Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Internet Explorer has stopped working

Started by Middlegrove , Jun 04 2011 07:59 AM

  • This topic is locked This topic is locked

#31
Middlegrove
Posted 14 June 2011 - 07:29 PM

Middlegrove

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Need to look to see if I have cd/dvd. not sure if I do. shall I continue?
  • 0

Advertisements

#32
Render
Posted 15 June 2011 - 05:32 AM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Yes, please proceed with those two steps.
  • 0

#33
Middlegrove
Posted 15 June 2011 - 06:14 AM

Middlegrove

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Render,

All processes killed
========== OTL ==========
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
C:\WINDOWS\V7PTMPPR.SGTMP moved successfully.
C:\ProgramData\~39575288 moved successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Dawn McKenna Carr\Pictures\iPod Photo Cache\F04\cmd.bat deleted successfully.
C:\Users\Dawn McKenna Carr\Pictures\iPod Photo Cache\F04\cmd.txt deleted successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Dawn McKenna Carr
->Temp folder emptied: 7722462715 bytes
->Temporary Internet Files folder emptied: 25838067 bytes
->Java cache emptied: 12137264 bytes
->Google Chrome cache emptied: 12769672 bytes
->Flash cache emptied: 194763 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 49128603 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33603630 bytes
RecycleBin emptied: 421572053 bytes

Total Files Cleaned = 7,894.00 mb


[EMPTYFLASH]

User: All Users

User: Dawn McKenna Carr
->Flash cache emptied: 0 bytes

User: Default

User: Default User

User: Public

Total Flash Files Cleaned = 0.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.23.0 log created on 06152011_073135

Files\Folders moved on Reboot...
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\QR00OSQ1\size=300x345;noperf=1;alias=93309792;cfp=1;noaddonpl=y;kvugc=0;kvui=d693b038d14a11df89458983619aa87b;kvmn=93309792;target=_blank;aduho=-240;grp=125916083;misc=125916083[1] not found!
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\N0EU52EC\%3A95%3A96%3A97%3A105%3A106%3A107%3A108%3A193%3A232%3A256%3A268%3A269%3A295%3A296%3A322%3Bkvhasrc%3D1%3Bkvagsrc%3D1%3Bkp%3D114435%3Bnodecode%3Dyes%3Blink%3D;ord=8599527[1] not found!
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LJCEY4WX\0%3A89%3A91%3A92%3A93%3A94%3A95%3A96%3A97%3A105%3A106%3A107%3A108%3A193%3A232%3A256%3A268%3A269%3A295%3A296%3A322%3Bkp%3D117517%3Bnodecode%3Dyes%3Blink%3D;ord=125940033[1] not found!
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LJCEY4WX\QOeM-RDF6Tm-iOVsFbxlYD0mgnvKPRzP2urwNI6qwGSsUvppJHDaDsoTKlJ5h4Sz15Uwby1k9drL8xsxZ_xCDPLtUiD8-YN3N68tKAgrL7uXr1cEFWdUMb5WjNQ_-44DI_vbm&callback=google.LU[1].loadFeaturemap0 not found!
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LJCEY4WX\size=61x21;noperf=1;alias=93309869;cfp=1;noaddonpl=y;kvugc=0;kvui=d693b038d14a11df89458983619aa87b;kvmn=93309869;target=_blank;aduho=-240;grp=125916083;misc=125916083[1] not found!
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\H69MPI3B\p=1;rndc=130512591;noperf=1;alias=93309866;noaddonpl=y;kvugc=0;kvui=d693b038d14a11df89458983619aa87b;kvmn=93309866;target=_blank;aduho=-240;grp=125916083;misc=125916083[1] not found!
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\4R8LZTAF\BEeJvmX5pmY8l6NWjqxl910IUyRbIWjSkC8-g9QHffZTbCsI3SovY3r_7m8m3PvyUfdJfI6nUhYjiopkNf2hMovvCS0MCpBwh6CMd7MrNmubktZakreqsAo61K0kKIJTfChC1L70sM38g1qKygfNMkgE_UZXi-qsPD2S[1].gif not found!
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\3AB5MV33\size=300x75;noperf=1;alias=93309868;cfp=1;noaddonpl=y;kvugc=0;kvui=d693b038d14a11df89458983619aa87b;kvmn=93309868;target=_blank;aduho=-240;grp=125916083;misc=125916083[1] not found!
File\Folder C:\Users\Dawn McKenna Carr\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\0OAGFKPP\R8bmp-7qS5Jb73-zdTawbkMsVsW3rz5QOeM-RDF6Tm-iOVsFbxlYD0mgnvKPRzP2urwNI6qwGSsUvppJHDaDsoTKlJ5h4Sz15Uwby1k9drL8xsxZ_xCDPLtUiD8-YN3N68tKAgrL7uXr1cEFWdUMb5WjNQ_-44DI_vbm[1].gif not found!
C:\Users\Dawn McKenna Carr\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...




malware log:


Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Database version: 6861

Windows 6.1.7600
Internet Explorer 9.0.8112.16421

6/15/2011 7:51:19 AM
mbam-log-2011-06-15 (07-51-19).txt

Scan type: Quick scan
Objects scanned: 162061
Time elapsed: 3 minute(s), 6 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
  • 0

#34
Render
Posted 15 June 2011 - 06:36 AM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Please proceed with this:



From the Start menu open your Computer
You should see something like this:

Posted Image

Right click your system partition (usually C) and select Properties

Posted Image

Select Tools tab and then Check now...
The second window will popup
Ensure you have ticks in both boxes
Then click Start
Windows will schedule it for the next boot
Reboot
  • 0

#35
Middlegrove
Posted 15 June 2011 - 02:45 PM

Middlegrove

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
okay, I did the disk check.
  • 0

#36
Render
Posted 15 June 2011 - 02:49 PM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Hi,

Please delete aswMBR.exe from your desktop and follow the steps below:

Step 1

Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
  • The application window will appear
  • Click the Disable button to disable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK
IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop.

Do not re-enable these drivers until otherwise instructed.

Step 2

  • Please download aswMBR.exe to your desktop.
  • Double click the aswMBR.exe to run it.

    Posted Image
  • Click the Scan button to start scan.

    Posted Image
  • On completion of the scan click Save log, save it to your desktop and post in your next reply.

  • 0

#37
Middlegrove
Posted 15 June 2011 - 03:39 PM

Middlegrove

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Render,

should I continue with aswMBR?

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 17:14 on 15/06/2011 (Dawn McKenna Carr)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
  • 0

#38
Render
Posted 15 June 2011 - 03:44 PM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Yes please.
  • 0

#39
Middlegrove
Posted 15 June 2011 - 03:54 PM

Middlegrove

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Render,

aswMBR version 0.9.6.399 Copyright© 2011 AVAST Software
Run date: 2011-06-15 17:49:17
-----------------------------
17:49:17.843 OS Version: Windows x64 6.1.7600
17:49:17.843 Number of processors: 2 586 0x170A
17:49:17.843 ComputerName: DAWN UserName:
17:49:18.779 Initialize success
17:49:25.097 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:49:25.097 Disk 0 Vendor: TOSHIBA_ FG00 Size: 238475MB BusType: 3
17:49:25.113 Disk 0 MBR read successfully
17:49:25.113 Disk 0 MBR scan
17:49:25.128 Disk 0 Windows 7 default MBR code found via API
17:49:25.128 Disk 0 unknown MBR code
17:49:25.128 Disk 0 MBR hidden
17:49:25.128 Service scanning
17:49:26.220 Disk 0 trace - called modules:
17:49:26.251 ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xfffffa80031d2214]<<
17:49:26.267 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003128060]
17:49:26.267 3 CLASSPNP.SYS[fffff8800101543f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8002ea5050]
17:49:26.283 \Driver\iaStor[0xfffffa8002e53e70] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80031d2214
17:49:26.283 Scan finished successfully
17:50:18.777 Disk 0 MBR has been saved successfully to "C:\Users\Dawn McKenna Carr\Desktop\MBR.dat"
17:50:18.808 The log file has been saved successfully to "C:\Users\Dawn McKenna Carr\Desktop\aswMBR.txt"
  • 0

#40
Render
Posted 15 June 2011 - 04:27 PM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Please delete your copy of TDSSKiller then download and run TDSSKiller once again as instructed:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • Extract its contents to your desktop.
  • Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.


    Posted Image
  • If an infected file is detected, the default action will be Cure, click on Continue.


    Posted Image
  • If a suspicious file is detected, the default action will be Skip, click on Continue.


    Posted Image
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.


    Posted Image
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

  • 0

Advertisements

#41
Middlegrove
Posted 15 June 2011 - 04:49 PM

Middlegrove

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Render,

2011/06/15 18:41:46.0674 3540 TDSS rootkit removing tool 2.5.4.0 Jun 7 2011 17:31:48
2011/06/15 18:41:47.0126 3540 ================================================================================
2011/06/15 18:41:47.0126 3540 SystemInfo:
2011/06/15 18:41:47.0126 3540
2011/06/15 18:41:47.0126 3540 OS Version: 6.1.7600 ServicePack: 0.0
2011/06/15 18:41:47.0126 3540 Product type: Workstation
2011/06/15 18:41:47.0126 3540 ComputerName: DAWN
2011/06/15 18:41:47.0126 3540 UserName: Dawn McKenna Carr
2011/06/15 18:41:47.0126 3540 Windows directory: C:\Windows
2011/06/15 18:41:47.0126 3540 System windows directory: C:\Windows
2011/06/15 18:41:47.0126 3540 Running under WOW64
2011/06/15 18:41:47.0126 3540 Processor architecture: Intel x64
2011/06/15 18:41:47.0126 3540 Number of processors: 2
2011/06/15 18:41:47.0126 3540 Page size: 0x1000
2011/06/15 18:41:47.0126 3540 Boot type: Normal boot
2011/06/15 18:41:47.0126 3540 ================================================================================
2011/06/15 18:41:47.0610 3540 Initialize success
2011/06/15 18:41:57.0703 1512 ================================================================================
2011/06/15 18:41:57.0703 1512 Scan started
2011/06/15 18:41:57.0703 1512 Mode: Manual;
2011/06/15 18:41:57.0703 1512 ================================================================================
2011/06/15 18:41:58.0171 1512 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
2011/06/15 18:41:58.0312 1512 17839041 (6c5461eeb3ffa1b1dcf9a07f8c3b3afe) C:\Windows\system32\DRIVERS\17839041.sys
2011/06/15 18:41:58.0577 1512 17839042 (3ec7dfda521b4fb22ce9f76df15db099) C:\Windows\system32\DRIVERS\17839042.sys
2011/06/15 18:41:58.0717 1512 18905551 (6c5461eeb3ffa1b1dcf9a07f8c3b3afe) C:\Windows\system32\DRIVERS\18905551.sys
2011/06/15 18:41:58.0889 1512 18905552 (3ec7dfda521b4fb22ce9f76df15db099) C:\Windows\system32\DRIVERS\18905552.sys
2011/06/15 18:41:59.0029 1512 55488021 (6c5461eeb3ffa1b1dcf9a07f8c3b3afe) C:\Windows\system32\DRIVERS\55488021.sys
2011/06/15 18:41:59.0201 1512 55488022 (3ec7dfda521b4fb22ce9f76df15db099) C:\Windows\system32\DRIVERS\55488022.sys
2011/06/15 18:41:59.0326 1512 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
2011/06/15 18:41:59.0435 1512 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
2011/06/15 18:41:59.0575 1512 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
2011/06/15 18:41:59.0716 1512 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
2011/06/15 18:41:59.0840 1512 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
2011/06/15 18:41:59.0996 1512 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
2011/06/15 18:42:00.0106 1512 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
2011/06/15 18:42:00.0230 1512 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
2011/06/15 18:42:00.0355 1512 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
2011/06/15 18:42:00.0449 1512 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
2011/06/15 18:42:00.0558 1512 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
2011/06/15 18:42:00.0683 1512 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
2011/06/15 18:42:00.0854 1512 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
2011/06/15 18:42:00.0979 1512 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
2011/06/15 18:42:01.0088 1512 ApfiltrService (1412e9a88fe1f7e35ce6058a2ef03664) C:\Windows\system32\DRIVERS\Apfiltr.sys
2011/06/15 18:42:01.0291 1512 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
2011/06/15 18:42:01.0447 1512 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
2011/06/15 18:42:01.0541 1512 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
2011/06/15 18:42:01.0681 1512 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/06/15 18:42:01.0790 1512 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
2011/06/15 18:42:01.0946 1512 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
2011/06/15 18:42:02.0071 1512 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
2011/06/15 18:42:02.0180 1512 BCM42RLY (e001dd475a7c27ebe5a0db45c11bad71) C:\Windows\system32\drivers\BCM42RLY.sys
2011/06/15 18:42:02.0461 1512 BCM43XX (37394d3553e220fb732c21e217e1bd8b) C:\Windows\system32\DRIVERS\bcmwl664.sys
2011/06/15 18:42:02.0633 1512 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
2011/06/15 18:42:02.0758 1512 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
2011/06/15 18:42:02.0898 1512 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
2011/06/15 18:42:02.0992 1512 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2011/06/15 18:42:03.0101 1512 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2011/06/15 18:42:03.0210 1512 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
2011/06/15 18:42:03.0756 1512 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/06/15 18:42:03.0865 1512 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/06/15 18:42:03.0974 1512 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/06/15 18:42:04.0084 1512 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/06/15 18:42:04.0208 1512 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/06/15 18:42:04.0318 1512 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
2011/06/15 18:42:04.0458 1512 cfwids (676535b3156fecf7133cf80b4d2f6cf7) C:\Windows\system32\drivers\cfwids.sys
2011/06/15 18:42:04.0645 1512 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
2011/06/15 18:42:04.0739 1512 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
2011/06/15 18:42:04.0879 1512 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/06/15 18:42:04.0988 1512 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
2011/06/15 18:42:05.0098 1512 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
2011/06/15 18:42:05.0238 1512 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
2011/06/15 18:42:05.0332 1512 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
2011/06/15 18:42:05.0441 1512 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
2011/06/15 18:42:05.0581 1512 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
2011/06/15 18:42:05.0753 1512 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
2011/06/15 18:42:05.0862 1512 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
2011/06/15 18:42:05.0987 1512 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
2011/06/15 18:42:06.0127 1512 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
2011/06/15 18:42:06.0268 1512 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
2011/06/15 18:42:06.0548 1512 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
2011/06/15 18:42:06.0767 1512 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
2011/06/15 18:42:06.0876 1512 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
2011/06/15 18:42:07.0016 1512 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
2011/06/15 18:42:07.0141 1512 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
2011/06/15 18:42:07.0250 1512 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
2011/06/15 18:42:07.0297 1512 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
2011/06/15 18:42:07.0406 1512 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
2011/06/15 18:42:07.0531 1512 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/06/15 18:42:07.0656 1512 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
2011/06/15 18:42:07.0781 1512 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
2011/06/15 18:42:07.0890 1512 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
2011/06/15 18:42:08.0015 1512 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
2011/06/15 18:42:08.0155 1512 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
2011/06/15 18:42:08.0264 1512 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/06/15 18:42:08.0467 1512 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
2011/06/15 18:42:08.0576 1512 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/06/15 18:42:08.0670 1512 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
2011/06/15 18:42:08.0779 1512 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
2011/06/15 18:42:08.0888 1512 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
2011/06/15 18:42:09.0029 1512 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
2011/06/15 18:42:09.0169 1512 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
2011/06/15 18:42:09.0294 1512 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
2011/06/15 18:42:09.0419 1512 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
2011/06/15 18:42:09.0544 1512 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/06/15 18:42:09.0684 1512 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
2011/06/15 18:42:09.0809 1512 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
2011/06/15 18:42:10.0152 1512 igfx (babd5f9b2bcc82ce556a0baf1ae208a7) C:\Windows\system32\DRIVERS\igdkmd64.sys
2011/06/15 18:42:10.0464 1512 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
2011/06/15 18:42:10.0589 1512 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
2011/06/15 18:42:10.0698 1512 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
2011/06/15 18:42:10.0807 1512 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2011/06/15 18:42:10.0916 1512 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
2011/06/15 18:42:11.0057 1512 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
2011/06/15 18:42:11.0166 1512 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
2011/06/15 18:42:11.0275 1512 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/06/15 18:42:11.0400 1512 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/06/15 18:42:11.0509 1512 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/06/15 18:42:11.0618 1512 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
2011/06/15 18:42:11.0728 1512 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
2011/06/15 18:42:11.0837 1512 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
2011/06/15 18:42:11.0993 1512 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
2011/06/15 18:42:12.0133 1512 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
2011/06/15 18:42:12.0242 1512 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
2011/06/15 18:42:12.0352 1512 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2011/06/15 18:42:12.0476 1512 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2011/06/15 18:42:12.0586 1512 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
2011/06/15 18:42:12.0788 1512 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
2011/06/15 18:42:12.0913 1512 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
2011/06/15 18:42:13.0054 1512 mfeapfk (31338e489314ae2a29534fbaa7ad2f1b) C:\Windows\system32\drivers\mfeapfk.sys
2011/06/15 18:42:13.0179 1512 mfeavfk (5822e70233218bcf22a65fcea74d012d) C:\Windows\system32\drivers\mfeavfk.sys
2011/06/15 18:42:13.0459 1512 mfefirek (5a24e7c834576313d8c5eaf0825da844) C:\Windows\system32\drivers\mfefirek.sys
2011/06/15 18:42:13.0678 1512 mfehidk (a2607740bb18d631da01e01dcb81843b) C:\Windows\system32\drivers\mfehidk.sys
2011/06/15 18:42:13.0803 1512 mfenlfk (50c3a9d7465d385061c0601deefb5a8e) C:\Windows\system32\DRIVERS\mfenlfk.sys
2011/06/15 18:42:14.0021 1512 mferkdet (edf5ee799a0b3ed6dce8bb16a51f3d1f) C:\Windows\system32\drivers\mferkdet.sys
2011/06/15 18:42:14.0224 1512 mfewfpk (9182faf9addd5ea6308d155ceb502c6f) C:\Windows\system32\drivers\mfewfpk.sys
2011/06/15 18:42:14.0411 1512 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
2011/06/15 18:42:14.0520 1512 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
2011/06/15 18:42:14.0629 1512 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
2011/06/15 18:42:14.0754 1512 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
2011/06/15 18:42:14.0879 1512 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
2011/06/15 18:42:14.0973 1512 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
2011/06/15 18:42:15.0082 1512 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
2011/06/15 18:42:15.0207 1512 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
2011/06/15 18:42:15.0347 1512 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/06/15 18:42:15.0472 1512 mrxsmb10 (a8c2d7673c8a010569390c826a0efaf4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/06/15 18:42:15.0581 1512 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/06/15 18:42:15.0690 1512 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
2011/06/15 18:42:15.0815 1512 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
2011/06/15 18:42:15.0940 1512 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
2011/06/15 18:42:16.0049 1512 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
2011/06/15 18:42:16.0158 1512 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
2011/06/15 18:42:16.0299 1512 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
2011/06/15 18:42:16.0423 1512 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/06/15 18:42:16.0548 1512 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
2011/06/15 18:42:16.0657 1512 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
2011/06/15 18:42:16.0767 1512 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/06/15 18:42:16.0876 1512 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
2011/06/15 18:42:16.0985 1512 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
2011/06/15 18:42:17.0110 1512 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
2011/06/15 18:42:17.0250 1512 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
2011/06/15 18:42:17.0391 1512 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
2011/06/15 18:42:17.0515 1512 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/06/15 18:42:17.0640 1512 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/06/15 18:42:17.0749 1512 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/06/15 18:42:17.0874 1512 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/06/15 18:42:17.0999 1512 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
2011/06/15 18:42:18.0093 1512 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
2011/06/15 18:42:18.0202 1512 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
2011/06/15 18:42:18.0342 1512 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
2011/06/15 18:42:18.0467 1512 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
2011/06/15 18:42:18.0561 1512 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
2011/06/15 18:42:18.0732 1512 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
2011/06/15 18:42:18.0857 1512 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
2011/06/15 18:42:18.0966 1512 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
2011/06/15 18:42:19.0138 1512 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
2011/06/15 18:42:19.0356 1512 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
2011/06/15 18:42:19.0497 1512 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
2011/06/15 18:42:19.0637 1512 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
2011/06/15 18:42:19.0731 1512 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
2011/06/15 18:42:19.0855 1512 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
2011/06/15 18:42:19.0949 1512 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
2011/06/15 18:42:20.0043 1512 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/06/15 18:42:20.0152 1512 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
2011/06/15 18:42:20.0277 1512 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
2011/06/15 18:42:20.0479 1512 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
2011/06/15 18:42:20.0604 1512 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
2011/06/15 18:42:20.0745 1512 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
2011/06/15 18:42:20.0854 1512 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
2011/06/15 18:42:20.0979 1512 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
2011/06/15 18:42:21.0119 1512 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
2011/06/15 18:42:21.0244 1512 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
2011/06/15 18:42:21.0337 1512 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
2011/06/15 18:42:21.0462 1512 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/06/15 18:42:21.0587 1512 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/06/15 18:42:21.0712 1512 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/06/15 18:42:21.0837 1512 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
2011/06/15 18:42:21.0961 1512 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
2011/06/15 18:42:22.0055 1512 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
2011/06/15 18:42:22.0164 1512 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/06/15 18:42:22.0289 1512 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
2011/06/15 18:42:22.0398 1512 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
2011/06/15 18:42:22.0507 1512 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
2011/06/15 18:42:22.0632 1512 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
2011/06/15 18:42:22.0788 1512 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
2011/06/15 18:42:22.0929 1512 RSUSBSTOR (4a25dc970c58104602ed274dacafd784) C:\Windows\system32\Drivers\RtsUStor.sys
2011/06/15 18:42:23.0038 1512 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
2011/06/15 18:42:23.0163 1512 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
2011/06/15 18:42:23.0365 1512 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
2011/06/15 18:42:23.0506 1512 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
2011/06/15 18:42:23.0615 1512 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
2011/06/15 18:42:23.0724 1512 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
2011/06/15 18:42:23.0896 1512 setup_9.0.0.722_13.06.2011_03-02drv (8423db42808e94847ec4e53efda6bee2) C:\Windows\system32\DRIVERS\5548802.sys
2011/06/15 18:42:24.0005 1512 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
2011/06/15 18:42:24.0114 1512 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2011/06/15 18:42:24.0239 1512 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
2011/06/15 18:42:24.0333 1512 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
2011/06/15 18:42:24.0473 1512 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2011/06/15 18:42:24.0582 1512 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
2011/06/15 18:42:24.0691 1512 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
2011/06/15 18:42:24.0832 1512 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
2011/06/15 18:42:25.0003 1512 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
2011/06/15 18:42:25.0144 1512 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
2011/06/15 18:42:25.0269 1512 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
2011/06/15 18:42:25.0425 1512 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
2011/06/15 18:42:25.0565 1512 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
2011/06/15 18:42:25.0721 1512 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
2011/06/15 18:42:25.0939 1512 Tcpip (61dc720bb065d607d5823f13d2a64321) C:\Windows\system32\drivers\tcpip.sys
2011/06/15 18:42:26.0189 1512 TCPIP6 (61dc720bb065d607d5823f13d2a64321) C:\Windows\system32\DRIVERS\tcpip.sys
2011/06/15 18:42:26.0314 1512 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
2011/06/15 18:42:26.0423 1512 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
2011/06/15 18:42:26.0548 1512 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
2011/06/15 18:42:26.0673 1512 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
2011/06/15 18:42:26.0782 1512 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
2011/06/15 18:42:26.0953 1512 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/06/15 18:42:27.0078 1512 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
2011/06/15 18:42:27.0187 1512 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
2011/06/15 18:42:27.0312 1512 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
2011/06/15 18:42:27.0453 1512 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
2011/06/15 18:42:27.0562 1512 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
2011/06/15 18:42:27.0687 1512 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
2011/06/15 18:42:27.0827 1512 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys
2011/06/15 18:42:28.0014 1512 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/06/15 18:42:28.0217 1512 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
2011/06/15 18:42:28.0357 1512 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
2011/06/15 18:42:28.0576 1512 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
2011/06/15 18:42:28.0747 1512 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
2011/06/15 18:42:28.0966 1512 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
2011/06/15 18:42:29.0075 1512 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
2011/06/15 18:42:29.0200 1512 usbser (0f0c72a657c622286013788b886968ad) C:\Windows\system32\DRIVERS\usbser.sys
2011/06/15 18:42:29.0325 1512 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\drivers\USBSTOR.SYS
2011/06/15 18:42:29.0512 1512 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/06/15 18:42:29.0730 1512 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
2011/06/15 18:42:29.0902 1512 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
2011/06/15 18:42:30.0042 1512 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/06/15 18:42:30.0151 1512 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
2011/06/15 18:42:30.0261 1512 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
2011/06/15 18:42:30.0385 1512 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
2011/06/15 18:42:30.0495 1512 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
2011/06/15 18:42:30.0619 1512 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
2011/06/15 18:42:30.0729 1512 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
2011/06/15 18:42:30.0869 1512 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
2011/06/15 18:42:30.0994 1512 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
2011/06/15 18:42:31.0119 1512 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
2011/06/15 18:42:31.0259 1512 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
2011/06/15 18:42:31.0384 1512 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
2011/06/15 18:42:31.0509 1512 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
2011/06/15 18:42:31.0540 1512 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
2011/06/15 18:42:31.0680 1512 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
2011/06/15 18:42:31.0789 1512 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
2011/06/15 18:42:31.0914 1512 wdfsgusbV3 (eb197bcb013fbaef2dc4f3f2902b8e89) C:\Windows\system32\DRIVERS\wdfsgusb.sys
2011/06/15 18:42:32.0164 1512 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/06/15 18:42:32.0273 1512 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
2011/06/15 18:42:32.0460 1512 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
2011/06/15 18:42:32.0647 1512 WinUSB (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUSB.sys
2011/06/15 18:42:32.0788 1512 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/06/15 18:42:32.0944 1512 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
2011/06/15 18:42:33.0084 1512 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
2011/06/15 18:42:33.0225 1512 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/06/15 18:42:33.0381 1512 yukonw7 (79d9ce9614c955dd31aa2556b4014662) C:\Windows\system32\DRIVERS\yk62x64.sys
2011/06/15 18:42:33.0443 1512 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
2011/06/15 18:42:33.0459 1512 ================================================================================
2011/06/15 18:42:33.0459 1512 Scan finished
2011/06/15 18:42:33.0459 1512 ================================================================================
2011/06/15 18:42:33.0474 3624 Detected object count: 0
2011/06/15 18:42:33.0474 3624 Actual detected object count: 0
  • 0

#42
Render
Posted 15 June 2011 - 05:22 PM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Please download SINO by Artellos.
  • Save SINO to a place you can remember and run SINO.exe. (If you downloaded the ZIP version you will need to extract it first)
  • Then please check the following checkboxes:

    System Info
    Services
    Boot Check
    Tasklist
    Startup Items
    Event Log

  • Once checked, hit the Run Scan! button and wait for the program to finish the scan.
  • A notepad window will pop up. Please copy all of the content into your next reply.
Note: If you try to interact with the program once it's started scanning it might appear to hang. The scan however will continue.
  • 0

#43
Middlegrove
Posted 15 June 2011 - 05:57 PM

Middlegrove

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Render,

Sino scan...



System Investigator by Olrik
Log Created On: 1945_15-06-2011
SINO Version: 3.1.0.0

Total RAM: 3032 MB | Free RAM: 1904 MB | Pagefile Size: 3032 MB
C: | 180445 MB out of 223434 MB Free | Local Fixed Disk
D: | 132 MB out of 702 MB Free | CD-ROM Disc

<<<< System Information >>>>

Computer Name: DAWN
Username: Dawn McKenna Carr
Language Setting: ENU
Windows Directory: C:\Windows
Windows Version: Windows 7
UAC Status: On
Windows Mode: Normal

<<<< Tasklist >>>>

[System Idle Process] - Process ID: 0
[System] - Process ID: 4
[smss.exe] - Process ID: 332
[C:\Windows\system32\csrss.exe] - Process ID: 520
[C:\Windows\system32\wininit.exe] - Process ID: 560
[C:\Windows\system32\csrss.exe] - Process ID: 576
[C:\Windows\system32\services.exe] - Process ID: 612
[C:\Windows\system32\winlogon.exe] - Process ID: 648
[C:\Windows\system32\lsass.exe] - Process ID: 656
[C:\Windows\system32\lsm.exe] - Process ID: 664
[C:\Windows\system32\svchost.exe] - Process ID: 792
[C:\Windows\system32\svchost.exe] - Process ID: 888
[C:\Windows\System32\svchost.exe] - Process ID: 996
[C:\Windows\System32\svchost.exe] - Process ID: 312
[C:\Windows\system32\svchost.exe] - Process ID: 436
[C:\Windows\system32\svchost.exe] - Process ID: 552
[C:\Windows\system32\svchost.exe] - Process ID: 1116
[C:\Windows\system32\WLANExt.exe] - Process ID: 1200
[C:\Windows\system32\conhost.exe] - Process ID: 1212
[C:\Windows\System32\spoolsv.exe] - Process ID: 1332
[C:\Windows\system32\svchost.exe] - Process ID: 1396
[C:\Windows\system32\svchost.exe] - Process ID: 1552
[C:\Windows\system32\mfevtps.exe] - Process ID: 1596
[C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe] - Process ID: 1704
[C:\Windows\system32\svchost.exe] - Process ID: 1788
[C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe] - Process ID: 1856
[C:\Windows\system32\svchost.exe] - Process ID: 2100
[C:\Windows\system32\spool\DRIVERS\x64\3\HP1006MC.EXE] - Process ID: 2200
[C:\Windows\system32\taskhost.exe] - Process ID: 2456
[C:\Windows\system32\taskeng.exe] - Process ID: 2512
[C:\Windows\system32\Dwm.exe] - Process ID: 2552
[C:\Windows\Explorer.EXE] - Process ID: 2580
[C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] - Process ID: 2660
[C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe] - Process ID: 2928
[C:\Windows\System32\rundll32.exe] - Process ID: 3016
[C:\Windows\system32\SearchIndexer.exe] - Process ID: 2812
[C:\Program Files\Windows Media Player\wmpnetwk.exe] - Process ID: 2716
[C:\Windows\System32\svchost.exe] - Process ID: 2820
[C:\Windows\servicing\TrustedInstaller.exe] - Process ID: 1664
[C:\Windows\system32\SearchProtocolHost.exe] - Process ID: 1748
[C:\Windows\system32\SearchFilterHost.exe] - Process ID: 3764
[audiodg.exe] - Process ID: 3388
[C:\Users\DAWNMC~1\AppData\Local\Temp\SINO\SINO.exe] - Process ID: 3700
[C:\Windows\sysWOW64\wbem\wmiprvse.exe] - Process ID: 1980
[C:\Windows\system32\wbem\wmiprvse.exe] - Process ID: 2092

<<<< Startup Items >>>>

[setup_9.0.0.722_13.06.2011_03-02.lnk] - <Startup> - C:\Users\Dawn McKenna Carr\Desktop\Virus Removal Tool2\setup_9.0.0.722_13.06.2011_03-02\startup.exe

<<<< MS Services >>>>

Application Experience (AeLookupSvc) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Application Information (Appinfo) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Windows Audio Endpoint Builder (AudioEndpointBuilder) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
Windows Audio (AudioSrv) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
Base Filtering Engine (BFE) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
Background Intelligent Transfer Service (BITS) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Computer Browser (Browser) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Cryptographic Services (CryptSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k NetworkService
DCOM Server Process Launcher (DcomLaunch) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k DcomLaunch
DHCP Client (Dhcp) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
DNS Client (Dnscache) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k NetworkService
Diagnostic Policy Service (DPS) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
Extensible Authentication Protocol (EapHost) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Windows Event Log (eventlog) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
COM+ Event System (EventSystem) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Function Discovery Provider Host (fdPHost) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Function Discovery Resource Publication (FDResPub) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
Windows Font Cache Service (FontCache) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
Group Policy Client (gpsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
HomeGroup Listener (HomeGroupListener) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
HomeGroup Provider (HomeGroupProvider) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
IKE and AuthIP IPsec Keying Modules (IKEEXT) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
IP Helper (iphlpsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k NetSvcs
CNG Key Isolation (KeyIso) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\system32\lsass.exe
Server (LanmanServer) - Running [Auto | Stoppable | Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Workstation (LanmanWorkstation) - Running [Auto | Stoppable | Pausable] - C:\Windows\System32\svchost.exe -k NetworkService
TCP/IP NetBIOS Helper (lmhosts) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
Multimedia Class Scheduler (MMCSS) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Windows Firewall (MpsSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
Network Connections (Netman) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
Network List Service (netprofm) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalService
Network Location Awareness (NlaSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k NetworkService
Network Store Interface Service (nsi) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Peer Networking Identity Manager (p2pimsvc) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServicePeerNet
Peer Networking Grouping (p2psvc) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServicePeerNet
Program Compatibility Assistant Service (PcaSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
Plug and Play (PlugPlay) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k DcomLaunch
Peer Name Resolution Protocol (PNRPsvc) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServicePeerNet
IPsec Policy Agent (PolicyAgent) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
Power (Power) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k DcomLaunch
User Profile Service (ProfSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
RPC Endpoint Mapper (RpcEptMapper) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k RPCSS
Remote Procedure Call (RPC) (RpcSs) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k rpcss
Security Accounts Manager (SamSs) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\system32\lsass.exe
Task Scheduler (Schedule) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
System Event Notification Service (SENS) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Shell Hardware Detection (ShellHWDetection) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Print Spooler (Spooler) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\spoolsv.exe
SSDP Discovery (SSDPSRV) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
Windows Image Acquisition (WIA) (stisvc) - Running [Auto | Stoppable | Pausable] - C:\Windows\system32\svchost.exe -k imgsvc
Superfetch (SysMain) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
Remote Desktop Services (TermService) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k NetworkService
Themes (Themes) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Distributed Link Tracking Client (TrkWks) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
Windows Modules Installer (TrustedInstaller) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\servicing\TrustedInstaller.exe
UPnP Device Host (upnphost) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
Desktop Window Manager Session Manager (UxSms) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
Diagnostic Service Host (WdiServiceHost) - Running [Manual | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalService
Windows Management Instrumentation (Winmgmt) - Running [Auto | Stoppable | Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
WLAN AutoConfig (Wlansvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
Windows Media Player Network Sharing Service (WMPNetworkSvc) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
Security Center (wscsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
Windows Search (WSearch) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\SearchIndexer.exe /Embedding
Windows Update (wuauserv) - Running [Auto | Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Windows Driver Foundation - User-mode Driver Framework (wudfsvc) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
Application Layer Gateway Service (ALG) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\alg.exe
Application Identity (AppIDSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
ASP.NET State Service (aspnet_state) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
ActiveX Installer (AxInstSV) (AxInstSV) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k AxInstSVGroup
BitLocker Drive Encryption Service (BDESVC) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Bonjour Service (Bonjour Service) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
Bluetooth Support Service (bthserv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k bthsvcs
Certificate Propagation (CertPropSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Microsoft .NET Framework NGEN v2.0.50727_X86 (clr_optimization_v2.0.50727_32) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
COM+ System Application (COMSysApp) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Disk Defragmenter (defragsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k defragsvc
Wired AutoConfig (dot3svc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
Encrypting File System (EFS) (EFS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\lsass.exe
Windows Media Center Receiver Service (ehRecvr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\ehome\ehRecvr.exe
Windows Media Center Scheduler Service (ehSched) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\ehome\ehsched.exe
Fax (Fax) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\fxssvc.exe
Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
Human Interface Device Access (hidserv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
Health Key and Certificate Management (hkmsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Windows CardSpace (idsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe"
PnP-X IP Bus Enumerator (IPBusEnum) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
KtmRm for Distributed Transaction Coordinator (KtmRm) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation
Link-Layer Topology Discovery Mapper (lltdsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalService
Media Center Extender Service (Mcx2Svc) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
Distributed Transaction Coordinator (MSDTC) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\msdtc.exe
Microsoft iSCSI Initiator Service (MSiSCSI) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Windows Installer (msiserver) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\msiexec.exe /V
Network Access Protection Agent (napagent) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k NetworkService
Netlogon (Netlogon) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\lsass.exe
Net.Tcp Port Sharing Service (NetTcpPortSharing) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe"
Performance Logs & Alerts (pla) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
PNRP Machine Name Publication Service (PNRPAutoReg) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServicePeerNet
Protected Storage (ProtectedStorage) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\lsass.exe
Quality Windows Audio Video Experience (QWAVE) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
Remote Access Auto Connection Manager (RasAuto) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Remote Access Connection Manager (RasMan) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Routing and Remote Access (RemoteAccess) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Remote Registry (RemoteRegistry) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k regsvc
Remote Procedure Call (RPC) Locator (RpcLocator) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\locator.exe
Smart Card (SCardSvr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
Smart Card Removal Policy (SCPolicySvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Windows Backup (SDRSVC) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k SDRSVC
Secondary Logon (seclogon) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k netsvcs
Adaptive Brightness (SensrSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
Remote Desktop Configuration (SessionEnv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Internet Connection Sharing (ICS) (SharedAccess) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
SNMP Trap (SNMPTRAP) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\snmptrap.exe
Software Protection (sppsvc) - Stopped [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\system32\sppsvc.exe
SPP Notification Service (sppuinotify) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Secure Socket Tunneling Protocol Service (SstpSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Microsoft Software Shadow Copy Provider (swprv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k swprv
Tablet PC Input Service (TabletInputService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
Telephony (TapiSrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k NetworkService
TPM Base Services (TBS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation
Thread Ordering Server (THREADORDER) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Interactive Services Detection (UI0Detect) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\UI0Detect.exe
Credential Manager (VaultSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\lsass.exe
Virtual Disk (vds) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\vds.exe
Volume Shadow Copy (VSS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\vssvc.exe
Windows Time (W32Time) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Block Level Backup Engine Service (wbengine) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Windows\system32\wbengine.exe"
Windows Biometric Service (WbioSrvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k WbioSvcGroup
Windows Connect Now - Config Registrar (wcncsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation
Windows Color System (WcsPlugInService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k wcssvc
Diagnostic System Host (WdiSystemHost) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
WebClient (WebClient) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Windows Event Collector (Wecsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k NetworkService
Problem Reports and Solutions Control Panel Support (wercplsupport) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k netsvcs
Windows Error Reporting Service (WerSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k WerSvcGroup
Windows Defender (WinDefend) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k secsvcs
WinHTTP Web Proxy Auto-Discovery Service (WinHttpAutoProxySvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalService
Windows Remote Management (WS-Management) (WinRM) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\System32\svchost.exe -k NetworkService
WMI Performance Adapter (wmiApSrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\wbem\WmiApSrv.exe
Parental Controls (WPCSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
Portable Device Enumerator Service (WPDBusEnum) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
WWAN AutoConfig (WwanSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

<<<< Non-MS Services >>>>

McShield (McShield) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
McAfee Validation Trust Protection Service (mfevtp) - Running [Auto | Stoppable | Not_Pausable] - "C:\Windows\system32\mfevtps.exe"
SeaPort (SeaPort) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
Apple Mobile Device (Apple Mobile Device) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
Microsoft .NET Framework NGEN v2.0.50727_X64 (clr_optimization_v2.0.50727_64) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
Microsoft .NET Framework NGEN v4.0.30319_X86 (clr_optimization_v4.0.30319_32) - Stopped [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
Microsoft .NET Framework NGEN v4.0.30319_X64 (clr_optimization_v4.0.30319_64) - Stopped [Auto | Not_Stoppable | Not_Pausable] - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
Dock Login Service (DockLoginService) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Program Files\Dell\DellDock\DockLogin.exe
FlipShare Service (FlipShare Service) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe"
FlipShare Server (FlipShareServer) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe"
GoToAssist (GoToAssist) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe" Start=service
Google Update Service (gupdate) (gupdate) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
Google Software Updater (gusvc) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe"
Intel® Matrix Storage Event Monitor (IAANTMON) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
iPod Service (iPod Service) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\iPod\bin\iPodService.exe"
lxdpCATSCustConnectService (lxdpCATSCustConnectService) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Windows\system32\spool\DRIVERS\x64\3\\lxdpserv.exe
lxdp_device (lxdp_device) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Windows\system32\lxdpcoms.exe -service
McAfee Personal Firewall Service (McMPFSvc) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
McAfee Services (mcmscsvc) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
McAfee VirusScan Announcer (McNaiAnn) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
McAfee Network Agent (McNASvc) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
McAfee Scanner (McODS) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\McAfee\VirusScan\mcods.exe"
McAfee Proxy Service (McProxy) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
McAfee Firewall Core Service (mfefire) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
McAfee Anti-Spam Service (MSK80Service) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
Performance Counter DLL Host (PerfHost) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\SysWow64\perfhost.exe
SoftThinks Agent Service (SftService) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE"
SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe" /service /P DellSupportCenter
Audio Service (STacSV) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
Windows Activation Technologies Service (WatAdminSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\Windows\system32\Wat\WatAdminSvc.exe
Dell Wireless WLAN Tray Service (wltrysvc) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE" "C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe"

<<<< bcdedit >>>>


<<<< Last 5 Application Errors or Warnings >>>>

Computer Name: Dawn | ID: 59 | Source: SideBySide | Type: Error | Date: 15-6-11 19:27:46 | Log: Application
Message: Activation context generation failed for "c:\program files (x86)\microsoft\search enhancement pack\search helper\searchhelper.dll".Error in manifest or policy file "c:\program files (x86)\microsoft\search enhancement pack\search helper\searchhelper.dll" on line 2. Invalid Xml syntax.
Computer Name: Dawn | ID: 59 | Source: SideBySide | Type: Error | Date: 15-6-11 19:27:39 | Log: Application
Message: Activation context generation failed for "c:\program files (x86)\microsoft\search enhancement pack\search helper\SearchHelper.dll".Error in manifest or policy file "c:\program files (x86)\microsoft\search enhancement pack\search helper\SearchHelper.dll" on line 2. Invalid Xml syntax.
Computer Name: Dawn | ID: 59 | Source: SideBySide | Type: Error | Date: 15-6-11 19:27:39 | Log: Application
Message: Activation context generation failed for "c:\program files (x86)\microsoft\search enhancement pack\search box extension\SRCHBXEX.DLL".Error in manifest or policy file "c:\program files (x86)\microsoft\search enhancement pack\search box extension\SRCHBXEX.DLL" on line 2. Invalid Xml syntax.
Computer Name: Dawn | ID: 35 | Source: SideBySide | Type: Error | Date: 15-6-11 19:26:13 | Log: Application
Message: Activation context generation failed for "c:\program files (x86)\windows live\photo gallery\MovieMaker.Exe".Error in manifest or policy file "c:\program files (x86)\windows live\photo gallery\WLMFDS.DLL" on line 8. Component identity found in manifest does not match the identity of the component requested. Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use sxstrace.exe for detailed diagnosis.
Computer Name: Dawn | ID: 1530 | Source: Microsoft-Windows-User Profiles Service | Type: Warning | Date: 15-6-11 15:12:5 | Log: Application
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-29124930-4146556729-3964410787-1001_Classes:
Process 2704 (\Device\HarddiskVolume3\WINDOWS\System32\dwm.exe) has opened key \REGISTRY\USER\S-1-5-21-29124930-4146556729-3964410787-1001_CLASSES

<<<< Last 5 System Errors or Warnings >>>>

Computer Name: Dawn | ID: 219 | Source: Microsoft-Windows-Kernel-PnP | Type: Warning | Date: 15-6-11 16:42:18 | Log: System
Message:
Computer Name: Dawn | ID: 4001 | Source: Microsoft-Windows-WLAN-AutoConfig | Type: Warning | Date: 15-6-11 15:12:10 | Log: System
Message: WLAN AutoConfig service has successfully stopped.
Computer Name: Dawn | ID: 10002 | Source: Microsoft-Windows-WLAN-AutoConfig | Type: Warning | Date: 15-6-11 15:12:10 | Log: System
Message: WLAN Extensibility Module has stopped. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Computer Name: Dawn | ID: 6008 | Source: EventLog | Type: Error | Date: 15-6-11 15:4:50 | Log: System
Message: The previous system shutdown at 10:16:54 AM on ‎6/‎15/‎2011 was unexpected.
Computer Name: Dawn | ID: 4001 | Source: Microsoft-Windows-WLAN-AutoConfig | Type: Warning | Date: 15-6-11 7:35:20 | Log: System
Message: WLAN AutoConfig service has successfully stopped.
<<<< Special Events >>>>

There were no special events found



------ End of File ------
  • 0

#44
Render
Posted 15 June 2011 - 06:01 PM

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
I need to look into that. It'll probably take a while.
  • 0

#45
Middlegrove
Posted 15 June 2011 - 06:32 PM

Middlegrove

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
No problem. Thanks.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP