Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer Freezing 20-30min after startup, have to shut down


  • Please log in to reply
17 replies to this topic

#1 Dan1212

Dan1212

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 02 November 2011 - 05:29 PM

My ASUS laptop is about 2 yrs old, and over the past week or so has been freezing anywhere from 5-45 min after startup, every time, and i cant do anything but shut down. It freezes whether or not I'm doing anything, either at the moment or for the whole time its on. I thought it might be overheating, but it doesn't feel hotter than normal and after I took the back panel off and sprayed the dust off the problem didn't go away. When it freezes, the open program and the start button stop responding, but the mouse can usually still move. ctrl alt del doesn't usually work, and when it does none of the options work wont open. I've also tried running virus scans, but they always freeze at 70% and take the computer with them, so it could be a virus, but even if it is I'm not sure how I could remove it before my comp freezes. Right now I'm using expressgate, which has been working fine. Any help would be much appreciated and I expect would be rewarded with karmic bonuses of some sort. Thanks

Edited by hamluis, 03 November 2011 - 10:09 AM.
Moved from Vista to Am I Infected.


BC AdBot (Login to Remove)

 


#2 Allan

Allan

  • BC Advisor
  • 8,589 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:07:10 PM

Posted 02 November 2011 - 05:44 PM

I suggest you start by posting in the Am I Infected forum.

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:10 PM

Posted 03 November 2011 - 02:17 PM

Hello,Please run these so we can review the logs.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware and save it to your desktop.
Download Link 1
Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

Troubleshoot Malwarebytes' Anti-Malware


Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
Be sure to download TDSSKiller.exe (2.6.11.0) from Kaspersky's website and not TDSSKiller.zip which appears to be an older version 2.3.2.2 of the tool.
  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.


If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. [color=green]In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Dan1212

Dan1212
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 05 November 2011 - 04:32 PM

OK sorry for the long wait first off. Secondly I tried to run MBAM and every time its frozen on C:/Windows/System32/mstime.dll and my computer has frozen with it, not saving any log. I tried running RKill but it didn't fix it. the others worked fine though, so here's the data from the minitoolbox first:

MiniToolBox by Farbar
Ran by Daniel (administrator) on 03-11-2011 at 21:22:07
Windows ™ Vista Home Premium Service Pack 1 (X64)

***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Could not flush the DNS Resolver Cache: Function failed during execution.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : User-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Atheros AR928X Wireless Network Adapter
Physical Address. . . . . . . . . : 00-22-43-8E-3B-B0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5c85:d4e0:b33b:44ec%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.112(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, November 03, 2011 9:11:12 PM
Lease Expires . . . . . . . . . . : Friday, November 04, 2011 9:11:12 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-26-18-21-EC-7A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{E0311E2C-BCA6-4376-8C70-038960F38B21}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2ce9:3b4:3f57:fe8f(Preferred)
Link-local IPv6 Address . . . . . : fe80::2ce9:3b4:3f57:fe8f%10(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : isatap.gateway.2wire.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: home
Address: 192.168.1.254

DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 74.125.225.80
74.125.225.82
74.125.225.84
74.125.225.81
74.125.225.83



Pinging google.com [74.125.225.49] with 32 bytes of data:

Reply from 74.125.225.49: bytes=32 time=93ms TTL=54

Reply from 74.125.225.49: bytes=32 time=87ms TTL=54



Ping statistics for 74.125.225.49:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 87ms, Maximum = 93ms, Average = 90ms

Server: home
Address: 192.168.1.254

DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 67.195.160.76
72.30.2.43
98.137.149.56
98.139.180.149
209.191.122.70



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=128ms TTL=54

Reply from 209.191.122.70: bytes=32 time=124ms TTL=54



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 124ms, Maximum = 128ms, Average = 126ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
12 ...00 22 43 8e 3b b0 ...... Atheros AR928X Wireless Network Adapter
11 ...00 26 18 21 ec 7a ...... Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
18 ...00 00 00 00 00 00 00 e0 isatap.{E0311E2C-BCA6-4376-8C70-038960F38B21}
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
17 ...00 00 00 00 00 00 00 e0 isatap.gateway.2wire.net
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.112 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.112 281
192.168.1.112 255.255.255.255 On-link 192.168.1.112 281
192.168.1.255 255.255.255.255 On-link 192.168.1.112 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.112 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.112 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
10 18 ::/0 On-link
1 306 ::1/128 On-link
10 18 2001::/32 On-link
10 266 2001:0:4137:9e76:2ce9:3b4:3f57:fe8f/128
On-link
12 281 fe80::/64 On-link
10 266 fe80::/64 On-link
10 266 fe80::2ce9:3b4:3f57:fe8f/128
On-link
12 281 fe80::5c85:d4e0:b33b:44ec/128
On-link
1 306 ff00::/8 On-link
10 266 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\SysWOW64\wpclsp.dll [72192] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 16 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 17 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 18 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 19 C:\Windows\System32\wpclsp.dll [102912] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/03/2011 09:21:42 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service has failed to create the SystemIndex search index. Internal error <4, 0x8004117f, Failed to add project: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects>.

Error: (11/03/2011 09:21:42 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.

Details:
The content index server cannot update or access information because of a database error. Stop and restart the search service. If the problem persists, reset and recrawl the content index. In some cases it may be necessary to delete and recreate the content index. (0x8004117f)

Error: (11/03/2011 09:21:38 PM) (Source: ESENT) (User: )
Description: Windows (6472) Windows: An attempt to move the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS017BA.log" to "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log" failed with system error 5 (0x00000005): "Access is denied. ". The move file operation will fail with error -1032 (0xfffffbf8).

Error: (11/03/2011 09:21:28 PM) (Source: ESENT) (User: )
Description: Windows (6472) Windows: An attempt to move the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS017BA.log" to "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log" failed with system error 5 (0x00000005): "Access is denied. ". The move file operation will fail with error -1032 (0xfffffbf8).

Error: (11/03/2011 09:21:07 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service has failed to create the SystemIndex search index. Internal error <4, 0x8004117f, Failed to add project: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects>.

Error: (11/03/2011 09:21:07 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.

Details:
The content index server cannot update or access information because of a database error. Stop and restart the search service. If the problem persists, reset and recrawl the content index. In some cases it may be necessary to delete and recreate the content index. (0x8004117f)

Error: (11/03/2011 09:21:07 PM) (Source: ESENT) (User: )
Description: Windows (3180) Windows: An attempt to move the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS017BA.log" to "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log" failed with system error 5 (0x00000005): "Access is denied. ". The move file operation will fail with error -1032 (0xfffffbf8).

Error: (11/03/2011 09:20:57 PM) (Source: ESENT) (User: )
Description: Windows (3180) Windows: An attempt to move the file "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS017BA.log" to "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log" failed with system error 5 (0x00000005): "Access is denied. ". The move file operation will fail with error -1032 (0xfffffbf8).

Error: (11/03/2011 09:19:48 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service has failed to create the SystemIndex search index. Internal error <4, 0x8004117f, Failed to add project: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects>.

Error: (11/03/2011 09:19:48 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.

Details:
The content index server cannot update or access information because of a database error. Stop and restart the search service. If the problem persists, reset and recrawl the content index. In some cases it may be necessary to delete and recreate the content index. (0x8004117f)


System errors:
=============

Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20
ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212)
Acrobat.com (Version: 1.7.186)
Adobe AIR (Version: 2.0.3.13070)
Adobe Download Manager (Version: 1.6.2.97)
Adobe Flash Player 10 ActiveX (Version: 10.3.181.26)
Adobe Flash Player 10 Plugin (Version: 10.0.45.2)
Adobe Reader 9.3.3 (Version: 9.3.3)
Aleks 3.10
Aleks 3.15
Alien Swarm
America's Army 3
Ant.com Toolbar
Any Audio Converter 3.2.7
Apple Application Support (Version: 1.5.0)
Apple Mobile Device Support (Version: 3.4.0.25)
Apple Software Update (Version: 2.1.2.120)
ARMA 2: Operation Arrowhead Demo
ArtMoney SE v7.29 (Version: 7.29)
Ask Toolbar (Version: 4.1.0.2)
ASUS CopyProtect (Version: 1.0.0012)
ASUS Data Security Manager (Version: 1.00.0011)
ASUS LifeFrame3 (Version: 3.0.19)
ASUS Live Update (Version: 2.5.7)
ASUS MultiFrame (Version: 1.0.0018)
ASUS SmartLogon (Version: 1.0.0005)
ASUS Splendid Video Enhancement Technology (Version: 1.02.0025)
ASUS Turbo Gear Enhanced VGA Driver (Version: 0.0.0.18)
ASUS Virtual Camera (Version: 1.0.14)
Asus_Camera_ScreenSaver (Version: 2.0.0008)
Atheros Client Installation Program (Version: 7.0)
ATK Generic Function Service (Version: 1.00.0008)
ATK Hotkey (Version: 1.0.0049)
ATK Media (Version: 2.0.0004)
ATKOSD2 (Version: 7.0.0003)
Atom Zombie Smasher Demo
Audacity 1.3.13 (Unicode)
AviSynth 2.5
BitZipper 2010
Bonjour (Version: 2.0.4.0)
CDDRV_Installer (Version: 1.00.0000)
CDDRV_Installer (Version: 4.60)
ChkMail (Version: 2.0.0.16)
Cisco EAP-FAST Module (Version: 2.2.10)
Cisco LEAP Module (Version: 1.0.16)
Cisco PEAP Module (Version: 1.1.3)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Crysis 2 Demo
CyberLink LabelPrint (Version: 2.0.2908)
CyberLink Power2Go (Version: 6.0.1924)
DAEMON Tools Lite (Version: 4.40.2.0131)
DAEMON Tools Toolbar (Version: 1.1.4.0024)
Darkest of Days (Version: 1.0)
Direct Console 2.0 (Version: 2.0.7)
Empire: Total War
EPSON Artisan 800 Series Printer Uninstall
EPSON Artisan 830 Series Printer Uninstall
Epson CreativeZone
Epson Event Manager (Version: 2.40.0001)
Epson FAX Utility (Version: 1.10.00)
Epson PC-FAX Driver
Epson Print CD (Version: 2.00.00)
EPSON Scan
EpsonNet Print (Version: 2.4i)
EpsonNet Setup 3.2 (Version: 3.2a)
Express Gate (Version: 1.1.9.2)
Fallout New Vegas
File Type Assistant
Final Media Player 2011
Free Video to Mp3 Converter version 3.1
Galapago
Geek Squad 24 Hour Computer Support (Version: 2.1.322)
Google Apps (Version: 1.2.279.2381)
Google Desktop (Version: 5.7.0802.22438)
Google Earth (Version: 6.0.3.2197)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.1.2003.1856)
Google Update Helper (Version: 1.3.21.79)
Google Updater (Version: 2.4.1970.7372)
Grand Theft Auto: San Andreas
HOMEFRONT Demo
iTunes (Version: 10.2.1.1)
Java™ 6 Update 7 (Version: 1.6.0.70)
Kaspersky Internet Security 2009 (Version: 8.0.0.454)
KhalInstallWrapper (Version: 2.00.0000)
KhalInstallWrapper (Version: 4.00.121)
Left 4 Dead 2 Demo
LibUSB-Win32-0.1.10.1 (Version: 0.1.10.1)
LightScribe System Software 1.14.17.1 (Version: 1.14.17.1)
Logitech SetPoint (Version: 4.80)
LoJack Factory Installer (Version: 1.00.0029)
Medieval II: Total War
Medieval II: Total War Kingdoms
Men of War: Assault Squad
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
MotioninJoy ds3 driver version 0.6.0003 (Version: 0.5.0001)
Mount and Blade
myPhotoMovie (remove only) (Version: 1.5.0.170)
Napoleon: Total War
NB Probe
NVIDIA Drivers
NVIDIA PhysX (Version: 9.10.0513)
OpenAL
Operations Flashpoint: Dragon Rising - Demo
P4P (Version: 1.0.0.17)
Picasa 3 (Version: 3.1)
PunkBuster Services (Version: 0.989)
QuickTime (Version: 7.69.80.9)
ReaConverter 6.0 Pro
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5836)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.01 (Version: 3.55.01)
Rome: Total War - Alexander
Rome: Total War - Gold Edition
Sanctum - Demo
Source SDK Base 2007
Spyware Doctor 7.0 (Version: 7.0)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 10.1.8.0)
System Requirements Lab (Version: 4.1.71.0)
Team Fortress 2
Total War: SHOGUN 2
Turbo Gear Extreme (Version: 1.00.22)
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
USB 2.0 1.3M UVC WebCam
Videora iPod Converter 5 (Version: 5)
VOB2MPG v3 (Version: 3.2.2000)
Windows Live Messenger (Version: 8.5.1302.1018)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
WinFlash
Wings of Prey Demo
WinZip 15.5 (Version: 15.5.9510)
Wireless Console 2 (Version: 2.0.10)
Yahoo! Toolbar
YouTube Downloader App 2.00 (Version: 2.00)
Zoomquilt Screensaver

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 6142.13 MB
Available physical RAM: 3267.38 MB
Total Pagefile: 12399.13 MB
Available Pagefile: 9513 MB
Total Virtual: 4095.88 MB
Available Virtual: 4008.44 MB

========================= Partitions: =====================================

1 Drive c: (Vista64) (Fixed) (Total:454.04 GB) (Free:189.62 GB) NTFS

========================= Users: ========================================

User accounts for \\USER-PC

Administrator Daniel Guest
User user_2

========================= Minidump Files ==================================

C:\Windows\Minidump\Mini012111-01.dmp
C:\Windows\Minidump\Mini020311-01.dmp
C:\Windows\Minidump\Mini022111-01.dmp
C:\Windows\Minidump\Mini030811-01.dmp
C:\Windows\Minidump\Mini032411-01.dmp
C:\Windows\Minidump\Mini050110-01.dmp
C:\Windows\Minidump\Mini050210-01.dmp
C:\Windows\Minidump\Mini050410-01.dmp
C:\Windows\Minidump\Mini051910-01.dmp
C:\Windows\Minidump\Mini053011-01.dmp
C:\Windows\Minidump\Mini060811-01.dmp
C:\Windows\Minidump\Mini062210-01.dmp
C:\Windows\Minidump\Mini070610-01.dmp
C:\Windows\Minidump\Mini071311-01.dmp
C:\Windows\Minidump\Mini071410-01.dmp
C:\Windows\Minidump\Mini081610-01.dmp
C:\Windows\Minidump\Mini092111-01.dmp
C:\Windows\Minidump\Mini101709-01.dmp
C:\Windows\Minidump\Mini102110-01.dmp
C:\Windows\Minidump\Mini111309-01.dmp
C:\Windows\Minidump\Mini111609-01.dmp
C:\Windows\Minidump\Mini112009-01.dmp
C:\Windows\Minidump\Mini112009-02.dmp
C:\Windows\Minidump\Mini113010-01.dmp
C:\Windows\Minidump\Mini121409-01.dmp
C:\Windows\Minidump\Mini123110-01.dmp

**** End of log ****

And here's the TDSKiller log:

22:20:13.0353 6312 TDSS rootkit removing tool 2.6.15.0 Nov 3 2011 17:15:49
22:20:13.0770 6312 ============================================================
22:20:13.0770 6312 Current date / time: 2011/11/04 22:20:13.0770
22:20:13.0770 6312 SystemInfo:
22:20:13.0771 6312
22:20:13.0771 6312 OS Version: 6.0.6001 ServicePack: 1.0
22:20:13.0771 6312 Product type: Workstation
22:20:13.0771 6312 ComputerName: USER-PC
22:20:13.0771 6312 UserName: Daniel
22:20:13.0771 6312 Windows directory: C:\Windows
22:20:13.0771 6312 System windows directory: C:\Windows
22:20:13.0771 6312 Running under WOW64
22:20:13.0771 6312 Processor architecture: Intel x64
22:20:13.0771 6312 Number of processors: 2
22:20:13.0771 6312 Page size: 0x1000
22:20:13.0771 6312 Boot type: Normal boot
22:20:13.0771 6312 ============================================================
22:20:14.0363 6312 Initialize success
22:20:20.0943 5660 ============================================================
22:20:20.0944 5660 Scan started
22:20:20.0944 5660 Mode: Manual;
22:20:20.0944 5660 ============================================================
22:20:22.0776 5660 ACPI (8c99ed256a889d647935a97c543b7b85) C:\Windows\system32\drivers\acpi.sys
22:20:22.0780 5660 ACPI - ok
22:20:22.0843 5660 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
22:20:22.0847 5660 adp94xx - ok
22:20:22.0925 5660 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
22:20:22.0929 5660 adpahci - ok
22:20:23.0218 5660 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
22:20:23.0220 5660 adpu160m - ok
22:20:23.0374 5660 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
22:20:23.0377 5660 adpu320 - ok
22:20:23.0641 5660 AFD (9bb97042fa331a0fb4bdd98b9280a50a) C:\Windows\system32\drivers\afd.sys
22:20:23.0645 5660 AFD - ok
22:20:24.0005 5660 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
22:20:24.0007 5660 agp440 - ok
22:20:24.0094 5660 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
22:20:24.0097 5660 aic78xx - ok
22:20:24.0116 5660 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
22:20:24.0119 5660 aliide - ok
22:20:24.0174 5660 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
22:20:24.0176 5660 amdide - ok
22:20:24.0294 5660 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
22:20:24.0322 5660 AmdK8 - ok
22:20:24.0517 5660 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
22:20:24.0633 5660 arc - ok
22:20:24.0764 5660 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
22:20:24.0766 5660 arcsas - ok
22:20:24.0811 5660 AsDsm (88fbc8bebfd38566235eaa5e4dbc4e05) C:\Windows\system32\drivers\AsDsm.sys
22:20:24.0834 5660 AsDsm - ok
22:20:24.0911 5660 ASMMAP64 (2db34edd17d3a8da7105a19c95a3dd68) C:\Program Files\ATKGFNEX\ASMMAP64.sys
22:20:24.0913 5660 ASMMAP64 - ok
22:20:25.0167 5660 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
22:20:25.0169 5660 AsyncMac - ok
22:20:25.0293 5660 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys
22:20:25.0295 5660 atapi - ok
22:20:25.0464 5660 athr (0ae8e76c5f55b2135dcf0f49b34b3e77) C:\Windows\system32\DRIVERS\athrx.sys
22:20:25.0473 5660 athr - ok
22:20:25.0654 5660 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
22:20:25.0656 5660 blbdrive - ok
22:20:25.0844 5660 bowser (f0f035fcec3554cc1b70c5611bd87951) C:\Windows\system32\DRIVERS\bowser.sys
22:20:25.0846 5660 bowser - ok
22:20:25.0966 5660 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
22:20:25.0968 5660 BrFiltLo - ok
22:20:26.0154 5660 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
22:20:26.0156 5660 BrFiltUp - ok
22:20:26.0272 5660 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
22:20:26.0274 5660 Brserid - ok
22:20:26.0291 5660 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
22:20:26.0293 5660 BrSerWdm - ok
22:20:26.0362 5660 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
22:20:26.0364 5660 BrUsbMdm - ok
22:20:26.0424 5660 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
22:20:26.0426 5660 BrUsbSer - ok
22:20:26.0465 5660 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
22:20:26.0468 5660 BTHMODEM - ok
22:20:26.0502 5660 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
22:20:26.0504 5660 cdfs - ok
22:20:26.0530 5660 cdrom (3b2fb35363423ed60c8fbf15fc8680bd) C:\Windows\system32\DRIVERS\cdrom.sys
22:20:26.0533 5660 cdrom - ok
22:20:26.0633 5660 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\DRIVERS\circlass.sys
22:20:26.0635 5660 circlass - ok
22:20:26.0702 5660 CLFS (caeda2572b7042b11062f327f099251d) C:\Windows\system32\CLFS.sys
22:20:26.0709 5660 CLFS - ok
22:20:26.0854 5660 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
22:20:26.0856 5660 CmBatt - ok
22:20:26.0899 5660 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
22:20:26.0903 5660 cmdide - ok
22:20:27.0122 5660 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
22:20:27.0124 5660 Compbatt - ok
22:20:27.0175 5660 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
22:20:27.0177 5660 crcdisk - ok
22:20:27.0240 5660 DfsC (3725c43c9e90731eca651d506cc599a3) C:\Windows\system32\Drivers\dfsc.sys
22:20:27.0242 5660 DfsC - ok
22:20:27.0956 5660 disk (2dc415fc05fb8a079f896cbbacb19324) C:\Windows\system32\drivers\disk.sys
22:20:27.0958 5660 disk - ok
22:20:28.0088 5660 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
22:20:28.0090 5660 drmkaud - ok
22:20:28.0297 5660 dtsoftbus01 (fb9bef3401ee5ecc2603311b9c64f44a) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:20:28.0300 5660 dtsoftbus01 - ok
22:20:28.0454 5660 DXGKrnl (412964040ce920ff83aff6b5b551bf99) C:\Windows\System32\drivers\dxgkrnl.sys
22:20:28.0463 5660 DXGKrnl - ok
22:20:28.0520 5660 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
22:20:28.0524 5660 E1G60 - ok
22:20:28.0713 5660 Ecache (7343d950a34a95dcb7441642e3e6beef) C:\Windows\system32\drivers\ecache.sys
22:20:28.0716 5660 Ecache - ok
22:20:28.0927 5660 EIO64 (be9eeea2a8cac5f6cd92c97f234e2fe1) C:\Windows\system32\DRIVERS\EIO64.sys
22:20:28.0929 5660 EIO64 - ok
22:20:29.0198 5660 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
22:20:29.0203 5660 elxstor - ok
22:20:29.0342 5660 enecir (3a70dc8951b995c73a22b9a23210833e) C:\Windows\system32\DRIVERS\enecir.sys
22:20:29.0345 5660 enecir - ok
22:20:29.0607 5660 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
22:20:29.0609 5660 ErrDev - ok
22:20:29.0801 5660 exfat (2a546b9a84658b0554b1ec35cd9adaf5) C:\Windows\system32\drivers\exfat.sys
22:20:29.0804 5660 exfat - ok
22:20:29.0886 5660 fastfat (fe731d345ed9eeabbc72a59b35941834) C:\Windows\system32\drivers\fastfat.sys
22:20:29.0888 5660 fastfat - ok
22:20:29.0967 5660 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
22:20:29.0969 5660 fdc - ok
22:20:30.0183 5660 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
22:20:30.0186 5660 FileInfo - ok
22:20:30.0352 5660 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
22:20:30.0355 5660 Filetrace - ok
22:20:30.0377 5660 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:20:30.0379 5660 flpydisk - ok
22:20:30.0515 5660 FltMgr (7dacf1a3a4219575070c6dc7c957428a) C:\Windows\system32\drivers\fltmgr.sys
22:20:30.0519 5660 FltMgr - ok
22:20:31.0058 5660 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys
22:20:31.0061 5660 Fs_Rec - ok
22:20:31.0345 5660 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
22:20:31.0347 5660 gagp30kx - ok
22:20:31.0619 5660 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:20:31.0621 5660 GEARAspiWDM - ok
22:20:31.0913 5660 ghaio (7d66ebde8b7f9b4e00beefeee82670d4) C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
22:20:31.0915 5660 ghaio - ok
22:20:32.0333 5660 HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys
22:20:32.0337 5660 HdAudAddService - ok
22:20:32.0577 5660 HDAudBus (0c0d0f8a3ff09ecc81963d09ec6a0a84) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:20:32.0579 5660 HDAudBus - ok
22:20:32.0732 5660 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
22:20:32.0735 5660 HidBth - ok
22:20:32.0802 5660 HidIr (5f47839455d01ff6403b008d481a6f5b) C:\Windows\system32\DRIVERS\hidir.sys
22:20:32.0804 5660 HidIr - ok
22:20:32.0975 5660 HidUsb (128e2da8483fdd4dd0c7b3f9abd6f323) C:\Windows\system32\DRIVERS\hidusb.sys
22:20:32.0978 5660 HidUsb - ok
22:20:33.0019 5660 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
22:20:33.0022 5660 HpCISSs - ok
22:20:33.0056 5660 HTTP (e690736da6c543f5d99c8fa27bea31db) C:\Windows\system32\drivers\HTTP.sys
22:20:33.0063 5660 HTTP - ok
22:20:33.0118 5660 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
22:20:33.0120 5660 i2omp - ok
22:20:33.0223 5660 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
22:20:33.0226 5660 i8042prt - ok
22:20:33.0327 5660 iaStor (1adaa4f16073fd0c7270f451fd024e97) C:\Windows\system32\DRIVERS\iaStor.sys
22:20:33.0332 5660 iaStor - ok
22:20:33.0362 5660 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
22:20:33.0366 5660 iaStorV - ok
22:20:33.0450 5660 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
22:20:33.0453 5660 iirsp - ok
22:20:33.0573 5660 IntcAzAudAddService (f5aa166953fc4c03503e1345ef2d429a) C:\Windows\system32\drivers\RTKVHD64.sys
22:20:33.0588 5660 IntcAzAudAddService - ok
22:20:33.0627 5660 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
22:20:33.0629 5660 intelide - ok
22:20:33.0713 5660 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
22:20:33.0716 5660 intelppm - ok
22:20:33.0754 5660 IpFilterDriver (99b821f5bebd6a3cc3fe564f802ae0fd) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:20:33.0757 5660 IpFilterDriver - ok
22:20:33.0824 5660 IpInIp - ok
22:20:33.0872 5660 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
22:20:33.0878 5660 IPMIDRV - ok
22:20:34.0015 5660 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
22:20:34.0078 5660 IPNAT - ok
22:20:34.0205 5660 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
22:20:34.0207 5660 IRENUM - ok
22:20:34.0315 5660 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
22:20:34.0318 5660 isapnp - ok
22:20:34.0347 5660 iScsiPrt (49e4ccbf74783fce5d2cc1ff6480e1f4) C:\Windows\system32\DRIVERS\msiscsi.sys
22:20:34.0350 5660 iScsiPrt - ok
22:20:34.0601 5660 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
22:20:34.0603 5660 iteatapi - ok
22:20:34.0698 5660 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
22:20:34.0701 5660 iteraid - ok
22:20:35.0027 5660 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
22:20:35.0030 5660 kbdclass - ok
22:20:35.0144 5660 kbdhid (bf8783a5066cfecf45095459e8010fa7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:20:35.0147 5660 kbdhid - ok
22:20:35.0164 5660 kbfiltr (6cc3a43b3c898bc360a89b75c128b05d) C:\Windows\system32\DRIVERS\kbfiltr.sys
22:20:35.0167 5660 kbfiltr - ok
22:20:35.0382 5660 kl1 (a93305fdfd1b09ce69e88e361c958e2a) C:\Windows\system32\DRIVERS\kl1.sys
22:20:35.0385 5660 kl1 - ok
22:20:35.0705 5660 KLBG (3b11e0c94599aadc172f977a3d4b2b33) C:\Windows\system32\DRIVERS\klbg.sys
22:20:35.0708 5660 KLBG - ok
22:20:35.0837 5660 KLFLTDEV (bef623b8a1798ecf74e21a29376d7031) C:\Windows\system32\DRIVERS\klfltdev.sys
22:20:35.0839 5660 KLFLTDEV - ok
22:20:35.0920 5660 KLIF (79935ef98013e1c2355e73fa078e3f1b) C:\Windows\system32\DRIVERS\klif.sys
22:20:35.0923 5660 KLIF - ok
22:20:36.0187 5660 KLIM6 (fc4e682786ab02bd0ab4e8a2318d89a6) C:\Windows\system32\DRIVERS\klim6.sys
22:20:36.0189 5660 KLIM6 - ok
22:20:36.0508 5660 KSecDD (ccdcce6224e1e207e953af826b98a9d9) C:\Windows\system32\Drivers\ksecdd.sys
22:20:36.0515 5660 KSecDD - ok
22:20:36.0779 5660 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
22:20:36.0781 5660 ksthunk - ok
22:20:37.0004 5660 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
22:20:37.0006 5660 LHidFilt - ok
22:20:37.0077 5660 libusb0 - ok
22:20:37.0294 5660 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
22:20:37.0297 5660 lltdio - ok
22:20:37.0407 5660 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
22:20:37.0409 5660 LMouFilt - ok
22:20:37.0528 5660 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
22:20:37.0531 5660 LSI_FC - ok
22:20:37.0619 5660 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
22:20:37.0622 5660 LSI_SAS - ok
22:20:37.0646 5660 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
22:20:37.0649 5660 LSI_SCSI - ok
22:20:37.0703 5660 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
22:20:37.0706 5660 luafv - ok
22:20:37.0782 5660 lullaby (37b2618e3646d427771ae1719edadf9c) C:\Windows\system32\DRIVERS\lullaby.sys
22:20:37.0785 5660 lullaby - ok
22:20:37.0857 5660 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
22:20:37.0860 5660 megasas - ok
22:20:37.0889 5660 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
22:20:37.0894 5660 MegaSR - ok
22:20:38.0218 5660 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
22:20:38.0220 5660 Modem - ok
22:20:38.0554 5660 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
22:20:38.0557 5660 monitor - ok
22:20:38.0894 5660 MotioninJoyXFilter (fc44ad48746ffa5fd640ef1260ab5ec2) C:\Windows\system32\DRIVERS\MijXfilt.sys
22:20:38.0897 5660 MotioninJoyXFilter - ok
22:20:38.0985 5660 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
22:20:38.0988 5660 mouclass - ok
22:20:39.0041 5660 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
22:20:39.0044 5660 mouhid - ok
22:20:39.0073 5660 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
22:20:39.0076 5660 MountMgr - ok
22:20:39.0258 5660 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
22:20:39.0261 5660 mpio - ok
22:20:39.0391 5660 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
22:20:39.0394 5660 mpsdrv - ok
22:20:39.0415 5660 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
22:20:39.0417 5660 Mraid35x - ok
22:20:39.0460 5660 MRxDAV (fe2706c15f8345c342820e4e4583fea0) C:\Windows\system32\drivers\mrxdav.sys
22:20:39.0463 5660 MRxDAV - ok
22:20:39.0548 5660 mrxsmb (b698eb9acc7ecd4927d99d268918f912) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:20:39.0552 5660 mrxsmb - ok
22:20:39.0706 5660 mrxsmb10 (9a797e27fd28500ee13d43000c931435) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:20:39.0711 5660 mrxsmb10 - ok
22:20:39.0756 5660 mrxsmb20 (f9425d610712533107a264e2d5b2154b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:20:39.0759 5660 mrxsmb20 - ok
22:20:39.0988 5660 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
22:20:39.0990 5660 msahci - ok
22:20:40.0220 5660 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
22:20:40.0223 5660 msdsm - ok
22:20:40.0499 5660 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
22:20:40.0502 5660 Msfs - ok
22:20:40.0677 5660 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
22:20:40.0679 5660 msisadrv - ok
22:20:40.0766 5660 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
22:20:40.0768 5660 MSKSSRV - ok
22:20:40.0942 5660 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
22:20:40.0944 5660 MSPCLOCK - ok
22:20:40.0963 5660 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
22:20:40.0965 5660 MSPQM - ok
22:20:40.0988 5660 MsRPC (b8e32e6103fbba9fbb1d0c11ff0d13b5) C:\Windows\system32\drivers\MsRPC.sys
22:20:40.0992 5660 MsRPC - ok
22:20:41.0022 5660 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
22:20:41.0024 5660 mssmbios - ok
22:20:41.0051 5660 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
22:20:41.0053 5660 MSTEE - ok
22:20:41.0440 5660 MTsensor (a523d9f6aeb152c4480d754df7fa9f7f) C:\Windows\system32\DRIVERS\ATK64AMD.sys
22:20:41.0442 5660 MTsensor - ok
22:20:41.0719 5660 Mup (ddf133501f68d6988a0f55dfa88637b4) C:\Windows\system32\Drivers\mup.sys
22:20:41.0722 5660 Mup - ok
22:20:41.0884 5660 NativeWifiP (73b99c98fa3a2ed1566e02d6fe1913a5) C:\Windows\system32\DRIVERS\nwifi.sys
22:20:41.0886 5660 NativeWifiP - ok
22:20:42.0092 5660 NDIS (f9a3ae5c9f047d71a36a99f9abca7d02) C:\Windows\system32\drivers\ndis.sys
22:20:42.0096 5660 NDIS - ok
22:20:42.0285 5660 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
22:20:42.0286 5660 NdisTapi - ok
22:20:42.0385 5660 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
22:20:42.0387 5660 Ndisuio - ok
22:20:42.0465 5660 NdisWan (52e3e8e35101399be9b2938c992aa087) C:\Windows\system32\DRIVERS\ndiswan.sys
22:20:42.0467 5660 NdisWan - ok
22:20:42.0614 5660 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
22:20:42.0616 5660 NDProxy - ok
22:20:42.0810 5660 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
22:20:42.0811 5660 NetBIOS - ok
22:20:43.0066 5660 netbt (7a29ca243a629230799754162d80120f) C:\Windows\system32\DRIVERS\netbt.sys
22:20:43.0069 5660 netbt - ok
22:20:43.0163 5660 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
22:20:43.0165 5660 nfrd960 - ok
22:20:43.0426 5660 Npfs (b06154e2a2c91e9be5599fca53bc4cd0) C:\Windows\system32\drivers\Npfs.sys
22:20:43.0429 5660 Npfs - ok
22:20:43.0523 5660 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
22:20:43.0525 5660 nsiproxy - ok
22:20:43.0653 5660 Ntfs (fe86ba5ac3b50e2ca911e9c60c07b638) C:\Windows\system32\drivers\Ntfs.sys
22:20:43.0665 5660 Ntfs - ok
22:20:43.0870 5660 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
22:20:43.0872 5660 Null - ok
22:20:44.0392 5660 nvlddmkm (f132116e136d93cdab00516eb840ae29) C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:20:44.0460 5660 nvlddmkm - ok
22:20:44.0719 5660 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
22:20:44.0720 5660 nvraid - ok
22:20:44.0930 5660 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
22:20:44.0932 5660 nvstor - ok
22:20:45.0095 5660 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
22:20:45.0098 5660 nv_agp - ok
22:20:45.0192 5660 NwlnkFlt - ok
22:20:45.0313 5660 NwlnkFwd - ok
22:20:45.0508 5660 ohci1394 (1b30103fde512915a9214b108b6e7a9c) C:\Windows\system32\DRIVERS\ohci1394.sys
22:20:45.0510 5660 ohci1394 - ok
22:20:45.0794 5660 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
22:20:45.0796 5660 Parport - ok
22:20:45.0891 5660 partmgr (5ab40c36894f4c06bdab0c9a2fba282d) C:\Windows\system32\drivers\partmgr.sys
22:20:45.0894 5660 partmgr - ok
22:20:46.0029 5660 pci (2a5b2a51559066ea84742909b5b2cd69) C:\Windows\system32\drivers\pci.sys
22:20:46.0033 5660 pci - ok
22:20:46.0093 5660 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\DRIVERS\pciide.sys
22:20:46.0095 5660 pciide - ok
22:20:46.0287 5660 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
22:20:46.0290 5660 pcmcia - ok
22:20:46.0374 5660 PCTCore (60f19af0a9a26851ad9bc2d981afbac6) C:\Windows\system32\drivers\PCTCore64.sys
22:20:46.0377 5660 PCTCore - ok
22:20:46.0419 5660 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
22:20:46.0426 5660 PEAUTH - ok
22:20:46.0870 5660 PptpMiniport (f5739f2c6db2534c384ad5150808e8f5) C:\Windows\system32\DRIVERS\raspptp.sys
22:20:46.0873 5660 PptpMiniport - ok
22:20:46.0991 5660 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
22:20:46.0993 5660 Processor - ok
22:20:47.0119 5660 PSched (0e0e205a296095fe4c631e6a4775ad6c) C:\Windows\system32\DRIVERS\pacer.sys
22:20:47.0121 5660 PSched - ok
22:20:47.0308 5660 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
22:20:47.0316 5660 ql2300 - ok
22:20:47.0523 5660 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
22:20:47.0524 5660 ql40xx - ok
22:20:47.0690 5660 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
22:20:47.0692 5660 QWAVEdrv - ok
22:20:47.0778 5660 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
22:20:47.0780 5660 RasAcd - ok
22:20:47.0939 5660 Rasl2tp (3b9085f91ef00abd15a6f36570e90e12) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:20:47.0941 5660 Rasl2tp - ok
22:20:48.0009 5660 RasPppoe (2ce1703c27196094fb6e4c6e439f2c21) C:\Windows\system32\DRIVERS\raspppoe.sys
22:20:48.0010 5660 RasPppoe - ok
22:20:48.0091 5660 RasSstp (fcd04fa67e8b40fa0ad361dd38593942) C:\Windows\system32\DRIVERS\rassstp.sys
22:20:48.0092 5660 RasSstp - ok
22:20:48.0214 5660 rdbss (33fa5b6136d92ee0f53f021c79091300) C:\Windows\system32\DRIVERS\rdbss.sys
22:20:48.0216 5660 rdbss - ok
22:20:48.0340 5660 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:20:48.0341 5660 RDPCDD - ok
22:20:48.0684 5660 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
22:20:48.0687 5660 rdpdr - ok
22:20:49.0064 5660 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
22:20:49.0066 5660 RDPENCDD - ok
22:20:49.0366 5660 RDPWD (7747082f672aa2846235c9cea42e2e72) C:\Windows\system32\drivers\RDPWD.sys
22:20:49.0368 5660 RDPWD - ok
22:20:49.0476 5660 rimmptsk (4ccf35f5086cdbf5e6c51a1cfbd0b269) C:\Windows\system32\DRIVERS\rimmpx64.sys
22:20:49.0477 5660 rimmptsk - ok
22:20:49.0552 5660 rimsptsk (bb9edc55b0b8cb4fcd713428820e0776) C:\Windows\system32\DRIVERS\rimspx64.sys
22:20:49.0553 5660 rimsptsk - ok
22:20:49.0777 5660 rismxdp (481c3fdeacaae04b74c58288dbc91df9) C:\Windows\system32\DRIVERS\rixdpx64.sys
22:20:49.0779 5660 rismxdp - ok
22:20:49.0891 5660 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
22:20:49.0893 5660 rspndr - ok
22:20:49.0944 5660 RTL8169 (a2cbe070fba458357acef41c3f3906ca) C:\Windows\system32\DRIVERS\Rtlh64.sys
22:20:49.0946 5660 RTL8169 - ok
22:20:50.0134 5660 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
22:20:50.0136 5660 sbp2port - ok
22:20:50.0375 5660 sdbus (b42ee50f7d24f837f925332eb349eca5) C:\Windows\system32\DRIVERS\sdbus.sys
22:20:50.0378 5660 sdbus - ok
22:20:50.0451 5660 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
22:20:50.0455 5660 secdrv - ok
22:20:50.0501 5660 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
22:20:50.0503 5660 Serenum - ok
22:20:50.0602 5660 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
22:20:50.0605 5660 Serial - ok
22:20:50.0668 5660 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
22:20:50.0670 5660 sermouse - ok
22:20:50.0839 5660 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
22:20:50.0841 5660 sffdisk - ok
22:20:50.0858 5660 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
22:20:50.0860 5660 sffp_mmc - ok
22:20:50.0891 5660 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
22:20:50.0893 5660 sffp_sd - ok
22:20:50.0962 5660 sfloppy (40567781f0785c4a69411d1b40da8987) C:\Windows\system32\DRIVERS\sfloppy.sys
22:20:50.0964 5660 sfloppy - ok
22:20:51.0176 5660 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
22:20:51.0178 5660 SiSRaid2 - ok
22:20:51.0415 5660 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
22:20:51.0417 5660 SiSRaid4 - ok
22:20:51.0488 5660 Smb (41eb2e8e005feedcafce301983eff932) C:\Windows\system32\DRIVERS\smb.sys
22:20:51.0490 5660 Smb - ok
22:20:51.0655 5660 SNP2UVC (1a5806e5c2e232c193b90d2ade8a977c) C:\Windows\system32\DRIVERS\snp2uvc.sys
22:20:51.0665 5660 SNP2UVC - ok
22:20:51.0872 5660 spldr (f9cb0672162f7f04248e2b82c1ff4617) C:\Windows\system32\drivers\spldr.sys
22:20:51.0874 5660 spldr - ok
22:20:52.0048 5660 sptd (4b3f898dc1378ced2f35d04e5b0ce0df) C:\Windows\System32\Drivers\sptd.sys
22:20:52.0048 5660 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: 4b3f898dc1378ced2f35d04e5b0ce0df
22:20:52.0066 5660 sptd ( LockedFile.Multi.Generic ) - warning
22:20:52.0066 5660 sptd - detected LockedFile.Multi.Generic (1)
22:20:52.0309 5660 srv (a8abd7d0d907b45cf3831f4dd8644349) C:\Windows\system32\DRIVERS\srv.sys
22:20:52.0314 5660 srv - ok
22:20:52.0523 5660 srv2 (6c72eea39e1c37b436a6d1532999f9ec) C:\Windows\system32\DRIVERS\srv2.sys
22:20:52.0527 5660 srv2 - ok
22:20:52.0786 5660 srvnet (7f69bcf9e6fa3d93c82ee6b87812666d) C:\Windows\system32\DRIVERS\srvnet.sys
22:20:52.0789 5660 srvnet - ok
22:20:52.0943 5660 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
22:20:52.0945 5660 swenum - ok
22:20:53.0028 5660 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
22:20:53.0030 5660 Symc8xx - ok
22:20:53.0113 5660 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
22:20:53.0116 5660 Sym_hi - ok
22:20:53.0389 5660 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
22:20:53.0391 5660 Sym_u3 - ok
22:20:53.0747 5660 SynTP (572438150fc79e41a0348e3dc56b1dd2) C:\Windows\system32\DRIVERS\SynTP.sys
22:20:53.0751 5660 SynTP - ok
22:20:54.0063 5660 Tcpip (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\drivers\tcpip.sys
22:20:54.0075 5660 Tcpip - ok
22:20:54.0648 5660 Tcpip6 (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\DRIVERS\tcpip.sys
22:20:54.0660 5660 Tcpip6 - ok
22:20:54.0904 5660 tcpipreg (c29d4b3b08ad0b7e8564814e4ff6a57b) C:\Windows\system32\drivers\tcpipreg.sys
22:20:54.0906 5660 tcpipreg - ok
22:20:55.0054 5660 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
22:20:55.0056 5660 TDPIPE - ok
22:20:55.0208 5660 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
22:20:55.0210 5660 TDTCP - ok
22:20:55.0350 5660 tdx (8c39c72e0e853de04748c0337d9b9216) C:\Windows\system32\DRIVERS\tdx.sys
22:20:55.0352 5660 tdx - ok
22:20:55.0395 5660 TermDD (3f0ebf6ee609f2a276c0d5faf244ec90) C:\Windows\system32\DRIVERS\termdd.sys
22:20:55.0397 5660 TermDD - ok
22:20:55.0454 5660 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:20:55.0456 5660 tssecsrv - ok
22:20:55.0468 5660 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
22:20:55.0472 5660 tunmp - ok
22:20:55.0560 5660 tunnel (2dc2c423572946e9a3131425bda73cb6) C:\Windows\system32\DRIVERS\tunnel.sys
22:20:55.0562 5660 tunnel - ok
22:20:55.0639 5660 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
22:20:55.0641 5660 uagp35 - ok
22:20:55.0714 5660 udfs (eca6629e33f122afff18a2ab7c3eb033) C:\Windows\system32\DRIVERS\udfs.sys
22:20:55.0718 5660 udfs - ok
22:20:55.0772 5660 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
22:20:55.0778 5660 uliagpkx - ok
22:20:55.0951 5660 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
22:20:55.0955 5660 uliahci - ok
22:20:55.0986 5660 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
22:20:55.0989 5660 UlSata - ok
22:20:56.0005 5660 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
22:20:56.0008 5660 ulsata2 - ok
22:20:56.0068 5660 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
22:20:56.0070 5660 umbus - ok
22:20:56.0180 5660 USBAAPL64 (54d4b48d443e7228bf64cf7cdc3118ac) C:\Windows\system32\Drivers\usbaapl64.sys
22:20:56.0182 5660 USBAAPL64 - ok
22:20:56.0293 5660 usbccgp (a0059d8567e8d35c6c309c2bdee7c038) C:\Windows\system32\DRIVERS\usbccgp.sys
22:20:56.0296 5660 usbccgp - ok
22:20:56.0367 5660 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
22:20:56.0370 5660 usbcir - ok
22:20:56.0404 5660 usbehci (c58475c202872eea514b1bd84467f016) C:\Windows\system32\DRIVERS\usbehci.sys
22:20:56.0406 5660 usbehci - ok
22:20:56.0531 5660 usbhub (3eb01de26c19576b04d39257adc57d06) C:\Windows\system32\DRIVERS\usbhub.sys
22:20:56.0535 5660 usbhub - ok
22:20:56.0699 5660 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
22:20:56.0701 5660 usbohci - ok
22:20:56.0769 5660 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
22:20:56.0772 5660 usbprint - ok
22:20:56.0893 5660 usbscan (ea0bf666868964fbe8cb10e50c97b9f1) C:\Windows\system32\DRIVERS\usbscan.sys
22:20:56.0896 5660 usbscan - ok
22:20:56.0975 5660 USBSTOR (586d9876a4945779c8eea926c0d16889) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:20:56.0977 5660 USBSTOR - ok
22:20:57.0256 5660 usbuhci (9c51a73704bf805a413f13f216befee2) C:\Windows\system32\DRIVERS\usbuhci.sys
22:20:57.0258 5660 usbuhci - ok
22:20:57.0383 5660 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
22:20:57.0386 5660 usbvideo - ok
22:20:57.0848 5660 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
22:20:57.0850 5660 vga - ok
22:20:57.0912 5660 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
22:20:57.0914 5660 VgaSave - ok
22:20:58.0405 5660 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
22:20:58.0407 5660 viaide - ok
22:20:58.0777 5660 volmgr (793d9b32a1c462c91f6f70358283ac97) C:\Windows\system32\drivers\volmgr.sys
22:20:58.0779 5660 volmgr - ok
22:20:58.0881 5660 volmgrx (5aa217da5dc4ff5b9ac9ab86563b3223) C:\Windows\system32\drivers\volmgrx.sys
22:20:58.0886 5660 volmgrx - ok
22:20:59.0051 5660 volsnap (de4307412d98050239026e56a7dff3c0) C:\Windows\system32\drivers\volsnap.sys
22:20:59.0055 5660 volsnap - ok
22:20:59.0343 5660 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
22:20:59.0346 5660 vsmraid - ok
22:20:59.0530 5660 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
22:20:59.0532 5660 WacomPen - ok
22:20:59.0639 5660 Wanarp (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys
22:20:59.0641 5660 Wanarp - ok
22:20:59.0646 5660 Wanarpv6 (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys
22:20:59.0648 5660 Wanarpv6 - ok
22:20:59.0749 5660 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
22:20:59.0751 5660 Wd - ok
22:21:00.0053 5660 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
22:21:00.0060 5660 Wdf01000 - ok
22:21:00.0238 5660 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:21:00.0240 5660 WmiAcpi - ok
22:21:00.0778 5660 WpdUsb (6329d1990db931073b86ab5946d8e317) C:\Windows\system32\DRIVERS\wpdusb.sys
22:21:00.0781 5660 WpdUsb - ok
22:21:00.0884 5660 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
22:21:00.0887 5660 ws2ifsl - ok
22:21:00.0972 5660 WSDPrintDevice (de5f5212ab34221dd1618b5fefe8db6c) C:\Windows\system32\DRIVERS\WSDPrint.sys
22:21:00.0975 5660 WSDPrintDevice - ok
22:21:01.0120 5660 WSDScan (e8b0a94c055e07f42f339b4a7c467954) C:\Windows\system32\DRIVERS\WSDScan.sys
22:21:01.0123 5660 WSDScan - ok
22:21:01.0209 5660 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:21:01.0212 5660 WUDFRd - ok
22:21:01.0472 5660 xusb21 (9176c0822faa649e45121875be32f5d2) C:\Windows\system32\DRIVERS\xusb21.sys
22:21:01.0475 5660 xusb21 - ok
22:21:01.0541 5660 yukonx64 (07f7285220307aafb755d890295f0f9a) C:\Windows\system32\DRIVERS\yk60x64.sys
22:21:01.0546 5660 yukonx64 - ok
22:21:01.0570 5660 MBR (0x1B8) (64b1e91c5c6c2157642651010728f90f) \Device\Harddisk0\DR0
22:21:01.0592 5660 \Device\Harddisk0\DR0 - ok
22:21:01.0603 5660 Boot (0x1200) (b90ccafb1f6ef8633e7737333eca131c) \Device\Harddisk0\DR0\Partition0
22:21:01.0608 5660 \Device\Harddisk0\DR0\Partition0 - ok
22:21:01.0608 5660 ============================================================
22:21:01.0609 5660 Scan finished
22:21:01.0609 5660 ============================================================
22:21:01.0622 7080 Detected object count: 1
22:21:01.0622 7080 Actual detected object count: 1
22:21:10.0412 7080 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:21:10.0412 7080 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:21:23.0766 6540 Deinitialize success



Thanks for the help

#5 Dan1212

Dan1212
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 05 November 2011 - 04:36 PM

Oh I forgot to mention for the TDSKiller, with the only threat it found there was no option to cure, but there was delete, and I'm wondering if that's the same thing or if that wouldn't be great to do. Also, this time when my username was starting up an error popped up saying that pctsTray.exe was corrupt.

Edited by Dan1212, 05 November 2011 - 04:41 PM.


#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:10 PM

Posted 05 November 2011 - 04:36 PM

Hello and welcome to Bleeping Computer
Download CCLEANER the link below:

http://www.piriform.com/ccleaner


Just DONT us the registry cleaner function of CCleaner unless you know what you are deleting exactly!!

Then open ccleaner hit the tools button then startup second one down below uninstall then in the bottom right hand corner of ccleaner hit save to text file.Save it to your desktop and post the startup.txt here in your next reply.Also hit start run then type msconfig then hit the services tab then hit put a check mark in hide microsoft services what is listed there,after hiding microsoft services? Also post to me the uninstall list from ccleaner please.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,176 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:10 PM

Posted 05 November 2011 - 08:17 PM

Skip is the correct option.
sptd.sys is a legitimate driver used by CD Emulator programs. The file is often detected as suspicious by security tools because CD Emulators use rootkit-like techniques to hide from other applications. Daemon Tools uses this technology to hide itself from detection and to circumvent copy protection schemes. AnyDVD uses a driver that allows decryption of DVDs on-the-fly and targeted removal of copy preventions/user operation prohibitions. Alcohol uses a technology similar to hide it's drivers on the system so that game copy protection schemes are unable to detect and blacklist Alcohol virtual drives.


1. Uninstall Malwarebytes' Anti-Malware using Add/Remove programs in the control panel.
2. Restart your computer (very important).
3. Download and run this utility. Mbam clean
4. It will ask to restart your computer (please allow it to).
5. After the computer restarts, install the latest version from here. http://www.malwarebytes.org/mbam-download.php
Note: You will need to reactivate the program using the license you were sent.
Note: If using Free version, ignore the part about putting in your license key and activating.
Launch the program and set the Protection and Registration.
Then go to the UPDATE tab if not done during installation and check for updates.
Restart the computer again and verify that MBAM is in the task tray and run a Quick Scan and post that log.

Edited by boopme, 05 November 2011 - 08:17 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Dan1212

Dan1212
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 12 November 2011 - 01:40 PM

Even after following the steps MBAM is still freezing around the same place. There was one thing that I couldn't get to happen in the steps, which was MBAM appearing in the task tray, but I'm not sure if that's significant or not.

#9 Dan1212

Dan1212
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 12 November 2011 - 02:10 PM

InadequateInfirmity: This time I'll post the startup and uninstall logs first, my computer has frozen twice so far trying to get the other thing in. so here's the startup log:
Yes HKCU:Run Sidebar C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
Yes HKCU:Run LightScribe Control Panel C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
Yes HKCU:Run msnmsgr "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
Yes HKCU:Run DAEMON Tools Lite "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
Yes HKCU:Run Artisan 830(Network) C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGXA.EXE /FU "C:\Windows\TEMP\E_S1F64.tmp" /EF "HKCU"
Yes HKCU:Run ehTray.exe C:\Windows\ehome\ehTray.exe
Yes HKCU:Run Google Update "C:\Users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
Yes HKCU:Run WMPNSCFG C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
Yes HKCU:Run Steam "C:\Program Files (x86)\Steam\Steam.exe" -silent
Yes HKCU:Run swg "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
Yes HKLM:Run ATKOSD2 C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
Yes HKLM:Run ATKMEDIA C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
Yes HKLM:Run ADSMTray "C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe"
Yes HKLM:Run DirectConsole2 C:\Program Files (x86)\ASUS\Direct Console\Direct Console.exe
Yes HKLM:Run PowerForPhone "C:\Program Files (x86)\P4P\P4P.exe"
Yes HKLM:Run ChkMail C:\Program Files\ChkMail\ChkMail\ChkMail.exe
Yes HKLM:Run ACMON C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
Yes HKLM:Run ASUS Screen Saver Protector C:\Windows\AsScrPro.exe
Yes HKLM:Run ASUS Camera ScreenSaver C:\Windows\AsScrProlog.exe
Yes HKLM:Run HControlUser "C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
Yes HKLM:Run Turbo Gear "C:\Program Files\ASUS\Turbo Gear\TurboGear.exe" -r
Yes HKLM:Run Turbo Gear Help "C:\Program Files\ASUS\Turbo Gear\GearHelp.exe"
Yes HKLM:Run AVP "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
Yes HKLM:Run EEventManager "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
Yes HKLM:Run Google Quick Search Box "C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
Yes HKLM:Run SunJavaUpdateSched "C:\Program Files (x86)\Java\jre1.6.0_07\bin\jusched.exe"
Yes HKLM:Run Adobe Reader Speed Launcher "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
Yes HKLM:Run Adobe ARM "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run ISTray "C:\Program Files (x86)\Spyware Doctor\pctsTray.exe"
Yes HKLM:Run QuickTime Task "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
Yes HKLM:Run iTunesHelper "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
Yes HKLM:Run FUFAXSTM "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
Yes HKLM:Run Windows Defender %ProgramFiles%\Windows Defender\MSASCui.exe -hide
Yes HKLM:Run RtHDVCpl C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
Yes HKLM:Run SynTPEnh C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Yes HKLM:Run Kernel and Hardware Abstraction Layer KHALMNPR.EXE
No HKLM:Run NvCplDaemon RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
No HKLM:Run NvMediaCenter RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
No HKLM:Run Skytel C:\Program Files\Realtek\Audio\HDA\Skytel.exe
Yes Startup Common Logitech SetPoint.lnk C:\Program Files\Logitech\SetPoint\SetPoint.exe
Yes Startup Common WinZip Quick Pick.lnk C:\Program Files (x86)\WinZip\WZQKPICK.EXE


And the install log:
7-Zip 9.20 6/18/2011 3.54 MB
ABBYY FineReader 9.0 Sprint ABBYY 5/15/2011 174.9 MB 9.01.513.58212
Acrobat.com Adobe Systems Incorporated 7/22/2009 1.62 MB 1.7.186
Adobe AIR Adobe Systems Inc. 8/15/2010 30.5 MB 2.0.3.13070
Adobe Download Manager NOS Microsystems Ltd. 12/22/2010 0.40 MB 1.6.2.97
Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 7/17/2011 10.3.181.26
Adobe Flash Player 10 Plugin Adobe Systems Incorporated 5/28/2010 10.0.45.2
Adobe Reader 9.3.3 Adobe Systems Incorporated 8/15/2010 152.9 MB 9.3.3
Aleks 3.10 7/9/2009 7.10 MB
Aleks 3.15 7/5/2011 7.36 MB
Alien Swarm Valve 12/23/2010 2,032 MB
America's Army 3 U.S. Army 1/15/2011 4,588 MB
Ant.com Toolbar 11/7/2009 3.76 MB
Any Audio Converter 3.2.7 Any-Audio-Converter.com 10/9/2011 75.9 MB
Apple Application Support Apple Inc. 3/30/2011 51.0 MB 1.5.0
Apple Mobile Device Support Apple Inc. 3/30/2011 22.4 MB 3.4.0.25
Apple Software Update Apple Inc. 4/28/2010 2.26 MB 2.1.2.120
ARMA 2: Operation Arrowhead Demo Bohemia Interactive 8/21/2010 2,803 MB
ArtMoney SE v7.29 System SoftLab 7/3/2009 1.87 MB 7.29
Ask Toolbar Ask.com 9/20/2009 1.11 MB 4.1.0.2
ASUS CopyProtect ASUS 5/28/2009 3.47 MB 1.0.0012
ASUS Data Security Manager ASUS 5/28/2009 15.0 MB 1.00.0011
ASUS LifeFrame3 ASUS 5/28/2009 27.7 MB 3.0.19
ASUS Live Update ASUS 5/28/2009 0.43 MB 2.5.7
ASUS MultiFrame 5/28/2009 2.36 MB 1.0.0018
ASUS SmartLogon ASUS 5/28/2009 10.9 MB 1.0.0005
ASUS Splendid Video Enhancement Technology ASUS 5/28/2009 25.0 MB 1.02.0025
ASUS Turbo Gear Enhanced VGA Driver ASUSTeK Computer Inc. 5/28/2009 0.27 MB 0.0.0.18
ASUS Virtual Camera asus 5/28/2009 2.88 MB 1.0.14
Asus_Camera_ScreenSaver ASUS 5/28/2009 2.0.0008
Atheros Client Installation Program Atheros 5/28/2009 1.29 MB 7.0
ATK Generic Function Service ATK 5/28/2009 0.45 MB 1.00.0008
ATK Hotkey ASUS 5/28/2009 5.80 MB 1.0.0049
ATK Media ASUS 5/28/2009 0.18 MB 2.0.0004
ATKOSD2 ASUS 5/28/2009 7.99 MB 7.0.0003
Atom Zombie Smasher Demo 9/2/2011 39.6 MB
Audacity 1.3.13 (Unicode) Audacity Team 10/9/2011 42.3 MB
AviSynth 2.5 7/29/2009 4.64 MB
BitZipper 2010 Bitberry Software 6/25/2011 14.0 MB
Bonjour Apple Inc. 3/30/2011 1.15 MB 2.0.4.0
CCleaner Piriform 11/6/2011 8.43 MB 3.12
ChkMail ChkMail 5/28/2009 0.71 MB 2.0.0.16
Cisco EAP-FAST Module Cisco Systems, Inc. 5/28/2009 1.56 MB 2.2.10
Cisco LEAP Module Cisco Systems, Inc. 5/28/2009 0.62 MB 1.0.16
Cisco PEAP Module Cisco Systems, Inc. 5/28/2009 1.24 MB 1.1.3
Compatibility Pack for the 2007 Office system Microsoft Corporation 9/14/2011 92.6 MB 12.0.6425.1000
Crysis 2 Demo 3/3/2011 1,835 MB
CyberLink LabelPrint CyberLink Corp. 5/28/2009 86.4 MB 2.0.2908
CyberLink Power2Go CyberLink Corp. 5/28/2009 122.2 MB 6.0.1924
DAEMON Tools Lite DT Soft Ltd 4/13/2011 18.2 MB 4.40.2.0131
DAEMON Tools Toolbar DT Soft Ltd 4/13/2011 4.55 MB 1.1.4.0024
Darkest of Days 8monkey Labs 9/13/2009 4,639 MB 1.0
Direct Console 2.0 ASUS 5/28/2009 9.53 MB 2.0.7
Empire: Total War Creative Assembly 7/21/2009 15,419 MB
EPSON Artisan 800 Series Printer Uninstall SEIKO EPSON Corporation 7/1/2009
EPSON Artisan 830 Series Printer Uninstall SEIKO EPSON Corporation 5/15/2011
Epson CreativeZone 5/15/2011 0.77 MB
Epson Event Manager SEIKO EPSON CORPORATION 5/15/2011 38.5 MB 2.40.0001
Epson FAX Utility SEIKO EPSON CORPORATION 5/15/2011 26.9 MB 1.10.00
Epson PC-FAX Driver 5/15/2011
Epson Print CD SEIKO EPSON CORPORATION 5/15/2011 26.8 MB 2.00.00
EPSON Scan Seiko Epson Corporation 5/15/2011 6.43 MB
EpsonNet Print SEIKO EPSON CORPORATION 5/15/2011 4.33 MB 2.4i
EpsonNet Setup 3.2 SEIKO EPSON CORPORATION 5/15/2011 32.2 MB 3.2a
Express Gate DeviceVM, Inc. 5/28/2009 366 MB 1.1.9.2
Fallout New Vegas 4/17/2011 6,920 MB
File Type Assistant Trusted Software 4/28/2011 1.90 MB
Final Media Player 2011 Bitberry Software 4/28/2011 15.8 MB
Free Video to Mp3 Converter version 3.1 DVD Video Soft Limited. 9/20/2009 2.31 MB
Galapago Oberon Media 5/28/2009 42.9 MB
Geek Squad 24 Hour Computer Support LogMeIn, Inc. 5/28/2009 3.37 MB 2.1.322
Google Apps Google Inc. 10/14/2010 0.52 MB 1.2.279.2381
Google Chrome Google Inc. 6/9/2011 242 MB 15.0.874.106
Google Desktop Google 5/28/2009 6.64 MB 5.7.0802.22438
Google Earth Google 7/3/2011 84.7 MB 6.0.3.2197
Google Toolbar for Internet Explorer Google Inc. 8/20/2011 22.6 MB 7.1.2003.1856
Google Updater Google Inc. 10/14/2010 3.61 MB 2.4.1970.7372
Grand Theft Auto: San Andreas Rockstar 6/25/2011 4,789 MB
HOMEFRONT Demo 6/30/2011 3,837 MB
iTunes Apple Inc. 3/30/2011 143.9 MB 10.2.1.1
Java™ 6 Update 7 Sun Microsystems, Inc. 7/9/2009 163.8 MB 1.6.0.70
Kaspersky Internet Security 2009 Kaspersky Lab 7/1/2009 34.0 MB 8.0.0.454
Left 4 Dead 2 Demo Valve 11/4/2009 2,820 MB
LibUSB-Win32-0.1.10.1 LibUSB-Win32 6/25/2011 1.32 MB 0.1.10.1
LightScribe System Software 1.14.17.1 LightScribe 5/28/2009 21.0 MB 1.14.17.1
Logitech SetPoint Logitech 9/5/2009 21.5 MB 4.80
LoJack Factory Installer Absolute Software Corporation 5/28/2009 1.26 MB 1.00.0029
Malwarebytes' Anti-Malware version 1.51.2.1300 Malwarebytes Corporation 11/6/2011 6.77 MB 1.51.2.1300
Medieval II: Total War The Creative Assembly 12/25/2010 12,058 MB
Medieval II: Total War Kingdoms The Creative Assembly 12/25/2010 12,058 MB
Men of War: Assault Squad Digitalmindsoft 5/8/2011 3,993 MB
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 8/15/2009 32.4 MB
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 6/27/2010 189.3 MB 4.0.30319
Microsoft Office Home and Student 2007 Microsoft Corporation 8/25/2009 330 MB 12.0.6425.1000
Microsoft Office PowerPoint Viewer 2007 (English) Microsoft Corporation 9/14/2011 86.4 MB 12.0.6425.1000
Microsoft Office Suite Activation Assistant Microsoft Corporation 9/19/2008 8.37 MB 2.9
Microsoft Silverlight Microsoft Corporation 10/13/2011 29.0 MB 4.0.60831.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Corporation 7/29/2009 0.25 MB 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 7/29/2009 0.25 MB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 6/18/2011 0.29 MB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 7/5/2009 0.81 MB 8.0.61000
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 Microsoft Corporation 5/9/2011 0.56 MB 8.0.51011
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 1/24/2010 0.19 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 5/9/2011 0.58 MB 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 6/16/2011 0.76 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 6/18/2011 0.76 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2/22/2011 2.86 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 1/22/2010 0.58 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 6/18/2011 0.58 MB 9.0.30729.6161
Microsoft Works Microsoft Corporation 12/17/2010 396 MB 9.7.0621
MotioninJoy ds3 driver version 0.6.0003 www.motioninjoy.com 6/25/2011 3.16 MB 0.5.0001
Mount and Blade Paradox Interactive 2/14/2010 607 MB
myPhotoMovie (remove only) aVinci Media, LC 5/28/2009 17.8 MB 1.5.0.170
Napoleon: Total War The Creative Assembly 7/3/2010 22,927 MB
NB Probe 5/28/2009 2.75 MB
NVIDIA Drivers NVIDIA Corporation 5/28/2009
NVIDIA PhysX NVIDIA Corporation 8/22/2010 78.9 MB 9.10.0513
OpenAL 7/17/2009 0.77 MB
Operations Flashpoint: Dragon Rising - Demo Codemasters 11/23/2009 1,549 MB
P4P P4P 5/28/2009 0.75 MB 1.0.0.17
Picasa 3 Google, Inc. 11/10/2009 74.3 MB 3.1
PunkBuster Services Even Balance, Inc. 1/15/2011 0.989
QuickTime Apple Inc. 3/30/2011 73.7 MB 7.69.80.9
ReaConverter 6.0 Pro ReaSoft 6/16/2011 63.8 MB
Realtek 8169 8168 8101E 8102E Ethernet Driver Realtek 5/28/2009 1.49 MB 1.00.0000
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 5/28/2009 11.1 MB 6.0.1.5836
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.01 5/28/2009 2.11 MB 3.55.01
Rome: Total War - Alexander The Creative Assembly 2/14/2010 2,877 MB
Rome: Total War - Gold Edition The Creative Assembly 2/14/2010 3,220 MB
Sanctum - Demo 5/14/2011 918 MB
Source SDK Base 2007 Valve 8/12/2011 63.7 MB
Spyware Doctor 7.0 PC Tools 10/14/2010 235 MB 7.0
Steam Valve Corporation 6/20/2011 1.59 MB 1.0.0.0
Synaptics Pointing Device Driver Synaptics 5/28/2009 14.2 MB 10.1.8.0
System Requirements Lab Husdawg, LLC 6/26/2010 0.60 MB 4.1.71.0
Team Fortress 2 Valve 7/12/2011 724 MB
Total War: SHOGUN 2 The Creative Assembly 4/1/2011 16,357 MB
Turbo Gear Extreme 5/28/2009 1.27 MB 1.00.22
Uninstall 1.0.0.1 9/20/2009 14.7 MB
Unity Web Player Unity Technologies ApS 2/27/2011 0.20 MB
USB 2.0 1.3M UVC WebCam 5/28/2009
Videora iPod Converter 5 Red Kawa 9/15/2009 17.7 MB 5
VOB2MPG v3 BadgerIT 4/29/2011 9.45 MB 3.2.2000
Windows Live Messenger Microsoft Corporation 9/19/2008 30.4 MB 8.5.1302.1018
Windows Live Sign-in Assistant Microsoft Corporation 7/16/2009 1.93 MB 5.000.818.6
WinFlash 5/28/2009 1.37 MB
Wings of Prey Demo Gaijin Entertainment 1/19/2010 1,509 MB
WinZip 15.5 WinZip Computing, S.L. 6/25/2011 64.3 MB 15.5.9510
Wireless Console 2 ATK 5/28/2009 2.0.10
Yahoo! Toolbar 7/5/2009 2.36 MB
YouTube Downloader App 2.00 Regensoft 9/15/2009 0.43 MB 2.00
Zoomquilt Screensaver 8/23/2011

#10 Dan1212

Dan1212
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 12 November 2011 - 02:18 PM

And here are the services from msconfig:
ABBYY FineReader 9.0 Sprint Liscensing Service
ADSM Service
Apple Mobile Device
ASLDR Service
ATKGFNEX Service
Kasperky Internet Security
Bonjour Service
EpsonBidirectionalService
Google Update Service (gupdate1ca1c364c2bafed)
Google Update Service (gupdatem)
Google Software Update
iPod Service
Logitech Blutooth Service
LightScribeService Direct Disc Labeling Service
NVIDIA Display Driver Service
PC Tools Auxiliary Service
PC Tools Security Service
spmgr
Steam Client Service
WB VGA Service

#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:10 PM

Posted 12 November 2011 - 06:41 PM

Open ccleaner and disable all EXCEPT these.From startup.


Yes HKCU:Run Sidebar C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (optional)
Yes HKLM:Run ATKOSD2 C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (optional)
Yes HKLM:Run ATKMEDIA C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (optional)
Yes HKLM:Run ADSMTray "C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe" (optional)
Yes HKLM:Run DirectConsole2 C:\Program Files (x86)\ASUS\Direct Console\Direct Console.exe (optional)
Yes HKLM:Run PowerForPhone "C:\Program Files (x86)\P4P\P4P.exe" (optional)
Yes HKLM:Run ASUS Screen Saver Protector C:\Windows\AsScrPro.exe (optional)
Yes HKLM:Run ASUS Camera ScreenSaver C:\Windows\AsScrProlog.exe (optional)
Yes HKLM:Run AVP "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
Yes HKLM:Run ISTray "C:\Program Files (x86)\Spyware Doctor\pctsTray.exe"
Yes HKLM:Run RtHDVCpl C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

Everything I put (optional) next is user choice if it were my machine I would disable these as well.




Then please do the following.
Hit start button at lower left hand corner of the screen.Then in the run box type services.msc. Find the service listed below,one at a time. left click it once you should have the option to either stop the service or restart it , stop the service then right click selected service select properties then change the startup type to manual then left click apply and move on to the next service.If the service is stopped and the startup type is manual then do nothing.



ABBYY FineReader 9.0 Sprint Liscensing Service
ADSM Service (unless you need this service to start)
Apple Mobile Device
ASLDR Service
ATKGFNEX Service
Bonjour Service
EpsonBidirectionalService (unless you need this service to start)
Google Update Service (gupdate1ca1c364c2bafed)
Google Update Service (gupdatem)
Google Software Update
iPod Service
Logitech Blutooth Service
LightScribeService Direct Disc Labeling Service
PC Tools Auxiliary Service
PC Tools Security Service
Steam Client Service


After completing the above task then Please download TFC by Old Timer and save it to your desktop.
http://oldtimer.geekstogo.com/TFC.exe
Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it.If TFC doesnt prompt a reboot then please do so manually.


Go ahead and uninstall these programs.
Adobe AIR Adobe Systems Inc. 8/15/2010 30.5 MB 2.0.3.13070
Ant.com Toolbar 11/7/2009 3.76 MB
Ask Toolbar Ask.com 9/20/2009 1.11 MB 4.1.0.2
Google Updater Google Inc. 10/14/2010 3.61 MB 2.4.1970.7372
Google Toolbar for Internet Explorer Google Inc. 8/20/2011 22.6 MB 7.1.2003.1856
Java™ 6 Update 7 Sun Microsystems, Inc. 7/9/2009 163.8 MB 1.6.0.70
After you uninstall all of the above and reboot then get a fresh copy
of java here.
http://java.com/en/download/inc/windows_upgrade_xpi.jsp

In your next reply I need a new startup list from ccleaner and what services are now running after hiding microsoft services.Note: That I instructed you to run tfc.exe that is because you need to reboot to feel the changes If tfc doesnt prompt a reboot then do so.


Edit:Yes HKLM:Run RtHDVCpl C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe You need this entry to start.

Edited by InadequateInfirmity, 12 November 2011 - 07:16 PM.


#12 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:10 PM

Posted 12 November 2011 - 07:21 PM

Next download autoruns found in the link below.

http://technet.micro...ernals/bb963902

1: Extract the Autoruns Zip file contents to a folder.
2: Double-click the "Autoruns.exe".
3: Click on the "Everything" tab
4: Remove any entries that mention "File Not Found" by right-clicking the entry and select Delete.

Edited by InadequateInfirmity, 12 November 2011 - 07:22 PM.


#13 Dan1212

Dan1212
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 13 November 2011 - 11:26 PM

Heres the new startup list:
No HKCU:Run Artisan 830(Network) C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGXA.EXE /FU "C:\Windows\TEMP\E_S1F64.tmp" /EF "HKCU"
No HKCU:Run DAEMON Tools Lite "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
No HKCU:Run ehTray.exe C:\Windows\ehome\ehTray.exe
No HKCU:Run Google Update "C:\Users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
No HKCU:Run LightScribe Control Panel C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
No HKCU:Run msnmsgr "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
No HKCU:Run Sidebar C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
No HKCU:Run Steam "C:\Program Files (x86)\Steam\Steam.exe" -silent
No HKCU:Run swg "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
No HKCU:Run WMPNSCFG C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
Yes HKLM:Run ASUS Screen Saver Protector C:\Windows\AsScrPro.exe
Yes HKLM:Run ASUS Camera ScreenSaver C:\Windows\AsScrProlog.exe
Yes HKLM:Run AVP "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
Yes HKLM:Run ISTray "C:\Program Files (x86)\Spyware Doctor\pctsTray.exe"
Yes HKLM:Run SunJavaUpdateSched "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes HKLM:Run RtHDVCpl C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
No HKLM:Run ACMON C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
No HKLM:Run Adobe ARM "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
No HKLM:Run Adobe Reader Speed Launcher "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
No HKLM:Run ADSMTray "C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe"
No HKLM:Run ATKMEDIA C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
No HKLM:Run ATKOSD2 C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
No HKLM:Run ChkMail C:\Program Files\ChkMail\ChkMail\ChkMail.exe
No HKLM:Run DirectConsole2 C:\Program Files (x86)\ASUS\Direct Console\Direct Console.exe
No HKLM:Run EEventManager "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
No HKLM:Run FUFAXSTM "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
No HKLM:Run Google Quick Search Box "C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
No HKLM:Run HControlUser "C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
No HKLM:Run iTunesHelper "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
No HKLM:Run Kernel and Hardware Abstraction Layer KHALMNPR.EXE
No HKLM:Run NvCplDaemon RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
No HKLM:Run NvMediaCenter RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
No HKLM:Run PowerForPhone "C:\Program Files (x86)\P4P\P4P.exe"
No HKLM:Run QuickTime Task "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
No HKLM:Run Skytel C:\Program Files\Realtek\Audio\HDA\Skytel.exe
No HKLM:Run SynTPEnh C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
No HKLM:Run Turbo Gear "C:\Program Files\ASUS\Turbo Gear\TurboGear.exe" -r
No HKLM:Run Turbo Gear Help "C:\Program Files\ASUS\Turbo Gear\GearHelp.exe"
No HKLM:Run Windows Defender %ProgramFiles%\Windows Defender\MSASCui.exe -hide
No Startup Common Logitech SetPoint.lnk C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe
No Startup Common WinZip Quick Pick.lnk C:\PROGRA~2\WinZip\WZQKPICK.EXE


And the new services list:
ABBYY FineReader 9.0 Sprint Liscensing Service Stopped
ADSM Service Running
Apple Mobile Device Stopped
ASLDR Service Stopped
ATKGFNEX Service Running
Kasperky Internet Security Running
Bonjour Service Stopped
EpsonBidirectionalService Running
Google Update Service (gupdate1ca1c364c2bafed) Stopped
Google Update Service (gupdatem) Stopped
iPod Service Stopped
Logitech Blutooth Service Stopped
LightScribeService Direct Disc Labeling Service Stopped
NVIDIA Display Driver Service Running
PC Tools Auxiliary Service Stopped
PC Tools Security Service Stopped
spmgr Running
Steam Client Service Stopped
WB VGA Service Running



When I tried to download the autoruns, it said IE could not display the webpage, even though internet was working. I clicked diagnose, and it said to check the spelling. Also, I'm not sure if its important but TFC only finished on the 3rd try. The 1st and 2nd times it crashed, and the 2nd and 3rd time a notification popped up saying TFC.exe was corrupt, but I couldnt find the file to uninstall

#14 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:10 PM

Posted 13 November 2011 - 11:31 PM

Here is a new link for tfc.exe http://www.geekstogo.com/forum/files/file/187-tfc-temp-file-cleaner-by-oldtimer/
how is your pc running now??? Go ahead and try a quick scan with malwarebytes as suggested by staff

#15 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:10 PM

Posted 13 November 2011 - 11:33 PM

here is a fresh link for autoruns delete every entry that reads file not found http://technet.microsoft.com/en-us/sysinternals/bb963902




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users