815F29FBD618D1A516BF5335BC1A ] Browser Defender Update Service C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe
09:31:24.0717 1648 Browser Defender Update Service - ok
09:31:24.0723 1648 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:31:24.0729 1648 Brserid - ok
09:31:24.0735 1648 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:31:24.0740 1648 BrSerWdm - ok
09:31:24.0743 1648 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:31:24.0747 1648 BrUsbMdm - ok
09:31:24.0750 1648 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:31:24.0753 1648 BrUsbSer - ok
09:31:24.0757 1648 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
09:31:24.0760 1648 BthEnum - ok
09:31:24.0765 1648 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
09:31:24.0769 1648 BTHMODEM - ok
09:31:24.0773 1648 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
09:31:24.0775 1648 BthPan - ok
09:31:24.0784 1648 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
09:31:24.0813 1648 BTHPORT - ok
09:31:24.0818 1648 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
09:31:24.0820 1648 bthserv - ok
09:31:24.0825 1648 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
09:31:24.0858 1648 BTHUSB - ok
09:31:24.0862 1648 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
09:31:24.0897 1648 btwaudio - ok
09:31:24.0902 1648 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
09:31:24.0937 1648 btwavdt - ok
09:31:24.0952 1648 [ D65AA164ACD0F6706DBCFBBCC9731584 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
09:31:24.0956 1648 btwdins - ok
09:31:24.0961 1648 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
09:31:24.0995 1648 btwl2cap - ok
09:31:24.0999 1648 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
09:31:25.0034 1648 btwrchid - ok
09:31:25.0041 1648 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys
09:31:25.0075 1648 CAXHWAZL - ok
09:31:25.0080 1648 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:31:25.0084 1648 cdfs - ok
09:31:25.0090 1648 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
09:31:25.0122 1648 cdrom - ok
09:31:25.0127 1648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
09:31:25.0154 1648 CertPropSvc - ok
09:31:25.0159 1648 [ 45B5A89DC41577282E5BF41B1165EA71 ] cfwids C:\Windows\system32\drivers\cfwids.sys
09:31:25.0194 1648 cfwids - ok
09:31:25.0198 1648 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
09:31:25.0200 1648 circlass - ok
09:31:25.0208 1648 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
09:31:25.0210 1648 CLFS - ok
09:31:25.0217 1648 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:31:25.0220 1648 clr_optimization_v2.0.50727_32 - ok
09:31:25.0226 1648 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:31:25.0230 1648 clr_optimization_v2.0.50727_64 - ok
09:31:25.0235 1648 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:31:25.0238 1648 CmBatt - ok
09:31:25.0242 1648 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:31:25.0245 1648 cmdide - ok
09:31:25.0253 1648 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
09:31:25.0256 1648 CNG - ok
09:31:25.0261 1648 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:31:25.0262 1648 Compbatt - ok
09:31:25.0267 1648 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
09:31:25.0302 1648 CompositeBus - ok
09:31:25.0306 1648 COMSysApp - ok
09:31:25.0311 1648 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
09:31:25.0313 1648 crcdisk - ok
09:31:25.0321 1648 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:31:25.0347 1648 CryptSvc - ok
09:31:25.0357 1648 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
09:31:25.0392 1648 CSC - ok
09:31:25.0403 1648 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
09:31:25.0407 1648 CscService - ok
09:31:25.0421 1648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:31:25.0424 1648 DcomLaunch - ok
09:31:25.0432 1648 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
09:31:25.0439 1648 defragsvc - ok
09:31:25.0444 1648 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:31:25.0445 1648 DfsC - ok
09:31:25.0453 1648 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
09:31:25.0481 1648 Dhcp - ok
09:31:25.0486 1648 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
09:31:25.0489 1648 discache - ok
09:31:25.0494 1648 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
09:31:25.0495 1648 Disk - ok
09:31:25.0501 1648 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:31:25.0528 1648 Dnscache - ok
09:31:25.0536 1648 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
09:31:25.0563 1648 dot3svc - ok
09:31:25.0569 1648 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
09:31:25.0573 1648 Dot4 - ok
09:31:25.0577 1648 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
09:31:25.0611 1648 Dot4Print - ok
09:31:25.0615 1648 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
09:31:25.0619 1648 dot4usb - ok
09:31:25.0626 1648 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
09:31:25.0627 1648 DPS - ok
09:31:25.0631 1648 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:31:25.0636 1648 drmkaud - ok
09:31:25.0650 1648 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:31:25.0695 1648 DXGKrnl - ok
09:31:25.0704 1648 [ 761B9EDD97A021AA1922501B7A056635 ] e1yexpress C:\Windows\system32\DRIVERS\e1y62x64.sys
09:31:25.0743 1648 e1yexpress - ok
09:31:25.0749 1648 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
09:31:25.0753 1648 EapHost - ok
09:31:25.0788 1648 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
09:31:25.0823 1648 ebdrv - ok
09:31:25.0831 1648 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
09:31:25.0866 1648 EFS - ok
09:31:25.0877 1648 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:31:25.0917 1648 ehRecvr - ok
09:31:25.0922 1648 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
09:31:25.0925 1648 ehSched - ok
09:31:25.0935 1648 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
09:31:25.0942 1648 elxstor - ok
09:31:25.0947 1648 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:31:25.0951 1648 ErrDev - ok
09:31:25.0965 1648 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
09:31:25.0968 1648 EventSystem - ok
09:31:25.0975 1648 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
09:31:25.0981 1648 exfat - ok
09:31:25.0988 1648 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:31:25.0993 1648 fastfat - ok
09:31:26.0005 1648 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
09:31:26.0041 1648 Fax - ok
09:31:26.0047 1648 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:31:26.0050 1648 fdc - ok
09:31:26.0055 1648 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
09:31:26.0058 1648 fdPHost - ok
09:31:26.0063 1648 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
09:31:26.0066 1648 FDResPub - ok
09:31:26.0071 1648 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:31:26.0072 1648 FileInfo - ok
09:31:26.0077 1648 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:31:26.0080 1648 Filetrace - ok
09:31:26.0085 1648 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:31:26.0088 1648 flpydisk - ok
09:31:26.0096 1648 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:31:26.0098 1648 FltMgr - ok
09:31:26.0114 1648 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
09:31:26.0147 1648 FontCache - ok
09:31:26.0153 1648 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:31:26.0191 1648 FontCache3.0.0.0 - ok
09:31:26.0196 1648 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:31:26.0200 1648 FsDepends - ok
09:31:26.0205 1648 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:31:26.0241 1648 Fs_Rec - ok
09:31:26.0248 1648 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:31:26.0250 1648 fvevol - ok
09:31:26.0256 1648 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
09:31:26.0260 1648 gagp30kx - ok
09:31:26.0265 1648 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:31:26.0300 1648 GEARAspiWDM - ok
09:31:26.0313 1648 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
09:31:26.0317 1648 gpsvc - ok
09:31:26.0324 1648 [ 626A24ED1228580B9518C01930936DF9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:31:26.0325 1648 gupdate - ok
09:31:26.0330 1648 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:31:26.0331 1648 gupdatem - ok
09:31:26.0336 1648 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:31:26.0339 1648 hcw85cir - ok
09:31:26.0347 1648 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:31:26.0383 1648 HdAudAddService - ok
09:31:26.0389 1648 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
09:31:26.0391 1648 HDAudBus - ok
09:31:26.0395 1648 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
09:31:26.0398 1648 HidBatt - ok
09:31:26.0404 1648 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
09:31:26.0407 1648 HidBth - ok
09:31:26.0413 1648 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
09:31:26.0416 1648 HidIr - ok
09:31:26.0422 1648 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
09:31:26.0426 1648 hidserv - ok
09:31:26.0431 1648 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:31:26.0465 1648 HidUsb - ok
09:31:26.0472 1648 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
09:31:26.0508 1648 HipShieldK - ok
09:31:26.0515 1648 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
09:31:26.0542 1648 hkmsvc - ok
09:31:26.0550 1648 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:31:26.0577 1648 HomeGroupListener - ok
09:31:26.0584 1648 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:31:26.0611 1648 HomeGroupProvider - ok
09:31:26.0622 1648 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
09:31:26.0624 1648 hpqcxs08 - ok
09:31:26.0630 1648 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
09:31:26.0658 1648 hpqddsvc - ok
09:31:26.0663 1648 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
09:31:26.0699 1648 HpSAMD - ok
09:31:26.0713 1648 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
09:31:26.0718 1648 HPSLPSVC - ok
09:31:26.0749 1648 [ 447256D1C026654C5CD3CC17E7B20631 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
09:31:26.0779 1648 HsfXAudioService - ok
09:31:26.0799 1648 [ 26C5D00321937E49B6BC91029947D094 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
09:31:26.0840 1648 HSF_DPV - ok
09:31:26.0853 1648 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:31:26.0889 1648 HTTP - ok
09:31:26.0895 1648 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:31:26.0896 1648 hwpolicy - ok
09:31:26.0902 1648 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
09:31:26.0907 1648 i8042prt - ok
09:31:26.0917 1648 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
09:31:26.0919 1648 IAANTMON - ok
09:31:26.0929 1648 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
09:31:26.0931 1648 iaStor - ok
09:31:26.0941 1648 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
09:31:26.0980 1648 iaStorV - ok
09:31:26.0990 1648 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
09:31:26.0997 1648 IDriverT - ok
09:31:27.0010 1648 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:31:27.0056 1648 idsvc - ok
09:31:27.0135 1648 [ 37A65E3D89F6BBF5719FF9585F99EB7D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
09:31:27.0186 1648 igfx - ok
09:31:27.0196 1648 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
09:31:27.0201 1648 iirsp - ok
09:31:27.0214 1648 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
09:31:27.0249 1648 IKEEXT - ok
09:31:27.0282 1648 [ D42D651676883181400E22957A7E0B1E ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
09:31:27.0332 1648 IntcAzAudAddService - ok
09:31:27.0339 1648 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
09:31:27.0341 1648 intelide - ok
09:31:27.0347 1648 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:31:27.0348 1648 intelppm - ok
09:31:27.0355 1648 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:31:27.0359 1648 IPBusEnum - ok
09:31:27.0365 1648 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:31:27.0399 1648 IpFilterDriver - ok
09:31:27.0405 1648 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
09:31:27.0440 1648 IPMIDRV - ok
09:31:27.0447 1648 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:31:27.0453 1648 IPNAT - ok
09:31:27.0468 1648 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
09:31:27.0472 1648 iPod Service - ok
09:31:27.0478 1648 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:31:27.0481 1648 IRENUM - ok
09:31:27.0487 1648 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:31:27.0490 1648 isapnp - ok
09:31:27.0499 1648 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
09:31:27.0536 1648 iScsiPrt - ok
09:31:27.0543 1648 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
09:31:27.0547 1648 kbdclass - ok
09:31:27.0553 1648 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
09:31:27.0586 1648 kbdhid - ok
09:31:27.0593 1648 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
09:31:27.0594 1648 KeyIso - ok
09:31:27.0599 1648 KMW_KBD - ok
09:31:27.0606 1648 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:31:27.0607 1648 KSecDD - ok
09:31:27.0614 1648 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:31:27.0616 1648 KSecPkg - ok
09:31:27.0622 1648 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
09:31:27.0625 1648 ksthunk - ok
09:31:27.0635 1648 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
09:31:27.0643 1648 KtmRm - ok
09:31:27.0652 1648 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
09:31:27.0680 1648 LanmanServer - ok
09:31:27.0687 1648 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:31:27.0714 1648 LanmanWorkstation - ok
09:31:27.0722 1648 [ 3F98DB70009E420C332F48891DE39FBA ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
09:31:27.0757 1648 LBTServ - ok
09:31:27.0767 1648 [ B45686101F9473B52D7A501C544DDA5D ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
09:31:27.0801 1648 LHidFilt - ok
09:31:27.0808 1648 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:31:27.0811 1648 lltdio - ok
09:31:27.0821 1648 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:31:27.0827 1648 lltdsvc - ok
09:31:27.0833 1648 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:31:27.0838 1648 lmhosts - ok
09:31:27.0845 1648 [ 9980BB086248CA45772EFF2559AA62D3 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
09:31:27.0879 1648 LMouFilt - ok
09:31:27.0890 1648 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
09:31:27.0894 1648 LSI_FC - ok
09:31:27.0900 1648 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
09:31:27.0904 1648 LSI_SAS - ok
09:31:27.0910 1648 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:31:27.0913 1648 LSI_SAS2 - ok
09:31:27.0920 1648 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:31:27.0924 1648 LSI_SCSI - ok
09:31:27.0931 1648 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
09:31:27.0932 1648 luafv - ok
09:31:27.0941 1648 [ B891E3920F24FF1A3BEAD6CD2B42ED99 ] McAfee SiteAdvisor Service c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
09:31:27.0942 1648 McAfee SiteAdvisor Service - ok
09:31:27.0951 1648 [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe
09:31:27.0952 1648 McComponentHostService - ok
09:31:27.0961 1648 [ C121367D21599367F2ADB9C11B7BABAA ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:31:27.0998 1648 McMPFSvc - ok
09:31:28.0005 1648 [ C121367D21599367F2ADB9C11B7BABAA ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:31:28.0007 1648 mcmscsvc - ok
09:31:28.0014 1648 [ C121367D21599367F2ADB9C11B7BABAA ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:31:28.0015 1648 McNaiAnn - ok
09:31:28.0022 1648 [ C121367D21599367F2ADB9C11B7BABAA ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:31:28.0024 1648 McNASvc - ok
09:31:28.0036 1648 [ BE7C8C3F8FE52D8F7826E14CF11DE949 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
09:31:28.0038 1648 McODS - ok
09:31:28.0046 1648 [ C121367D21599367F2ADB9C11B7BABAA ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:31:28.0047 1648 McProxy - ok
09:31:28.0053 1648 McPvDrv - ok
09:31:28.0062 1648 [ 4DEC9B5BEDAA97B1FF6A3923E1C4F58A ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
09:31:28.0098 1648 McShield - ok
09:31:28.0106 1648 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:31:28.0134 1648 Mcx2Svc - ok
09:31:28.0141 1648 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
09:31:28.0173 1648 mdmxsdk - ok
09:31:28.0180 1648 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
09:31:28.0184 1648 megasas - ok
09:31:28.0193 1648 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
09:31:28.0200 1648 MegaSR - ok
09:31:28.0212 1648 [ B574522827D94126C03975FD53F0B26B ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
09:31:28.0248 1648 mfeapfk - ok
09:31:28.0257 1648 [ B393753ECE9A9E2307CB1984ACF3DA9D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
09:31:28.0296 1648 mfeavfk - ok
09:31:28.0306 1648 mfeavfk01 - ok
09:31:28.0319 1648 [ 97C398750C8E80A48EB63999546F796E ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
09:31:28.0355 1648 mfefire - ok
09:31:28.0368 1648 [ C52A1ABF03DD219375EA0F6A8BE941C3 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
09:31:28.0409 1648 mfefirek - ok
09:31:28.0423 1648 [ 7092A6C6158FC4F5AA39EBEB9D5AF03D ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
09:31:28.0427 1648 mfehidk - ok
09:31:28.0435 1648 [ D2A941C82A0A9227CD6F47AD40A40F69 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
09:31:28.0470 1648 mferkdet - ok
09:31:28.0477 1648 [ 6A6B3EA39A5CF3115B14157A3953D367 ] mferkdk C:\Windows\system32\drivers\mferkdk.sys
09:31:28.0513 1648 mferkdk - ok
09:31:28.0520 1648 [ E4A5EB03BD9CC9D08DE13698A80AA9A9 ] mfesmfk C:\Windows\system32\drivers\mfesmfk.sys
09:31:28.0554 1648 mfesmfk - ok
09:31:28.0563 1648 [ 04D48692EFF181DA46DD8EA8BE9FFB2B ] mfevtp C:\Windows\system32\mfevtps.exe
09:31:28.0599 1648 mfevtp - ok
09:31:28.0609 1648 [ 1631E2DA6C4B47D97ECA94842836592E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
09:31:28.0648 1648 mfewfpk - ok
09:31:28.0658 1648 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
09:31:28.0660 1648 MMCSS - ok
09:31:28.0667 1648 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
09:31:28.0669 1648 Modem - ok
09:31:28.0676 1648 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:31:28.0677 1648 monitor - ok
09:31:28.0684 1648 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:31:28.0688 1648 mouclass - ok
09:31:28.0695 1648 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:31:28.0699 1648 mouhid - ok
09:31:28.0707 1648 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:31:28.0708 1648 mountmgr - ok
09:31:28.0715 1648 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:31:28.0716 1648 MozillaMaintenance - ok
09:31:28.0725 1648 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
09:31:28.0761 1648 mpio - ok
09:31:28.0769 1648 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:31:28.0774 1648 mpsdrv - ok
09:31:28.0783 1648 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:31:28.0821 1648 MRxDAV - ok
09:31:28.0830 1648 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:31:28.0831 1648 mrxsmb - ok
09:31:28.0841 1648 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:31:28.0843 1648 mrxsmb10 - ok
09:31:28.0851 1648 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:31:28.0852 1648 mrxsmb20 - ok
09:31:28.0860 1648 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
09:31:28.0897 1648 msahci - ok
09:31:28.0906 1648 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:31:28.0946 1648 msdsm - ok
09:31:28.0955 1648 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
09:31:28.0960 1648 MSDTC - ok
09:31:28.0972 1648 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:31:28.0973 1648 Msfs - ok
09:31:28.0980 1648 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:31:28.0985 1648 mshidkmdf - ok
09:31:28.0992 1648 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:31:28.0993 1648 msisadrv - ok
09:31:29.0002 1648 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:31:29.0007 1648 MSiSCSI - ok
09:31:29.0014 1648 msiserver - ok
09:31:29.0023 1648 [ C121367D21599367F2ADB9C11B7BABAA ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:31:29.0024 1648 MSK80Service - ok
09:31:29.0031 1648 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:31:29.0036 1648 MSKSSRV - ok
09:31:29.0043 1648 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:31:29.0047 1648 MSPCLOCK - ok
09:31:29.0054 1648 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:31:29.0057 1648 MSPQM - ok
09:31:29.0068 1648 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:31:29.0071 1648 MsRPC - ok
09:31:29.0084 1648 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
09:31:29.0085 1648 mssmbios - ok
09:31:29.0092 1648 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:31:29.0096 1648 MSTEE - ok
09:31:29.0103 1648 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
09:31:29.0106 1648 MTConfig - ok
09:31:29.0114 1648 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
09:31:29.0115 1648 Mup - ok
09:31:29.0128 1648 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
09:31:29.0131 1648 napagent - ok
09:31:29.0142 1648 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:31:29.0148 1648 NativeWifiP - ok
09:31:29.0164 1648 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
09:31:29.0169 1648 NDIS - ok
09:31:29.0177 1648 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:31:29.0181 1648 NdisCap - ok
09:31:29.0189 1648 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:31:29.0193 1648 NdisTapi - ok
09:31:29.0200 1648 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:31:29.0233 1648 Ndisuio - ok
09:31:29.0243 1648 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:31:29.0276 1648 NdisWan - ok
09:31:29.0284 1648 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:31:29.0317 1648 NDProxy - ok
09:31:29.0325 1648 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
09:31:29.0352 1648 Net Driver HPZ12 - ok
09:31:29.0360 1648 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:31:29.0361 1648 NetBIOS - ok
09:31:29.0371 1648 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:31:29.0406 1648 NetBT - ok
09:31:29.0415 1648 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
09:31:29.0417 1648 Netlogon - ok
09:31:29.0428 1648 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
09:31:29.0434 1648 Netman - ok
09:31:29.0446 1648 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
09:31:29.0450 1648 netprofm - ok
09:31:29.0458 1648 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:31:29.0462 1648 NetTcpPortSharing - ok
09:31:29.0518 1648 [ 705283C02177809CA9FA7CC58A4F1E77 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
09:31:29.0568 1648 netw5v64 - ok
09:31:29.0577 1648 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
09:31:29.0580 1648 nfrd960 - ok
09:31:29.0592 1648 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
09:31:29.0619 1648 NlaSvc - ok
09:31:29.0629 1648 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:31:29.0630 1648 Npfs - ok
09:31:29.0638 1648 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
09:31:29.0642 1648 nsi - ok
09:31:29.0650 1648 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:31:29.0653 1648 nsiproxy - ok
09:31:29.0683 1648 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:31:29.0695 1648 Ntfs - ok
09:31:29.0703 1648 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
09:31:29.0708 1648 Null - ok
09:31:29.0826 1648 [ CBC377A32C076FD7EA2AFED9445FF6E7 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:31:29.0966 1648 nvlddmkm - ok
09:31:29.0980 1648 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:31:30.0016 1648 nvraid - ok
09:31:30.0025 1648 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:31:30.0061 1648 nvstor - ok
09:31:30.0073 1648 [ BAAE8AB3DA201F265C914210D1284E1F ] nvsvc C:\Windows\system32\nvvsvc.exe
09:31:30.0109 1648 nvsvc - ok
09:31:30.0118 1648 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:31:30.0124 1648 nv_agp - ok
09:31:30.0135 1648 [ 6EEB54E34603DD417ECE187C8402320A ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
09:31:30.0136 1648 NWADI - ok
09:31:30.0145 1648 [ D944D4341429093F55CB7F0EC87C86B3 ] NWUSBCDFIL64 C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
09:31:30.0179 1648 NWUSBCDFIL64 - ok
09:31:30.0189 1648 [ 877CE72712D7860FD815884438D824B8 ] NWUSBModem_000 C:\Windows\system32\DRIVERS\nwusbmdm_000.sys
09:31:30.0223 1648 NWUSBModem_000 - ok
09:31:30.0233 1648 [ 877CE72712D7860FD815884438D824B8 ] NWUSBPort2_000 C:\Windows\system32\DRIVERS\nwusbser2_000.sys
09:31:30.0268 1648 NWUSBPort2_000 - ok
09:31:30.0278 1648 [ 877CE72712D7860FD815884438D824B8 ] NWUSBPort_000 C:\Windows\system32\DRIVERS\nwusbser_000.sys
09:31:30.0313 1648 NWUSBPort_000 - ok
09:31:30.0325 1648 [ 6F67805EBE1C879DE008ED21BFCF2F02 ] NWVZHelper C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe
09:31:30.0327 1648 NWVZHelper - ok
09:31:30.0340 1648 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:31:30.0342 1648 odserv - ok
09:31:30.0351 1648 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:31:30.0356 1648 ohci1394 - ok
09:31:30.0365 1648 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:31:30.0366 1648 ose - ok
09:31:30.0384 1648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:31:30.0388 1648 p2pimsvc - ok
09:31:30.0401 1648 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
09:31:30.0411 1648 p2psvc - ok
09:31:30.0421 1648 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
09:31:30.0425 1648 Parport - ok
09:31:30.0434 1648 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:31:30.0435 1648 partmgr - ok
09:31:30.0446 1648 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
09:31:30.0452 1648 PcaSvc - ok
09:31:30.0462 1648 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
09:31:30.0463 1648 pci - ok
09:31:30.0472 1648 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
09:31:30.0479 1648 pciide - ok
09:31:30.0490 1648 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
09:31:30.0494 1648 pcmcia - ok
09:31:30.0505 1648 [ 8F38FFFA9E7B9D547B7921EFA8EDFF3C ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
09:31:30.0507 1648 PCTCore - ok
09:31:30.0520 1648 [ FF43E3B1687E4E2140DE6349EA5C7372 ] pctDS C:\Windows\system32\drivers\pctDS64.sys
09:31:30.0522 1648 pctDS - ok
09:31:30.0538 1648 [ 60E9A05852AF7E9CB11237C00AEE4CCF ] pctEFA C:\Windows\system32\drivers\pctEFA64.sys
09:31:30.0542 1648 pctEFA - ok
09:31:30.0556 1648 [ EB2BDC42DA35AA136C495492756C800E ] pctgntdi C:\Windows\System32\drivers\pctgntdi64.sys
09:31:30.0582 1648 pctgntdi - ok
09:31:30.0591 1648 [ 220BABA70DB02534F140F17D028274B0 ] pctplsg C:\Windows\System32\drivers\pctplsg64.sys
09:31:30.0627 1648 pctplsg - ok
09:31:30.0636 1648 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
09:31:30.0637 1648 pcw - ok
09:31:30.0651 1648 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:31:30.0659 1648 PEAUTH - ok
09:31:30.0681 1648 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
09:31:30.0688 1648 PeerDistSvc - ok
09:31:30.0723 1648 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
09:31:30.0726 1648 PerfHost - ok
09:31:30.0766 1648 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
09:31:30.0806 1648 pla - ok
09:31:30.0820 1648 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:31:30.0850 1648 PlugPlay - ok
09:31:30.0859 1648 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
09:31:30.0886 1648 Pml Driver HPZ12 - ok
09:31:30.0895 1648 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:31:30.0900 1648 PNRPAutoReg - ok
09:31:30.0912 1648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:31:30.0915 1648 PNRPsvc - ok
09:31:30.0929 1648 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:31:30.0959 1648 PolicyAgent - ok
09:31:30.0977 1648 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
09:31:30.0979 1648 Power - ok
09:31:30.0989 1648 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:31:31.0022 1648 PptpMiniport - ok
09:31:31.0031 1648 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
09:31:31.0034 1648 Processor - ok
09:31:31.0046 1648 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
09:31:31.0074 1648 ProfSvc - ok
09:31:31.0083 1648 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:31:31.0084 1648 ProtectedStorage - ok
09:31:31.0094 1648 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:31:31.0096 1648 Psched - ok
09:31:31.0105 1648 [ 452C20382DF763F966C12DC48259F34E ] PTUMWBus C:\Windows\system32\DRIVERS\PTUMWBus.sys
09:31:31.0139 1648 PTUMWBus - ok
09:31:31.0150 1648 [ 46823290BF74DFFEBB4E30F9D1E6A46E ] PTUMWCSP C:\Windows\system32\DRIVERS\PTUMWCSP.sys
09:31:31.0186 1648 PTUMWCSP - ok
09:31:31.0195 1648 [ AC86BB916FBEA16B0005EFC3BA3ADB58 ] PTUMWFLT C:\Windows\system32\DRIVERS\PTUMWFLT.sys
09:31:31.0229 1648 PTUMWFLT - ok
09:31:31.0240 1648 [ CB146794BC3B96661A32CBD68673B479 ] PTUMWMdm C:\Windows\system32\DRIVERS\PTUMWMdm.sys
09:31:31.0276 1648 PTUMWMdm - ok
09:31:31.0286 1648 [ 329E77868A92BB6F97C119050D97E9EC ] PTUMWNET C:\Windows\system32\DRIVERS\PTUMWNET.sys
09:31:31.0322 1648 PTUMWNET - ok
09:31:31.0332 1648 [ 258AAD147F0B5B7EC45C71D9369145AC ] PTUMWNSP C:\Windows\system32\DRIVERS\PTUMWNSP.sys
09:31:31.0368 1648 PTUMWNSP - ok
09:31:31.0379 1648 [ 4FFD7E6D2CB293849C1181D08717EA09 ] PTUMWVsp C:\Windows\system32\DRIVERS\PTUMWVsp.sys
09:31:31.0415 1648 PTUMWVsp - ok
09:31:31.0427 1648 [ AED797CCA02783296C68AA10D0CFF8A9 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
09:31:31.0428 1648 PxHlpa64 - ok
09:31:31.0438 1648 [ EE46F431B25C14778D2E89D6F10F1D65 ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
09:31:31.0475 1648 QBCFMonitorService - ok
09:31:31.0484 1648 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
09:31:31.0521 1648 QBFCService - ok
09:31:31.0530 1648 [ 932EBE6AD34B7F670C56EDBC7E19BD71 ] QCFiltersny C:\Windows\system32\DRIVERS\qcfiltersny.sys
09:31:31.0563 1648 QCFiltersny - ok
09:31:31.0573 1648 [ 9FA1424998DB9AD7B7C95BB9A1695D4E ] qcusbnetsny C:\Windows\system32\DRIVERS\qcusbnetsny.sys
09:31:31.0611 1648 qcusbnetsny - ok
09:31:31.0628 1648 [ 9123FEED169028D03CD63DD7CE66CBC6 ] qcusbsersny C:\Windows\system32\DRIVERS\qcusbsersny.sys
09:31:31.0661 1648 qcusbsersny - ok
09:31:31.0674 1648 [ 552552FFAB98BE34469A9D648FE04A04 ] QDLService C:\QUALCOMM\QDLService\QDLService.exe
09:31:31.0675 1648 QDLService - ok
09:31:31.0699 1648 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
09:31:31.0719 1648 ql2300 - ok
09:31:31.0730 1648 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
09:31:31.0734 1648 ql40xx - ok
09:31:31.0745 1648 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
09:31:31.0751 1648 QWAVE - ok
09:31:31.0761 1648 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:31:31.0765 1648 QWAVEdrv - ok
09:31:31.0774 1648 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:31:31.0777 1648 RasAcd - ok
09:31:31.0787 1648 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:31:31.0789 1648 RasAgileVpn - ok
09:31:31.0800 1648 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
09:31:31.0806 1648 RasAuto - ok
09:31:31.0816 1648 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:31:31.0849 1648 Rasl2tp - ok
09:31:31.0862 1648 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
09:31:31.0890 1648 RasMan - ok
09:31:31.0900 1648 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:31:31.0905 1648 RasPppoe - ok
09:31:31.0914 1648 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:31:31.0917 1648 RasSstp - ok
09:31:31.0929 1648 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:31:31.0931 1648 rdbss - ok
09:31:31.0941 1648 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
09:31:31.0945 1648 rdpbus - ok
09:31:31.0954 1648 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:31:31.0957 1648 RDPCDD - ok
09:31:31.0975 1648 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
09:31:32.0009 1648 RDPDR - ok
09:31:32.0018 1648 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:31:32.0021 1648 RDPENCDD - ok
09:31:32.0038 1648 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:31:32.0040 1648 RDPREFMP - ok
09:31:32.0052 1648 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:31:32.0087 1648 RDPWD - ok
09:31:32.0098 1648 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:31:32.0100 1648 rdyboost - ok
09:31:32.0110 1648 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:31:32.0117 1648 RemoteAccess - ok
09:31:32.0129 1648 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:31:32.0133 1648 RemoteRegistry - ok
09:31:32.0145 1648 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
09:31:32.0149 1648 RFCOMM - ok
09:31:32.0159 1648 [ 258AADB43E3F3468B5CF8CB0F84872C2 ] rimsptsk C:\Windows\system32\DRIVERS\rimssn64.sys
09:31:32.0192 1648 rimsptsk - ok
09:31:32.0201 1648 RimUsb - ok
09:31:32.0211 1648 [ C903D49655B4AAE46673F0AAA6BE0F58 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
09:31:32.0246 1648 RimVSerPort - ok
09:31:32.0256 1648 [ 71E182A0DE1CECB3F912960716345405 ] risdptsk C:\Windows\system32\DRIVERS\risdsn64.sys
09:31:32.0289 1648 risdptsk - ok
09:31:32.0298 1648 [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
09:31:32.0302 1648 ROOTMODEM - ok
09:31:32.0314 1648 [ D02E5A46F77C182CA1964080BCD586F7 ] Roxio UPnP Renderer 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
09:31:32.0315 1648 Roxio UPnP Renderer 10 - ok
09:31:32.0328 1648 [ E5809597278802D09273EE07B5FC56E1 ] Roxio Upnp Server 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
09:31:32.0330 1648 Roxio Upnp Server 10 - ok
09:31:32.0340 1648 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:31:32.0346 1648 RpcEptMapper - ok
09:31:32.0356 1648 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
09:31:32.0361 1648 RpcLocator - ok
09:31:32.0376 1648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
09:31:32.0379 1648 RpcSs - ok
09:31:32.0390 1648 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:31:32.0393 1648 rspndr - ok
09:31:32.0404 1648 [ 35EBFDC2FB36A05173FF53DA4FA12214 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
09:31:32.0406 1648 RtkAudioService - ok
09:31:32.0415 1648 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
09:31:32.0449 1648 s3cap - ok
09:31:32.0462 1648 [ 6B318F9443740A907D1C8F3460C19009 ] SampleCollector C:\Program Files\Sony\VAIO Care\collsvc.exe
09:31:32.0463 1648 SampleCollector - ok
09:31:32.0473 1648 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
09:31:32.0475 1648 SamSs - ok
09:31:32.0485 1648 [ E2BB8FAA10F118976F218B9A270B70BE ] sbmount C:\Windows\system32\drivers\sbmount.sys
09:31:32.0520 1648 sbmount - ok
09:31:32.0531 1648 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:31:32.0567 1648 sbp2port - ok
09:31:32.0579 1648 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:31:32.0585 1648 SCardSvr - ok
09:31:32.0595 1648 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:31:32.0632 1648 scfilter - ok
09:31:32.0652 1648 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
09:31:32.0691 1648 Schedule - ok
09:31:32.0702 1648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
09:31:32.0704 1648 SCPolicySvc - ok
09:31:32.0719 1648 [ A1089AC7683826E6C7C9FAB9723DD80F ] sdAuxService C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe
09:31:32.0721 1648 sdAuxService - ok
09:31:32.0733 1648 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
09:31:32.0766 1648 sdbus - ok
09:31:32.0786 1648 [ ED6C2EFEB47524BFF4D5E5109FB1A2BB ] sdCoreService C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe
09:31:32.0792 1648 sdCoreService - ok
09:31:32.0806 1648 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:31:32.0833 1648 SDRSVC - ok
09:31:32.0846 1648 [ 0F656D23F7956E9385E0A03F945EE338 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
09:31:32.0887 1648 SeaPort - ok
09:31:32.0897 1648 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:31:32.0900 1648 secdrv - ok
09:31:32.0910 1648 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
09:31:32.0937 1648 seclogon - ok
09:31:32.0948 1648 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
09:31:32.0950 1648 SENS - ok
09:31:32.0960 1648 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:31:32.0964 1648 SensrSvc - ok
09:31:32.0974 1648 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
09:31:32.0977 1648 Serenum - ok
09:31:32.0987 1648 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
09:31:32.0991 1648 Serial - ok
09:31:33.0001 1648 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
09:31:33.0004 1648 sermouse - ok
09:31:33.0039 1648 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
09:31:33.0067 1648 SessionEnv - ok
09:31:33.0077 1648 [ 70F9C476B62DE4F2823E918A6C181ADE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
09:31:33.0110 1648 SFEP - ok
09:31:33.0120 1648 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:31:33.0124 1648 sffdisk - ok
09:31:33.0134 1648 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:31:33.0138 1648 sffp_mmc - ok
09:31:33.0148 1648 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:31:33.0182 1648 sffp_sd - ok
09:31:33.0192 1648 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:31:33.0195 1648 sfloppy - ok
09:31:33.0240 1648 [ F5E89DAD176E3D05203A867D4821B3EF ] ShadowProtectSvc C:\Program Files (x86)\StorageCraft\ShadowProtect\ShadowProtectSvc.exe
09:31:33.0256 1648 ShadowProtectSvc - ok
09:31:33.0282 1648 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:31:33.0312 1648 ShellHWDetection - ok
09:31:33.0323 1648 [ C06CCD29F5C15B610237E86F82085E77 ] shpf C:\Windows\system32\DRIVERS\shpf.sys
09:31:33.0324 1648 shpf - ok
09:31:33.0333 1648 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:31:33.0337 1648 SiSRaid2 - ok
09:31:33.0348 1648 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
09:31:33.0352 1648 SiSRaid4 - ok
09:31:33.0364 1648 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:31:33.0369 1648 Smb - ok
09:31:33.0387 1648 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:31:33.0393 1648 SNMPTRAP - ok
09:31:33.0403 1648 [ 5D54FEC2EA86813F036821652A07C222 ] SPI C:\Windows\system32\DRIVERS\SonyPI.sys
09:31:33.0438 1648 SPI - ok
09:31:33.0450 1648 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
09:31:33.0451 1648 spldr - ok
09:31:33.0466 1648 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
09:31:33.0505 1648 Spooler - ok
09:31:33.0550 1648 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
09:31:33.0566 1648 sppsvc - ok
09:31:33.0578 1648 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:31:33.0584 1648 sppuinotify - ok
09:31:33.0599 1648 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
09:31:33.0602 1648 srv - ok
09:31:33.0619 1648 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:31:33.0622 1648 srv2 - ok
09:31:33.0635 1648 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
09:31:33.0642 1648 SrvHsfHDA - ok
09:31:33.0666 1648 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
09:31:33.0686 1648 SrvHsfV92 - ok
09:31:33.0703 1648 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
09:31:33.0715 1648 SrvHsfWinac - ok
09:31:33.0728 1648 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:31:33.0729 1648 srvnet - ok
09:31:33.0742 1648 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:31:33.0747 1648 SSDPSRV - ok
09:31:33.0759 1648 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:31:33.0764 1648 SstpSvc - ok
09:31:33.0776 1648 [ E728BF2EDF954ED47429CFAD8C588925 ] stcvsm C:\Windows\system32\DRIVERS\stcvsm.sys
09:31:33.0778 1648 stcvsm - ok
09:31:33.0788 1648 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
09:31:33.0791 1648 stexstor - ok
09:31:33.0802 1648 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
09:31:33.0804 1648 StillCam - ok
09:31:33.0821 1648 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
09:31:33.0853 1648 stisvc - ok
09:31:33.0864 1648 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
09:31:33.0866 1648 storflt - ok
09:31:33.0876 1648 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
09:31:33.0880 1648 StorSvc - ok
09:31:33.0890 1648 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
09:31:33.0926 1648 storvsc - ok
09:31:33.0937 1648 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
09:31:33.0940 1648 swenum - ok
09:31:33.0956 1648 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
09:31:33.0960 1648 swprv - ok
09:31:33.0987 1648 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
09:31:34.0024 1648 SysMain - ok
09:31:34.0037 1648 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:31:34.0064 1648 TabletInputService - ok
09:31:34.0078 1648 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:31:34.0106 1648 TapiSrv - ok
09:31:34.0118 1648 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
09:31:34.0120 1648 TBS - ok
09:31:34.0149 1648 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:31:34.0204 1648 Tcpip - ok
09:31:34.0236 1648 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:31:34.0245 1648 TCPIP6 - ok
09:31:34.0265 1648 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:31:34.0298 1648 tcpipreg - ok
09:31:34.0318 1648 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:31:34.0323 1648 TDPIPE - ok
09:31:34.0334 1648 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:31:34.0368 1648 TDTCP - ok
09:31:34.0380 1648 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:31:34.0413 1648 tdx - ok
09:31:34.0424 1648 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
09:31:34.0451 1648 TermDD - ok
09:31:34.0469 1648 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
09:31:34.0503 1648 TermService - ok
09:31:34.0514 1648 [ 0804657A5200E153BB4BBF6F9C1293A4 ] TfFsMon C:\Windows\system32\drivers\TfFsMon.sys
09:31:34.0515 1648 TfFsMon - ok
09:31:34.0527 1648 [ 02A58754F6C26F6A7E0FCAC3BFF5259B ] TfNetMon C:\Windows\system32\drivers\TfNetMon.sys
09:31:34.0562 1648 TfNetMon - ok
09:31:34.0574 1648 [ 51EB84FA1A00E7D12850FDDD1CAD099D ] TFSysMon C:\Windows\system32\drivers\TfSysMon.sys
09:31:34.0575 1648 TFSysMon - ok
09:31:34.0586 1648 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
09:31:34.0592 1648 Themes - ok
09:31:34.0603 1648 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
09:31:34.0605 1648 THREADORDER - ok
09:31:34.0616 1648 ThreatFire - ok
09:31:34.0628 1648 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys
09:31:34.0631 1648 TPM - ok
09:31:34.0643 1648 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
09:31:34.0649 1648 TrkWks - ok
09:31:34.0662 1648 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:31:34.0695 1648 TrustedInstaller - ok
09:31:34.0716 1648 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:31:34.0749 1648 tssecsrv - ok
09:31:34.0761 1648 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
09:31:34.0794 1648 TsUsbFlt - ok
09:31:34.0806 1648 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:31:34.0839 1648 tunnel - ok
09:31:34.0851 1648 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
09:31:34.0855 1648 uagp35 - ok
09:31:34.0870 1648 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:31:34.0906 1648 udfs - ok
09:31:34.0936 1648 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:31:34.0941 1648 UI0Detect - ok
09:31:34.0953 1648 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:31:34.0956 1648 uliagpkx - ok
09:31:34.0968 1648 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
09:31:35.0001 1648 umbus - ok
09:31:35.0012 1648 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
09:31:35.0015 1648 UmPass - ok
09:31:35.0029 1648 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
09:31:35.0057 1648 UmRdpService - ok
09:31:35.0073 1648 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
09:31:35.0079 1648 upnphost - ok
09:31:35.0091 1648 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
09:31:35.0123 1648 USBAAPL64 - ok
09:31:35.0136 1648 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:31:35.0169 1648 usbccgp - ok
09:31:35.0181 1648 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:31:35.0185 1648 usbcir - ok
09:31:35.0197 1648 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
09:31:35.0230 1648 usbehci - ok
09:31:35.0245 1648 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:31:35.0279 1648 usbhub - ok
09:31:35.0291 1648 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
09:31:35.0295 1648 usbohci - ok
09:31:35.0308 1648 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:31:35.0310 1648 usbprint - ok
09:31:35.0321 1648 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
09:31:35.0324 1648 usbscan - ok
09:31:35.0336 1648 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:31:35.0370 1648 USBSTOR - ok
09:31:35.0382 1648 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
09:31:35.0416 1648 usbuhci - ok
09:31:35.0433 1648 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
09:31:35.0467 1648 usbvideo - ok
09:31:35.0479 1648 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
09:31:35.0483 1648 UxSms - ok
09:31:35.0497 1648 [ 6B31C9CB94927DBEEB62E15275F4CC54 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
09:31:35.0538 1648 VAIO Event Service - ok
09:31:35.0554 1648 [ 2D6605C1F0BBD0F71A4CB3A5B1E07240 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
09:31:35.0592 1648 VAIO Power Management - ok
09:31:35.0604 1648 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
09:31:35.0605 1648 VaultSvc - ok
09:31:35.0617 1648 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
09:31:35.0618 1648 vdrvroot - ok
09:31:35.0635 1648 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
09:31:35.0672 1648 vds - ok
09:31:35.0684 1648 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:31:35.0687 1648 vga - ok
09:31:35.0698 1648 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
09:31:35.0702 1648 VgaSave - ok
09:31:35.0716 1648 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
09:31:35.0753 1648 vhdmp - ok
09:31:35.0765 1648 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
09:31:35.0769 1648 viaide - ok
09:31:35.0783 1648 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
09:31:35.0784 1648 vmbus - ok
09:31:35.0796 1648 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
09:31:35.0830 1648 VMBusHID - ok
09:31:35.0842 1648 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:31:35.0843 1648 volmgr - ok
09:31:35.0858 1648 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:31:35.0861 1648 volmgrx - ok
09:31:35.0875 1648 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:31:35.0877 1648 volsnap - ok
09:31:35.0890 1648 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
09:31:35.0896 1648 vsmraid - ok
09:31:35.0930 1648 [ A72D7E42DD540B082A65411EABD8463F ] VSNAPVSS C:\Windows\SysWOW64\vsnapvss.exe
09:31:35.0932 1648 VSNAPVSS - ok
09:31:35.0959 1648 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
09:31:35.0967 1648 VSS - ok
09:31:35.0982 1648 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
09:31:35.0985 1648 vwifibus - ok
09:31:36.0020 1648 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
09:31:36.0028 1648 W32Time - ok
09:31:36.0051 1648 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
09:31:36.0055 1648 WacomPen - ok
09:31:36.0068 1648 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:31:36.0101 1648 WANARP - ok
09:31:36.0113 1648 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:31:36.0114 1648 Wanarpv6 - ok
09:31:36.0137 1648 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
09:31:36.0185 1648 WatAdminSvc - ok
09:31:36.0212 1648 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
09:31:36.0220 1648 wbengine - ok
09:31:36.0234 1648 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:31:36.0241 1648 WbioSrvc - ok
09:31:36.0258 1648 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:31:36.0287 1648 wcncsvc - ok
09:31:36.0300 1648 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:31:36.0303 1648 WcsPlugInService - ok
09:31:36.0316 1648 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
09:31:36.0320 1648 Wd - ok
09:31:36.0338 1648 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:31:36.0341 1648 Wdf01000 - ok
09:31:36.0355 1648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:31:36.0361 1648 WdiServiceHost - ok
09:31:36.0373 1648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:31:36.0375 1648 WdiSystemHost - ok
09:31:36.0390 1648 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
09:31:36.0418 1648 WebClient - ok
09:31:36.0433 1648 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:31:36.0440 1648 Wecsvc - ok
09:31:36.0454 1648 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:31:36.0456 1648 wercplsupport - ok
09:31:36.0470 1648 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
09:31:36.0476 1648 WerSvc - ok
09:31:36.0488 1648 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:31:36.0490 1648 WfpLwf - ok
09:31:36.0503 1648 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:31:36.0506 1648 WIMMount - ok
09:31:36.0526 1648 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
09:31:36.0563 1648 winachsf - ok
09:31:36.0585 1648 WinHttpAutoProxySvc - ok
09:31:36.0603 1648 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:31:36.0609 1648 Winmgmt - ok
09:31:36.0641 1648 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
09:31:36.0685 1648 WinRM - ok
09:31:36.0720 1648 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
09:31:36.0753 1648 WinUsb - ok
09:31:36.0774 1648 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
09:31:36.0780 1648 Wlansvc - ok
09:31:36.0815 1648 [ E23A257A54FA12C2AEF8AD51E6556357 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:31:36.0826 1648 wlidsvc - ok
09:31:36.0842 1648 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:31:36.0843 1648 WmiAcpi - ok
09:31:36.0868 1648 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:31:36.0874 1648 wmiApSrv - ok
09:31:36.0886 1648 WMPNetworkSvc - ok
09:31:36.0900 1648 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:31:36.0905 1648 WPCSvc - ok
09:31:36.0919 1648 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:31:36.0946 1648 WPDBusEnum - ok
09:31:36.0959 1648 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:31:36.0962 1648 ws2ifsl - ok
09:31:36.0975 1648 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
09:31:36.0980 1648 WSDPrintDevice - ok
09:31:36.0992 1648 WSearch - ok
09:31:37.0040 1648 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
09:31:37.0052 1648 wuauserv - ok
09:31:37.0069 1648 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:31:37.0103 1648 WudfPf - ok
09:31:37.0118 1648 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:31:37.0152 1648 WUDFRd - ok
09:31:37.0166 1648 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:31:37.0194 1648 wudfsvc - ok
09:31:37.0209 1648 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
09:31:37.0216 1648 WwanSvc - ok
09:31:37.0230 1648 [ E8F3FA126A06F8E7088F63757112A186 ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys
09:31:37.0263 1648 XAudio - ok
09:31:37.0285 1648 YAMChA - ok
09:31:37.0302 1648 [ 79D9CE9614C955DD31AA2556B4014662 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
09:31:37.0305 1648 yukonw7 - ok
09:31:37.0369 1648 ================ Scan global ===============================
09:31:37.0374 1648 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
09:31:37.0381 1648 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
09:31:37.0416 1648 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
09:31:37.0422 1648 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
09:31:37.0432 1648 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
09:31:37.0435 1648 [Global] - ok
09:31:37.0435 1648 ================ Scan MBR ==================================
09:31:37.0437 1648 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
09:31:37.0553 1648 \Device\Harddisk0\DR0 - ok
09:31:37.0556 1648 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3
09:31:37.0656 1648 \Device\Harddisk3\DR3 - ok
09:31:37.0656 1648 ================ Scan VBR ==================================
09:31:37.0659 1648 [ 01EC02E0BE0828067AFCF18E1DD27296 ] \Device\Harddisk0\DR0\Partition1
09:31:37.0660 1648 \Device\Harddisk0\DR0\Partition1 - ok
09:31:37.0662 1648 [ 5AC8465412085DB105FD849E2D3136E4 ] \Device\Harddisk0\DR0\Partition2
09:31:37.0663 1648 \Device\Harddisk0\DR0\Partition2 - ok
09:31:37.0665 1648 [ D9494B52412302B6D824720C6F3A432D ] \Device\Harddisk3\DR3\Partition1
09:31:37.0667 1648 \Device\Harddisk3\DR3\Partition1 - ok
09:31:37.0667 1648 ============================================================
09:31:37.0667 1648 Scan finished
09:31:37.0667 1648 ============================================================
09:31:37.0674 1148 Detected object count: 0
09:31:37.0674 1148 Actual detected object count: 0

#5 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 10:55 AM

I have the Avast scan results, but can't open the log I saved to my desktop. It saves as .txt file, but appears on desktop as a DAT file. What am I doing wrong?

#6 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 10:58 AM

No idea what happened, but I was able to save it and open as a txt document. Here's the log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-26 09:35:46
-----------------------------
09:35:46.556 OS Version: Windows x64 6.1.7601 Service Pack 1
09:35:46.557 Number of processors: 2 586 0x170A
09:35:46.558 ComputerName: TEDDY-VAIO UserName: Teddy
09:35:46.995 Initialize success
09:41:52.808 AVAST engine defs: 12092600
09:42:51.439 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
09:42:51.441 Disk 0 Vendor: SAMSUNG_ VBM1 Size: 122104MB BusType: 3
09:42:51.443 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000009c
09:42:51.445 Disk 1 Vendor: RICOH 01 Size: 122104MB BusType: 0
09:42:51.448 Disk 2 \Device\Harddisk2\DR2 -> \Device\0000009d
09:42:51.450 Disk 2 Vendor: RICOH 02 Size: 122104MB BusType: 0
09:42:51.452 Disk 3 \Device\Harddisk3\DR3 -> \Device\000000bf
09:42:51.454 Disk 3 Vendor: Size: 122104MB BusType: 0
09:42:51.458 Disk 0 MBR read successfully
09:42:51.461 Disk 0 MBR scan
09:42:51.466 Disk 0 Windows VISTA default MBR code
09:42:51.469 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 7357 MB offset 2048
09:42:51.475 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 15069184
09:42:51.486 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 114645 MB offset 15273984
09:42:51.542 Disk 0 scanning C:\Windows\system32\drivers
09:42:56.133 Service scanning
09:43:06.958 Modules scanning
09:43:06.963 Disk 0 trace - called modules:
09:43:06.969 ntoskrnl.exe CLASSPNP.SYS disk.sys shpf.sys PCTCore64.sys ACPI.sys iaStor.sys hal.dll
09:43:06.972 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007c92060]
09:43:06.977 3 CLASSPNP.SYS[fffff88001a5443f] -> nt!IofCallDriver -> [0xfffffa8007c91c60]
09:43:06.981 5 shpf.sys[fffff88001802944] -> nt!IofCallDriver -> [0xfffffa8007c8f1a0]
09:43:06.985 7 PCTCore64.sys[fffff880012f6094] -> nt!IofCallDriver -> [0xfffffa8007b26ab0]
09:43:06.989 9 ACPI.sys[fffff88000f947a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007b2f050]
09:43:07.439 AVAST engine scan C:\Windows
09:43:09.616 AVAST engine scan C:\Windows\system32
09:45:14.805 AVAST engine scan C:\Windows\system32\drivers
09:45:20.329 AVAST engine scan C:\Users\Teddy
09:47:35.054 AVAST engine scan C:\ProgramData
09:49:09.979 Scan finished successfully
09:50:01.140 Disk 0 MBR has been saved successfully to "C:\Users\Teddy\Desktop\MBR.dat"
09:50:01.144 The log file has been saved successfully to "C:\Users\Teddy\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-26 09:35:46
-----------------------------
09:35:46.556 OS Version: Windows x64 6.1.7601 Service Pack 1
09:35:46.557 Number of processors: 2 586 0x170A
09:35:46.558 ComputerName: TEDDY-VAIO UserName: Teddy
09:35:46.995 Initialize success
09:41:52.808 AVAST engine defs: 12092600
09:42:51.439 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
09:42:51.441 Disk 0 Vendor: SAMSUNG_ VBM1 Size: 122104MB BusType: 3
09:42:51.443 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000009c
09:42:51.445 Disk 1 Vendor: RICOH 01 Size: 122104MB BusType: 0
09:42:51.448 Disk 2 \Device\Harddisk2\DR2 -> \Device\0000009d
09:42:51.450 Disk 2 Vendor: RICOH 02 Size: 122104MB BusType: 0
09:42:51.452 Disk 3 \Device\Harddisk3\DR3 -> \Device\000000bf
09:42:51.454 Disk 3 Vendor: Size: 122104MB BusType: 0
09:42:51.458 Disk 0 MBR read successfully
09:42:51.461 Disk 0 MBR scan
09:42:51.466 Disk 0 Windows VISTA default MBR code
09:42:51.469 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 7357 MB offset 2048
09:42:51.475 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 15069184
09:42:51.486 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 114645 MB offset 15273984
09:42:51.542 Disk 0 scanning C:\Windows\system32\drivers
09:42:56.133 Service scanning
09:43:06.958 Modules scanning
09:43:06.963 Disk 0 trace - called modules:
09:43:06.969 ntoskrnl.exe CLASSPNP.SYS disk.sys shpf.sys PCTCore64.sys ACPI.sys iaStor.sys hal.dll
09:43:06.972 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007c92060]
09:43:06.977 3 CLASSPNP.SYS[fffff88001a5443f] -> nt!IofCallDriver -> [0xfffffa8007c91c60]
09:43:06.981 5 shpf.sys[fffff88001802944] -> nt!IofCallDriver -> [0xfffffa8007c8f1a0]
09:43:06.985 7 PCTCore64.sys[fffff880012f6094] -> nt!IofCallDriver -> [0xfffffa8007b26ab0]
09:43:06.989 9 ACPI.sys[fffff88000f947a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007b2f050]
09:43:07.439 AVAST engine scan C:\Windows
09:43:09.616 AVAST engine scan C:\Windows\system32
09:45:14.805 AVAST engine scan C:\Windows\system32\drivers
09:45:20.329 AVAST engine scan C:\Users\Teddy
09:47:35.054 AVAST engine scan C:\ProgramData
09:49:09.979 Scan finished successfully
09:50:01.140 Disk 0 MBR has been saved successfully to "C:\Users\Teddy\Desktop\MBR.dat"
09:50:01.144 The log file has been saved successfully to "C:\Users\Teddy\Desktop\aswMBR.txt"
09:53:11.080 Disk 0 MBR has been saved successfully to "C:\Users\Teddy\Desktop\MBR.dat"
09:53:11.085 The log file has been saved successfully to "C:\Users\Teddy\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-26 09:35:46
-----------------------------
09:35:46.556 OS Version: Windows x64 6.1.7601 Service Pack 1
09:35:46.557 Number of processors: 2 586 0x170A
09:35:46.558 ComputerName: TEDDY-VAIO UserName: Teddy
09:35:46.995 Initialize success
09:41:52.808 AVAST engine defs: 12092600
09:42:51.439 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
09:42:51.441 Disk 0 Vendor: SAMSUNG_ VBM1 Size: 122104MB BusType: 3
09:42:51.443 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000009c
09:42:51.445 Disk 1 Vendor: RICOH 01 Size: 122104MB BusType: 0
09:42:51.448 Disk 2 \Device\Harddisk2\DR2 -> \Device\0000009d
09:42:51.450 Disk 2 Vendor: RICOH 02 Size: 122104MB BusType: 0
09:42:51.452 Disk 3 \Device\Harddisk3\DR3 -> \Device\000000bf
09:42:51.454 Disk 3 Vendor: Size: 122104MB BusType: 0
09:42:51.458 Disk 0 MBR read successfully
09:42:51.461 Disk 0 MBR scan
09:42:51.466 Disk 0 Windows VISTA default MBR code
09:42:51.469 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 7357 MB offset 2048
09:42:51.475 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 15069184
09:42:51.486 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 114645 MB offset 15273984
09:42:51.542 Disk 0 scanning C:\Windows\system32\drivers
09:42:56.133 Service scanning
09:43:06.958 Modules scanning
09:43:06.963 Disk 0 trace - called modules:
09:43:06.969 ntoskrnl.exe CLASSPNP.SYS disk.sys shpf.sys PCTCore64.sys ACPI.sys iaStor.sys hal.dll
09:43:06.972 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007c92060]
09:43:06.977 3 CLASSPNP.SYS[fffff88001a5443f] -> nt!IofCallDriver -> [0xfffffa8007c91c60]
09:43:06.981 5 shpf.sys[fffff88001802944] -> nt!IofCallDriver -> [0xfffffa8007c8f1a0]
09:43:06.985 7 PCTCore64.sys[fffff880012f6094] -> nt!IofCallDriver -> [0xfffffa8007b26ab0]
09:43:06.989 9 ACPI.sys[fffff88000f947a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007b2f050]
09:43:07.439 AVAST engine scan C:\Windows
09:43:09.616 AVAST engine scan C:\Windows\system32
09:45:14.805 AVAST engine scan C:\Windows\system32\drivers
09:45:20.329 AVAST engine scan C:\Users\Teddy
09:47:35.054 AVAST engine scan C:\ProgramData
09:49:09.979 Scan finished successfully
09:50:01.140 Disk 0 MBR has been saved successfully to "C:\Users\Teddy\Desktop\MBR.dat"
09:50:01.144 The log file has been saved successfully to "C:\Users\Teddy\Desktop\aswMBR.txt"
09:53:11.080 Disk 0 MBR has been saved successfully to "C:\Users\Teddy\Desktop\MBR.dat"
09:53:11.085 The log file has been saved successfully to "C:\Users\Teddy\Desktop\aswMBR.txt"
09:53:58.870 Disk 0 MBR has been saved successfully to "C:\Users\Teddy\Desktop\MBR.dat"
09:53:58.874 The log file has been saved successfully to "C:\Users\Teddy\Desktop\aswMBR.txt"

#7 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 12:02 PM

Finally finished scan with ESET.

197140 Files scanned
0 Infected files
0 Cleaned files
Scan time: 00:52:11

Does this mean I don't have an infection? Or that more diagnostics are necessary?

Thank you for your help!

#8 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 12:26 PM

I see that narenxp is offline now - probably due to the fact that its late evening where he lives.

Can anyone else help me? I would very much like to get this fixed as soon as possible. Thank you!

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 26 September 2012 - 12:38 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Launch it and scan should start running.After scan gets completed,post the generated log here.

Edited by narenxp, 26 September 2012 - 12:38 PM.


#10 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 01:34 PM

Hi Narenxp! Thank you so very much for your reply!!

I downloaded and am running the Malwarebytes scan. Will post log here as soon as it's done.

Will also follow your instructions for the rest and post results.

Many, many thanks again!!

#11 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 01:40 PM

Here's the Malwarebytes scan log:

Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.26.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Teddy :: TEDDY-VAIO [administrator]

Protection: Enabled

9/26/2012 11:40:19 AM
mbam-log-2012-09-26 (11-40-19).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 450726
Time elapsed: 56 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\PROGRAM FILES (X86)\HP\DIGITAL IMAGING\HELP\PLAYER\FLASHPLA.EXE (Trojan.Spatet) -> Data: 2 -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\Program Files\HP\Digital Imaging\help\player\FlashPla.exe (Trojan.Spatet) -> Quarantined and deleted successfully.
C:\Program Files (x86)\HP\Digital Imaging\help\player\FlashPla.exe (Trojan.Spatet) -> Quarantined and deleted successfully.
C:\System Volume Information\SystemRestore\FRStaging\Program Files\HP\Digital Imaging\help\player\FlashPla.exe (Trojan.Spatet) -> Quarantined and deleted successfully.
C:\System Volume Information\SystemRestore\FRStaging\Program Files (x86)\HP\Digital Imaging\help\player\FlashPla.exe (Trojan.Spatet) -> Quarantined and deleted successfully.

(end)

#12 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 01:48 PM

And here are the minitoolbox results:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Teddy (administrator) on 26-09-2012 at 12:45:33
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® WiFi Link 5100 AGN = Wireless Network Connection (Connected)
Intel® 82567LM Gigabit Network Connection = Local Area Connection (Media disconnected)
Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller = Local Area Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Teddy-VAIO
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller
Physical Address. . . . . . . . . : 00-1A-80-D9-A6-5B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® WiFi Link 5100 AGN
Physical Address. . . . . . . . . : 00-24-D6-17-87-AA
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::494a:e664:6911:8d3f%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, September 26, 2012 12:41:28 PM
Lease Expires . . . . . . . . . . : Thursday, September 27, 2012 12:41:28 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 201336022
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-72-30-27-00-1D-BA-69-C4-92
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : 0055647.lodgenet.net
Description . . . . . . . . . . . : Intel® 82567LM Gigabit Network Connection
Physical Address. . . . . . . . . : 00-1D-BA-69-C4-92
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 22:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{5EAC6A7A-8227-4314-95BA-BF24050C2CD7}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:400a:801::1002
173.194.33.40
173.194.33.41
173.194.33.46
173.194.33.32
173.194.33.33
173.194.33.34
173.194.33.35
173.194.33.36
173.194.33.37
173.194.33.38
173.194.33.39


Pinging google.com [173.194.33.39] with 32 bytes of data:
Reply from 173.194.33.39: bytes=32 time=30ms TTL=53
Reply from 173.194.33.39: bytes=32 time=92ms TTL=53

Ping statistics for 173.194.33.39:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 30ms, Maximum = 92ms, Average = 61ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=544ms TTL=47
Reply from 72.30.38.140: bytes=32 time=518ms TTL=47

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 518ms, Maximum = 544ms, Average = 531ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...00 1a 80 d9 a6 5b ......Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller
11...00 24 d6 17 87 aa ......Intel® WiFi Link 5100 AGN
10...00 1d ba 69 c4 92 ......Intel® 82567LM Gigabit Network Connection
1...........................Software Loopback Interface 1
31...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
34...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 281
192.168.1.3 255.255.255.255 On-link 192.168.1.3 281
192.168.1.255 255.255.255.255 On-link 192.168.1.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::494a:e664:6911:8d3f/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134512] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134512] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/26/2012 00:43:23 PM) (Source: MsiInstaller) (User: Teddy-VAIO)Teddy-VAIO
Description: Product: SolutionCenter -- Error 1706. An installation package for the product SolutionCenter cannot be found. Try the installation again using a valid copy of the installation package 'SolutionCenter.msi'.

Error: (09/26/2012 00:43:02 PM) (Source: MsiInstaller) (User: Teddy-VAIO)Teddy-VAIO
Description: Product: SolutionCenter -- Error 1706. An installation package for the product SolutionCenter cannot be found. Try the installation again using a valid copy of the installation package 'SolutionCenter.msi'.

Error: (09/26/2012 00:42:44 PM) (Source: ShadowProtectSvc) (User: NT AUTHORITY)NT AUTHORITY
Description: Backup status: failed
Image file: H:\C_VOL
Log file: C:\Program Files (x86)\StorageCraft\ShadowProtect\Logs\{FFD3723C-4C66-4488-A5C7-AF44A449332B}.txt
Start time: 9/26/2012 12:42:43 PM
Module: service
Code: 509
Message: Cannot get access to destination object

Error: (09/26/2012 00:42:44 PM) (Source: ShadowProtectSvc) (User: NT AUTHORITY)NT AUTHORITY
Description: Backup status: failed
Image file: H:\Recovery_VOL
Log file: C:\Program Files (x86)\StorageCraft\ShadowProtect\Logs\{5EE85A57-4478-4010-AD2A-E153FE3597B4}.txt
Start time: 9/26/2012 12:42:43 PM
Module: service
Code: 509
Message: Cannot get access to destination object

Error: (09/26/2012 00:42:43 PM) (Source: ShadowProtectSvc) (User: NT AUTHORITY)NT AUTHORITY
Description: Backup status: failed
Image file: H:\System Reserved_VOL
Log file: C:\Program Files (x86)\StorageCraft\ShadowProtect\Logs\{1DEC243F-A41C-4907-B1E9-592CA2F4EA33}.txt
Start time: 9/26/2012 12:42:43 PM
Module: service
Code: 509
Message: Cannot get access to destination object

Error: (09/26/2012 09:59:11 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/26/2012 07:05:00 AM) (Source: Application Error) (User: )
Description: Faulting application name: PowerManager.exe, version: 1.0.0.0, time stamp: 0x4a7a24d8
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e211319
Exception code: 0xe0434f4d
Fault offset: 0x0000b9bc
Faulting process id: 0x%9
Faulting application start time: 0xPowerManager.exe0
Faulting application path: PowerManager.exe1
Faulting module path: PowerManager.exe2
Report Id: PowerManager.exe3

Error: (09/26/2012 07:05:00 AM) (Source: Application Error) (User: )
Description: Faulting application name: ThirdPartyAppMgr.exe, version: 1.0.0.0, time stamp: 0x4a7a24d9
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e211319
Exception code: 0xe0434f4d
Fault offset: 0x0000b9bc
Faulting process id: 0x%9
Faulting application start time: 0xThirdPartyAppMgr.exe0
Faulting application path: ThirdPartyAppMgr.exe1
Faulting module path: ThirdPartyAppMgr.exe2
Report Id: ThirdPartyAppMgr.exe3

Error: (09/26/2012 02:00:00 AM) (Source: ShadowProtectSvc) (User: NT AUTHORITY)NT AUTHORITY
Description: Backup status: failed
Image file: H:\C_VOL
Log file: C:\Program Files (x86)\StorageCraft\ShadowProtect\Logs\{FFD3723C-4C66-4488-A5C7-AF44A449332B}.txt
Start time: 9/26/2012 2:00:00 AM
Module: service
Code: 509
Message: Cannot get access to destination object

Error: (09/26/2012 02:00:00 AM) (Source: ShadowProtectSvc) (User: NT AUTHORITY)NT AUTHORITY
Description: Backup status: failed
Image file: H:\Recovery_VOL
Log file: C:\Program Files (x86)\StorageCraft\ShadowProtect\Logs\{5EE85A57-4478-4010-AD2A-E153FE3597B4}.txt
Start time: 9/26/2012 2:00:00 AM
Module: service
Code: 509
Message: Cannot get access to destination object


System errors:
=============
Error: (09/26/2012 00:43:50 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (09/26/2012 00:43:50 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (09/26/2012 00:42:47 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/26/2012 00:41:42 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
McPvDrv

Error: (09/26/2012 00:41:32 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Roxio Upnp Server 10 service to connect.

Error: (09/26/2012 00:41:30 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (09/26/2012 00:41:28 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (09/26/2012 00:41:28 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/26/2012 00:41:27 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (09/26/2012 00:41:26 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060


Microsoft Office Sessions:
=========================
Error: (08/27/2012 08:34:47 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 394707 seconds with 15840 seconds of active time. This session ended with a crash.

Error: (11/20/2011 11:57:52 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash.

Error: (03/02/2011 05:54:21 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 43 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/30/2010 00:29:46 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 452 seconds with 360 seconds of active time. This session ended with a crash.

Error: (03/20/2010 09:29:33 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/11/2010 02:47:05 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3454 seconds with 1920 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

2007 Microsoft Office Suite Service Pack 2 (SP2)
64 Bit HP CIO Components Installer (Version: 7.2.8)
7300 (Version: 130.0.365.000)
7300_Help (Version: 82.0.242.000)
7300Trb (Version: 82.0.242.000)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.278)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AIO_CDB_ProductContext (Version: 130.0.365.000)
AIO_CDB_Software (Version: 130.0.365.000)
AIO_Scan (Version: 130.0.421.000)
Alps Pointing-device for VAIO
Angry Birds (Version: 1.0.0)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Application Manager for VAIO
ArcSoft WebCam Companion 3 (Version: 3.0.21.193)
Bonjour (Version: 3.0.0.10)
Brother BRAdmin Light 1.14 (Version: 1.14)
Brother P-touch Address Book 1.1 (Version: 1.1.0.0)
Brother P-touch Editor 5.0 (Version: 5.0.030)
Brother P-touch Software (Version: 1.0.006)
Brother QL-580N User's Guide (Version: 1.0.001)
Browser Defender 3.0 (Version: 3.0.0.213)
BufferChm (Version: 140.0.212.000)
C410 (Version: 140.0.273.000)
CCleaner (Version: 3.14)
CDDRV_Installer (Version: 4.60)
Choice Guard (Version: 1.2.87.0)
Click to Disc (Version: 1.2.70.06160)
Click to Disc Editor (Version: 2.0.02)
Coupon Printer for Windows (Version: 5.0.0.0)
CutePDF Writer 2.8
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
DocProc (Version: 140.0.99.000)
EarthLink Access Software (Version: 8.2.3.0)
erLT (Version: 1.20.0137)
ES Status Monitor (Version: 1.01.0014)
ESET Online Scanner v3
Fax (Version: 140.0.212.000)
FitDay PC version 2.0 (Version: 2.0)
Google Chrome (Version: 21.0.1180.89)
Google Update Helper (Version: 1.3.21.123)
GPBaseService2 (Version: 140.0.211.000)
HDAUDIO SoftV92 Data Fax Modem with SmartCP (Version: 7.80.4.50)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.${CAB_VERSION})
HP Photosmart Essential 3.5 (Version: 3.5)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (Version: 13.0)
HP Photosmart Prem C410 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Product Detection (Version: 10.7.9.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPAppStudio (Version: 140.0.95.000)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 140.0.524.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
Intel AppUp(SM) center (Version: 18988)
Intel® Matrix Storage Manager
iTunes (Version: 10.7.0.21)
Java™ 6 Update 15 (64-bit) (Version: 6.0.150)
Java™ 7 Update 5 (Version: 7.0.50)
Java™ SE Development Kit 6 Update 15 (64-bit) (Version: 1.6.0.150)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 14.0.8050.1202)
Kensington MouseWorks
KhalInstallWrapper (Version: 4.70.213)
Logitech SetPoint (Version: 4.70)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
MarketResearch (Version: 140.0.212.000)
McAfee Security Scan Plus (Version: 3.0.207.4)
McAfee Total Protection (Version: 11.6.434)
McAfee Virtual Technician (Version: 5.5.1.0)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (Version: 2.1.54.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Live Add-in 1.4 (Version: 2.0.3008.0)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Small Business 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Search Enhancement Pack (Version: 2.0.269.0)
Microsoft Silverlight (Version: 4.0.50524.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSN Toolbar (Version: 4.0.0357.1)
MSN Toolbar Platform (Version: 4.0.0357.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
NOOK for PC (Version: 2.5.5.9347)
NVIDIA Drivers (Version: 1.9)
OCR Software by I.R.I.S. 14.0 (Version: 14.0)
PANTECH USB Modem V2 (Version: 1.2.4151.1109)
PDFill PDF Editor with FREE Writer and FREE Tools (Version: 8.0)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Protector Suite 2009 (Version: 5.9.2.5746)
PS_AIO_07_C410_SW_Min (Version: 140.0.273.000)
Qualcomm Gobi Driver Package for Sony (Version: 1.0.24)
Qualcomm Gobi Images for Sony (Version: 1.0.24)
Qualcomm Gobi Single Installer Package for Novatel (Version: 1.0.11)
QuickBooks (Version: 19.0.4008.703)
QuickBooks (Version: 20.0.4015.807)
QuickBooks Premier: Professional Services Edition 2010 (Version: 20.0.4015.807)
QuickTransfer (Version: 140.0.98.000)
Realtek High Definition Audio Driver (Version: 6.0.1.5859)
Roxio Central Audio (Version: 3.8.0)
Roxio Central Copy (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Central Data (Version: 3.8.0)
Roxio Central Tools (Version: 3.8.0)
Roxio Easy Media Creator 10 LJ (Version: 10.3)
Roxio Easy Media Creator Home (Version: 10.3.121)
Scan (Version: 140.0.80.000)
Setting Utility Series (Version: 5.0.0.07300)
ShadowProtect Desktop (Version: 3.03.4274)
ShadowProtect Desktop (Version: 4.15.9340)
Shared C Run-time for x64 (Version: 10.0.0)
Shop for HP Supplies (Version: 14.0)
SmartWebPrinting (Version: 140.0.186.000)
SmartWi Connection Utility (Version: 4.8.4.20090902.2130)
SnapIt 3.7 (Version: 3.7)
SolutionCenter (Version: 140.0.214.000)
Spyware Doctor 8.0 (Version: 8.0)
Status (Version: 140.0.256.000)
SupportSoft Assisted Service (Version: 15)
Toolbox (Version: 140.0.428.000)
Trader Workstation
TrayApp (Version: 140.0.212.000)
TWS Demo
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office InfoPath 2007 (KB976416)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 (KB974561)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (kb976884)
VAIO Care (Version: 5.1.0.13200)
VAIO Control Center (Version: 4.0.0.06120)
VAIO Data Restore Tool (Version: 1.1.01.06290)
VAIO DVD Menu Data Basic (Version: 1.0.00.08130)
VAIO Event Service (Version: 5.0.0.07010)
VAIO Help and Support (Version: 9.00.0729.ENUS)
VAIO OOBE and Startup Assistant (Version: 1.00.0811.ENUS)
VAIO Power Management (Version: 4.0.0.08240)
VAIO Presentation Support (Version: 2.0.0.05270)
VAIO Update 4 (Version: 4.2.0.07300)
VAIO Wallpaper Contents (Version: 2.0.0.06010)
Verizon Mobile Broadband Drivers (Version: 3.02.002.002)
Verizon Wireless MiFi-2200 Firmware Updates (Version: 1.0.3)
Visual Studio 2005 Tools for Office Second Edition Runtime
VoiceOver Kit (Version: 1.42.128.0)
VZAccess Manager (Version: 7.3.11.1)
WebReg (Version: 140.0.212.017)
WIDCOMM Bluetooth Software (Version: 6.2.0.9600)
WinDirStat 1.1.2
Windows Live Call (Version: 14.0.8050.1202)
Windows Live Communications Platform (Version: 14.0.8050.1202)
Windows Live Essentials (Version: 14.0.8050.1202)
Windows Live ID Sign-in Assistant (Version: 6.500.3146.0)
Windows Live Mail (Version: 14.0.8050.1202)
Windows Live Messenger (Version: 14.0.8050.1202)
Windows Live Movie Maker Beta (Version: 14.0.8051.1204)
Windows Live Photo Gallery (Version: 14.0.8051.1204)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8050.1202)

========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 8122.89 MB
Available physical RAM: 5774.94 MB
Total Pagefile: 16243.98 MB
Available Pagefile: 13619.85 MB
Total Virtual: 4095.88 MB
Available Virtual: 3965.59 MB

========================= Partitions: =====================================

1 Drive c: (Windows) (Fixed) (Total:111.96 GB) (Free:26.65 GB) NTFS
2 Drive d: (Iomega HDD) (Fixed) (Total:1863.01 GB) (Free:453.08 GB) NTFS

========================= Users: ========================================

User accounts for \\TEDDY-VAIO

Administrator Guest Teddy

========================= Restore Points ==================================

25-09-2012 22:36:35 Scheduled Checkpoint

**** End of log ****

#13 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 01:50 PM

FSS Log:

Farbar Service Scanner Version: 19-09-2012
Ran by Teddy (administrator) on 26-09-2012 at 12:49:28
Running from "C:\Users\Teddy\Downloads"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Yahoo.com is offline


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#14 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 01:56 PM

Here is the log for Adware Cleaner:

# AdwCleaner v2.003 - Logfile created 09/26/2012 at 12:51:43
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : Teddy - TEDDY-VAIO
# Boot Mode : Normal
# Running from : C:\Users\Teddy\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Partner

***** [Registry] *****

Key Deleted : HKCU\Software\Headlight

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Users\Teddy\AppData\Roaming\Mozilla\Firefox\Profiles\lna2lqtc.default\prefs.js

C:\Users\Teddy\AppData\Roaming\Mozilla\Firefox\Profiles\lna2lqtc.default\user.js ... Deleted !

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Teddy\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1644 octets] - [26/09/2012 12:51:43]

########## EOF - C:\AdwCleaner[S1].txt - [1704 octets] ##########

#15 TKI

TKI
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 PM

Posted 26 September 2012 - 02:13 PM

Last one from Junkware removal tool:

Junkware Removal Tool (JRT) by Thisisu
Version: 1.0.9 (09.26.2012)
OS: Windows 7 Professional x64
Ran by Teddy on Wed 09/26/2012 at 13:10:55.18
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_current_user\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}
ERROR: Access is denied.

Failed to delete: [KEY-LOCKED!] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}
ERROR: Access is denied.

Failed to delete: [KEY-LOCKED!] hkey_local_machine\software\wow6432node\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}



*** Files: 0 Detections



*** Folders: 0 Detections



*** Ask Toolbar: - Remnants removed




*** FireFox detected and repaired:

The below lines were deleted from [FF prefs.js]

=============================

=============================



*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Wed 09/26/2012 at 13:11:15.98
End of Report




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users