Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Firewall Will Not Start


  • Please log in to reply
23 replies to this topic

#1 primetimezo

primetimezo

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 21 January 2013 - 01:46 PM

I am unable to turn my Windows Firewall on. I ran a full Malwarebytes Anti-Malware scan to make sure there were no infections. The scan came up clean.

After clicking the the Windows Firewall icon, a windows pops up saying "Windows Firewall is not using the recommended settings". I clicked on the "Use Recommended Settings" button and an hourglass appears but then disappears after a few seconds, and the Windows Firewall window continues to say "Windows Firewall is not using the recommended settings".

I am running Windows 7 Home Premium.

I would appreciate any help. Thank you.

Edited by bloopie, 26 January 2013 - 11:50 AM.
Moved topic from Windows 7 to the more appropriate forum. ~bloopie


BC AdBot (Login to Remove)

 


#2 AngryRaisin

AngryRaisin

  • Members
  • 235 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Orange County, CA, US
  • Local time:07:12 AM

Posted 21 January 2013 - 04:03 PM

Usually easiest way to fix this is use 'system restore' to move back to point when the firewall service was active and working.

#3 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 21 January 2013 - 08:50 PM

I do not know the last time Firewall was properly working. It has probably been a very long time.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:12 AM

Posted 21 January 2013 - 11:27 PM

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

#5 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 22 January 2013 - 10:48 PM

Farbar Service Scanner Version: 16-01-2013
Ran by Jonathan (administrator) on 22-01-2013 at 22:46:51
Running from "C:\Users\Jonathan\Downloads"
Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.
Checking Start type of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:12 AM

Posted 26 January 2013 - 11:27 AM

You may be infected

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#7 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 26 January 2013 - 04:22 PM

16:13:31.0715 2748 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:13:32.0058 2748 ============================================================
16:13:32.0058 2748 Current date / time: 2013/01/26 16:13:32.0058
16:13:32.0058 2748 SystemInfo:
16:13:32.0058 2748
16:13:32.0058 2748 OS Version: 6.1.7600 ServicePack: 0.0
16:13:32.0058 2748 Product type: Workstation
16:13:32.0058 2748 ComputerName: JONATHAN-PC
16:13:32.0058 2748 UserName: Jonathan
16:13:32.0058 2748 Windows directory: C:\windows
16:13:32.0058 2748 System windows directory: C:\windows
16:13:32.0058 2748 Running under WOW64
16:13:32.0058 2748 Processor architecture: Intel x64
16:13:32.0058 2748 Number of processors: 4
16:13:32.0058 2748 Page size: 0x1000
16:13:32.0058 2748 Boot type: Normal boot
16:13:32.0058 2748 ============================================================
16:13:32.0745 2748 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:13:32.0760 2748 ============================================================
16:13:32.0760 2748 \Device\Harddisk0\DR0:
16:13:32.0760 2748 MBR partitions:
16:13:32.0760 2748 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x38967800
16:13:32.0760 2748 ============================================================
16:13:32.0792 2748 C: <-> \Device\Harddisk0\DR0\Partition1
16:13:32.0792 2748 ============================================================
16:13:32.0792 2748 Initialize success
16:13:32.0792 2748 ============================================================
16:17:08.0022 3916 ============================================================
16:17:08.0022 3916 Scan started
16:17:08.0022 3916 Mode: Manual; TDLFS;
16:17:08.0022 3916 ============================================================
16:17:08.0224 3916 ================ Scan system memory ========================
16:17:08.0224 3916 System memory - ok
16:17:08.0224 3916 ================ Scan services =============================
16:17:08.0412 3916 [ 969C91060CBB5D17CB8440B5F78B4C51 ] 1394ohci C:\windows\system32\DRIVERS\1394ohci.sys
16:17:08.0490 3916 1394ohci - ok
16:17:08.0521 3916 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\windows\system32\DRIVERS\ACPI.sys
16:17:08.0536 3916 ACPI - ok
16:17:08.0568 3916 [ 12C5274CD87449A2A37A607CDB321922 ] acpials C:\windows\system32\DRIVERS\acpials.sys
16:17:08.0568 3916 acpials - ok
16:17:08.0568 3916 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\windows\system32\DRIVERS\acpipmi.sys
16:17:08.0583 3916 AcpiPmi - ok
16:17:08.0708 3916 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:17:08.0802 3916 AdobeARMservice - ok
16:17:08.0926 3916 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:17:08.0926 3916 AdobeFlashPlayerUpdateSvc - ok
16:17:08.0973 3916 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
16:17:09.0004 3916 adp94xx - ok
16:17:09.0036 3916 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
16:17:09.0067 3916 adpahci - ok
16:17:09.0082 3916 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
16:17:09.0082 3916 adpu320 - ok
16:17:09.0129 3916 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
16:17:09.0129 3916 AeLookupSvc - ok
16:17:09.0192 3916 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\windows\system32\drivers\afd.sys
16:17:09.0254 3916 AFD - ok
16:17:09.0285 3916 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\DRIVERS\agp440.sys
16:17:09.0285 3916 agp440 - ok
16:17:09.0301 3916 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
16:17:09.0301 3916 ALG - ok
16:17:09.0316 3916 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\DRIVERS\aliide.sys
16:17:09.0316 3916 aliide - ok
16:17:09.0332 3916 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\DRIVERS\amdide.sys
16:17:09.0332 3916 amdide - ok
16:17:09.0348 3916 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
16:17:09.0348 3916 AmdK8 - ok
16:17:09.0363 3916 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
16:17:09.0363 3916 AmdPPM - ok
16:17:09.0426 3916 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\windows\system32\drivers\amdsata.sys
16:17:09.0488 3916 amdsata - ok
16:17:09.0504 3916 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
16:17:09.0519 3916 amdsbs - ok
16:17:09.0535 3916 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\windows\system32\drivers\amdxata.sys
16:17:09.0582 3916 amdxata - ok
16:17:09.0613 3916 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\windows\system32\drivers\appid.sys
16:17:09.0613 3916 AppID - ok
16:17:09.0628 3916 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
16:17:09.0628 3916 AppIDSvc - ok
16:17:09.0628 3916 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\windows\System32\appinfo.dll
16:17:09.0644 3916 Appinfo - ok
16:17:09.0660 3916 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
16:17:09.0660 3916 arc - ok
16:17:09.0660 3916 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
16:17:09.0675 3916 arcsas - ok
16:17:09.0675 3916 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
16:17:09.0691 3916 AsyncMac - ok
16:17:09.0706 3916 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\DRIVERS\atapi.sys
16:17:09.0706 3916 atapi - ok
16:17:09.0722 3916 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
16:17:09.0753 3916 AudioEndpointBuilder - ok
16:17:09.0769 3916 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\windows\System32\Audiosrv.dll
16:17:09.0769 3916 AudioSrv - ok
16:17:09.0800 3916 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\windows\System32\AxInstSV.dll
16:17:09.0800 3916 AxInstSV - ok
16:17:09.0831 3916 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
16:17:09.0847 3916 b06bdrv - ok
16:17:09.0862 3916 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
16:17:09.0878 3916 b57nd60a - ok
16:17:09.0894 3916 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
16:17:09.0894 3916 BDESVC - ok
16:17:09.0925 3916 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
16:17:09.0925 3916 Beep - ok
16:17:09.0972 3916 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\windows\System32\bfe.dll
16:17:09.0987 3916 BFE - ok
16:17:10.0003 3916 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
16:17:10.0018 3916 blbdrive - ok
16:17:10.0065 3916 [ 19D20159708E152267E53B66677A4995 ] bowser C:\windows\system32\DRIVERS\bowser.sys
16:17:10.0128 3916 bowser - ok
16:17:10.0159 3916 [ F46DD257FAD7D2D097EF32E72220A06C ] bpenum C:\windows\system32\DRIVERS\bpenum.sys
16:17:10.0221 3916 bpenum - ok
16:17:10.0237 3916 [ E82060AED0F28ED8909F2B07FA276185 ] bpmp C:\windows\system32\DRIVERS\bpmp.sys
16:17:10.0284 3916 bpmp - ok
16:17:10.0299 3916 [ FC6313A5A45C1AE53D0491F0057D5A4D ] bpusb C:\windows\system32\Drivers\bpusb.sys
16:17:10.0346 3916 bpusb - ok
16:17:10.0346 3916 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
16:17:10.0362 3916 BrFiltLo - ok
16:17:10.0362 3916 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
16:17:10.0362 3916 BrFiltUp - ok
16:17:10.0393 3916 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\windows\System32\browser.dll
16:17:10.0440 3916 Browser - ok
16:17:10.0440 3916 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
16:17:10.0455 3916 Brserid - ok
16:17:10.0471 3916 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
16:17:10.0471 3916 BrSerWdm - ok
16:17:10.0486 3916 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
16:17:10.0486 3916 BrUsbMdm - ok
16:17:10.0502 3916 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
16:17:10.0502 3916 BrUsbSer - ok
16:17:10.0518 3916 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
16:17:10.0518 3916 BTHMODEM - ok
16:17:10.0564 3916 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
16:17:10.0564 3916 bthserv - ok
16:17:10.0580 3916 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
16:17:10.0580 3916 cdfs - ok
16:17:10.0611 3916 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
16:17:10.0611 3916 cdrom - ok
16:17:10.0642 3916 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\windows\System32\certprop.dll
16:17:10.0658 3916 CertPropSvc - ok
16:17:10.0705 3916 [ DF8D07059E7237E0BE9C1421EF5F9482 ] cfwids C:\windows\system32\drivers\cfwids.sys
16:17:10.0783 3916 cfwids - ok
16:17:10.0798 3916 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
16:17:10.0798 3916 circlass - ok
16:17:10.0814 3916 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
16:17:10.0830 3916 CLFS - ok
16:17:10.0892 3916 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:17:10.0908 3916 clr_optimization_v2.0.50727_32 - ok
16:17:10.0954 3916 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:17:10.0970 3916 clr_optimization_v2.0.50727_64 - ok
16:17:11.0032 3916 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:17:11.0126 3916 clr_optimization_v4.0.30319_32 - ok
16:17:11.0142 3916 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:17:11.0204 3916 clr_optimization_v4.0.30319_64 - ok
16:17:11.0235 3916 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
16:17:11.0235 3916 CmBatt - ok
16:17:11.0251 3916 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\DRIVERS\cmdide.sys
16:17:11.0251 3916 cmdide - ok
16:17:11.0298 3916 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\windows\system32\Drivers\cng.sys
16:17:11.0344 3916 CNG - ok
16:17:11.0360 3916 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
16:17:11.0360 3916 Compbatt - ok
16:17:11.0391 3916 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
16:17:11.0391 3916 CompositeBus - ok
16:17:11.0407 3916 COMSysApp - ok
16:17:11.0407 3916 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
16:17:11.0407 3916 crcdisk - ok
16:17:11.0454 3916 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\windows\system32\cryptsvc.dll
16:17:11.0485 3916 CryptSvc - ok
16:17:11.0547 3916 [ BA8E5B2291C01EF71CA80E25F0C79D55 ] ctxusbm C:\windows\system32\DRIVERS\ctxusbm.sys
16:17:11.0610 3916 ctxusbm - ok
16:17:11.0750 3916 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:17:11.0828 3916 cvhsvc - ok
16:17:11.0859 3916 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\windows\system32\rpcss.dll
16:17:11.0875 3916 DcomLaunch - ok
16:17:11.0922 3916 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
16:17:11.0937 3916 defragsvc - ok
16:17:11.0984 3916 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\windows\system32\Drivers\dfsc.sys
16:17:12.0062 3916 DfsC - ok
16:17:12.0078 3916 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\windows\system32\dhcpcore.dll
16:17:12.0093 3916 Dhcp - ok
16:17:12.0124 3916 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
16:17:12.0124 3916 discache - ok
16:17:12.0156 3916 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
16:17:12.0171 3916 Disk - ok
16:17:12.0249 3916 [ 61458C120CDDFE7514E2DB125568CA59 ] DMAgent C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
16:17:12.0312 3916 DMAgent - ok
16:17:12.0358 3916 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\windows\System32\dnsrslvr.dll
16:17:12.0358 3916 Dnscache - ok
16:17:12.0390 3916 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\windows\System32\dot3svc.dll
16:17:12.0390 3916 dot3svc - ok
16:17:12.0405 3916 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\windows\system32\dps.dll
16:17:12.0405 3916 DPS - ok
16:17:12.0421 3916 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
16:17:12.0436 3916 drmkaud - ok
16:17:12.0468 3916 [ 372117D46A16ADD8CA6E3EE3B3BDD57C ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
16:17:12.0561 3916 DXGKrnl - ok
16:17:12.0577 3916 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
16:17:12.0577 3916 EapHost - ok
16:17:12.0670 3916 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
16:17:12.0764 3916 ebdrv - ok
16:17:12.0811 3916 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\windows\System32\lsass.exe
16:17:12.0858 3916 EFS - ok
16:17:12.0936 3916 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\windows\ehome\ehRecvr.exe
16:17:13.0029 3916 ehRecvr - ok
16:17:13.0060 3916 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
16:17:13.0076 3916 ehSched - ok
16:17:13.0092 3916 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
16:17:13.0107 3916 elxstor - ok
16:17:13.0123 3916 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\DRIVERS\errdev.sys
16:17:13.0138 3916 ErrDev - ok
16:17:13.0154 3916 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
16:17:13.0154 3916 EventSystem - ok
16:17:13.0185 3916 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
16:17:13.0185 3916 exfat - ok
16:17:13.0201 3916 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
16:17:13.0201 3916 fastfat - ok
16:17:13.0232 3916 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\windows\system32\fxssvc.exe
16:17:13.0232 3916 Fax - ok
16:17:13.0263 3916 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
16:17:13.0263 3916 fdc - ok
16:17:13.0279 3916 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
16:17:13.0279 3916 fdPHost - ok
16:17:13.0279 3916 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
16:17:13.0279 3916 FDResPub - ok
16:17:13.0294 3916 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
16:17:13.0294 3916 FileInfo - ok
16:17:13.0310 3916 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
16:17:13.0310 3916 Filetrace - ok
16:17:13.0326 3916 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
16:17:13.0326 3916 flpydisk - ok
16:17:13.0341 3916 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
16:17:13.0357 3916 FltMgr - ok
16:17:13.0404 3916 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\windows\system32\FntCache.dll
16:17:13.0450 3916 FontCache - ok
16:17:13.0497 3916 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:17:13.0513 3916 FontCache3.0.0.0 - ok
16:17:13.0528 3916 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
16:17:13.0528 3916 FsDepends - ok
16:17:13.0575 3916 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
16:17:13.0653 3916 Fs_Rec - ok
16:17:13.0669 3916 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
16:17:13.0731 3916 fvevol - ok
16:17:13.0747 3916 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
16:17:13.0747 3916 gagp30kx - ok
16:17:13.0778 3916 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\windows\System32\gpsvc.dll
16:17:13.0794 3916 gpsvc - ok
16:17:13.0856 3916 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:17:13.0856 3916 gupdate - ok
16:17:13.0887 3916 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:17:13.0887 3916 gupdatem - ok
16:17:13.0950 3916 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:17:14.0028 3916 gusvc - ok
16:17:14.0043 3916 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
16:17:14.0043 3916 hcw85cir - ok
16:17:14.0074 3916 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
16:17:14.0090 3916 HdAudAddService - ok
16:17:14.0106 3916 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
16:17:14.0106 3916 HDAudBus - ok
16:17:14.0137 3916 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\windows\system32\DRIVERS\HECIx64.sys
16:17:14.0199 3916 HECIx64 - ok
16:17:14.0215 3916 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
16:17:14.0215 3916 HidBatt - ok
16:17:14.0230 3916 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
16:17:14.0230 3916 HidBth - ok
16:17:14.0246 3916 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
16:17:14.0246 3916 HidIr - ok
16:17:14.0277 3916 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
16:17:14.0277 3916 hidserv - ok
16:17:14.0293 3916 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
16:17:14.0308 3916 HidUsb - ok
16:17:14.0340 3916 [ DD9C88B116408B30F855A76E09DD2962 ] hitmanpro37 C:\windows\system32\drivers\hitmanpro37.sys
16:17:14.0386 3916 hitmanpro37 - ok
16:17:14.0418 3916 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\windows\system32\kmsvc.dll
16:17:14.0418 3916 hkmsvc - ok
16:17:14.0433 3916 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\windows\system32\ListSvc.dll
16:17:14.0449 3916 HomeGroupListener - ok
16:17:14.0480 3916 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\windows\system32\provsvc.dll
16:17:14.0496 3916 HomeGroupProvider - ok
16:17:14.0511 3916 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\windows\system32\DRIVERS\HpSAMD.sys
16:17:14.0511 3916 HpSAMD - ok
16:17:14.0542 3916 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\windows\system32\drivers\HTTP.sys
16:17:14.0558 3916 HTTP - ok
16:17:14.0558 3916 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
16:17:14.0574 3916 hwpolicy - ok
16:17:14.0605 3916 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
16:17:14.0605 3916 i8042prt - ok
16:17:14.0636 3916 [ 85977CD13FC16069CE0AF7943A811775 ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
16:17:14.0636 3916 iaStor - ok
16:17:14.0683 3916 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\windows\system32\drivers\iaStorV.sys
16:17:14.0730 3916 iaStorV - ok
16:17:14.0792 3916 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:17:14.0839 3916 idsvc - ok
16:17:15.0057 3916 [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
16:17:15.0135 3916 igfx - ok
16:17:15.0151 3916 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
16:17:15.0166 3916 iirsp - ok
16:17:15.0213 3916 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\windows\System32\ikeext.dll
16:17:15.0244 3916 IKEEXT - ok
16:17:15.0276 3916 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\windows\system32\DRIVERS\Impcd.sys
16:17:15.0338 3916 Impcd - ok
16:17:15.0447 3916 [ 490947A9AFF7CA31EF2E08F5776105EB ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
16:17:15.0572 3916 IntcAzAudAddService - ok
16:17:15.0603 3916 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
16:17:15.0650 3916 IntcDAud - ok
16:17:15.0666 3916 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\DRIVERS\intelide.sys
16:17:15.0666 3916 intelide - ok
16:17:15.0681 3916 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
16:17:15.0681 3916 intelppm - ok
16:17:15.0712 3916 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
16:17:15.0728 3916 IPBusEnum - ok
16:17:15.0744 3916 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
16:17:15.0744 3916 IpFilterDriver - ok
16:17:15.0759 3916 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\windows\system32\DRIVERS\IPMIDrv.sys
16:17:15.0759 3916 IPMIDRV - ok
16:17:15.0775 3916 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
16:17:15.0790 3916 IPNAT - ok
16:17:15.0790 3916 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
16:17:15.0790 3916 IRENUM - ok
16:17:15.0806 3916 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\DRIVERS\isapnp.sys
16:17:15.0806 3916 isapnp - ok
16:17:15.0822 3916 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\windows\system32\DRIVERS\msiscsi.sys
16:17:15.0822 3916 iScsiPrt - ok
16:17:15.0868 3916 [ 19496FE93696C929392F1595ED1F8BB3 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
16:17:15.0915 3916 JMCR - ok
16:17:15.0931 3916 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
16:17:15.0931 3916 kbdclass - ok
16:17:15.0946 3916 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
16:17:15.0946 3916 kbdhid - ok
16:17:15.0962 3916 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\windows\system32\lsass.exe
16:17:15.0962 3916 KeyIso - ok
16:17:15.0993 3916 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
16:17:16.0056 3916 KSecDD - ok
16:17:16.0071 3916 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
16:17:16.0134 3916 KSecPkg - ok
16:17:16.0134 3916 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
16:17:16.0134 3916 ksthunk - ok
16:17:16.0180 3916 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
16:17:16.0180 3916 KtmRm - ok
16:17:16.0227 3916 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\windows\system32\srvsvc.dll
16:17:16.0290 3916 LanmanServer - ok
16:17:16.0321 3916 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
16:17:16.0321 3916 LanmanWorkstation - ok
16:17:16.0352 3916 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
16:17:16.0352 3916 lltdio - ok
16:17:16.0368 3916 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
16:17:16.0383 3916 lltdsvc - ok
16:17:16.0383 3916 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
16:17:16.0399 3916 lmhosts - ok
16:17:16.0477 3916 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:17:16.0570 3916 LMS - ok
16:17:16.0602 3916 [ 41E122F6D1448C94CC05196BC41D6BFB ] LPCFilter C:\windows\system32\DRIVERS\LPCFilter.sys
16:17:16.0664 3916 LPCFilter - ok
16:17:16.0695 3916 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
16:17:16.0695 3916 LSI_FC - ok
16:17:16.0726 3916 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
16:17:16.0726 3916 LSI_SAS - ok
16:17:16.0742 3916 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
16:17:16.0742 3916 LSI_SAS2 - ok
16:17:16.0758 3916 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
16:17:16.0758 3916 LSI_SCSI - ok
16:17:16.0773 3916 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
16:17:16.0773 3916 luafv - ok
16:17:16.0820 3916 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\windows\system32\drivers\mbam.sys
16:17:16.0898 3916 MBAMProtector - ok
16:17:16.0960 3916 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:17:17.0038 3916 MBAMScheduler - ok
16:17:17.0070 3916 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:17:17.0132 3916 MBAMService - ok
16:17:17.0241 3916 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
16:17:17.0304 3916 mcmscsvc - ok
16:17:17.0350 3916 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
16:17:17.0366 3916 McNaiAnn - ok
16:17:17.0397 3916 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
16:17:17.0397 3916 McNASvc - ok
16:17:17.0491 3916 [ 1814532DB0404C5FB65AA3EB051B2BE5 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
16:17:17.0491 3916 McODS - ok
16:17:17.0538 3916 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
16:17:17.0538 3916 McProxy - ok
16:17:17.0600 3916 [ 9BBCECBE3FE5AF5958A770DC512D0473 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
16:17:17.0600 3916 McShield - ok
16:17:17.0631 3916 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
16:17:17.0631 3916 Mcx2Svc - ok
16:17:17.0662 3916 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
16:17:17.0662 3916 megasas - ok
16:17:17.0694 3916 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
16:17:17.0709 3916 MegaSR - ok
16:17:17.0756 3916 [ 2D53234C24B0103FDE0BE06782AA6F80 ] mfeapfk C:\windows\system32\drivers\mfeapfk.sys
16:17:17.0818 3916 mfeapfk - ok
16:17:17.0850 3916 [ C0EAF4F2367C44157E1DE4817238FEC2 ] mfeavfk C:\windows\system32\drivers\mfeavfk.sys
16:17:17.0912 3916 mfeavfk - ok
16:17:17.0912 3916 mfeavfk01 - ok
16:17:17.0943 3916 [ 05248F2E6E1AFA6972D058C36199DEB7 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
16:17:17.0990 3916 mfefire - ok
16:17:18.0021 3916 [ 6856931F9F5B757E9D09369CC35096B9 ] mfefirek C:\windows\system32\drivers\mfefirek.sys
16:17:18.0084 3916 mfefirek - ok
16:17:18.0162 3916 [ 62E4C929A4DB48616B1B90143B48C948 ] mfehidk C:\windows\system32\drivers\mfehidk.sys
16:17:18.0255 3916 mfehidk - ok
16:17:18.0286 3916 [ B5B96149BE124092F577DE54EC7D4D65 ] mferkdet C:\windows\system32\drivers\mferkdet.sys
16:17:18.0333 3916 mferkdet - ok
16:17:18.0364 3916 [ DC5483CAD90D95D65B618E35C66E28DF ] mfevtp C:\windows\system32\mfevtps.exe
16:17:18.0427 3916 mfevtp - ok
16:17:18.0474 3916 [ E18162EA85F1531964F8222CC9E25E26 ] mfewfpk C:\windows\system32\drivers\mfewfpk.sys
16:17:18.0552 3916 mfewfpk - ok
16:17:18.0583 3916 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
16:17:18.0583 3916 MMCSS - ok
16:17:18.0598 3916 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
16:17:18.0598 3916 Modem - ok
16:17:18.0630 3916 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
16:17:18.0630 3916 monitor - ok
16:17:18.0630 3916 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
16:17:18.0645 3916 mouclass - ok
16:17:18.0661 3916 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
16:17:18.0661 3916 mouhid - ok
16:17:18.0676 3916 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
16:17:18.0676 3916 mountmgr - ok
16:17:18.0754 3916 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:17:18.0832 3916 MozillaMaintenance - ok
16:17:18.0864 3916 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\windows\system32\DRIVERS\mpio.sys
16:17:18.0864 3916 mpio - ok
16:17:18.0879 3916 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
16:17:18.0879 3916 mpsdrv - ok
16:17:18.0942 3916 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\windows\system32\mpssvc.dll
16:17:18.0973 3916 MpsSvc - ok
16:17:18.0988 3916 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
16:17:19.0004 3916 MRxDAV - ok
16:17:19.0051 3916 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
16:17:19.0113 3916 mrxsmb - ok
16:17:19.0129 3916 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
16:17:19.0176 3916 mrxsmb10 - ok
16:17:19.0191 3916 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
16:17:19.0238 3916 mrxsmb20 - ok
16:17:19.0254 3916 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\windows\system32\DRIVERS\msahci.sys
16:17:19.0269 3916 msahci - ok
16:17:19.0285 3916 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\windows\system32\DRIVERS\msdsm.sys
16:17:19.0285 3916 msdsm - ok
16:17:19.0300 3916 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
16:17:19.0316 3916 MSDTC - ok
16:17:19.0332 3916 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
16:17:19.0347 3916 Msfs - ok
16:17:19.0347 3916 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
16:17:19.0363 3916 mshidkmdf - ok
16:17:19.0363 3916 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\DRIVERS\msisadrv.sys
16:17:19.0363 3916 msisadrv - ok
16:17:19.0394 3916 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
16:17:19.0410 3916 MSiSCSI - ok
16:17:19.0410 3916 msiserver - ok
16:17:19.0425 3916 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
16:17:19.0441 3916 MSKSSRV - ok
16:17:19.0441 3916 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
16:17:19.0441 3916 MSPCLOCK - ok
16:17:19.0456 3916 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
16:17:19.0456 3916 MSPQM - ok
16:17:19.0472 3916 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
16:17:19.0488 3916 MsRPC - ok
16:17:19.0488 3916 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
16:17:19.0503 3916 mssmbios - ok
16:17:19.0503 3916 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
16:17:19.0503 3916 MSTEE - ok
16:17:19.0519 3916 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
16:17:19.0519 3916 MTConfig - ok
16:17:19.0519 3916 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
16:17:19.0534 3916 Mup - ok
16:17:19.0566 3916 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\windows\system32\qagentRT.dll
16:17:19.0566 3916 napagent - ok
16:17:19.0581 3916 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
16:17:19.0597 3916 NativeWifiP - ok
16:17:19.0628 3916 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\windows\system32\drivers\ndis.sys
16:17:19.0675 3916 NDIS - ok
16:17:19.0675 3916 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
16:17:19.0675 3916 NdisCap - ok
16:17:19.0690 3916 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
16:17:19.0706 3916 NdisTapi - ok
16:17:19.0706 3916 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
16:17:19.0706 3916 Ndisuio - ok
16:17:19.0722 3916 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
16:17:19.0737 3916 NdisWan - ok
16:17:19.0737 3916 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\windows\system32\drivers\NDProxy.sys
16:17:19.0737 3916 NDProxy - ok
16:17:19.0753 3916 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
16:17:19.0753 3916 NetBIOS - ok
16:17:19.0784 3916 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\windows\system32\DRIVERS\netbt.sys
16:17:19.0784 3916 NetBT - ok
16:17:19.0815 3916 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\windows\system32\lsass.exe
16:17:19.0815 3916 Netlogon - ok
16:17:19.0862 3916 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
16:17:19.0862 3916 Netman - ok
16:17:19.0878 3916 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
16:17:19.0878 3916 netprofm - ok
16:17:19.0893 3916 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:17:19.0909 3916 NetTcpPortSharing - ok
16:17:20.0065 3916 [ EB43840BABF5589E33186D094DE7381D ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
16:17:20.0143 3916 NETwNs64 - ok
16:17:20.0174 3916 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
16:17:20.0174 3916 nfrd960 - ok
16:17:20.0190 3916 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\windows\System32\nlasvc.dll
16:17:20.0205 3916 NlaSvc - ok
16:17:20.0205 3916 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
16:17:20.0205 3916 Npfs - ok
16:17:20.0221 3916 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
16:17:20.0236 3916 nsi - ok
16:17:20.0252 3916 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
16:17:20.0252 3916 nsiproxy - ok
16:17:20.0314 3916 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\windows\system32\drivers\Ntfs.sys
16:17:20.0424 3916 Ntfs - ok
16:17:20.0439 3916 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
16:17:20.0439 3916 Null - ok
16:17:20.0455 3916 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\windows\system32\drivers\nvraid.sys
16:17:20.0517 3916 nvraid - ok
16:17:20.0580 3916 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\windows\system32\drivers\nvstor.sys
16:17:20.0658 3916 nvstor - ok
16:17:20.0673 3916 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\DRIVERS\nv_agp.sys
16:17:20.0751 3916 nv_agp - ok
16:17:20.0751 3916 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\DRIVERS\ohci1394.sys
16:17:20.0767 3916 ohci1394 - ok
16:17:20.0829 3916 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:17:20.0892 3916 ose - ok
16:17:21.0048 3916 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:17:21.0282 3916 osppsvc - ok
16:17:21.0328 3916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
16:17:21.0328 3916 p2pimsvc - ok
16:17:21.0344 3916 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
16:17:21.0360 3916 p2psvc - ok
16:17:21.0391 3916 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
16:17:21.0391 3916 Parport - ok
16:17:21.0422 3916 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\windows\system32\drivers\partmgr.sys
16:17:21.0469 3916 partmgr - ok
16:17:21.0484 3916 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
16:17:21.0484 3916 PcaSvc - ok
16:17:21.0500 3916 [ 5AAB2B170536885DE70A6CBA8D7CE52B ] pci C:\windows\system32\DRIVERS\pci.sys
16:17:21.0562 3916 pci - ok
16:17:21.0578 3916 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
16:17:21.0578 3916 pciide - ok
16:17:21.0594 3916 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
16:17:21.0594 3916 pcmcia - ok
16:17:21.0609 3916 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
16:17:21.0625 3916 pcw - ok
16:17:21.0640 3916 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
16:17:21.0656 3916 PEAUTH - ok
16:17:21.0734 3916 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
16:17:21.0734 3916 PerfHost - ok
16:17:21.0781 3916 [ 663962900E7FEA522126BA287715BB4A ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
16:17:21.0843 3916 PGEffect - ok
16:17:21.0890 3916 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\windows\system32\pla.dll
16:17:21.0952 3916 pla - ok
16:17:21.0999 3916 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\windows\system32\umpnpmgr.dll
16:17:22.0062 3916 PlugPlay - ok
16:17:22.0093 3916 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
16:17:22.0093 3916 PNRPAutoReg - ok
16:17:22.0108 3916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
16:17:22.0108 3916 PNRPsvc - ok
16:17:22.0140 3916 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
16:17:22.0155 3916 PolicyAgent - ok
16:17:22.0186 3916 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
16:17:22.0202 3916 Power - ok
16:17:22.0233 3916 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
16:17:22.0233 3916 PptpMiniport - ok
16:17:22.0249 3916 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
16:17:22.0249 3916 Processor - ok
16:17:22.0280 3916 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\windows\system32\profsvc.dll
16:17:22.0327 3916 ProfSvc - ok
16:17:22.0342 3916 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\windows\system32\lsass.exe
16:17:22.0358 3916 ProtectedStorage - ok
16:17:22.0389 3916 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\windows\system32\DRIVERS\pacer.sys
16:17:22.0389 3916 Psched - ok
16:17:22.0436 3916 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
16:17:22.0467 3916 ql2300 - ok
16:17:22.0483 3916 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
16:17:22.0483 3916 ql40xx - ok
16:17:22.0498 3916 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
16:17:22.0514 3916 QWAVE - ok
16:17:22.0545 3916 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
16:17:22.0545 3916 QWAVEdrv - ok
16:17:22.0561 3916 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
16:17:22.0561 3916 RasAcd - ok
16:17:22.0576 3916 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
16:17:22.0576 3916 RasAgileVpn - ok
16:17:22.0592 3916 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
16:17:22.0608 3916 RasAuto - ok
16:17:22.0623 3916 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
16:17:22.0623 3916 Rasl2tp - ok
16:17:22.0654 3916 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\windows\System32\rasmans.dll
16:17:22.0654 3916 RasMan - ok
16:17:22.0670 3916 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
16:17:22.0686 3916 RasPppoe - ok
16:17:22.0701 3916 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
16:17:22.0701 3916 RasSstp - ok
16:17:22.0717 3916 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
16:17:22.0717 3916 rdbss - ok
16:17:22.0717 3916 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
16:17:22.0732 3916 rdpbus - ok
16:17:22.0732 3916 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
16:17:22.0732 3916 RDPCDD - ok
16:17:22.0764 3916 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
16:17:22.0764 3916 RDPENCDD - ok
16:17:22.0764 3916 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
16:17:22.0779 3916 RDPREFMP - ok
16:17:22.0795 3916 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
16:17:22.0842 3916 RDPWD - ok
16:17:22.0873 3916 [ E5DC9BA9E439D6DBDD79F8CAACB5BF01 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
16:17:22.0920 3916 rdyboost - ok
16:17:22.0951 3916 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
16:17:22.0966 3916 RemoteAccess - ok
16:17:22.0998 3916 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
16:17:22.0998 3916 RemoteRegistry - ok
16:17:23.0013 3916 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
16:17:23.0029 3916 RpcEptMapper - ok
16:17:23.0044 3916 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
16:17:23.0044 3916 RpcLocator - ok
16:17:23.0076 3916 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\windows\system32\rpcss.dll
16:17:23.0076 3916 RpcSs - ok
16:17:23.0091 3916 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
16:17:23.0091 3916 rspndr - ok
16:17:23.0154 3916 [ BA3E57C89E6F63808D3F2B11E1A2AD3C ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
16:17:23.0216 3916 RTL8167 - ok
16:17:23.0232 3916 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\windows\system32\lsass.exe
16:17:23.0232 3916 SamSs - ok
16:17:23.0232 3916 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\windows\system32\DRIVERS\sbp2port.sys
16:17:23.0247 3916 sbp2port - ok
16:17:23.0278 3916 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
16:17:23.0278 3916 SCardSvr - ok
16:17:23.0294 3916 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
16:17:23.0310 3916 scfilter - ok
16:17:23.0341 3916 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\windows\system32\schedsvc.dll
16:17:23.0450 3916 Schedule - ok
16:17:23.0481 3916 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\windows\System32\certprop.dll
16:17:23.0481 3916 SCPolicySvc - ok
16:17:23.0512 3916 [ 2C8D162EFAF73ABD36D8BCBB6340CAE7 ] sdbus C:\windows\system32\DRIVERS\sdbus.sys
16:17:23.0575 3916 sdbus - ok
16:17:23.0590 3916 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\windows\System32\SDRSVC.dll
16:17:23.0590 3916 SDRSVC - ok
16:17:23.0622 3916 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
16:17:23.0622 3916 secdrv - ok
16:17:23.0637 3916 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\windows\system32\seclogon.dll
16:17:23.0637 3916 seclogon - ok
16:17:23.0653 3916 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
16:17:23.0653 3916 SENS - ok
16:17:23.0668 3916 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
16:17:23.0668 3916 SensrSvc - ok
16:17:23.0668 3916 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
16:17:23.0668 3916 Serenum - ok
16:17:23.0700 3916 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
16:17:23.0700 3916 Serial - ok
16:17:23.0731 3916 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
16:17:23.0731 3916 sermouse - ok
16:17:23.0778 3916 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\windows\system32\sessenv.dll
16:17:23.0793 3916 SessionEnv - ok
16:17:23.0793 3916 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\DRIVERS\sffdisk.sys
16:17:23.0809 3916 sffdisk - ok
16:17:23.0809 3916 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\DRIVERS\sffp_mmc.sys
16:17:23.0824 3916 sffp_mmc - ok
16:17:23.0840 3916 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\windows\system32\DRIVERS\sffp_sd.sys
16:17:23.0887 3916 sffp_sd - ok
16:17:23.0887 3916 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
16:17:23.0887 3916 sfloppy - ok
16:17:23.0949 3916 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
16:17:24.0043 3916 Sftfs - ok
16:17:24.0121 3916 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:17:24.0214 3916 sftlist - ok
16:17:24.0277 3916 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
16:17:24.0339 3916 Sftplay - ok
16:17:24.0370 3916 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
16:17:24.0417 3916 Sftredir - ok
16:17:24.0448 3916 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
16:17:24.0495 3916 Sftvol - ok
16:17:24.0526 3916 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:17:24.0589 3916 sftvsa - ok
16:17:24.0620 3916 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\windows\System32\shsvcs.dll
16:17:24.0620 3916 ShellHWDetection - ok
16:17:24.0651 3916 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
16:17:24.0651 3916 SiSRaid2 - ok
16:17:24.0682 3916 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
16:17:24.0682 3916 SiSRaid4 - ok
16:17:24.0838 3916 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:17:24.0932 3916 Skype C2C Service - ok
16:17:24.0948 3916 [ B866E8C5ED1DCBEA72285BA4107892C2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:17:30.0836 3916 SkypeUpdate - ok
16:17:30.0852 3916 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
16:17:30.0961 3916 Smb - ok
16:17:31.0039 3916 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
16:17:31.0070 3916 SNMPTRAP - ok
16:17:31.0164 3916 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
16:17:31.0179 3916 spldr - ok
16:17:31.0288 3916 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\windows\System32\spoolsv.exe
16:17:31.0351 3916 Spooler - ok
16:17:31.0616 3916 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\windows\system32\sppsvc.exe
16:17:31.0632 3916 sppsvc - ok
16:17:31.0663 3916 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
16:17:31.0663 3916 sppuinotify - ok
16:17:31.0741 3916 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\windows\system32\DRIVERS\srv.sys
16:17:31.0803 3916 srv - ok
16:17:31.0866 3916 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
16:17:31.0928 3916 srv2 - ok
16:17:31.0959 3916 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
16:17:32.0006 3916 srvnet - ok
16:17:32.0068 3916 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
16:17:32.0084 3916 SSDPSRV - ok
16:17:32.0100 3916 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
16:17:32.0131 3916 SstpSvc - ok
16:17:32.0178 3916 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
16:17:32.0209 3916 stexstor - ok
16:17:32.0334 3916 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\windows\System32\wiaservc.dll
16:17:32.0365 3916 stisvc - ok
16:17:32.0380 3916 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
16:17:32.0380 3916 swenum - ok
16:17:32.0412 3916 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
16:17:32.0427 3916 swprv - ok
16:17:32.0474 3916 [ 470C47DABA9CA3966F0AB3F835D7D135 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
16:17:32.0552 3916 SynTP - ok
16:17:32.0708 3916 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\windows\system32\sysmain.dll
16:17:32.0739 3916 SysMain - ok
16:17:32.0770 3916 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\windows\System32\TabSvc.dll
16:17:32.0770 3916 TabletInputService - ok
16:17:32.0802 3916 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\windows\System32\tapisrv.dll
16:17:32.0802 3916 TapiSrv - ok
16:17:32.0817 3916 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
16:17:32.0833 3916 TBS - ok
16:17:32.0926 3916 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
16:17:33.0192 3916 Tcpip - ok
16:17:33.0488 3916 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
16:17:33.0504 3916 TCPIP6 - ok
16:17:33.0550 3916 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
16:17:33.0550 3916 tcpipreg - ok
16:17:33.0613 3916 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
16:17:33.0706 3916 tdcmdpst - ok
16:17:33.0738 3916 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
16:17:33.0753 3916 TDPIPE - ok
16:17:33.0784 3916 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
16:17:33.0878 3916 TDTCP - ok
16:17:33.0894 3916 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\windows\system32\DRIVERS\tdx.sys
16:17:33.0894 3916 tdx - ok
16:17:33.0940 3916 [ C448651339196C0E869A355171875522 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
16:17:33.0956 3916 TermDD - ok
16:17:33.0987 3916 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\windows\System32\termsrv.dll
16:17:34.0018 3916 TermService - ok
16:17:34.0034 3916 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
16:17:34.0034 3916 Themes - ok
16:17:34.0081 3916 [ C013F6ACAA9761F571BD28DADA7C157D ] Thpdrv C:\windows\system32\DRIVERS\thpdrv.sys
16:17:34.0128 3916 Thpdrv - ok
16:17:34.0159 3916 [ B4E609047434ED948AF7BDEF2FA66E38 ] Thpevm C:\windows\system32\DRIVERS\Thpevm.SYS
16:17:34.0221 3916 Thpevm - ok
16:17:34.0284 3916 [ F6927BBA3B09AFF26A53A9191F7378F9 ] Thpsrv C:\windows\system32\ThpSrv.exe
16:17:34.0284 3916 Thpsrv - ok
16:17:34.0299 3916 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
16:17:34.0299 3916 THREADORDER - ok
16:17:34.0346 3916 [ 28644B0523D64EFF2FC7312A2EE74B0A ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
16:17:34.0393 3916 TMachInfo - ok
16:17:34.0455 3916 [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv C:\Windows\system32\TODDSrv.exe
16:17:34.0518 3916 TODDSrv - ok
16:17:34.0611 3916 [ BDBE7A21E1DE76D92F566AA80546AA4C ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
16:17:34.0689 3916 TosCoSrv - ok
16:17:34.0736 3916 [ 152DA63A2843E7E63ECA8AE90D853763 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
16:17:34.0783 3916 TOSHIBA eco Utility Service - ok
16:17:34.0861 3916 [ 74C2FA8C3765EE71A9C22182EC108457 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
16:17:34.0939 3916 TOSHIBA HDD SSD Alert Service - ok
16:17:34.0970 3916 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
16:17:35.0032 3916 tos_sps64 - ok
16:17:35.0079 3916 [ 6F9E17819BFA53CFF67CB1E16669500F ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
16:17:35.0142 3916 TPCHSrv - ok
16:17:35.0157 3916 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
16:17:35.0173 3916 TrkWks - ok
16:17:35.0204 3916 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
16:17:35.0220 3916 TrustedInstaller - ok
16:17:35.0235 3916 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
16:17:35.0235 3916 tssecsrv - ok
16:17:35.0266 3916 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
16:17:35.0282 3916 tunnel - ok
16:17:35.0298 3916 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
16:17:35.0360 3916 TVALZ - ok
16:17:35.0376 3916 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
16:17:35.0438 3916 TVALZFL - ok
16:17:35.0454 3916 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
16:17:35.0454 3916 uagp35 - ok
16:17:35.0469 3916 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\windows\system32\DRIVERS\udfs.sys
16:17:35.0485 3916 udfs - ok
16:17:35.0500 3916 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
16:17:35.0516 3916 UI0Detect - ok
16:17:35.0516 3916 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\DRIVERS\uliagpkx.sys
16:17:35.0532 3916 uliagpkx - ok
16:17:35.0532 3916 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\windows\system32\DRIVERS\umbus.sys
16:17:35.0532 3916 umbus - ok
16:17:35.0547 3916 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
16:17:35.0547 3916 UmPass - ok
16:17:35.0672 3916 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:17:35.0797 3916 UNS - ok
16:17:35.0828 3916 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
16:17:35.0828 3916 upnphost - ok
16:17:35.0859 3916 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
16:17:35.0906 3916 usbccgp - ok
16:17:35.0922 3916 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\DRIVERS\usbcir.sys
16:17:35.0937 3916 usbcir - ok
16:17:35.0968 3916 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\windows\system32\drivers\usbehci.sys
16:17:36.0015 3916 usbehci - ok
16:17:36.0031 3916 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
16:17:36.0109 3916 usbhub - ok
16:17:36.0140 3916 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\windows\system32\drivers\usbohci.sys
16:17:36.0187 3916 usbohci - ok
16:17:36.0202 3916 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
16:17:36.0218 3916 usbprint - ok
16:17:36.0234 3916 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
16:17:36.0280 3916 USBSTOR - ok
16:17:36.0296 3916 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
16:17:36.0358 3916 usbuhci - ok
16:17:36.0390 3916 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
16:17:36.0436 3916 usbvideo - ok
16:17:36.0452 3916 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
16:17:36.0468 3916 UxSms - ok
16:17:36.0483 3916 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\windows\system32\lsass.exe
16:17:36.0499 3916 VaultSvc - ok
16:17:36.0530 3916 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\DRIVERS\vdrvroot.sys
16:17:36.0546 3916 vdrvroot - ok
16:17:36.0561 3916 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\windows\System32\vds.exe
16:17:36.0592 3916 vds - ok
16:17:36.0592 3916 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
16:17:36.0592 3916 vga - ok
16:17:36.0608 3916 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
16:17:36.0608 3916 VgaSave - ok
16:17:36.0624 3916 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\windows\system32\DRIVERS\vhdmp.sys
16:17:36.0639 3916 vhdmp - ok
16:17:36.0639 3916 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\DRIVERS\viaide.sys
16:17:36.0655 3916 viaide - ok
16:17:36.0670 3916 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\windows\system32\DRIVERS\volmgr.sys
16:17:36.0670 3916 volmgr - ok
16:17:36.0702 3916 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\windows\system32\drivers\volmgrx.sys
16:17:36.0717 3916 volmgrx - ok
16:17:36.0748 3916 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\windows\system32\drivers\volsnap.sys
16:17:36.0811 3916 volsnap - ok
16:17:36.0826 3916 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
16:17:36.0842 3916 vsmraid - ok
16:17:36.0873 3916 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\windows\system32\vssvc.exe
16:17:36.0936 3916 VSS - ok
16:17:36.0936 3916 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
16:17:36.0936 3916 vwifibus - ok
16:17:36.0982 3916 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
16:17:36.0982 3916 vwififlt - ok
16:17:36.0998 3916 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
16:17:37.0014 3916 W32Time - ok
16:17:37.0029 3916 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
16:17:37.0045 3916 WacomPen - ok
16:17:37.0045 3916 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
16:17:37.0060 3916 WANARP - ok
16:17:37.0060 3916 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
16:17:37.0060 3916 Wanarpv6 - ok
16:17:37.0138 3916 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
16:17:37.0216 3916 WatAdminSvc - ok
16:17:37.0248 3916 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\windows\system32\wbengine.exe
16:17:37.0310 3916 wbengine - ok
16:17:37.0326 3916 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
16:17:37.0326 3916 WbioSrvc - ok
16:17:37.0357 3916 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\windows\System32\wcncsvc.dll
16:17:37.0388 3916 wcncsvc - ok
16:17:37.0419 3916 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
16:17:37.0419 3916 WcsPlugInService - ok
16:17:37.0435 3916 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
16:17:37.0435 3916 Wd - ok
16:17:37.0466 3916 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
16:17:37.0482 3916 Wdf01000 - ok
16:17:37.0497 3916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
16:17:37.0513 3916 WdiServiceHost - ok
16:17:37.0513 3916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
16:17:37.0513 3916 WdiSystemHost - ok
16:17:37.0544 3916 [ FE31110E39A0B11ABAE1BA43A2DC94F9 ] wdkmd C:\windows\system32\DRIVERS\WDKMD.sys
16:17:37.0591 3916 wdkmd - ok
16:17:37.0622 3916 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\windows\System32\webclnt.dll
16:17:37.0669 3916 WebClient - ok
16:17:37.0684 3916 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
16:17:37.0700 3916 Wecsvc - ok
16:17:37.0716 3916 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
16:17:37.0716 3916 wercplsupport - ok
16:17:37.0731 3916 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
16:17:37.0731 3916 WerSvc - ok
16:17:37.0747 3916 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
16:17:37.0747 3916 WfpLwf - ok
16:17:37.0794 3916 [ 8686E96E13F41AC9806A79CA8004FEEE ] WiMAXAppSrv C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
16:17:37.0856 3916 WiMAXAppSrv - ok
16:17:37.0856 3916 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
16:17:37.0872 3916 WIMMount - ok
16:17:37.0872 3916 WinHttpAutoProxySvc - ok
16:17:37.0918 3916 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
16:17:37.0934 3916 Winmgmt - ok
16:17:37.0996 3916 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\windows\system32\WsmSvc.dll
16:17:38.0059 3916 WinRM - ok
16:17:38.0137 3916 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
16:17:38.0137 3916 WinUsb - ok
16:17:38.0215 3916 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
16:17:38.0262 3916 Wlansvc - ok
16:17:38.0277 3916 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
16:17:38.0277 3916 WmiAcpi - ok
16:17:38.0293 3916 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
16:17:38.0308 3916 wmiApSrv - ok
16:17:38.0324 3916 WMPNetworkSvc - ok
16:17:38.0340 3916 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
16:17:38.0340 3916 WPCSvc - ok
16:17:38.0355 3916 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
16:17:38.0371 3916 WPDBusEnum - ok
16:17:38.0371 3916 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
16:17:38.0386 3916 ws2ifsl - ok
16:17:38.0386 3916 WSearch - ok
16:17:38.0418 3916 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
16:17:38.0464 3916 WudfPf - ok
16:17:38.0511 3916 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
16:17:38.0574 3916 WUDFRd - ok
16:17:38.0620 3916 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
16:17:38.0667 3916 wudfsvc - ok
16:17:38.0698 3916 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
16:17:38.0698 3916 WwanSvc - ok
16:17:38.0730 3916 ================ Scan global ===============================
16:17:38.0745 3916 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
16:17:38.0792 3916 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\windows\system32\winsrv.dll
16:17:38.0839 3916 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\windows\system32\winsrv.dll
16:17:38.0870 3916 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
16:17:38.0917 3916 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
16:17:38.0917 3916 [Global] - ok
16:17:38.0917 3916 ================ Scan MBR ==================================
16:17:38.0932 3916 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
16:17:39.0198 3916 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:17:39.0198 3916 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:17:39.0198 3916 ================ Scan VBR ==================================
16:17:39.0213 3916 [ 6F3318B2A54310AF2A39A44E9D52E4B2 ] \Device\Harddisk0\DR0\Partition1
16:17:39.0213 3916 \Device\Harddisk0\DR0\Partition1 - ok
16:17:39.0213 3916 ============================================================
16:17:39.0213 3916 Scan finished
16:17:39.0213 3916 ============================================================
16:17:39.0229 3160 Detected object count: 1
16:17:39.0229 3160 Actual detected object count: 1
16:19:26.0697 3160 \Device\Harddisk0\DR0\TDLFS - deleted
16:19:26.0697 3160 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete

#8 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 26 January 2013 - 04:56 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-26 16:43:46
-----------------------------
16:43:46.093 OS Version: Windows x64 6.1.7600
16:43:46.093 Number of processors: 4 586 0x2505
16:43:46.093 ComputerName: JONATHAN-PC UserName: Jonathan
16:43:48.745 Initialize success
16:44:02.723 AVAST engine defs: 13012601
16:44:24.329 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:44:24.329 Disk 0 Vendor: ST950042 0001 Size: 476940MB BusType: 3
16:44:24.345 Disk 0 MBR read successfully
16:44:24.360 Disk 0 MBR scan
16:44:24.360 Disk 0 Windows VISTA default MBR code
16:44:24.376 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
16:44:24.391 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 463567 MB offset 3074048
16:44:24.438 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 11872 MB offset 952459264
16:44:24.485 Disk 0 scanning C:\windows\system32\drivers
16:44:39.196 Service scanning
16:45:05.310 Modules scanning
16:45:05.326 Disk 0 trace - called modules:
16:45:05.357 ntoskrnl.exe CLASSPNP.SYS disk.sys thpdrv.sys iaStor.sys hal.dll
16:45:05.373 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004ccc060]
16:45:05.373 3 CLASSPNP.SYS[fffff88001c5143f] -> nt!IofCallDriver -> \Device\THPDRV1[0xfffffa8004ccb060]
16:45:05.388 5 thpdrv.sys[fffff88001d75cc0] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80049c0050]
16:45:06.808 AVAST engine scan C:\windows
16:45:10.115 AVAST engine scan C:\windows\system32
16:47:12.513 File: C:\windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
16:47:14.884 File: C:\windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
16:50:11.055 AVAST engine scan C:\windows\system32\drivers
16:50:23.691 AVAST engine scan C:\Users\Jonathan
16:54:44.196 Disk 0 MBR has been saved successfully to "C:\Users\Jonathan\Desktop\MBR.dat"
16:54:44.196 The log file has been saved successfully to "C:\Users\Jonathan\Desktop\aswMBR.txt"

#9 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 26 January 2013 - 08:07 PM

No threats were found from the ESET scan.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:12 AM

Posted 26 January 2013 - 08:17 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.



Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#11 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 27 January 2013 - 08:40 PM

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.21.06

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Jonathan :: JONATHAN-PC [administrator]

1/27/2013 11:05:06 AM
mbam-log-2013-01-27 (11-05-06).txt

Scan type: Full scan (C:\|D:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 352030
Time elapsed: 1 hour(s), 3 minute(s), 38 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#12 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 27 January 2013 - 08:43 PM

MiniToolBox by Farbar Version:10-01-2013
Ran by Jonathan (administrator) on 27-01-2013 at 20:42:34
Running from "C:\Users\Jonathan\Downloads"
Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "localhost,127.0.0.1"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================



# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Jonathan-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® WiMAX 6250
Physical Address. . . . . . . . . : 64-D4-DA-1E-06-7B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6250 AGN
Physical Address. . . . . . . . . : 00-23-15-B2-12-FC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 1C-75-08-75-59-01
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ac13:6861:3fc2:3e27%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.10(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, January 27, 2013 8:39:53 PM
Lease Expires . . . . . . . . . . : Sunday, January 27, 2013 9:39:53 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 236745992
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-94-AB-B3-1C-75-08-75-59-01
DNS Servers . . . . . . . . . . . : 65.32.5.111
65.32.5.112
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable Microsoft 6To4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dns-redir-lb-01.tampabay.rr.com
Address: 65.32.5.111

Name: google.com
Addresses: 2607:f8b0:4002:c02::71
74.125.140.100
74.125.140.101
74.125.140.102
74.125.140.113
74.125.140.138
74.125.140.139


Pinging google.com [74.125.130.113] with 32 bytes of data:
Reply from 74.125.130.113: bytes=32 time=24ms TTL=47
Reply from 74.125.130.113: bytes=32 time=40ms TTL=47

Ping statistics for 74.125.130.113:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 24ms, Maximum = 40ms, Average = 32ms
Server: dns-redir-lb-01.tampabay.rr.com
Address: 65.32.5.111

Name: yahoo.com
Addresses: 98.139.183.24
206.190.36.45
98.138.253.109


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=111ms TTL=47
Reply from 206.190.36.45: bytes=32 time=124ms TTL=47

Ping statistics for 206.190.36.45:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 111ms, Maximum = 124ms, Average = 117ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...64 d4 da 1e 06 7b ......Intel® Centrino® WiMAX 6250
13...00 23 15 b2 12 fc ......Intel® Centrino® Advanced-N 6250 AGN
11...1c 75 08 75 59 01 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
19...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.10 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.10 276
192.168.0.10 255.255.255.255 On-link 192.168.0.10 276
192.168.0.255 255.255.255.255 On-link 192.168.0.10 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.10 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.10 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 fe80::/64 On-link
11 276 fe80::ac13:6861:3fc2:3e27/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File not found] ()
Catalog9 02 mswsock.dll [File not found] ()
Catalog9 03 mswsock.dll [File not found] ()
Catalog9 04 mswsock.dll [File not found] ()
Catalog9 05 mswsock.dll [File not found] ()
Catalog9 06 mswsock.dll [File not found] ()
Catalog9 07 mswsock.dll [File not found] ()
Catalog9 08 mswsock.dll [File not found] ()
Catalog9 09 mswsock.dll [File not found] ()
Catalog9 10 mswsock.dll [File not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/26/2013 05:01:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (01/26/2013 05:00:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (01/26/2013 04:47:41 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (01/26/2013 04:40:14 PM) (Source: TOSHIBA Service Station) (User: )
Description: TSS Load: could not communicate with TMachInfo service

Error: (01/26/2013 04:39:50 PM) (Source: Application Error) (User: )
Description: Faulting application name: TPCHSrv.exe, version: 1.0.0.17, time stamp: 0x4c47f45f
Faulting module name: TPCHDISK.dll, version: 1.0.0.1, time stamp: 0x4c47f40b
Exception code: 0xc0000005
Fault offset: 0x0000000000002b20
Faulting process id: 0x17d4
Faulting application start time: 0xTPCHSrv.exe0
Faulting application path: TPCHSrv.exe1
Faulting module path: TPCHSrv.exe2
Report Id: TPCHSrv.exe3

Error: (01/26/2013 04:37:31 PM) (Source: WinMgmt) (User: )
Description: 0x8007007e

Error: (01/25/2013 06:16:19 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (01/25/2013 06:09:05 PM) (Source: TOSHIBA Service Station) (User: )
Description: TSS Load: could not communicate with TMachInfo service

Error: (01/25/2013 06:08:34 PM) (Source: Application Error) (User: )
Description: Faulting application name: TPCHSrv.exe, version: 1.0.0.17, time stamp: 0x4c47f45f
Faulting module name: TPCHDISK.dll, version: 1.0.0.1, time stamp: 0x4c47f40b
Exception code: 0xc0000005
Fault offset: 0x0000000000002b20
Faulting process id: 0x1648
Faulting application start time: 0xTPCHSrv.exe0
Faulting application path: TPCHSrv.exe1
Faulting module path: TPCHSrv.exe2
Report Id: TPCHSrv.exe3

Error: (01/25/2013 06:06:05 PM) (Source: WinMgmt) (User: )
Description: 0x8007007e


System errors:
=============
Error: (01/27/2013 08:39:58 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (01/27/2013 08:39:58 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (01/27/2013 07:21:51 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (01/27/2013 07:21:51 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (01/27/2013 07:19:53 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (01/27/2013 07:19:53 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (01/27/2013 11:37:53 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (01/27/2013 11:37:53 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (01/27/2013 11:36:54 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (01/27/2013 11:36:54 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891


Microsoft Office Sessions:
=========================
Error: (01/26/2013 05:01:05 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Jonathan\Downloads\esetsmartinstaller_enu.exe

Error: (01/26/2013 05:00:58 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Jonathan\Downloads\esetsmartinstaller_enu.exe

Error: (01/26/2013 04:47:41 PM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (01/26/2013 04:40:14 PM) (Source: TOSHIBA Service Station)(User: )
Description: TSS Load: could not communicate with TMachInfo service

Error: (01/26/2013 04:39:50 PM) (Source: Application Error)(User: )
Description: TPCHSrv.exe1.0.0.174c47f45fTPCHDISK.dll1.0.0.14c47f40bc00000050000000000002b2017d401cdfc0daab7eabaC:\Program Files\TOSHIBA\TPHM\TPCHSrv.exeC:\Program Files\TOSHIBA\TPHM\TPCHDISK.dlle96a0e72-6800-11e2-984d-1c7508755901

Error: (01/26/2013 04:37:31 PM) (Source: WinMgmt)(User: )
Description: 0x8007007e

Error: (01/25/2013 06:16:19 PM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (01/25/2013 06:09:05 PM) (Source: TOSHIBA Service Station)(User: )
Description: TSS Load: could not communicate with TMachInfo service

Error: (01/25/2013 06:08:34 PM) (Source: Application Error)(User: )
Description: TPCHSrv.exe1.0.0.174c47f45fTPCHDISK.dll1.0.0.14c47f40bc00000050000000000002b20164801cdfb50e57d938eC:\Program Files\TOSHIBA\TPHM\TPCHSrv.exeC:\Program Files\TOSHIBA\TPHM\TPCHDISK.dll24281626-6744-11e2-b4b6-1c7508755901

Error: (01/25/2013 06:06:05 PM) (Source: WinMgmt)(User: )
Description: 0x8007007e


CodeIntegrity Errors:
===================================
Date: 2013-01-27 11:05:47.713
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-27 11:05:47.698
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-27 11:05:47.698
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-21 12:19:49.550
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-21 12:19:49.550
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-21 12:19:49.550
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Adobe Reader XI (11.0.01) (Version: 11.0.01)
Best Buy pc app (Version: 3.0.0.0)
Best Buy pc app (Version: 3.1.2.1)
Citrix online plug-in - web (Version: 12.0.3.6)
Citrix online plug-in (DV) (Version: 12.0.3.6)
Citrix online plug-in (HDX) (Version: 12.0.3.6)
Citrix online plug-in (USB) (Version: 12.0.3.6)
Citrix online plug-in (Web) (Version: 12.0.3.6)
Google Chrome (Version: 24.0.1312.56)
Google Drive (Version: 1.7.4018.3496)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.123)
HitmanPro 3.7 (Version: 3.7.0.185)
Intel PROSet Wireless
Intel WiMAX Tutorial (Version: 1.5.4.0)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2119)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.5.7.1002)
Intel® PROSet/Wireless WiMAX Software (Version: 2.03.0005)
Intel® Wireless Display (Version: 1.2.20.0)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 20 (Version: 6.0.200)
JMicron Flash Media Controller Driver (Version: 1.0.44.1)
Junk Mail filter update (Version: 14.0.8117.416)
Label@Once 1.0 (Version: 1.0)
Linksys Wireless-G USB Network Adapter
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
McAfee AntiVirus Plus (Version: 11.6.443)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 18.0.1 (x86 en-US) (Version: 18.0.1)
Mozilla Maintenance Service (Version: 18.0.1)
MSVCRT (Version: 14.0.1468.721)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.20.503.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6069)
Shared C Run-time for x64 (Version: 10.0.0)
Skype Click to Call (Version: 6.5.11422)
Skype™ 6.0 (Version: 6.0.120)
Synaptics Pointing Device Driver (Version: 15.0.8.1)
TOSHIBA Application Installer (Version: 9.0.1.1)
TOSHIBA Assist (Version: 3.00.11)
Toshiba Book Place (Version: 2.0.3977.0)
TOSHIBA Bulletin Board (Version: 1.6.08.64)
TOSHIBA Disc Creator (Version: 2.1.0.2 for x64)
TOSHIBA DVD PLAYER (Version: 3.01.2.12-A)
TOSHIBA eco Utility (Version: 1.2.18.64)
TOSHIBA Face Recognition (Version: 3.1.3.64)
TOSHIBA Flash Cards Support Utility (Version: 1.63.0.6C)
TOSHIBA Hardware Setup (Version: 1.63.0.26C)
TOSHIBA HDD Protection (Version: 2.2.0.4)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.6)
TOSHIBA Media Controller (Version: 1.0.80.8.64)
TOSHIBA Media Controller Plug-in (Version: 1.0.5.11)
TOSHIBA PC Health Monitor (Version: 1.7.1.64)
TOSHIBA Quality Application (Version: 1.0.3)
TOSHIBA Recovery Media Creator (Version: 2.1.0.4 for x64)
TOSHIBA ReelTime (Version: 1.7.16.64)
TOSHIBA Service Station (Version: 2.1.40)
TOSHIBA Sleep Utility (Version: 1.4.1.2)
TOSHIBA Supervisor Password (Version: 1.63.0.9C)
TOSHIBA Value Added Package (Version: 1.3.14.64)
TOSHIBA Web Camera Application (Version: 1.1.1.16)
ToshibaRegistration (Version: 1.0.4)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Utility Common Driver (Version: 1.0.52.1C)
Verizon V CAST Media Manager
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WModem Driver Installer (Version: 2.0.6.9)

========================= Memory info: ===================================

Percentage of memory in use: 49%
Total physical RAM: 3890.67 MB
Available physical RAM: 1966.14 MB
Total Pagefile: 7779.49 MB
Available Pagefile: 5018.93 MB
Total Virtual: 4095.88 MB
Available Virtual: 3981.04 MB

========================= Partitions: =====================================

1 Drive c: (TI106042W0A) (Fixed) (Total:452.7 GB) (Free:386.28 GB) NTFS

========================= Users: ========================================

User accounts for \\JONATHAN-PC

Administrator Guest Jonathan

========================= Restore Points ==================================

Could not list Restore Points.

**** End of log ****

#13 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 27 January 2013 - 08:45 PM

Farbar Service Scanner Version: 16-01-2013
Ran by Jonathan (administrator) on 27-01-2013 at 20:44:36
Running from "C:\Users\Jonathan\Downloads"
Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.
Checking Start type of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#14 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 27 January 2013 - 08:52 PM

# AdwCleaner v2.109 - Logfile created 01/27/2013 at 20:47:51
# Updated 26/01/2013 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : Jonathan - JONATHAN-PC
# Boot Mode : Normal
# Running from : C:\Users\Jonathan\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Partner

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Software

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.17153

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (en-US)

File : C:\Users\Jonathan\AppData\Roaming\Mozilla\Firefox\Profiles\3i1e6w6o.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v24.0.1312.56

File : C:\Users\Jonathan\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1119 octets] - [27/01/2013 20:47:51]

########## EOF - C:\AdwCleaner[S1].txt - [1179 octets] ##########

#15 primetimezo

primetimezo
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 27 January 2013 - 09:01 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.5.2 (01.26.2013:2)
OS: Windows 7 Home Premium x64
Ran by Jonathan on Sun 01/27/2013 at 20:54:06.55
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] "C:\users\default user\start menu\programs\startup\best buy pc app.lnk"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\best buy pc app"
Successfully deleted: [Folder] "C:\Users\Jonathan\AppData\Roaming\drivercure"
Successfully deleted: [Folder] "C:\Users\Jonathan\appdata\local\best buy pc app"



~~~ FireFox

Emptied folder: C:\Users\Jonathan\AppData\Roaming\mozilla\firefox\profiles\3i1e6w6o.default\minidumps [71 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/27/2013 at 21:00:53.59
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users