Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firefox & IE Are Not Working


  • Please log in to reply
41 replies to this topic

#1 mtdar

mtdar

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 03 July 2013 - 08:42 AM

Hi all,

 

Whenever I try to open Firefox or Internet Explorer, neither browser opens up.  But I do have internet connectivity because Windows update is working.  I'm running Windows XP.  Any help would be greatly appreciated.  Thanks in advance.

 

Jon



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:33 AM

Posted 03 July 2013 - 08:58 AM

Can you open your browser's in safemode with networking??

 

If so then please run these programs and post the logs.

 

 

Run the Junkware removal tool.Post the log.
http://thisisudax.org/downloads/JRT.exe

Reboot your machine.


Download Adware Cleaner double click it to run it.
Click the delete button allow it to run
The program will reboot your machine.
This is normal.
Post the log it creates.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner



 

 

 

Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

 

 

Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe


Right Click it Run As Admin . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results



Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.filehippo.com/download_malwarebytes_anti_malware/download/ecf14848530d11a2f09a94b92a69fcfa/

Post the log here,

 

 

Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.



#3 mtdar

mtdar
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 03 July 2013 - 09:03 AM

Hi InadequateInfirmity,

 

 

Thanks for the assistance.  Quick question.  Should all of these programs be run in safe mode with networking if possible?

 

 

Thanks,

 

Jon



#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:33 AM

Posted 03 July 2013 - 09:15 AM

Yes please.



#5 mtdar

mtdar
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 03 July 2013 - 04:52 PM

I was able to boot into safe mode with networking.  The logs are posted below.

 

Junkware Removal Tool Log:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Microsoft Windows XP x86
Ran by Administrator on Wed 07/03/2013 at 16:03:11.15
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\datamngr
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{f34c9277-6577-4dff-b2d7-7d58092f272f}
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1659004503-1383384898-1177238915-500\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\yt.ytnavassistplugin
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\yt.ytnavassistplugin.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\datamngr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\freeze.com
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\tarma installer
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\torch
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\browserconnection.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\yontooieclient.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\applications\ilividsetup.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\browserconnection.loader
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\browserconnection.loader.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\clsid\{ce4db5a3-58e6-41f1-8761-47238df4f468}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\ilividiehelper.dnsguard
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\ilividiehelper.dnsguard.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\typelib\{75e8da27-44af-40ae-927c-f2eec99d65b1}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\yontooieclient.api
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\yontooieclient.api.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\yontooieclient.layers
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\yontooieclient.layers.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0021808.BHO
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0021808.BHO.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0021808.Sandbox
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0021808.Sandbox.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\CrossriderApp0021808.BHO
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\CrossriderApp0021808.BHO.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\CrossriderApp0021808.Sandbox
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\CrossriderApp0021808.Sandbox.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT3225826
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\clsid\{11111111-1111-1111-1111-110211181108}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\clsid\{22222222-2222-2222-2222-220222182208}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110211181108}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F34C9277-6577-4DFF-B2D7-7D58092F272F}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}

 

~~~ Files

Successfully deleted: [File] "C:\end"

 

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\boost_interprocess"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\tarma installer"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\wecarereminder"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\wincert"
Successfully deleted: [Folder] "C:\Program Files\conduit"
Successfully deleted: [Folder] "C:\Program Files\free offers from freeze.com"
Successfully deleted: [Folder] "C:\Program Files\openapp"
Successfully deleted: [Folder] "C:\Program Files\search results toolbar"
Successfully deleted: [Folder] "C:\Program Files\smartdl"
Successfully deleted: [Folder] "C:\Program Files\tsearch"
Successfully deleted: [Folder] "C:\Program Files\yontoo"

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 07/03/2013 at 16:06:15.51
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Adware Cleaner Log:

 

# AdwCleaner v2.304 - Logfile created 07/03/2013 at 16:12:01
# Updated 03/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Administrator - ALLAN-CD3FD1CC9
# Boot Mode : Safe mode with networking
# Running from : C:\Documents and Settings\Administrator\Desktop\adwcleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
File Deleted : C:\Program Files\Mozilla FireFox\searchplugins\Search_Results.xml
Folder Deleted : C:\Documents and Settings\Allan\Application Data\ilividtoolbarguid
Folder Deleted : C:\Documents and Settings\Allan\Application Data\searchresultstb
Folder Deleted : C:\Documents and Settings\Allan\Local Settings\Application Data\Conduit

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F34C9277-6577-4DFF-B2D7-7D58092F272F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F34C9277-6577-4DFF-B2D7-7D58092F272F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\Software\iLividSRTB
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F34C9277-6577-4DFF-B2D7-7D58092F272F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilividtoolbarguid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilividtoolbarguid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Results Toolbar
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [4765 octets] - [03/07/2013 16:12:01]

########## EOF - C:\AdwCleaner[S1].txt - [4825 octets] ##########

 

MiniToolBox Log:

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Administrator (administrator) on 03-07-2013 at 16:18:56
Running from "C:\Documents and Settings\Administrator\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek RTL8169/8110 Family Gigabit Ethernet NIC = Local Area Connection (Connected)

# ----------------------------------
# Interface IP Configuration        
# ----------------------------------
pushd interface ip

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

popd
# End of interface IP configuration

 

Windows IP Configuration

 

        Host Name . . . . . . . . . . . . : allan-cd3fd1cc9

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : Yes

 

Ethernet adapter Local Area Connection:

 

        Connection-specific DNS Suffix  . :

        Description . . . . . . . . . . . : Realtek RTL8169/8110 Family Gigabit Ethernet NIC

        Physical Address. . . . . . . . . : 6C-F0-49-1F-53-84

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.1.124

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.1.1

        DHCP Server . . . . . . . . . . . : 192.168.1.1

        DNS Servers . . . . . . . . . . . : 167.206.254.2

                                            167.206.254.1

        Lease Obtained. . . . . . . . . . : Wednesday, July 03, 2013 4:15:08 PM

        Lease Expires . . . . . . . . . . : Thursday, July 04, 2013 4:15:08 PM

Server:  vdns2.srv.hcvlny.cv.net
Address:  167.206.254.2

Name:    google.com
Addresses:  173.194.43.2, 173.194.43.8, 173.194.43.14, 173.194.43.5
   173.194.43.3, 173.194.43.6, 173.194.43.4, 173.194.43.7, 173.194.43.0
   173.194.43.9, 173.194.43.1

 

Pinging google.com [173.194.43.14] with 32 bytes of data:

 

Reply from 173.194.43.14: bytes=32 time=9ms TTL=55

Reply from 173.194.43.14: bytes=32 time=12ms TTL=55

 

Ping statistics for 173.194.43.14:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 9ms, Maximum = 12ms, Average = 10ms

Server:  vdns2.srv.hcvlny.cv.net
Address:  167.206.254.2

Name:    yahoo.com
Addresses:  98.139.183.24, 98.138.253.109, 206.190.36.45

 

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

 

Reply from 98.139.183.24: bytes=32 time=30ms TTL=52

Reply from 98.139.183.24: bytes=32 time=28ms TTL=52

 

Ping statistics for 98.139.183.24:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 28ms, Maximum = 30ms, Average = 29ms

 

Pinging 127.0.0.1 with 32 bytes of data:

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...6c f0 49 1f 53 84 ...... Realtek RTL8169/8110 Family Gigabit Ethernet NIC - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.124   20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1   1
      192.168.1.0    255.255.255.0    192.168.1.124   192.168.1.124   20
    192.168.1.124  255.255.255.255        127.0.0.1       127.0.0.1   20
    192.168.1.255  255.255.255.255    192.168.1.124   192.168.1.124   20
        224.0.0.0        240.0.0.0    192.168.1.124   192.168.1.124   20
  255.255.255.255  255.255.255.255    192.168.1.124   192.168.1.124   1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/02/2013 11:35:29 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Skype Click to Call -- Error 1317. An error occurred while attempting to create the directory: C:\Program Files\Mozilla Firefox\browser

Error: (07/02/2013 11:35:27 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 0x8000ffff, P2 patchapplication, P3 am bde, P4 11.1.4406.0, P5 mpsigstub.exe, P6 4.2.223.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (06/10/2013 01:41:05 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (05/28/2013 09:18:22 AM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (05/01/2013 10:40:10 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (04/09/2013 04:08:09 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (03/16/2013 07:13:51 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 0x8000ffff, P2 patchapplication, P3 am bde, P4 11.1.4289.0, P5 mpsigstub.exe, P6 4.2.223.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (03/16/2013 07:10:10 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (03/14/2013 09:10:12 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (03/10/2013 06:48:05 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

System errors:
=============
Error: (07/03/2013 04:16:53 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Fips
intelppm
MpFilter

Error: (07/03/2013 04:16:13 PM) (Source: DCOM) (User: ALLAN-CD3FD1CC9)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/03/2013 04:15:37 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/03/2013 04:14:24 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/03/2013 04:10:33 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Fips
intelppm
MpFilter

Error: (07/03/2013 04:09:27 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/03/2013 04:08:05 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/03/2013 03:59:54 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Fips
intelppm
MpFilter

Error: (07/03/2013 03:58:46 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/02/2013 11:35:31 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

 New Signature Version:

 Previous Signature Version: 1.151.1593.0

 Update Source: %NT AUTHORITY51

 Update Stage: 4.2.0223.00

 Source Path: 4.2.0223.01

 Signature Type: %NT AUTHORITY602

 Update Type: %NT AUTHORITY604

 User: NT AUTHORITY\NETWORK SERVICE

 Current Engine Version: %NT AUTHORITY605

 Previous Engine Version: %NT AUTHORITY606

 Error code: %NT AUTHORITY607

 Error description: %NT AUTHORITY608

Microsoft Office Sessions:
=========================
Error: (07/02/2013 11:35:29 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: Product: Skype Click to Call -- Error 1317. An error occurred while attempting to create the directory: C:\Program Files\Mozilla Firefox\browser(NULL)(NULL)(NULL)

Error: (07/02/2013 11:35:27 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry0x8000ffffpatchapplicationam bde11.1.4406.0mpsigstub.exe4.2.223.0microsoft security essentialsNILNILNIL

Error: (06/10/2013 01:41:05 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (05/28/2013 09:18:22 AM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (05/01/2013 10:40:10 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (04/09/2013 04:08:09 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (03/16/2013 07:13:51 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry0x8000ffffpatchapplicationam bde11.1.4289.0mpsigstub.exe4.2.223.0microsoft security essentialsNILNILNIL

Error: (03/16/2013 07:10:10 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (03/14/2013 09:10:12 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (03/10/2013 06:48:05 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

=========================== Installed Programs ============================

Adobe AIR (Version: 3.4.0.2540)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.202)
Adobe Flash Player 11 Plugin (Version: 11.7.700.202)
Adobe Reader 9.5.1 (Version: 9.5.1)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Belkin N+ Wireless USB Adapter (Version: 2.00.07)
Belkin N750 Dual Band Wireless USB Adapter (Version: 1.5.11.0)
Bonjour (Version: 3.0.0.10)
Brother MFL-Pro Suite MFC-J825DW (Version: 1.0.8.0)
BurnAware Free 3.0.2
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
File Type Assistant
Garmin Communicator Plugin (Version: 4.0.3)
Garmin USB Drivers (Version: 2.3.1.0)
Intel® Graphics Media Accelerator Driver
iTunes (Version: 10.6.0.40)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 21 (Version: 6.0.210)
K-Lite Codec Pack 6.2.0 (Full) (Version: 6.2.0)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Corporation (Version: 9.0.30729.1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft LifeCam (Version: 3.22.270.0)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
Mozilla Maintenance Service (Version: 17.0.1)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Nuance PaperPort 12 (Version: 12.1.0000)
Nuance PDF Viewer Plus (Version: 5.30.3290)
PaperPort Image Printer (Version: 1.00.0001)
QuickTime (Version: 7.71.80.42)
REALTEK GbE & FE Ethernet PCI NIC Driver (Version: 1.23.0000)
Realtek High Definition Audio Driver (Version: 5.10.0.5874)
Scansoft PDF Professional
Skype Click to Call (Version: 6.4.11328)
Skype™ 6.0 (Version: 6.0.126)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VideoFileDownload (Version: 1.0)
Vid-Saver Extension (Version: 1.24.151.151)
VLC media player 2.0.2 (Version: 2.0.2)
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Yahoo! Software Update
Yahoo! Toolbar

========================= Devices: ================================

========================= Memory info: ===================================

Percentage of memory in use: 18%
Total physical RAM: 2012.42 MB
Available physical RAM: 1633.56 MB
Total Pagefile: 3909.1 MB
Available Pagefile: 3698.77 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.08 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:186.31 GB) (Free:170.15 GB) NTFS

========================= Users: ========================================

User accounts for \\ALLAN-CD3FD1CC9

Administrator            Allan                    Guest                   
HelpAssistant            SUPPORT_388945a0        

**** End of log ****

 

TDSS Killer Log:

 

16:21:47.0437 1648  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:21:47.0781 1648  ============================================================
16:21:47.0781 1648  Current date / time: 2013/07/03 16:21:47.0781
16:21:47.0781 1648  SystemInfo:
16:21:47.0781 1648 
16:21:47.0781 1648  OS Version: 5.1.2600 ServicePack: 3.0
16:21:47.0781 1648  Product type: Workstation
16:21:47.0781 1648  ComputerName: ALLAN-CD3FD1CC9
16:21:47.0781 1648  UserName: Administrator
16:21:47.0781 1648  Windows directory: C:\WINDOWS
16:21:47.0781 1648  System windows directory: C:\WINDOWS
16:21:47.0781 1648  Processor architecture: Intel x86
16:21:47.0796 1648  Number of processors: 2
16:21:47.0796 1648  Page size: 0x1000
16:21:47.0796 1648  Boot type: Safe boot with network
16:21:47.0796 1648  ============================================================
16:21:49.0640 1648  Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x64F1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
16:21:49.0640 1648  ============================================================
16:21:49.0640 1648  \Device\Harddisk0\DR0:
16:21:49.0640 1648  MBR partitions:
16:21:49.0640 1648  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1749E000
16:21:49.0640 1648  ============================================================
16:21:49.0671 1648  C: <-> \Device\Harddisk0\DR0\Partition1
16:21:49.0671 1648  ============================================================
16:21:49.0671 1648  Initialize success
16:21:49.0671 1648  ============================================================
16:22:43.0546 1260  ============================================================
16:22:43.0546 1260  Scan started
16:22:43.0546 1260  Mode: Manual; TDLFS;
16:22:43.0546 1260  ============================================================
16:22:44.0359 1260  ================ Scan system memory ========================
16:22:44.0359 1260  System memory - ok
16:22:44.0359 1260  ================ Scan services =============================
16:22:44.0500 1260  Abiosdsk - ok
16:22:44.0515 1260  abp480n5 - ok
16:22:44.0562 1260  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:22:44.0578 1260  ACPI - ok
16:22:44.0609 1260  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
16:22:44.0609 1260  ACPIEC - ok
16:22:44.0734 1260  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:22:44.0734 1260  AdobeFlashPlayerUpdateSvc - ok
16:22:44.0750 1260  adpu160m - ok
16:22:44.0812 1260  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
16:22:44.0812 1260  aec - ok
16:22:44.0859 1260  [ 023867B6606FBABCDD52E089C4A507DA ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
16:22:44.0875 1260  AegisP - ok
16:22:44.0921 1260  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
16:22:44.0921 1260  AFD - ok
16:22:44.0937 1260  Aha154x - ok
16:22:44.0953 1260  aic78u2 - ok
16:22:44.0984 1260  aic78xx - ok
16:22:45.0031 1260  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
16:22:45.0046 1260  Alerter - ok
16:22:45.0062 1260  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
16:22:45.0062 1260  ALG - ok
16:22:45.0078 1260  AliIde - ok
16:22:45.0171 1260  [ F6AF59D6EEE5E1C304F7F73706AD11D8 ] Ambfilt         C:\WINDOWS\system32\drivers\Ambfilt.sys
16:22:45.0218 1260  Ambfilt - ok
16:22:45.0234 1260  amsint - ok
16:22:45.0359 1260  [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:22:45.0359 1260  Apple Mobile Device - ok
16:22:45.0390 1260  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
16:22:45.0390 1260  AppMgmt - ok
16:22:45.0406 1260  asc - ok
16:22:45.0406 1260  asc3350p - ok
16:22:45.0406 1260  asc3550 - ok
16:22:45.0515 1260  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:22:45.0531 1260  aspnet_state - ok
16:22:45.0562 1260  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:22:45.0562 1260  AsyncMac - ok
16:22:45.0625 1260  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
16:22:45.0625 1260  atapi - ok
16:22:45.0640 1260  Atdisk - ok
16:22:45.0671 1260  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:22:45.0671 1260  Atmarpc - ok
16:22:45.0734 1260  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
16:22:45.0734 1260  AudioSrv - ok
16:22:45.0781 1260  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
16:22:45.0781 1260  audstub - ok
16:22:45.0843 1260  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
16:22:45.0843 1260  Beep - ok
16:22:45.0953 1260  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
16:22:46.0078 1260  BITS - ok
16:22:46.0156 1260  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:22:46.0171 1260  Bonjour Service - ok
16:22:46.0234 1260  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
16:22:46.0234 1260  Browser - ok
16:22:46.0296 1260  [ 92A964547B96D697E5E9ED43B4297F5A ] BrScnUsb        C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
16:22:46.0312 1260  BrScnUsb - ok
16:22:46.0343 1260  [ 9F80879913DC2712FD0C4D734E3F519B ] BrSerIb         C:\WINDOWS\system32\DRIVERS\BrSerIb.sys
16:22:46.0343 1260  BrSerIb - ok
16:22:46.0359 1260  [ B67512DA42C0C90BF236D5485226C1C7 ] BrUsbSIb        C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys
16:22:46.0375 1260  BrUsbSIb - ok
16:22:46.0453 1260  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc         C:\Program Files\Browny02\BrYNSvc.exe
16:22:46.0453 1260  BrYNSvc - ok
16:22:46.0500 1260  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
16:22:46.0500 1260  cbidf2k - ok
16:22:46.0531 1260  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:22:46.0531 1260  CCDECODE - ok
16:22:46.0546 1260  cd20xrnt - ok
16:22:46.0593 1260  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
16:22:46.0593 1260  Cdaudio - ok
16:22:46.0640 1260  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
16:22:46.0640 1260  Cdfs - ok
16:22:46.0687 1260  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:22:46.0687 1260  Cdrom - ok
16:22:46.0703 1260  cerc6 - ok
16:22:46.0718 1260  Changer - ok
16:22:46.0765 1260  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
16:22:46.0765 1260  CiSvc - ok
16:22:46.0781 1260  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
16:22:46.0781 1260  ClipSrv - ok
16:22:46.0828 1260  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:22:46.0843 1260  clr_optimization_v2.0.50727_32 - ok
16:22:46.0859 1260  CmdIde - ok
16:22:46.0875 1260  COMSysApp - ok
16:22:46.0921 1260  Cpqarray - ok
16:22:46.0984 1260  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
16:22:46.0984 1260  CryptSvc - ok
16:22:47.0000 1260  dac2w2k - ok
16:22:47.0015 1260  dac960nt - ok
16:22:47.0078 1260  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
16:22:47.0093 1260  DcomLaunch - ok
16:22:47.0125 1260  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
16:22:47.0125 1260  Dhcp - ok
16:22:47.0140 1260  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
16:22:47.0140 1260  Disk - ok
16:22:47.0156 1260  dmadmin - ok
16:22:47.0265 1260  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
16:22:47.0296 1260  dmboot - ok
16:22:47.0312 1260  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
16:22:47.0328 1260  dmio - ok
16:22:47.0359 1260  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
16:22:47.0359 1260  dmload - ok
16:22:47.0375 1260  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
16:22:47.0375 1260  dmserver - ok
16:22:47.0406 1260  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
16:22:47.0406 1260  DMusic - ok
16:22:47.0468 1260  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
16:22:47.0468 1260  Dnscache - ok
16:22:47.0500 1260  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
16:22:47.0500 1260  Dot3svc - ok
16:22:47.0515 1260  dpti2o - ok
16:22:47.0562 1260  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
16:22:47.0562 1260  drmkaud - ok
16:22:47.0593 1260  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
16:22:47.0593 1260  EapHost - ok
16:22:47.0609 1260  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
16:22:47.0609 1260  ERSvc - ok
16:22:47.0656 1260  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
16:22:47.0656 1260  Eventlog - ok
16:22:47.0703 1260  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
16:22:47.0718 1260  EventSystem - ok
16:22:47.0765 1260  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
16:22:47.0765 1260  Fastfat - ok
16:22:47.0812 1260  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:22:47.0843 1260  FastUserSwitchingCompatibility - ok
16:22:47.0875 1260  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
16:22:47.0875 1260  Fdc - ok
16:22:47.0890 1260  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
16:22:47.0890 1260  Fips - ok
16:22:47.0906 1260  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
16:22:47.0906 1260  Flpydisk - ok
16:22:47.0968 1260  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:22:47.0968 1260  FltMgr - ok
16:22:48.0046 1260  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:22:48.0046 1260  FontCache3.0.0.0 - ok
16:22:48.0062 1260  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:22:48.0062 1260  Fs_Rec - ok
16:22:48.0093 1260  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:22:48.0093 1260  Ftdisk - ok
16:22:48.0109 1260  gdrv - ok
16:22:48.0171 1260  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:22:48.0171 1260  GEARAspiWDM - ok
16:22:48.0171 1260  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:22:48.0187 1260  Gpc - ok
16:22:48.0234 1260  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:22:48.0234 1260  HDAudBus - ok
16:22:48.0281 1260  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:22:48.0296 1260  helpsvc - ok
16:22:48.0328 1260  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
16:22:48.0328 1260  HidServ - ok
16:22:48.0359 1260  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:22:48.0359 1260  hidusb - ok
16:22:48.0390 1260  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
16:22:48.0390 1260  hkmsvc - ok
16:22:48.0406 1260  hpn - ok
16:22:48.0468 1260  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
16:22:48.0468 1260  HTTP - ok
16:22:48.0515 1260  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
16:22:48.0515 1260  HTTPFilter - ok
16:22:48.0531 1260  i2omgmt - ok
16:22:48.0546 1260  i2omp - ok
16:22:48.0578 1260  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\drivers\i8042prt.sys
16:22:48.0578 1260  i8042prt - ok
16:22:48.0796 1260  [ AD3191F675159D3728738E847D4A73EE ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
16:22:48.0953 1260  ialm - ok
16:22:49.0062 1260  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:22:49.0093 1260  idsvc - ok
16:22:49.0109 1260  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
16:22:49.0109 1260  Imapi - ok
16:22:49.0140 1260  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
16:22:49.0140 1260  ImapiService - ok
16:22:49.0171 1260  ini910u - ok
16:22:49.0390 1260  [ 512CC914475348D774D1BB9F866396A5 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
16:22:49.0546 1260  IntcAzAudAddService - ok
16:22:49.0593 1260  [ 1A3C5C489A1DE481D2EF899807AD172C ] IntcHdmiAddService C:\WINDOWS\system32\drivers\IntcHdmi.sys
16:22:49.0593 1260  IntcHdmiAddService - ok
16:22:49.0609 1260  IntelIde - ok
16:22:49.0671 1260  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:22:49.0671 1260  intelppm - ok
16:22:49.0703 1260  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
16:22:49.0703 1260  Ip6Fw - ok
16:22:49.0734 1260  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:22:49.0734 1260  IpFilterDriver - ok
16:22:49.0750 1260  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:22:49.0750 1260  IpInIp - ok
16:22:49.0765 1260  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:22:49.0781 1260  IpNat - ok
16:22:49.0843 1260  [ CE004777B92DEA56FE14EC900D20BAA4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:22:49.0875 1260  iPod Service - ok
16:22:49.0906 1260  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:22:49.0906 1260  IPSec - ok
16:22:49.0937 1260  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
16:22:49.0937 1260  IRENUM - ok
16:22:50.0000 1260  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:22:50.0000 1260  isapnp - ok
16:22:50.0078 1260  [ E4AE0CBC0B55A5FAA6996E38CE6C981B ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
16:22:50.0078 1260  JavaQuickStarterService - ok
16:22:50.0125 1260  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:22:50.0125 1260  Kbdclass - ok
16:22:50.0140 1260  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:22:50.0140 1260  kbdhid - ok
16:22:50.0171 1260  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
16:22:50.0187 1260  kmixer - ok
16:22:50.0203 1260  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
16:22:50.0203 1260  KSecDD - ok
16:22:50.0265 1260  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
16:22:50.0265 1260  LanmanServer - ok
16:22:50.0312 1260  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:22:50.0328 1260  lanmanworkstation - ok
16:22:50.0328 1260  lbrtfdc - ok
16:22:50.0390 1260  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
16:22:50.0390 1260  LmHosts - ok
16:22:50.0421 1260  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
16:22:50.0421 1260  Messenger - ok
16:22:50.0453 1260  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
16:22:50.0453 1260  mnmdd - ok
16:22:50.0484 1260  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
16:22:50.0484 1260  mnmsrvc - ok
16:22:50.0500 1260  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
16:22:50.0500 1260  Modem - ok
16:22:50.0578 1260  [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5 ] Monfilt         C:\WINDOWS\system32\drivers\Monfilt.sys
16:22:50.0625 1260  Monfilt - ok
16:22:50.0656 1260  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:22:50.0656 1260  Mouclass - ok
16:22:50.0671 1260  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:22:50.0671 1260  mouhid - ok
16:22:50.0703 1260  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
16:22:50.0703 1260  MountMgr - ok
16:22:50.0781 1260  [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:22:50.0812 1260  MozillaMaintenance - ok
16:22:50.0843 1260  [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
16:22:50.0859 1260  MpFilter - ok
16:22:50.0859 1260  mraid35x - ok
16:22:50.0906 1260  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:22:50.0906 1260  MRxDAV - ok
16:22:50.0984 1260  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:22:50.0984 1260  MRxSmb - ok
16:22:51.0078 1260  [ D98350792A7CE82E7459A7C36481BEDA ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS32.exe
16:22:51.0078 1260  MSCamSvc - ok
16:22:51.0109 1260  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
16:22:51.0109 1260  MSDTC - ok
16:22:51.0140 1260  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
16:22:51.0140 1260  Msfs - ok
16:22:51.0187 1260  [ 5119FFC2A6B51089CDB0EFDC75808C97 ] MSHUSBVideo     C:\WINDOWS\system32\Drivers\nx6000.sys
16:22:51.0187 1260  MSHUSBVideo - ok
16:22:51.0203 1260  MSIServer - ok
16:22:51.0265 1260  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:22:51.0265 1260  MSKSSRV - ok
16:22:51.0328 1260  [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:22:51.0328 1260  MsMpSvc - ok
16:22:51.0375 1260  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:22:51.0375 1260  MSPCLOCK - ok
16:22:51.0437 1260  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
16:22:51.0437 1260  MSPQM - ok
16:22:51.0484 1260  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:22:51.0484 1260  mssmbios - ok
16:22:51.0515 1260  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
16:22:51.0515 1260  MSTEE - ok
16:22:51.0562 1260  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
16:22:51.0562 1260  Mup - ok
16:22:51.0593 1260  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
16:22:51.0593 1260  NABTSFEC - ok
16:22:51.0656 1260  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
16:22:51.0656 1260  napagent - ok
16:22:51.0687 1260  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
16:22:51.0703 1260  NDIS - ok
16:22:51.0750 1260  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
16:22:51.0750 1260  NdisIP - ok
16:22:51.0781 1260  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:22:51.0781 1260  NdisTapi - ok
16:22:51.0828 1260  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:22:51.0828 1260  Ndisuio - ok
16:22:51.0859 1260  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:22:51.0859 1260  NdisWan - ok
16:22:51.0890 1260  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
16:22:51.0890 1260  NDProxy - ok
16:22:51.0906 1260  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
16:22:51.0906 1260  NetBIOS - ok
16:22:51.0937 1260  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
16:22:51.0953 1260  NetBT - ok
16:22:51.0984 1260  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
16:22:51.0984 1260  NetDDE - ok
16:22:52.0000 1260  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
16:22:52.0015 1260  NetDDEdsdm - ok
16:22:52.0046 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
16:22:52.0046 1260  Netlogon - ok
16:22:52.0078 1260  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
16:22:52.0078 1260  Netman - ok
16:22:52.0140 1260  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:22:52.0140 1260  NetTcpPortSharing - ok
16:22:52.0203 1260  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
16:22:52.0203 1260  Nla - ok
16:22:52.0218 1260  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
16:22:52.0218 1260  Npfs - ok
16:22:52.0281 1260  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
16:22:52.0296 1260  Ntfs - ok
16:22:52.0296 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
16:22:52.0312 1260  NtLmSsp - ok
16:22:52.0359 1260  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
16:22:52.0359 1260  NtmsSvc - ok
16:22:52.0390 1260  [ CF7E041663119E09D2E118521ADA9300 ] NuidFltr        C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
16:22:52.0390 1260  NuidFltr - ok
16:22:52.0421 1260  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
16:22:52.0421 1260  Null - ok
16:22:52.0484 1260  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:22:52.0484 1260  NwlnkFlt - ok
16:22:52.0500 1260  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:22:52.0500 1260  NwlnkFwd - ok
16:22:52.0531 1260  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
16:22:52.0546 1260  Parport - ok
16:22:52.0546 1260  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
16:22:52.0562 1260  PartMgr - ok
16:22:52.0593 1260  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
16:22:52.0593 1260  ParVdm - ok
16:22:52.0609 1260  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
16:22:52.0625 1260  PCI - ok
16:22:52.0640 1260  PCIDump - ok
16:22:52.0656 1260  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
16:22:52.0656 1260  PCIIde - ok
16:22:52.0687 1260  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
16:22:52.0687 1260  Pcmcia - ok
16:22:52.0703 1260  PDCOMP - ok
16:22:52.0812 1260  [ C1C3BAF078BE5A14384A4BA2D730817D ] PDFProFiltSrvPP C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
16:22:52.0812 1260  PDFProFiltSrvPP - ok
16:22:52.0828 1260  PDFRAME - ok
16:22:52.0843 1260  PDRELI - ok
16:22:52.0875 1260  PDRFRAME - ok
16:22:52.0890 1260  perc2 - ok
16:22:52.0906 1260  perc2hib - ok
16:22:52.0984 1260  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
16:22:53.0000 1260  PlugPlay - ok
16:22:53.0000 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
16:22:53.0015 1260  PolicyAgent - ok
16:22:53.0031 1260  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:22:53.0046 1260  PptpMiniport - ok
16:22:53.0046 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:22:53.0062 1260  ProtectedStorage - ok
16:22:53.0078 1260  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
16:22:53.0078 1260  PSched - ok
16:22:53.0093 1260  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:22:53.0109 1260  Ptilink - ok
16:22:53.0125 1260  ql1080 - ok
16:22:53.0140 1260  Ql10wnt - ok
16:22:53.0171 1260  ql12160 - ok
16:22:53.0187 1260  ql1240 - ok
16:22:53.0218 1260  ql1280 - ok
16:22:53.0281 1260  [ 3FC8252625F2574036777D2981F839EE ] RalinkRegistryWriter C:\Program Files\Belkin\F9L1103\v1\Common\RaRegistry.exe
16:22:53.0296 1260  RalinkRegistryWriter - ok
16:22:53.0328 1260  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:22:53.0328 1260  RasAcd - ok
16:22:53.0343 1260  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
16:22:53.0359 1260  RasAuto - ok
16:22:53.0390 1260  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:22:53.0390 1260  Rasl2tp - ok
16:22:53.0406 1260  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
16:22:53.0421 1260  RasMan - ok
16:22:53.0437 1260  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:22:53.0437 1260  RasPppoe - ok
16:22:53.0453 1260  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
16:22:53.0453 1260  Raspti - ok
16:22:53.0484 1260  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:22:53.0500 1260  Rdbss - ok
16:22:53.0500 1260  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:22:53.0500 1260  RDPCDD - ok
16:22:53.0562 1260  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:22:53.0562 1260  rdpdr - ok
16:22:53.0640 1260  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
16:22:53.0656 1260  RDPWD - ok
16:22:53.0687 1260  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
16:22:53.0703 1260  RDSessMgr - ok
16:22:53.0718 1260  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
16:22:53.0734 1260  redbook - ok
16:22:53.0781 1260  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
16:22:53.0781 1260  RemoteAccess - ok
16:22:53.0796 1260  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
16:22:53.0812 1260  RemoteRegistry - ok
16:22:53.0843 1260  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
16:22:53.0843 1260  RpcLocator - ok
16:22:53.0890 1260  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
16:22:53.0890 1260  RpcSs - ok
16:22:53.0937 1260  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
16:22:53.0937 1260  RSVP - ok
16:22:54.0000 1260  [ E2E588D92C8E151CD3515EE09FEC90E2 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
16:22:54.0015 1260  rt2870 - ok
16:22:54.0062 1260  [ CF84B1F0E8B14D4120AAF9CF35CBB265 ] RTL8023xp       C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
16:22:54.0062 1260  RTL8023xp - ok
16:22:54.0078 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
16:22:54.0093 1260  SamSs - ok
16:22:54.0125 1260  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
16:22:54.0125 1260  SCardSvr - ok
16:22:54.0171 1260  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
16:22:54.0203 1260  Schedule - ok
16:22:54.0234 1260  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:22:54.0234 1260  Secdrv - ok
16:22:54.0265 1260  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
16:22:54.0265 1260  seclogon - ok
16:22:54.0281 1260  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
16:22:54.0296 1260  SENS - ok
16:22:54.0343 1260  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
16:22:54.0343 1260  Serial - ok
16:22:54.0437 1260  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
16:22:54.0437 1260  Sfloppy - ok
16:22:54.0484 1260  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
16:22:54.0484 1260  SharedAccess - ok
16:22:54.0546 1260  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:22:54.0546 1260  ShellHWDetection - ok
16:22:54.0562 1260  Simbad - ok
16:22:54.0812 1260  [ 3740B83AEC21D981065D7E819BD7E878 ] Skype C2C Service C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:22:54.0937 1260  Skype C2C Service - ok
16:22:55.0000 1260  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
16:22:55.0000 1260  SkypeUpdate - ok
16:22:55.0031 1260  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
16:22:55.0031 1260  SLIP - ok
16:22:55.0062 1260  Sparrow - ok
16:22:55.0125 1260  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
16:22:55.0125 1260  splitter - ok
16:22:55.0171 1260  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
16:22:55.0187 1260  Spooler - ok
16:22:55.0234 1260  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
16:22:55.0234 1260  sr - ok
16:22:55.0265 1260  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
16:22:55.0281 1260  srservice - ok
16:22:55.0328 1260  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
16:22:55.0343 1260  Srv - ok
16:22:55.0390 1260  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
16:22:55.0390 1260  SSDPSRV - ok
16:22:55.0453 1260  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
16:22:55.0453 1260  stisvc - ok
16:22:55.0484 1260  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
16:22:55.0484 1260  streamip - ok
16:22:55.0515 1260  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
16:22:55.0515 1260  swenum - ok
16:22:55.0531 1260  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
16:22:55.0546 1260  swmidi - ok
16:22:55.0546 1260  SwPrv - ok
16:22:55.0578 1260  symc810 - ok
16:22:55.0593 1260  symc8xx - ok
16:22:55.0625 1260  sym_hi - ok
16:22:55.0640 1260  sym_u3 - ok
16:22:55.0671 1260  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
16:22:55.0671 1260  sysaudio - ok
16:22:55.0703 1260  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
16:22:55.0718 1260  SysmonLog - ok
16:22:55.0750 1260  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
16:22:55.0765 1260  TapiSrv - ok
16:22:55.0796 1260  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:22:55.0796 1260  Tcpip - ok
16:22:55.0843 1260  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
16:22:55.0843 1260  TDPIPE - ok
16:22:55.0859 1260  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
16:22:55.0859 1260  TDTCP - ok
16:22:55.0906 1260  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
16:22:55.0906 1260  TermDD - ok
16:22:55.0921 1260  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
16:22:55.0937 1260  TermService - ok
16:22:55.0953 1260  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
16:22:55.0968 1260  Themes - ok
16:22:56.0000 1260  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
16:22:56.0000 1260  TlntSvr - ok
16:22:56.0015 1260  TosIde - ok
16:22:56.0062 1260  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
16:22:56.0062 1260  TrkWks - ok
16:22:56.0109 1260  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
16:22:56.0109 1260  Udfs - ok
16:22:56.0125 1260  ultra - ok
16:22:56.0171 1260  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
16:22:56.0171 1260  Update - ok
16:22:56.0203 1260  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
16:22:56.0218 1260  upnphost - ok
16:22:56.0234 1260  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
16:22:56.0234 1260  UPS - ok
16:22:56.0328 1260  [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
16:22:56.0328 1260  USBAAPL - ok
16:22:56.0390 1260  [ E919708DB44ED8543A7C017953148330 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
16:22:56.0390 1260  usbaudio - ok
16:22:56.0406 1260  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:22:56.0406 1260  usbccgp - ok
16:22:56.0453 1260  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:22:56.0468 1260  usbehci - ok
16:22:56.0500 1260  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:22:56.0500 1260  usbhub - ok
16:22:56.0546 1260  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:22:56.0546 1260  usbprint - ok
16:22:56.0593 1260  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:22:56.0593 1260  usbscan - ok
16:22:56.0625 1260  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:22:56.0625 1260  USBSTOR - ok
16:22:56.0656 1260  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:22:56.0656 1260  usbuhci - ok
16:22:56.0687 1260  [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
16:22:56.0687 1260  usbvideo - ok
16:22:56.0718 1260  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
16:22:56.0718 1260  VgaSave - ok
16:22:56.0734 1260  ViaIde - ok
16:22:56.0796 1260  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
16:22:56.0796 1260  VolSnap - ok
16:22:56.0843 1260  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
16:22:56.0843 1260  VSS - ok
16:22:56.0890 1260  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
16:22:56.0906 1260  W32Time - ok
16:22:56.0937 1260  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:22:56.0937 1260  Wanarp - ok
16:22:57.0000 1260  [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
16:22:57.0015 1260  Wdf01000 - ok
16:22:57.0015 1260  WDICA - ok
16:22:57.0078 1260  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
16:22:57.0078 1260  wdmaud - ok
16:22:57.0109 1260  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
16:22:57.0109 1260  WebClient - ok
16:22:57.0234 1260  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
16:22:57.0234 1260  winmgmt - ok
16:22:57.0296 1260  [ 482069CDA24AA0E94B1351E30EB3D01F ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
16:22:57.0296 1260  WmdmPmSN - ok
16:22:57.0375 1260  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
16:22:57.0375 1260  Wmi - ok
16:22:57.0421 1260  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:22:57.0421 1260  WmiApSrv - ok
16:22:57.0484 1260  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
16:22:57.0484 1260  wscsvc - ok
16:22:57.0546 1260  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
16:22:57.0562 1260  WSTCODEC - ok
16:22:57.0593 1260  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
16:22:57.0593 1260  wuauserv - ok
16:22:57.0640 1260  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
16:22:57.0656 1260  WZCSVC - ok
16:22:57.0703 1260  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
16:22:57.0703 1260  xmlprov - ok
16:22:57.0828 1260  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
16:22:57.0828 1260  YahooAUService - ok
16:22:57.0875 1260  ================ Scan global ===============================
16:22:57.0921 1260  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
16:22:57.0968 1260  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
16:22:58.0015 1260  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
16:22:58.0031 1260  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
16:22:58.0031 1260  [Global] - ok
16:22:58.0046 1260  ================ Scan MBR ==================================
16:22:58.0078 1260  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
16:22:58.0312 1260  \Device\Harddisk0\DR0 - ok
16:22:58.0312 1260  ================ Scan VBR ==================================
16:22:58.0328 1260  [ E9CE7AF3C1CA27E9FB7C7C9F5ECD4C71 ] \Device\Harddisk0\DR0\Partition1
16:22:58.0328 1260  \Device\Harddisk0\DR0\Partition1 - ok
16:22:58.0328 1260  ============================================================
16:22:58.0328 1260  Scan finished
16:22:58.0328 1260  ============================================================
16:22:58.0375 1220  Detected object count: 0
16:22:58.0375 1220  Actual detected object count: 0
 

Malwarebytes Log:

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.07.03.10

Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Administrator :: ALLAN-CD3FD1CC9 [administrator]

7/3/2013 4:27:34 PM
MBAM-log-2013-07-03 (16-41-22).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 241543
Time elapsed: 13 minute(s), 11 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCR\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE} (Trojan.BHO) -> No action taken.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

Eset Online Scanner Log:

 

C:\Documents and Settings\Allan\Application Data\Mozilla\Firefox\Profiles\kqwkkji6.default\extensions\plugin@yontoo.com\content\overlay.js Win32/Adware.Yontoo application cleaned by deleting - quarantined
C:\Documents and Settings\Allan\Local Settings\Temp\YontooSetup-S.exe multiple threats cleaned by deleting - quarantined
 



#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:33 AM

Posted 03 July 2013 - 05:03 PM

Please re run malwarebytes and then have it remove the infection.

 

Post the new log.

 

Registry Keys Detected: 1
HKCR\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE} (Trojan.BHO) -> No action taken.

 

 

Run the internet repair tool with all boxes ticked reboot the machine and see if you are able to connect to the internet in normal mode.

http://www.majorgeeks.com/files/details/complete_internet_repair.html

 

 

 

Also post the tdss killer log.


Edited by InadequateInfirmity, 03 July 2013 - 05:04 PM.


#7 mtdar

mtdar
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 03 July 2013 - 05:30 PM

New Malwarebytes Log:

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.07.03.10

Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Administrator :: ALLAN-CD3FD1CC9 [administrator]

7/3/2013 6:06:54 PM
mbam-log-2013-07-03 (18-06-54).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 241641
Time elapsed: 12 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

TDSS Killer Log:

 

16:21:47.0437 1648  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:21:47.0781 1648  ============================================================
16:21:47.0781 1648  Current date / time: 2013/07/03 16:21:47.0781
16:21:47.0781 1648  SystemInfo:
16:21:47.0781 1648 
16:21:47.0781 1648  OS Version: 5.1.2600 ServicePack: 3.0
16:21:47.0781 1648  Product type: Workstation
16:21:47.0781 1648  ComputerName: ALLAN-CD3FD1CC9
16:21:47.0781 1648  UserName: Administrator
16:21:47.0781 1648  Windows directory: C:\WINDOWS
16:21:47.0781 1648  System windows directory: C:\WINDOWS
16:21:47.0781 1648  Processor architecture: Intel x86
16:21:47.0796 1648  Number of processors: 2
16:21:47.0796 1648  Page size: 0x1000
16:21:47.0796 1648  Boot type: Safe boot with network
16:21:47.0796 1648  ============================================================
16:21:49.0640 1648  Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x64F1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
16:21:49.0640 1648  ============================================================
16:21:49.0640 1648  \Device\Harddisk0\DR0:
16:21:49.0640 1648  MBR partitions:
16:21:49.0640 1648  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1749E000
16:21:49.0640 1648  ============================================================
16:21:49.0671 1648  C: <-> \Device\Harddisk0\DR0\Partition1
16:21:49.0671 1648  ============================================================
16:21:49.0671 1648  Initialize success
16:21:49.0671 1648  ============================================================
16:22:43.0546 1260  ============================================================
16:22:43.0546 1260  Scan started
16:22:43.0546 1260  Mode: Manual; TDLFS;
16:22:43.0546 1260  ============================================================
16:22:44.0359 1260  ================ Scan system memory ========================
16:22:44.0359 1260  System memory - ok
16:22:44.0359 1260  ================ Scan services =============================
16:22:44.0500 1260  Abiosdsk - ok
16:22:44.0515 1260  abp480n5 - ok
16:22:44.0562 1260  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:22:44.0578 1260  ACPI - ok
16:22:44.0609 1260  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
16:22:44.0609 1260  ACPIEC - ok
16:22:44.0734 1260  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:22:44.0734 1260  AdobeFlashPlayerUpdateSvc - ok
16:22:44.0750 1260  adpu160m - ok
16:22:44.0812 1260  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
16:22:44.0812 1260  aec - ok
16:22:44.0859 1260  [ 023867B6606FBABCDD52E089C4A507DA ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
16:22:44.0875 1260  AegisP - ok
16:22:44.0921 1260  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
16:22:44.0921 1260  AFD - ok
16:22:44.0937 1260  Aha154x - ok
16:22:44.0953 1260  aic78u2 - ok
16:22:44.0984 1260  aic78xx - ok
16:22:45.0031 1260  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
16:22:45.0046 1260  Alerter - ok
16:22:45.0062 1260  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
16:22:45.0062 1260  ALG - ok
16:22:45.0078 1260  AliIde - ok
16:22:45.0171 1260  [ F6AF59D6EEE5E1C304F7F73706AD11D8 ] Ambfilt         C:\WINDOWS\system32\drivers\Ambfilt.sys
16:22:45.0218 1260  Ambfilt - ok
16:22:45.0234 1260  amsint - ok
16:22:45.0359 1260  [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:22:45.0359 1260  Apple Mobile Device - ok
16:22:45.0390 1260  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
16:22:45.0390 1260  AppMgmt - ok
16:22:45.0406 1260  asc - ok
16:22:45.0406 1260  asc3350p - ok
16:22:45.0406 1260  asc3550 - ok
16:22:45.0515 1260  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:22:45.0531 1260  aspnet_state - ok
16:22:45.0562 1260  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:22:45.0562 1260  AsyncMac - ok
16:22:45.0625 1260  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
16:22:45.0625 1260  atapi - ok
16:22:45.0640 1260  Atdisk - ok
16:22:45.0671 1260  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:22:45.0671 1260  Atmarpc - ok
16:22:45.0734 1260  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
16:22:45.0734 1260  AudioSrv - ok
16:22:45.0781 1260  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
16:22:45.0781 1260  audstub - ok
16:22:45.0843 1260  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
16:22:45.0843 1260  Beep - ok
16:22:45.0953 1260  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
16:22:46.0078 1260  BITS - ok
16:22:46.0156 1260  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:22:46.0171 1260  Bonjour Service - ok
16:22:46.0234 1260  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
16:22:46.0234 1260  Browser - ok
16:22:46.0296 1260  [ 92A964547B96D697E5E9ED43B4297F5A ] BrScnUsb        C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
16:22:46.0312 1260  BrScnUsb - ok
16:22:46.0343 1260  [ 9F80879913DC2712FD0C4D734E3F519B ] BrSerIb         C:\WINDOWS\system32\DRIVERS\BrSerIb.sys
16:22:46.0343 1260  BrSerIb - ok
16:22:46.0359 1260  [ B67512DA42C0C90BF236D5485226C1C7 ] BrUsbSIb        C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys
16:22:46.0375 1260  BrUsbSIb - ok
16:22:46.0453 1260  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc         C:\Program Files\Browny02\BrYNSvc.exe
16:22:46.0453 1260  BrYNSvc - ok
16:22:46.0500 1260  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
16:22:46.0500 1260  cbidf2k - ok
16:22:46.0531 1260  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:22:46.0531 1260  CCDECODE - ok
16:22:46.0546 1260  cd20xrnt - ok
16:22:46.0593 1260  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
16:22:46.0593 1260  Cdaudio - ok
16:22:46.0640 1260  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
16:22:46.0640 1260  Cdfs - ok
16:22:46.0687 1260  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:22:46.0687 1260  Cdrom - ok
16:22:46.0703 1260  cerc6 - ok
16:22:46.0718 1260  Changer - ok
16:22:46.0765 1260  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
16:22:46.0765 1260  CiSvc - ok
16:22:46.0781 1260  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
16:22:46.0781 1260  ClipSrv - ok
16:22:46.0828 1260  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:22:46.0843 1260  clr_optimization_v2.0.50727_32 - ok
16:22:46.0859 1260  CmdIde - ok
16:22:46.0875 1260  COMSysApp - ok
16:22:46.0921 1260  Cpqarray - ok
16:22:46.0984 1260  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
16:22:46.0984 1260  CryptSvc - ok
16:22:47.0000 1260  dac2w2k - ok
16:22:47.0015 1260  dac960nt - ok
16:22:47.0078 1260  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
16:22:47.0093 1260  DcomLaunch - ok
16:22:47.0125 1260  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
16:22:47.0125 1260  Dhcp - ok
16:22:47.0140 1260  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
16:22:47.0140 1260  Disk - ok
16:22:47.0156 1260  dmadmin - ok
16:22:47.0265 1260  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
16:22:47.0296 1260  dmboot - ok
16:22:47.0312 1260  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
16:22:47.0328 1260  dmio - ok
16:22:47.0359 1260  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
16:22:47.0359 1260  dmload - ok
16:22:47.0375 1260  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
16:22:47.0375 1260  dmserver - ok
16:22:47.0406 1260  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
16:22:47.0406 1260  DMusic - ok
16:22:47.0468 1260  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
16:22:47.0468 1260  Dnscache - ok
16:22:47.0500 1260  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
16:22:47.0500 1260  Dot3svc - ok
16:22:47.0515 1260  dpti2o - ok
16:22:47.0562 1260  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
16:22:47.0562 1260  drmkaud - ok
16:22:47.0593 1260  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
16:22:47.0593 1260  EapHost - ok
16:22:47.0609 1260  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
16:22:47.0609 1260  ERSvc - ok
16:22:47.0656 1260  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
16:22:47.0656 1260  Eventlog - ok
16:22:47.0703 1260  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
16:22:47.0718 1260  EventSystem - ok
16:22:47.0765 1260  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
16:22:47.0765 1260  Fastfat - ok
16:22:47.0812 1260  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:22:47.0843 1260  FastUserSwitchingCompatibility - ok
16:22:47.0875 1260  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
16:22:47.0875 1260  Fdc - ok
16:22:47.0890 1260  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
16:22:47.0890 1260  Fips - ok
16:22:47.0906 1260  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
16:22:47.0906 1260  Flpydisk - ok
16:22:47.0968 1260  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:22:47.0968 1260  FltMgr - ok
16:22:48.0046 1260  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:22:48.0046 1260  FontCache3.0.0.0 - ok
16:22:48.0062 1260  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:22:48.0062 1260  Fs_Rec - ok
16:22:48.0093 1260  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:22:48.0093 1260  Ftdisk - ok
16:22:48.0109 1260  gdrv - ok
16:22:48.0171 1260  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:22:48.0171 1260  GEARAspiWDM - ok
16:22:48.0171 1260  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:22:48.0187 1260  Gpc - ok
16:22:48.0234 1260  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:22:48.0234 1260  HDAudBus - ok
16:22:48.0281 1260  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:22:48.0296 1260  helpsvc - ok
16:22:48.0328 1260  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
16:22:48.0328 1260  HidServ - ok
16:22:48.0359 1260  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:22:48.0359 1260  hidusb - ok
16:22:48.0390 1260  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
16:22:48.0390 1260  hkmsvc - ok
16:22:48.0406 1260  hpn - ok
16:22:48.0468 1260  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
16:22:48.0468 1260  HTTP - ok
16:22:48.0515 1260  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
16:22:48.0515 1260  HTTPFilter - ok
16:22:48.0531 1260  i2omgmt - ok
16:22:48.0546 1260  i2omp - ok
16:22:48.0578 1260  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\drivers\i8042prt.sys
16:22:48.0578 1260  i8042prt - ok
16:22:48.0796 1260  [ AD3191F675159D3728738E847D4A73EE ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
16:22:48.0953 1260  ialm - ok
16:22:49.0062 1260  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:22:49.0093 1260  idsvc - ok
16:22:49.0109 1260  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
16:22:49.0109 1260  Imapi - ok
16:22:49.0140 1260  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
16:22:49.0140 1260  ImapiService - ok
16:22:49.0171 1260  ini910u - ok
16:22:49.0390 1260  [ 512CC914475348D774D1BB9F866396A5 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
16:22:49.0546 1260  IntcAzAudAddService - ok
16:22:49.0593 1260  [ 1A3C5C489A1DE481D2EF899807AD172C ] IntcHdmiAddService C:\WINDOWS\system32\drivers\IntcHdmi.sys
16:22:49.0593 1260  IntcHdmiAddService - ok
16:22:49.0609 1260  IntelIde - ok
16:22:49.0671 1260  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:22:49.0671 1260  intelppm - ok
16:22:49.0703 1260  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
16:22:49.0703 1260  Ip6Fw - ok
16:22:49.0734 1260  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:22:49.0734 1260  IpFilterDriver - ok
16:22:49.0750 1260  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:22:49.0750 1260  IpInIp - ok
16:22:49.0765 1260  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:22:49.0781 1260  IpNat - ok
16:22:49.0843 1260  [ CE004777B92DEA56FE14EC900D20BAA4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:22:49.0875 1260  iPod Service - ok
16:22:49.0906 1260  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:22:49.0906 1260  IPSec - ok
16:22:49.0937 1260  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
16:22:49.0937 1260  IRENUM - ok
16:22:50.0000 1260  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:22:50.0000 1260  isapnp - ok
16:22:50.0078 1260  [ E4AE0CBC0B55A5FAA6996E38CE6C981B ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
16:22:50.0078 1260  JavaQuickStarterService - ok
16:22:50.0125 1260  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:22:50.0125 1260  Kbdclass - ok
16:22:50.0140 1260  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:22:50.0140 1260  kbdhid - ok
16:22:50.0171 1260  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
16:22:50.0187 1260  kmixer - ok
16:22:50.0203 1260  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
16:22:50.0203 1260  KSecDD - ok
16:22:50.0265 1260  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
16:22:50.0265 1260  LanmanServer - ok
16:22:50.0312 1260  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:22:50.0328 1260  lanmanworkstation - ok
16:22:50.0328 1260  lbrtfdc - ok
16:22:50.0390 1260  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
16:22:50.0390 1260  LmHosts - ok
16:22:50.0421 1260  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
16:22:50.0421 1260  Messenger - ok
16:22:50.0453 1260  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
16:22:50.0453 1260  mnmdd - ok
16:22:50.0484 1260  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
16:22:50.0484 1260  mnmsrvc - ok
16:22:50.0500 1260  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
16:22:50.0500 1260  Modem - ok
16:22:50.0578 1260  [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5 ] Monfilt         C:\WINDOWS\system32\drivers\Monfilt.sys
16:22:50.0625 1260  Monfilt - ok
16:22:50.0656 1260  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:22:50.0656 1260  Mouclass - ok
16:22:50.0671 1260  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:22:50.0671 1260  mouhid - ok
16:22:50.0703 1260  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
16:22:50.0703 1260  MountMgr - ok
16:22:50.0781 1260  [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:22:50.0812 1260  MozillaMaintenance - ok
16:22:50.0843 1260  [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
16:22:50.0859 1260  MpFilter - ok
16:22:50.0859 1260  mraid35x - ok
16:22:50.0906 1260  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:22:50.0906 1260  MRxDAV - ok
16:22:50.0984 1260  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:22:50.0984 1260  MRxSmb - ok
16:22:51.0078 1260  [ D98350792A7CE82E7459A7C36481BEDA ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS32.exe
16:22:51.0078 1260  MSCamSvc - ok
16:22:51.0109 1260  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
16:22:51.0109 1260  MSDTC - ok
16:22:51.0140 1260  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
16:22:51.0140 1260  Msfs - ok
16:22:51.0187 1260  [ 5119FFC2A6B51089CDB0EFDC75808C97 ] MSHUSBVideo     C:\WINDOWS\system32\Drivers\nx6000.sys
16:22:51.0187 1260  MSHUSBVideo - ok
16:22:51.0203 1260  MSIServer - ok
16:22:51.0265 1260  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:22:51.0265 1260  MSKSSRV - ok
16:22:51.0328 1260  [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:22:51.0328 1260  MsMpSvc - ok
16:22:51.0375 1260  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:22:51.0375 1260  MSPCLOCK - ok
16:22:51.0437 1260  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
16:22:51.0437 1260  MSPQM - ok
16:22:51.0484 1260  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:22:51.0484 1260  mssmbios - ok
16:22:51.0515 1260  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
16:22:51.0515 1260  MSTEE - ok
16:22:51.0562 1260  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
16:22:51.0562 1260  Mup - ok
16:22:51.0593 1260  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
16:22:51.0593 1260  NABTSFEC - ok
16:22:51.0656 1260  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
16:22:51.0656 1260  napagent - ok
16:22:51.0687 1260  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
16:22:51.0703 1260  NDIS - ok
16:22:51.0750 1260  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
16:22:51.0750 1260  NdisIP - ok
16:22:51.0781 1260  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:22:51.0781 1260  NdisTapi - ok
16:22:51.0828 1260  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:22:51.0828 1260  Ndisuio - ok
16:22:51.0859 1260  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:22:51.0859 1260  NdisWan - ok
16:22:51.0890 1260  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
16:22:51.0890 1260  NDProxy - ok
16:22:51.0906 1260  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
16:22:51.0906 1260  NetBIOS - ok
16:22:51.0937 1260  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
16:22:51.0953 1260  NetBT - ok
16:22:51.0984 1260  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
16:22:51.0984 1260  NetDDE - ok
16:22:52.0000 1260  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
16:22:52.0015 1260  NetDDEdsdm - ok
16:22:52.0046 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
16:22:52.0046 1260  Netlogon - ok
16:22:52.0078 1260  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
16:22:52.0078 1260  Netman - ok
16:22:52.0140 1260  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:22:52.0140 1260  NetTcpPortSharing - ok
16:22:52.0203 1260  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
16:22:52.0203 1260  Nla - ok
16:22:52.0218 1260  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
16:22:52.0218 1260  Npfs - ok
16:22:52.0281 1260  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
16:22:52.0296 1260  Ntfs - ok
16:22:52.0296 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
16:22:52.0312 1260  NtLmSsp - ok
16:22:52.0359 1260  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
16:22:52.0359 1260  NtmsSvc - ok
16:22:52.0390 1260  [ CF7E041663119E09D2E118521ADA9300 ] NuidFltr        C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
16:22:52.0390 1260  NuidFltr - ok
16:22:52.0421 1260  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
16:22:52.0421 1260  Null - ok
16:22:52.0484 1260  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:22:52.0484 1260  NwlnkFlt - ok
16:22:52.0500 1260  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:22:52.0500 1260  NwlnkFwd - ok
16:22:52.0531 1260  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
16:22:52.0546 1260  Parport - ok
16:22:52.0546 1260  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
16:22:52.0562 1260  PartMgr - ok
16:22:52.0593 1260  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
16:22:52.0593 1260  ParVdm - ok
16:22:52.0609 1260  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
16:22:52.0625 1260  PCI - ok
16:22:52.0640 1260  PCIDump - ok
16:22:52.0656 1260  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
16:22:52.0656 1260  PCIIde - ok
16:22:52.0687 1260  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
16:22:52.0687 1260  Pcmcia - ok
16:22:52.0703 1260  PDCOMP - ok
16:22:52.0812 1260  [ C1C3BAF078BE5A14384A4BA2D730817D ] PDFProFiltSrvPP C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
16:22:52.0812 1260  PDFProFiltSrvPP - ok
16:22:52.0828 1260  PDFRAME - ok
16:22:52.0843 1260  PDRELI - ok
16:22:52.0875 1260  PDRFRAME - ok
16:22:52.0890 1260  perc2 - ok
16:22:52.0906 1260  perc2hib - ok
16:22:52.0984 1260  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
16:22:53.0000 1260  PlugPlay - ok
16:22:53.0000 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
16:22:53.0015 1260  PolicyAgent - ok
16:22:53.0031 1260  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:22:53.0046 1260  PptpMiniport - ok
16:22:53.0046 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:22:53.0062 1260  ProtectedStorage - ok
16:22:53.0078 1260  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
16:22:53.0078 1260  PSched - ok
16:22:53.0093 1260  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:22:53.0109 1260  Ptilink - ok
16:22:53.0125 1260  ql1080 - ok
16:22:53.0140 1260  Ql10wnt - ok
16:22:53.0171 1260  ql12160 - ok
16:22:53.0187 1260  ql1240 - ok
16:22:53.0218 1260  ql1280 - ok
16:22:53.0281 1260  [ 3FC8252625F2574036777D2981F839EE ] RalinkRegistryWriter C:\Program Files\Belkin\F9L1103\v1\Common\RaRegistry.exe
16:22:53.0296 1260  RalinkRegistryWriter - ok
16:22:53.0328 1260  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:22:53.0328 1260  RasAcd - ok
16:22:53.0343 1260  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
16:22:53.0359 1260  RasAuto - ok
16:22:53.0390 1260  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:22:53.0390 1260  Rasl2tp - ok
16:22:53.0406 1260  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
16:22:53.0421 1260  RasMan - ok
16:22:53.0437 1260  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:22:53.0437 1260  RasPppoe - ok
16:22:53.0453 1260  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
16:22:53.0453 1260  Raspti - ok
16:22:53.0484 1260  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:22:53.0500 1260  Rdbss - ok
16:22:53.0500 1260  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:22:53.0500 1260  RDPCDD - ok
16:22:53.0562 1260  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:22:53.0562 1260  rdpdr - ok
16:22:53.0640 1260  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
16:22:53.0656 1260  RDPWD - ok
16:22:53.0687 1260  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
16:22:53.0703 1260  RDSessMgr - ok
16:22:53.0718 1260  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
16:22:53.0734 1260  redbook - ok
16:22:53.0781 1260  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
16:22:53.0781 1260  RemoteAccess - ok
16:22:53.0796 1260  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
16:22:53.0812 1260  RemoteRegistry - ok
16:22:53.0843 1260  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
16:22:53.0843 1260  RpcLocator - ok
16:22:53.0890 1260  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
16:22:53.0890 1260  RpcSs - ok
16:22:53.0937 1260  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
16:22:53.0937 1260  RSVP - ok
16:22:54.0000 1260  [ E2E588D92C8E151CD3515EE09FEC90E2 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
16:22:54.0015 1260  rt2870 - ok
16:22:54.0062 1260  [ CF84B1F0E8B14D4120AAF9CF35CBB265 ] RTL8023xp       C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
16:22:54.0062 1260  RTL8023xp - ok
16:22:54.0078 1260  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
16:22:54.0093 1260  SamSs - ok
16:22:54.0125 1260  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
16:22:54.0125 1260  SCardSvr - ok
16:22:54.0171 1260  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
16:22:54.0203 1260  Schedule - ok
16:22:54.0234 1260  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:22:54.0234 1260  Secdrv - ok
16:22:54.0265 1260  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
16:22:54.0265 1260  seclogon - ok
16:22:54.0281 1260  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
16:22:54.0296 1260  SENS - ok
16:22:54.0343 1260  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
16:22:54.0343 1260  Serial - ok
16:22:54.0437 1260  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
16:22:54.0437 1260  Sfloppy - ok
16:22:54.0484 1260  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
16:22:54.0484 1260  SharedAccess - ok
16:22:54.0546 1260  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:22:54.0546 1260  ShellHWDetection - ok
16:22:54.0562 1260  Simbad - ok
16:22:54.0812 1260  [ 3740B83AEC21D981065D7E819BD7E878 ] Skype C2C Service C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:22:54.0937 1260  Skype C2C Service - ok
16:22:55.0000 1260  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
16:22:55.0000 1260  SkypeUpdate - ok
16:22:55.0031 1260  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
16:22:55.0031 1260  SLIP - ok
16:22:55.0062 1260  Sparrow - ok
16:22:55.0125 1260  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
16:22:55.0125 1260  splitter - ok
16:22:55.0171 1260  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
16:22:55.0187 1260  Spooler - ok
16:22:55.0234 1260  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
16:22:55.0234 1260  sr - ok
16:22:55.0265 1260  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
16:22:55.0281 1260  srservice - ok
16:22:55.0328 1260  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
16:22:55.0343 1260  Srv - ok
16:22:55.0390 1260  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
16:22:55.0390 1260  SSDPSRV - ok
16:22:55.0453 1260  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
16:22:55.0453 1260  stisvc - ok
16:22:55.0484 1260  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
16:22:55.0484 1260  streamip - ok
16:22:55.0515 1260  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
16:22:55.0515 1260  swenum - ok
16:22:55.0531 1260  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
16:22:55.0546 1260  swmidi - ok
16:22:55.0546 1260  SwPrv - ok
16:22:55.0578 1260  symc810 - ok
16:22:55.0593 1260  symc8xx - ok
16:22:55.0625 1260  sym_hi - ok
16:22:55.0640 1260  sym_u3 - ok
16:22:55.0671 1260  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
16:22:55.0671 1260  sysaudio - ok
16:22:55.0703 1260  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
16:22:55.0718 1260  SysmonLog - ok
16:22:55.0750 1260  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
16:22:55.0765 1260  TapiSrv - ok
16:22:55.0796 1260  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:22:55.0796 1260  Tcpip - ok
16:22:55.0843 1260  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
16:22:55.0843 1260  TDPIPE - ok
16:22:55.0859 1260  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
16:22:55.0859 1260  TDTCP - ok
16:22:55.0906 1260  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
16:22:55.0906 1260  TermDD - ok
16:22:55.0921 1260  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
16:22:55.0937 1260  TermService - ok
16:22:55.0953 1260  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
16:22:55.0968 1260  Themes - ok
16:22:56.0000 1260  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
16:22:56.0000 1260  TlntSvr - ok
16:22:56.0015 1260  TosIde - ok
16:22:56.0062 1260  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
16:22:56.0062 1260  TrkWks - ok
16:22:56.0109 1260  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
16:22:56.0109 1260  Udfs - ok
16:22:56.0125 1260  ultra - ok
16:22:56.0171 1260  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
16:22:56.0171 1260  Update - ok
16:22:56.0203 1260  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
16:22:56.0218 1260  upnphost - ok
16:22:56.0234 1260  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
16:22:56.0234 1260  UPS - ok
16:22:56.0328 1260  [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
16:22:56.0328 1260  USBAAPL - ok
16:22:56.0390 1260  [ E919708DB44ED8543A7C017953148330 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
16:22:56.0390 1260  usbaudio - ok
16:22:56.0406 1260  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:22:56.0406 1260  usbccgp - ok
16:22:56.0453 1260  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:22:56.0468 1260  usbehci - ok
16:22:56.0500 1260  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:22:56.0500 1260  usbhub - ok
16:22:56.0546 1260  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:22:56.0546 1260  usbprint - ok
16:22:56.0593 1260  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:22:56.0593 1260  usbscan - ok
16:22:56.0625 1260  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:22:56.0625 1260  USBSTOR - ok
16:22:56.0656 1260  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:22:56.0656 1260  usbuhci - ok
16:22:56.0687 1260  [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
16:22:56.0687 1260  usbvideo - ok
16:22:56.0718 1260  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
16:22:56.0718 1260  VgaSave - ok
16:22:56.0734 1260  ViaIde - ok
16:22:56.0796 1260  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
16:22:56.0796 1260  VolSnap - ok
16:22:56.0843 1260  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
16:22:56.0843 1260  VSS - ok
16:22:56.0890 1260  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
16:22:56.0906 1260  W32Time - ok
16:22:56.0937 1260  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:22:56.0937 1260  Wanarp - ok
16:22:57.0000 1260  [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
16:22:57.0015 1260  Wdf01000 - ok
16:22:57.0015 1260  WDICA - ok
16:22:57.0078 1260  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
16:22:57.0078 1260  wdmaud - ok
16:22:57.0109 1260  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
16:22:57.0109 1260  WebClient - ok
16:22:57.0234 1260  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
16:22:57.0234 1260  winmgmt - ok
16:22:57.0296 1260  [ 482069CDA24AA0E94B1351E30EB3D01F ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
16:22:57.0296 1260  WmdmPmSN - ok
16:22:57.0375 1260  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
16:22:57.0375 1260  Wmi - ok
16:22:57.0421 1260  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:22:57.0421 1260  WmiApSrv - ok
16:22:57.0484 1260  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
16:22:57.0484 1260  wscsvc - ok
16:22:57.0546 1260  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
16:22:57.0562 1260  WSTCODEC - ok
16:22:57.0593 1260  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
16:22:57.0593 1260  wuauserv - ok
16:22:57.0640 1260  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
16:22:57.0656 1260  WZCSVC - ok
16:22:57.0703 1260  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
16:22:57.0703 1260  xmlprov - ok
16:22:57.0828 1260  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
16:22:57.0828 1260  YahooAUService - ok
16:22:57.0875 1260  ================ Scan global ===============================
16:22:57.0921 1260  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
16:22:57.0968 1260  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
16:22:58.0015 1260  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
16:22:58.0031 1260  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
16:22:58.0031 1260  [Global] - ok
16:22:58.0046 1260  ================ Scan MBR ==================================
16:22:58.0078 1260  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
16:22:58.0312 1260  \Device\Harddisk0\DR0 - ok
16:22:58.0312 1260  ================ Scan VBR ==================================
16:22:58.0328 1260  [ E9CE7AF3C1CA27E9FB7C7C9F5ECD4C71 ] \Device\Harddisk0\DR0\Partition1
16:22:58.0328 1260  \Device\Harddisk0\DR0\Partition1 - ok
16:22:58.0328 1260  ============================================================
16:22:58.0328 1260  Scan finished
16:22:58.0328 1260  ============================================================
16:22:58.0375 1220  Detected object count: 0
16:22:58.0375 1220  Actual detected object count: 0
 

I will post results of booting into normal mode on my next post.



#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:33 AM

Posted 03 July 2013 - 05:36 PM

Ok.  :thumbup2:



#9 mtdar

mtdar
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 03 July 2013 - 05:52 PM

Firefox and IE are working now.  Not sure if there is anything else you want me to check.

If not, many thanks for the help.  If so let me know.



#10 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:33 AM

Posted 03 July 2013 - 05:57 PM

Can you please post a new mini tool box log for review this time without list programs ticked.

 

Also see below.

 

Please run this tool post the log only if something is found.

http://www.sophos.com/en-us/products/free-tools/virus-removal-tool.aspx

 

 


Download Security Check by screen317 from here.


  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Download Autoruns and Autorunsc Unzip it to your desktop and then double click autoruns.exe After the scan is finished then click on File>>>>>>>>>>>Save The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option. in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.

 

 

Then remove your primary ide drivers.

 

Hit the Start  button then Right Click My computer

>>>>>>>>>>>>>>Properties>>>>>>>>>>>
Harwdare Tab>>>>>>>>>>>>>Device Manager.
Scroll down to the IDE ATA/ATAPI Controlers Left click the + to the left of the drivers.
Right Click and uninstall all of your Primary IDE drivers there most likely will be more than one of the Primary IDE Drivers.

 Make sure and un-install All of them.

Reboot your machine.

You will see the drivers re install then request another reboot.

Do so.



#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:33 AM

Posted 03 July 2013 - 06:02 PM

Just an FYI your problem with the internet not working was this.

 

 

  WINS Proxy Enabled. . . . . . . . : Yes

 

 

It needs to look like this.

 

  WINS Proxy Enabled. . . . . . . . : No

 

WE can remedy that if needed do not worry. 

 

Awaiting the next set of logs.



#12 mtdar

mtdar
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 03 July 2013 - 11:12 PM

Hi,

Logs posted below as requested.

 

---MiniToolBox Log---:

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Allan (administrator) on 03-07-2013 at 22:46:52
Running from "C:\Documents and Settings\Administrator\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek RTL8169/8110 Family Gigabit Ethernet NIC = Local Area Connection (Connected)

# ----------------------------------
# Interface IP Configuration        
# ----------------------------------
pushd interface ip

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

popd
# End of interface IP configuration

 

Windows IP Configuration

 

        Host Name . . . . . . . . . . . . : allan-cd3fd1cc9

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Broadcast

        IP Routing Enabled. . . . . . . . : Yes

        WINS Proxy Enabled. . . . . . . . : Yes

 

Ethernet adapter Local Area Connection:

 

        Connection-specific DNS Suffix  . :

        Description . . . . . . . . . . . : Realtek RTL8169/8110 Family Gigabit Ethernet NIC

        Physical Address. . . . . . . . . : 6C-F0-49-1F-53-84

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.1.124

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.1.1

        DHCP Server . . . . . . . . . . . : 192.168.1.1

        DNS Servers . . . . . . . . . . . : 167.206.254.2

                                            167.206.254.1

        Lease Obtained. . . . . . . . . . : Wednesday, July 03, 2013 10:41:53 PM

        Lease Expires . . . . . . . . . . : Thursday, July 04, 2013 10:41:53 PM

Server:  vdns2.srv.hcvlny.cv.net
Address:  167.206.254.2

Name:    google.com
Addresses:  173.194.43.38, 173.194.43.39, 173.194.43.41, 173.194.43.32
   173.194.43.35, 173.194.43.34, 173.194.43.37, 173.194.43.33, 173.194.43.40
   173.194.43.36, 173.194.43.46

 

Pinging google.com [74.125.226.199] with 32 bytes of data:

 

Reply from 74.125.226.199: bytes=32 time=10ms TTL=55

Reply from 74.125.226.199: bytes=32 time=10ms TTL=55

 

Ping statistics for 74.125.226.199:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 10ms, Maximum = 10ms, Average = 10ms

Server:  vdns2.srv.hcvlny.cv.net
Address:  167.206.254.2

Name:    yahoo.com
Addresses:  98.139.183.24, 206.190.36.45, 98.138.253.109

 

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

 

Reply from 98.139.183.24: bytes=32 time=27ms TTL=52

Reply from 98.139.183.24: bytes=32 time=64ms TTL=52

 

Ping statistics for 98.139.183.24:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 27ms, Maximum = 64ms, Average = 45ms

 

Pinging 127.0.0.1 with 32 bytes of data:

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...6c f0 49 1f 53 84 ...... Realtek RTL8169/8110 Family Gigabit Ethernet NIC
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.124   20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1   1
      169.254.0.0      255.255.0.0    192.168.1.124   192.168.1.124   20
      192.168.1.0    255.255.255.0    192.168.1.124   192.168.1.124   20
    192.168.1.124  255.255.255.255        127.0.0.1       127.0.0.1   20
    192.168.1.255  255.255.255.255    192.168.1.124   192.168.1.124   20
        224.0.0.0        240.0.0.0    192.168.1.124   192.168.1.124   20
  255.255.255.255  255.255.255.255    192.168.1.124   192.168.1.124   1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/03/2013 04:57:12 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/03/2013 04:57:12 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/02/2013 11:35:29 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Skype Click to Call -- Error 1317. An error occurred while attempting to create the directory: C:\Program Files\Mozilla Firefox\browser

Error: (07/02/2013 11:35:27 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 0x8000ffff, P2 patchapplication, P3 am bde, P4 11.1.4406.0, P5 mpsigstub.exe, P6 4.2.223.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (06/10/2013 01:41:05 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (05/28/2013 09:18:22 AM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (05/01/2013 10:40:10 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (04/09/2013 04:08:09 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (03/16/2013 07:13:51 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 0x8000ffff, P2 patchapplication, P3 am bde, P4 11.1.4289.0, P5 mpsigstub.exe, P6 4.2.223.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (03/16/2013 07:10:10 PM) (Source: Google Update) (User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

System errors:
=============
Error: (07/03/2013 06:35:40 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/03/2013 06:35:07 PM) (Source: DCOM) (User: ALLAN-CD3FD1CC9)
Description: DCOM got error "%%1084" attempting to start the service wuauserv with arguments ""
in order to run the server:
{9B1F122C-2982-4E91-AA8B-E071D54F2A4D}

Error: (07/03/2013 06:35:05 PM) (Source: DCOM) (User: ALLAN-CD3FD1CC9)
Description: DCOM got error "%%1084" attempting to start the service wuauserv with arguments ""
in order to run the server:
{9B1F122C-2982-4E91-AA8B-E071D54F2A4D}

Error: (07/03/2013 06:35:03 PM) (Source: DCOM) (User: ALLAN-CD3FD1CC9)
Description: DCOM got error "%%1084" attempting to start the service wuauserv with arguments ""
in order to run the server:
{9B1F122C-2982-4E91-AA8B-E071D54F2A4D}

Error: (07/03/2013 05:41:15 PM) (Source: DCOM) (User: ALLAN-CD3FD1CC9)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/03/2013 04:45:08 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Fips
intelppm
MpFilter

Error: (07/03/2013 04:44:14 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/03/2013 04:42:25 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/03/2013 04:23:52 PM) (Source: DCOM) (User: ALLAN-CD3FD1CC9)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/03/2013 04:23:30 PM) (Source: DCOM) (User: ALLAN-CD3FD1CC9)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Microsoft Office Sessions:
=========================
Error: (07/03/2013 04:57:12 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/03/2013 04:57:12 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/02/2013 11:35:29 PM) (Source: MsiInstaller)(User: NT AUTHORITY)
Description: Product: Skype Click to Call -- Error 1317. An error occurred while attempting to create the directory: C:\Program Files\Mozilla Firefox\browser(NULL)(NULL)(NULL)

Error: (07/02/2013 11:35:27 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry0x8000ffffpatchapplicationam bde11.1.4406.0mpsigstub.exe4.2.223.0microsoft security essentialsNILNILNIL

Error: (06/10/2013 01:41:05 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (05/28/2013 09:18:22 AM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

Error: (05/01/2013 10:40:10 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (04/09/2013 04:08:09 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (03/16/2013 07:13:51 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry0x8000ffffpatchapplicationam bde11.1.4289.0mpsigstub.exe4.2.223.0microsoft security essentialsNILNILNIL

Error: (03/16/2013 07:10:10 PM) (Source: Google Update)(User: ALLAN-CD3FD1CC9)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801

========================= Devices: ================================

========================= Memory info: ===================================

Percentage of memory in use: 34%
Total physical RAM: 2012.42 MB
Available physical RAM: 1310.63 MB
Total Pagefile: 3905.61 MB
Available Pagefile: 3377.92 MB
Total Virtual: 2047.88 MB
Available Virtual: 1975.04 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:186.31 GB) (Free:170.47 GB) NTFS

========================= Users: ========================================

User accounts for \\ALLAN-CD3FD1CC9

Administrator            Allan                    Guest                   
HelpAssistant            SUPPORT_388945a0        

**** End of log ****

 

---Sophos Virus Removal Tool Log---:

 

2013-07-03 22:51:15 Sophos Virus Removal Tool version 2.3
2013-07-03 22:51:15 Copyright © 2009-2012 Sophos Limited. All rights reserved.

2013-07-03 22:51:15 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2013-07-03 22:51:15 Windows version 5.1 SP 3.0 Service Pack 3 build 2600 SM=0x100 PT=0x1 Win32
2013-07-03 22:51:15 Checking for updates...
2013-07-03 22:51:18 Update progress: proxy server not available
2013-07-03 22:51:28 Option all = no
2013-07-03 22:51:28 Option recurse = yes
2013-07-03 22:51:28 Option archive = no
2013-07-03 22:51:28 Option service = yes
2013-07-03 22:51:28 Option confirm = yes
2013-07-03 22:51:28 Option sxl = yes
2013-07-03 22:51:28 Option max-data-age = 35
2013-07-03 22:51:28 Component SVRTcli.exe version 2.3
2013-07-03 22:51:28 Component control.dll version 2.3
2013-07-03 22:51:28 Component SVRTservice.exe version 2.3
2013-07-03 22:51:28 Component engine\osdp.dll version 1.44.0.2091
2013-07-03 22:51:28 Component engine\veex.dll version 3.44.1.2091
2013-07-03 22:51:28 Component engine\savi.dll version 7.5.12.2091
2013-07-03 22:51:28 Component rkdisk.dll version 1.5.30.0
2013-07-03 22:51:28 Version info: Product version 2.3
2013-07-03 22:51:28 Version info: Detection engine 3.44.1
2013-07-03 22:51:28 Version info: Detection data 4.90
2013-07-03 22:51:28 Version info: Build date 6/13/2013
2013-07-03 22:51:28 Version info: Data files added 411
2013-07-03 22:51:28 Version info: Last successful update (not yet updated)
2013-07-03 22:51:47 Downloading updates...
2013-07-03 22:51:47 Update progress: [I96736] Looking for package C1A903B2-E63E-483b-982D-04BB9C457C60 1.0
2013-07-03 22:51:47 Update progress: [I49502] Found supplement SAVIW32 LATEST 4
2013-07-03 22:51:47 Update progress: [I49502] Found supplement IDE491 LATEST
2013-07-03 22:51:47 Update progress: [I49502] Found supplement IDE492 LATEST
2013-07-03 22:51:47 Update progress: [I49502] Found supplement IDE493 LATEST
2013-07-03 22:51:47 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 1
2013-07-03 22:51:47 Update progress: [I19463] Syncing product SAVIW32 29
2013-07-03 22:51:54 Update progress: [I19463] Syncing product IDE491 181
2013-07-03 22:51:57 Installing updates...
2013-07-03 22:51:58 Update progress: [I19463] Syncing product IDE492 222
2013-07-03 22:51:58 Update progress: [I19463] Syncing product IDE493 14
2013-07-03 22:52:09 Update successful
2013-07-03 22:52:23 Option all = no
2013-07-03 22:52:23 Option recurse = yes
2013-07-03 22:52:23 Option archive = no
2013-07-03 22:52:23 Option service = yes
2013-07-03 22:52:23 Option confirm = yes
2013-07-03 22:52:23 Option sxl = yes
2013-07-03 22:52:23 Option max-data-age = 35
2013-07-03 22:52:23 Component SVRTcli.exe version 2.3
2013-07-03 22:52:23 Component control.dll version 2.3
2013-07-03 22:52:23 Component SVRTservice.exe version 2.3
2013-07-03 22:52:23 Component engine\osdp.dll version 1.44.0.2091
2013-07-03 22:52:23 Component engine\veex.dll version 3.44.1.2091
2013-07-03 22:52:23 Component engine\savi.dll version 7.5.12.2091
2013-07-03 22:52:23 Component rkdisk.dll version 1.5.30.0
2013-07-03 22:52:23 Version info: Product version 2.3
2013-07-03 22:52:23 Version info: Detection engine 3.44.1
2013-07-03 22:52:23 Version info: Detection data 4.90G
2013-07-03 22:52:23 Version info: Build date 6/13/2013
2013-07-03 22:52:23 Version info: Data files added 411
2013-07-03 22:52:23 Version info: Last successful update 7/3/2013 10:52:09 PM

2013-07-03 23:20:47 >>> Virus 'Mal/Generic-S' found in file C:\Documents and Settings\Administrator\Desktop\JRT.exe
2013-07-03 23:21:09 >>> Virus 'Mal/Generic-S' found in file C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\ZAB463FO\JRT[1].exe
2013-07-03 23:23:25 >>> Virus 'Troj/ExpJS-II' found in file C:\Documents and Settings\Allan\Local Settings\Temporary Internet Files\Content.IE5\D50QMXAS\wlku[1].htm
2013-07-03 23:38:28 The following items will be cleaned up:
2013-07-03 23:38:28 Mal/Generic-S
2013-07-03 23:38:28 Troj/ExpJS-II
2013-07-03 23:50:21 Threat 'Mal/Generic-S' has been cleaned up.
2013-07-03 23:50:21 File "C:\Documents and Settings\Administrator\Desktop\JRT.exe" belongs to malware 'Mal/Generic-S'.
2013-07-03 23:50:21 File "C:\Documents and Settings\Administrator\Desktop\JRT.exe" has been cleaned up.
2013-07-03 23:50:21 File "C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\ZAB463FO\JRT[1].exe" belongs to malware 'Mal/Generic-S'.
2013-07-03 23:50:21 File "C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\ZAB463FO\JRT[1].exe" has been cleaned up.
2013-07-03 23:50:21 Removal successful
2013-07-03 23:50:23 Threat 'Troj/ExpJS-II' has been cleaned up.
2013-07-03 23:50:23 File "C:\Documents and Settings\Allan\Local Settings\Temporary Internet Files\Content.IE5\D50QMXAS\wlku[1].htm" belongs to 'Troj/ExpJS-II'.
2013-07-03 23:50:23 File "C:\Documents and Settings\Allan\Local Settings\Temporary Internet Files\Content.IE5\D50QMXAS\wlku[1].htm" has been cleaned up.
2013-07-03 23:50:23 Removal successful

 

---Security Check Log---:

 

 Results of screen317's Security Check version 0.99.68 
 Windows XP Service Pack 3 x86  
 Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
Microsoft Security Essentials  
 Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware version 1.75.0.1300 
 Java™ 6 Update 21 
 Java version out of Date!
 Adobe Flash Player  11.7.700.224 
 Adobe Reader XI 
 Mozilla Firefox 17.0.1 Firefox out of Date! 
````````Process Check: objlist.exe by Laurent```````` 
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 15% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
 

---Autoruns Log---:

 

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "7/3/2013 6:40 PM"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe" "12/3/2012 3:34 AM"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe" "2/14/2012 4:22 AM"
+ "BrStsMon00" "Brother Status Monitor Application" "Brother Industries, Ltd." "c:\program files\browny02\brother\brstmonw.exe" "12/23/2010 2:36 AM"
+ "ControlCenter4" "ControlCenter Launcher" "Brother Industries, Ltd." "c:\program files\controlcenter4\brccboot.exe" "3/3/2011 7:05 AM"
+ "F5D8055v2" "Belkin Wireless Client Utility" "Belkin" "c:\program files\belkin\f5d8055\v2\belkinwcui.exe" "4/7/2009 8:40 AM"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe" "3/25/2009 12:10 PM"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe" "3/25/2009 12:10 PM"
+ "IndexSearch" "PaperPort IndexSearch" "Nuance Communications, Inc." "c:\program files\nuance\paperport\indexsearch.exe" "3/8/2010 6:06 PM"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe" "3/6/2012 10:25 PM"
+ "LifeCam" "LifeExp.exe" "Microsoft Corporation" "c:\program files\microsoft lifecam\lifeexp.exe" "5/19/2010 7:02 PM"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe" "1/25/2013 12:27 AM"
+ "PaperPort PTD" "PaperPort Print to Desktop for NT" "Nuance Communications, Inc." "c:\program files\nuance\paperport\pptd40nt.exe" "3/8/2010 6:05 PM"
+ "PDF5 Registry Controller" "PDF Converter Registry Controller" "Nuance Communications, Inc." "c:\program files\nuance\pdf viewer plus\registrycontroller.exe" "3/5/2010 1:56 PM"
+ "PDFHook" "PdfCreateHook Application" "Nuance Communications, Inc." "c:\program files\nuance\pdf viewer plus\pdfpro5hook.exe" "3/5/2010 1:59 PM"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe" "3/25/2009 12:09 PM"
+ "PPort12reminder" "Ereg" "Nuance Communications, Inc." "c:\program files\nuance\paperport\ereg\ereg.exe" "2/9/2010 8:42 AM"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe" "10/24/2011 5:11 PM"
+ "RTHDCPL" "Realtek HD Audio Control Panel" "Realtek Semiconductor Corp." "c:\windows\rthdcpl.exe" "6/11/2009 11:10 PM"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe" "5/14/2010 2:44 PM"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "8/2/2010 11:12 PM"
+ "Address Book 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe" "4/13/2008 2:30 PM"
+ "Microsoft Outlook Express 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe" "4/13/2008 2:30 PM"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" "" "12/18/2012 11:52 PM"
+ "BitTorrent" "" "" "File not found: C:\Program Files\BitTorrent\BitTorrent.exe" ""
+ "Facebook Update" "Facebook Installer" "Facebook Inc." "c:\documents and settings\allan\local settings\application data\facebook\update\facebookupdate.exe" "7/6/2012 3:50 PM"
+ "ISUSPM" "Acresso Software Manager" "Acresso Corporation" "c:\documents and settings\all users\application data\flexnet\connect\11\isuspm.exe" "5/5/2009 5:05 PM"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" "" "8/2/2010 11:12 PM"
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "11/22/2012 6:28 AM"
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll" "11/3/2011 6:19 AM"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components" "" "" "" "8/2/2010 11:24 PM"
+ "0" "" "" "File not found: About:Home" ""
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "8/2/2010 7:05 PM"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll" "1/25/2013 12:26 AM"
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "8/2/2010 11:12 PM"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll" "1/25/2013 12:26 AM"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "8/2/2010 11:12 PM"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll" "2/28/2013 4:39 PM"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "8/2/2010 7:05 PM"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll" "1/25/2013 12:26 AM"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "8/2/2010 11:12 PM"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll" "3/25/2009 12:10 PM"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "8/2/2010 11:12 PM"
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll" "12/18/2012 2:06 PM"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "8/2/2010 11:12 PM"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll" "2/28/2013 4:39 PM"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "3/5/2012 11:59 PM"
+ "&Yahoo! Toolbar Helper" "Yahoo! Toolbar" "Yahoo! Inc." "c:\program files\yahoo!\companion\installs\cpn4\yt.dll" "5/28/2013 2:34 PM"
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll" "9/23/2012 10:24 PM"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle" "c:\program files\java\jre6\bin\jp2ssv.dll" "6/22/2010 8:36 AM"
+ "JQSIEStartDetectorImpl Class" "Java™ Quick Starter binary" "Oracle" "c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll" "6/22/2010 8:36 AM"
+ "PlusIEEventHelper Class" "PlusIEContextMenu.dll" "Zeon Corporation" "c:\program files\nuance\pdf viewer plus\bin\plusiecontextmenu.dll" "2/6/2009 4:40 AM"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "11/22/2012 6:28 AM"
"HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks" "" "" "" "7/3/2013 11:56 PM"
+ "YTNavAssistPlugin Class" "Yahoo! Toolbar" "Yahoo! Inc." "c:\program files\yahoo!\companion\installs\cpn4\yt.dll" "5/28/2013 2:34 PM"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" "" "12/19/2012 3:18 PM"
+ "Yahoo! Toolbar" "Yahoo! Toolbar" "Yahoo! Inc." "c:\program files\yahoo!\companion\installs\cpn4\yt.dll" "5/28/2013 2:34 PM"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" "" "12/19/2012 3:18 PM"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "11/22/2012 6:28 AM"
+ "Windows Messenger" "Windows Messenger" "Microsoft Corporation" "c:\program files\messenger\msmsgs.exe" "4/13/2008 2:34 PM"
"Task Scheduler" "" "" "" ""
+ "Adobe Flash Player Updater.job" "Adobe® Flash® Player Update Service 11.7 r700" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe" "5/29/2013 5:43 PM"
+ "AppleSoftwareUpdate.job" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe" "6/1/2011 8:46 PM"
+ "FacebookUpdateTaskUserS-1-5-21-1659004503-1383384898-1177238915-1003Core.job" "Facebook Installer" "Facebook Inc." "c:\documents and settings\allan\local settings\application data\facebook\update\facebookupdate.exe" "7/6/2012 3:50 PM"
+ "FacebookUpdateTaskUserS-1-5-21-1659004503-1383384898-1177238915-1003UA.job" "Facebook Installer" "Facebook Inc." "c:\documents and settings\allan\local settings\application data\facebook\update\facebookupdate.exe" "7/6/2012 3:50 PM"
+ "Microsoft Antimalware Scheduled Scan.job" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe" "1/25/2013 12:25 AM"
"HKLM\System\CurrentControlSet\Services" "" "" "" "6/10/2013 1:27 PM"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe" "5/29/2013 5:43 PM"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe" "1/19/2012 2:31 PM"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe" "8/31/2011 1:40 AM"
+ "BrYNSvc" "BrYNCSvc" "Brother Industries, Ltd." "c:\program files\browny02\brynsvc.exe" "1/24/2010 7:22 PM"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe" "3/6/2012 10:25 PM"
+ "JavaQuickStarterService" "Prefetches JRE files for faster startup of Java applets and applications" "Oracle" "c:\program files\java\jre6\bin\jqs.exe" "6/22/2010 6:23 AM"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe" "11/29/2012 2:55 AM"
+ "MSCamSvc" "MsCamSvc.exe" "Microsoft Corporation" "c:\program files\microsoft lifecam\mscams32.exe" "5/19/2010 7:02 PM"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe" "1/25/2013 12:25 AM"
+ "PDFProFiltSrvPP" "PDFPro IFilter Service" "Nuance Communications, Inc." "c:\program files\nuance\paperport\pdfprofiltsrvpp.exe" "3/8/2010 6:03 PM"
+ "RalinkRegistryWriter" "RalinkRegistryWriter" "Ralink Technology, Corp." "c:\program files\belkin\f9l1103\v1\common\raregistry.exe" "11/10/2010 10:51 PM"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\documents and settings\all users\application data\skype\toolbars\skype c2c service\c2c_service.exe" "11/22/2012 6:29 AM"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe" "11/9/2012 7:21 AM"
+ "YahooAUService" "Keeps your favorite Yahoo! software up-to-date with the latest features, tools, and enhancements." "Yahoo! Inc." "c:\program files\yahoo!\softwareupdate\yahooauservice.exe" "11/9/2008 4:47 PM"
"HKLM\System\CurrentControlSet\Services" "" "" "" "6/10/2013 1:27 PM"
+ "AegisP" "AEGIS Protocol (IEEE 802.1x) v3.7.5.0" "Cisco Systems, Inc." "c:\windows\system32\drivers\aegisp.sys" "7/12/2007 3:57 PM"
+ "Ambfilt" "Creative WDM 3D Audio Driver" "Creative" "c:\windows\system32\drivers\ambfilt.sys" "8/5/2008 8:10 AM"
+ "BrScnUsb" "Brother USB Scanner Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brscnusb.sys" "10/14/2004 11:50 PM"
+ "BrSerIb" "Brother MFC Serial Interface Driver(WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserib.sys" "11/2/2009 11:06 PM"
+ "BrUsbSIb" "Brother MFC Serial USB Driver(WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbsib.sys" "11/2/2009 11:06 PM"
+ "cerc6" "" "" "File not found: C:\WINDOWS\System32\Drivers\cerc6.sys" ""
+ "Changer" "" "" "File not found: C:\WINDOWS\System32\Drivers\Changer.sys" ""
+ "gdrv" "" "" "File not found: C:\WINDOWS\gdrv.sys" ""
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys" "5/18/2009 8:16 AM"
+ "HDAudBus" "High Definition Audio Bus Driver v1.0a" "Windows ® Server 2003 DDK provider" "c:\windows\system32\drivers\hdaudbus.sys" "5/26/2005 11:46 AM"
+ "i2omgmt" "" "" "File not found: C:\WINDOWS\System32\Drivers\i2omgmt.sys" ""
+ "ialm" "Intel Graphics Miniport Driver" "Intel Corporation" "c:\windows\system32\drivers\igxpmp32.sys" "3/25/2009 12:35 PM"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkhdaud.sys" "6/16/2009 6:15 AM"
+ "IntcHdmiAddService" "Intel® High Definition Audio HDMI" "Intel® Corporation" "c:\windows\system32\drivers\intchdmi.sys" "12/5/2008 5:33 AM"
+ "lbrtfdc" "" "" "File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys" ""
+ "Monfilt" "Creative WDM Audio Driver (32-bit)" "Creative Technology Ltd." "c:\windows\system32\drivers\monfilt.sys" "1/4/2006 3:41 AM"
+ "PCIDump" "" "" "File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys" ""
+ "PDCOMP" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys" ""
+ "PDFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys" ""
+ "PDRELI" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys" ""
+ "PDRFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys" ""
+ "Ptilink" "Direct Parallel Link Driver" "Parallel Technologies, Inc." "c:\windows\system32\drivers\ptilink.sys" "8/17/2001 4:49 PM"
+ "rt2870" "Ralink 802.11 USB Wireless Adapter Driver" "Ralink Technology, Corp." "c:\windows\system32\drivers\rt2870.sys" "4/3/2009 11:08 AM"
+ "RTL8023xp" "Realtek 10/100/1000 NDIS 5.1 Driver                         " "Realtek Semiconductor Corporation                           " "c:\windows\system32\drivers\rtnicxp.sys" "3/25/2009 2:29 AM"
+ "Secdrv" "SafeDisc driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys" "9/13/2006 9:18 AM"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys" "1/10/2012 8:55 PM"
+ "WDICA" "" "" "File not found: C:\WINDOWS\System32\Drivers\WDICA.sys" ""
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "7/3/2013 10:41 PM"
+ "msacm.ac3acm" "AC-3 ACM Codec" "fccHandler" "c:\windows\system32\ac3acm.acm" "1/17/2010 5:18 PM"
+ "msacm.iac2" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax" "4/13/2008 8:09 PM"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "1/29/2010 10:43 AM"
+ "msacm.lameacm" "Lame MP3 codec engine" "http://www.mp3dev.org/" "c:\windows\system32\lameacm.acm" "9/24/2008 3:41 PM"
+ "msacm.sl_anet" "Audio codec for MS ACM" "Sipro Lab Telecom Inc." "c:\windows\system32\sl_anet.acm" "4/13/2008 8:11 PM"
+ "msacm.trspch" "DSP Group TrueSpeech™ Audio Codec for MSACM V3.50" "DSP GROUP, INC." "c:\windows\system32\tssoft32.acm" "8/18/2001 1:35 AM"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll" "6/17/2010 10:03 AM"
+ "VIDC.FFDS" "" "" "c:\windows\system32\ff_vfw.dll" "5/12/2010 10:09 AM"
+ "vidc.iv31" "" "" "c:\windows\system32\ir32_32.dll" "8/18/2001 1:33 AM"
+ "vidc.iv32" "" "" "c:\windows\system32\ir32_32.dll" "8/18/2001 1:33 AM"
+ "vidc.iv41" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax" "4/13/2008 8:10 PM"
+ "vidc.iv50" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll" "4/13/2008 8:10 PM"
+ "VIDC.XVID" "" "" "c:\windows\system32\xvidvfw.dll" "6/8/2010 12:10 PM"
+ "VIDC.YV12" "Helix YV12 YUV Codec" "www.helixcommunity.org" "c:\windows\system32\yv12vfw.dll" "1/25/2004 12:18 PM"
"HKLM\Software\Classes\Filter" "" "" "" "7/3/2013 6:42 PM"
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax" "4/13/2008 8:10 PM"
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax" "4/13/2008 8:10 PM"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax" "4/13/2008 8:10 PM"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax" "4/13/2008 8:10 PM"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "8/2/2010 11:13 PM"
+ "9x8Resize" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "AC3File" "" "" "c:\program files\k-lite codec pack\filters\ac3file.ax" "8/4/2009 1:09 AM"
+ "ACELP.net Audio Decoder" "ACELP.net Audio Decoder" "Sipro Lab Telecom Inc." "c:\windows\system32\acelpdec.ax" "8/18/2001 1:35 AM"
+ "Allocator Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "Bitmap" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "CyberLink Video/SP Decoder (PDVD10)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\k-lite codec pack\filters\clvsd.ax" "2/7/2010 11:31 AM"
+ "DC-Bass Source" "DirectShow™ Audio Decoder" "http://www.dsp-worx.de" "c:\program files\k-lite codec pack\filters\dcbasssource.ax" "6/19/1992 6:22 PM"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\program files\k-lite codec pack\filters\vsfilter.dll" "10/31/2009 2:28 PM"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\program files\k-lite codec pack\filters\vsfilter.dll" "10/31/2009 2:28 PM"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax" "7/13/2010 2:38 PM"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax" "7/13/2010 2:38 PM"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax" "7/13/2010 2:38 PM"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax" "7/13/2010 2:38 PM"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax" "7/13/2010 2:38 PM"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax" "7/13/2010 2:38 PM"
+ "File Source (Monkey Audio)" "" "" "c:\program files\k-lite codec pack\filters\monkeysource.ax" "6/19/1992 6:22 PM"
+ "Frame Eater" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax" "5/19/2010 4:59 PM"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax" "5/19/2010 4:59 PM"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax" "5/19/2010 4:59 PM"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax" "5/19/2010 4:59 PM"
+ "Haali Video Renderer" "" "" "c:\program files\k-lite codec pack\filters\haali\dxr.dll" "5/19/2010 4:58 PM"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax" "5/19/2010 4:59 PM"
+ "Indeo® audio software" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax" "4/13/2008 8:09 PM"
+ "Indeo® video 5.10 Compression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll" "4/13/2008 8:10 PM"
+ "Indeo® video 5.10 Decompression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll" "4/13/2008 8:10 PM"
+ "madFlac Decoder" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files\k-lite codec pack\filters\madflac.ax" "6/19/1992 6:22 PM"
+ "madFlac Source" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files\k-lite codec pack\filters\madflac.ax" "6/19/1992 6:22 PM"
+ "MONOGRAM AMR Decoder" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files\k-lite codec pack\filters\mmamr.ax" "3/16/2008 9:30 AM"
+ "MONOGRAM AMR Encoder" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files\k-lite codec pack\filters\mmamr.ax" "3/16/2008 9:30 AM"
+ "MONOGRAM AMR Mux" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files\k-lite codec pack\filters\mmamr.ax" "3/16/2008 9:30 AM"
+ "MONOGRAM AMR Splitter" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files\k-lite codec pack\filters\mmamr.ax" "3/16/2008 9:30 AM"
+ "MONOGRAM Musepack Decoder" "mmmpcdec" "" "c:\program files\k-lite codec pack\filters\mmmpcdec.ax" "1/18/2009 7:03 AM"
+ "MONOGRAM Musepack Splitter" "mmmpcdmx" "" "c:\program files\k-lite codec pack\filters\mmmpcdmx.ax" "1/18/2009 12:15 PM"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\flvsplitter.ax" "7/10/2010 10:20 AM"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\flvsplitter.ax" "7/10/2010 10:20 AM"
+ "MPC - MP4 Source" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax" "7/10/2010 10:21 AM"
+ "MPC - MP4 Splitter" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax" "7/10/2010 10:21 AM"
+ "MPC - Mpeg Source (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mpegsplitter.ax" "7/10/2010 10:21 AM"
+ "MPC - Mpeg Splitter (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mpegsplitter.ax" "7/10/2010 10:21 AM"
+ "MPC - MPEG4 Video Source" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax" "7/10/2010 10:21 AM"
+ "MPC - MPEG4 Video Splitter" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax" "7/10/2010 10:21 AM"
+ "MPEG Layer-3 Decoder" "MPEG Layer-3 Audio Decoder" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecx.ax" "6/15/2010 12:17 PM"
+ "Record Queue" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "ShotDetect" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "Stetch" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "T" "VP7 Decompression Filter" "On2.com Inc." "c:\program files\k-lite codec pack\filters\vp7dec.ax" "3/24/2006 6:09 PM"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\program files\k-lite codec pack\filters\wavpackdsdecoder.ax" "3/4/2007 5:50 AM"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\program files\k-lite codec pack\filters\wavpackdssplitter.ax" "10/2/2007 6:09 PM"
+ "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\program files\k-lite codec pack\filters\vp8decoder.dll" "7/2/2010 2:14 PM"
+ "WIA Stream Snapshot Filter" "WIA Stream Snapshot Filter" "MyCompanyName" "c:\windows\system32\wiasf.ax" "8/18/2001 1:35 AM"
+ "WM VIH2 Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Audio Analyzer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Black Frame Generator" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT DirectX Transform Wrapper" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT DV Extract Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT FormatConversion" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Import Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Interlacer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Log Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT MuxDeMux Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Sample Info Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Screen capture Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Switch Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Virtual Renderer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Virtual Source" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
+ "WMT Volume" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "4/13/2008 8:11 PM"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" "" "7/3/2013 10:41 PM"
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll" "3/25/2009 12:09 PM"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" "" "3/15/2012 11:02 PM"
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll" "8/31/2011 1:44 AM"
 



#13 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:33 AM

Posted 03 July 2013 - 11:25 PM

Can you tell  me how you connect your machine to the internet please.



#14 mtdar

mtdar
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 03 July 2013 - 11:31 PM

Sure, it's connected via ethernet cable to router.



#15 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:33 AM

Posted 03 July 2013 - 11:37 PM


Download MiniRegTool.zip and unzip it

 

 

Copy the content of the code box below and paste into minireg tool window tick export keys hit go.

Copy and paste the log that follows in your next reply.

 

 
 
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Netbt\Parameters
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users