Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Everything in C Drive is gone or hidden


  • Please log in to reply
9 replies to this topic

#1 wakko9

wakko9

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:48 PM

Posted 09 May 2012 - 01:23 AM

This is the first time I have seen this one. Laptop boots up and looks normal till you open explorer and look for your files. you open c drive and there is one folder with the PC icon there you open it and you see C drive again, and the tree is endless looping, you see the same thing. Antivirus detects a root kit, and wants to remove it. I cant run any clean utilities. When I boot to CD, using Reatogo xpe I see the partition tables have been re written. It looks like it has shifted Local Disk C to the last sector on the disk, leaving no room, and it has put its own partition in place.


Not sure where to start with this one. Start by searching for and removing the virus files, or fixing the partition tables and / or boot sector / MBR?


Please help

Thanks

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 10 May 2012 - 01:48 AM

Antivirus detects a root kit, and wants to remove it. I cant run any clean utilities.

Can you run tools in safemode with networking?

#3 wakko9

wakko9
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:48 PM

Posted 11 May 2012 - 01:19 AM

I have tried to run a few scan and clean utilities, but they either hang or find the root kit and try to remove it, but cant because the drive looks blank. I think I need to correct the partitions. When I boot to a cd and look at the drive using partition magic it shows 3 partitions. Other installs I have looked at only have two, one small one (boot I assume) and the other the rest of the drive. This virus/root kit/trojan/ has pushed the local disk C to the very last sector of the drive and has added a partiton to the largest part of the drive. If I knew what the partitions were suppose to be I would reset them. Partition info shows errors as well; Error#107 Partiton begins after end of disk. The partitions show;
SQ004224P01 (*:) Type: NTFS Size: 152,374.3MB Used: 63,604.5MB Unused:88,769.8MB Status: None / Local Disk (*:) Type: Type 88 Size: 251.0MB Used: 251.0MB Unused: 0.0 Status: None / ?? (*:) Type: NTFS Size 7.8MB Used: 7.8MB Unused: 0 Status: Active.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 11 May 2012 - 08:11 AM

Do not mess with partitions if you're not sure.

Boot the PC into safe mode with networking.

Press Windows+R key and type

msconfig and click ok

Check mark selective startup

Uncheck LOAD STARTUP items

click ok

Download

FIXTDSS

Launch it ,It may ask for restart,reboot the PC

On reboot ,click on REPAIR


Download

Unhide

launch it and allow it to run,this should unhide your files

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Edited by narenxp, 11 May 2012 - 08:14 AM.


#5 wakko9

wakko9
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:48 PM

Posted 14 May 2012 - 12:49 AM

00:42:56.0263 2632 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
00:42:56.0638 2632 ============================================================
00:42:56.0638 2632 Current date / time: 2012/05/14 00:42:56.0638
00:42:56.0638 2632 SystemInfo:
00:42:56.0638 2632
00:42:56.0638 2632 OS Version: 5.1.2600 ServicePack: 3.0
00:42:56.0638 2632 Product type: Workstation
00:42:56.0638 2632 ComputerName: TOSHIBA-USER2
00:42:56.0638 2632 UserName: Administrator
00:42:56.0638 2632 Windows directory: C:\WINDOWS
00:42:56.0638 2632 System windows directory: C:\WINDOWS
00:42:56.0638 2632 Processor architecture: Intel x86
00:42:56.0638 2632 Number of processors: 2
00:42:56.0638 2632 Page size: 0x1000
00:42:56.0638 2632 Boot type: Normal boot
00:42:56.0638 2632 ============================================================
00:42:58.0513 2632 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
00:42:58.0513 2632 ============================================================
00:42:58.0513 2632 \Device\Harddisk0\DR0:
00:42:58.0513 2632 MBR partitions:
00:42:58.0513 2632 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1299B262
00:42:58.0513 2632 ============================================================
00:42:58.0669 2632 C: <-> \Device\Harddisk0\DR0\Partition0
00:42:58.0669 2632 ============================================================
00:42:58.0669 2632 Initialize success
00:42:58.0669 2632 ============================================================
00:43:11.0356 0500 ============================================================
00:43:11.0356 0500 Scan started
00:43:11.0356 0500 Mode: Manual; TDLFS;
00:43:11.0356 0500 ============================================================
00:43:11.0685 0500 Aavmker4 (473f97edc5a5312f3665ab2921196c0c) C:\WINDOWS\system32\drivers\Aavmker4.sys
00:43:11.0685 0500 Aavmker4 - ok
00:43:11.0685 0500 Abiosdsk - ok
00:43:11.0685 0500 abp480n5 - ok
00:43:11.0747 0500 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
00:43:11.0747 0500 ACPI - ok
00:43:11.0747 0500 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
00:43:11.0747 0500 ACPIEC - ok
00:43:11.0825 0500 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
00:43:11.0825 0500 AdobeFlashPlayerUpdateSvc - ok
00:43:11.0825 0500 adpu160m - ok
00:43:11.0856 0500 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
00:43:11.0856 0500 aec - ok
00:43:11.0950 0500 AegisP (12dafd934641dcf61e446313bc261ec2) C:\WINDOWS\system32\DRIVERS\AegisP.sys
00:43:11.0950 0500 AegisP - ok
00:43:11.0997 0500 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
00:43:11.0997 0500 AFD - ok
00:43:12.0106 0500 AgereSoftModem (b3192376c7a3814b5341efc2202022f8) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
00:43:12.0122 0500 AgereSoftModem - ok
00:43:12.0122 0500 Aha154x - ok
00:43:12.0122 0500 aic78u2 - ok
00:43:12.0138 0500 aic78xx - ok
00:43:12.0169 0500 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
00:43:12.0169 0500 Alerter - ok
00:43:12.0185 0500 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
00:43:12.0185 0500 ALG - ok
00:43:12.0200 0500 AliIde - ok
00:43:12.0200 0500 amsint - ok
00:43:12.0294 0500 AOL ACS (aa2770fd967dab91a597619c4eadc0c9) C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
00:43:12.0294 0500 AOL ACS - ok
00:43:12.0341 0500 AOL TopSpeedMonitor (7fb54900aa9792ab6307c699ec1859d4) C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
00:43:12.0341 0500 AOL TopSpeedMonitor - ok
00:43:12.0372 0500 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:43:12.0388 0500 Apple Mobile Device - ok
00:43:12.0435 0500 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
00:43:12.0435 0500 AppMgmt - ok
00:43:12.0466 0500 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
00:43:12.0466 0500 Arp1394 - ok
00:43:12.0466 0500 asc - ok
00:43:12.0481 0500 asc3350p - ok
00:43:12.0481 0500 asc3550 - ok
00:43:12.0528 0500 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
00:43:12.0528 0500 ASCTRM - ok
00:43:12.0638 0500 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
00:43:12.0638 0500 aspnet_state - ok
00:43:12.0669 0500 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\WINDOWS\system32\drivers\aswFsBlk.sys
00:43:12.0669 0500 aswFsBlk - ok
00:43:12.0700 0500 aswMon2 (8c30b7ddd2f1d8d138ebe40345af2b11) C:\WINDOWS\system32\drivers\aswMon2.sys
00:43:12.0700 0500 aswMon2 - ok
00:43:12.0731 0500 AswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\WINDOWS\system32\drivers\AswRdr.sys
00:43:12.0731 0500 AswRdr - ok
00:43:12.0778 0500 aswSnx (dcb199b967375753b5019ec15f008f53) C:\WINDOWS\system32\drivers\aswSnx.sys
00:43:12.0778 0500 aswSnx - ok
00:43:12.0825 0500 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\WINDOWS\system32\drivers\aswSP.sys
00:43:12.0825 0500 aswSP - ok
00:43:12.0856 0500 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\WINDOWS\system32\drivers\aswTdi.sys
00:43:12.0856 0500 aswTdi - ok
00:43:12.0888 0500 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
00:43:12.0888 0500 AsyncMac - ok
00:43:12.0903 0500 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
00:43:12.0919 0500 atapi - ok
00:43:12.0919 0500 Atdisk - ok
00:43:12.0950 0500 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
00:43:12.0950 0500 Atmarpc - ok
00:43:12.0981 0500 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
00:43:12.0981 0500 AudioSrv - ok
00:43:13.0028 0500 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
00:43:13.0028 0500 audstub - ok
00:43:13.0153 0500 Automatic LiveUpdate Scheduler (0fcfbd0edaa188b3d652ddce6d16d866) C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
00:43:13.0153 0500 Automatic LiveUpdate Scheduler - ok
00:43:13.0247 0500 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
00:43:13.0247 0500 avast! Antivirus - ok
00:43:13.0278 0500 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
00:43:13.0278 0500 Beep - ok
00:43:13.0341 0500 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
00:43:13.0341 0500 BITS - ok
00:43:13.0450 0500 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
00:43:13.0450 0500 Bonjour Service - ok
00:43:13.0481 0500 Bridge (f934d1b230f84e1d19dd00ac5a7a83ed) C:\WINDOWS\system32\DRIVERS\bridge.sys
00:43:13.0481 0500 Bridge - ok
00:43:13.0481 0500 BridgeMP (f934d1b230f84e1d19dd00ac5a7a83ed) C:\WINDOWS\system32\DRIVERS\bridge.sys
00:43:13.0481 0500 BridgeMP - ok
00:43:13.0528 0500 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
00:43:13.0528 0500 Browser - ok
00:43:13.0622 0500 catchme - ok
00:43:13.0653 0500 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
00:43:13.0653 0500 cbidf2k - ok
00:43:13.0653 0500 cd20xrnt - ok
00:43:13.0669 0500 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
00:43:13.0669 0500 Cdaudio - ok
00:43:13.0700 0500 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
00:43:13.0700 0500 Cdfs - ok
00:43:13.0731 0500 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
00:43:13.0731 0500 Cdrom - ok
00:43:13.0810 0500 CFSvcs (3cb0cc8879956c187e87e18634ee5164) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
00:43:13.0810 0500 CFSvcs - ok
00:43:13.0810 0500 Changer - ok
00:43:13.0841 0500 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
00:43:13.0841 0500 CiSvc - ok
00:43:13.0872 0500 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
00:43:13.0872 0500 ClipSrv - ok
00:43:13.0981 0500 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:43:13.0981 0500 clr_optimization_v2.0.50727_32 - ok
00:43:14.0044 0500 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
00:43:14.0044 0500 CmBatt - ok
00:43:14.0044 0500 CmdIde - ok
00:43:14.0075 0500 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
00:43:14.0075 0500 Compbatt - ok
00:43:14.0075 0500 COMSysApp - ok
00:43:14.0091 0500 Cpqarray - ok
00:43:14.0106 0500 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
00:43:14.0106 0500 CryptSvc - ok
00:43:14.0122 0500 dac2w2k - ok
00:43:14.0122 0500 dac960nt - ok
00:43:14.0185 0500 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
00:43:14.0185 0500 DcomLaunch - ok
00:43:14.0231 0500 DgiVecp (770471de2550820feeb7e5d24bf2e273) C:\WINDOWS\system32\Drivers\DgiVecp.sys
00:43:14.0231 0500 DgiVecp - ok
00:43:14.0263 0500 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
00:43:14.0263 0500 Dhcp - ok
00:43:14.0278 0500 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
00:43:14.0278 0500 Disk - ok
00:43:14.0341 0500 DLABOIOM (ee4325becef51b8c32b4329097e4f301) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
00:43:14.0341 0500 DLABOIOM - ok
00:43:14.0356 0500 DLACDBHM (d979bebcf7edcc9c9ee1857d1a68c67b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
00:43:14.0356 0500 DLACDBHM - ok
00:43:14.0372 0500 DLADResN (1e6c6597833a04c2157be7b39ea92ce1) C:\WINDOWS\system32\DLA\DLADResN.SYS
00:43:14.0372 0500 DLADResN - ok
00:43:14.0388 0500 DLAIFS_M (752376e109a090970bfa9722f0f40b03) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
00:43:14.0388 0500 DLAIFS_M - ok
00:43:14.0388 0500 DLAOPIOM (62ee7902e74b90bf1ccc4643fc6c07a7) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
00:43:14.0388 0500 DLAOPIOM - ok
00:43:14.0388 0500 DLAPoolM (5c220124c5afeaee84a9bb89d685c17b) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
00:43:14.0403 0500 DLAPoolM - ok
00:43:14.0403 0500 DLARTL_N (7ee0852ae8907689df25049dcd2342e8) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
00:43:14.0419 0500 DLARTL_N - ok
00:43:14.0419 0500 DLAUDFAM (4ebb78d9bbf072119363b35b9b3e518f) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
00:43:14.0419 0500 DLAUDFAM - ok
00:43:14.0435 0500 DLAUDF_M (333b770e52d2cea7bd86391120466e43) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
00:43:14.0435 0500 DLAUDF_M - ok
00:43:14.0435 0500 dmadmin - ok
00:43:14.0513 0500 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
00:43:14.0528 0500 dmboot - ok
00:43:14.0528 0500 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
00:43:14.0528 0500 dmio - ok
00:43:14.0544 0500 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
00:43:14.0544 0500 dmload - ok
00:43:14.0591 0500 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
00:43:14.0591 0500 dmserver - ok
00:43:14.0606 0500 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
00:43:14.0606 0500 DMusic - ok
00:43:14.0653 0500 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
00:43:14.0653 0500 Dnscache - ok
00:43:14.0700 0500 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
00:43:14.0700 0500 Dot3svc - ok
00:43:14.0700 0500 dpti2o - ok
00:43:14.0716 0500 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
00:43:14.0716 0500 drmkaud - ok
00:43:14.0763 0500 DRVMCDB (fd0f95981fef9073659d8ec58e40aa3c) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
00:43:14.0763 0500 DRVMCDB - ok
00:43:14.0763 0500 DRVNDDM (b4869d320428cdc5ec4d7f5e808e99b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
00:43:14.0763 0500 DRVNDDM - ok
00:43:14.0825 0500 DVD-RAM_Service (c9ffbd6b8edc46cd3d13e3c6db914fb7) C:\WINDOWS\system32\DVDRAMSV.exe
00:43:14.0825 0500 DVD-RAM_Service - ok
00:43:14.0825 0500 dvifzddb - ok
00:43:14.0872 0500 E100B (2646883e6dd867cd872d5b51b6036710) C:\WINDOWS\system32\DRIVERS\e100b325.sys
00:43:14.0872 0500 E100B - ok
00:43:14.0903 0500 e1express (e1fa10ed8f9f700c1be1eae05a80ef57) C:\WINDOWS\system32\DRIVERS\e1e5132.sys
00:43:14.0903 0500 e1express - ok
00:43:14.0935 0500 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
00:43:14.0935 0500 EapHost - ok
00:43:15.0122 0500 eeCtrl (70aeac5d481b2904b40f2173e280b1b5) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
00:43:15.0138 0500 eeCtrl - ok
00:43:15.0169 0500 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
00:43:15.0169 0500 ERSvc - ok
00:43:15.0216 0500 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
00:43:15.0216 0500 Eventlog - ok
00:43:15.0247 0500 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
00:43:15.0247 0500 EventSystem - ok
00:43:15.0294 0500 EvtEng (56ded3ade453272e6a0ad582d945d1a4) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
00:43:15.0294 0500 EvtEng - ok
00:43:15.0372 0500 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
00:43:15.0372 0500 Fastfat - ok
00:43:15.0435 0500 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
00:43:15.0435 0500 FastUserSwitchingCompatibility - ok
00:43:15.0497 0500 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
00:43:15.0497 0500 Fax - ok
00:43:15.0497 0500 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
00:43:15.0497 0500 Fdc - ok
00:43:15.0513 0500 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
00:43:15.0513 0500 Fips - ok
00:43:15.0513 0500 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
00:43:15.0513 0500 Flpydisk - ok
00:43:15.0575 0500 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
00:43:15.0575 0500 FltMgr - ok
00:43:15.0669 0500 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
00:43:15.0669 0500 FontCache3.0.0.0 - ok
00:43:15.0685 0500 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:43:15.0685 0500 Fs_Rec - ok
00:43:15.0700 0500 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
00:43:15.0700 0500 Ftdisk - ok
00:43:15.0731 0500 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
00:43:15.0731 0500 GEARAspiWDM - ok
00:43:15.0778 0500 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
00:43:15.0778 0500 Gpc - ok
00:43:15.0903 0500 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
00:43:15.0903 0500 gupdate - ok
00:43:15.0919 0500 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
00:43:15.0919 0500 gupdatem - ok
00:43:15.0966 0500 gusvc (751c1d2ca2abf4a9f5a6b8d7d45b907c) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
00:43:15.0966 0500 gusvc - ok
00:43:16.0028 0500 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
00:43:16.0028 0500 HDAudBus - ok
00:43:16.0106 0500 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
00:43:16.0106 0500 helpsvc - ok
00:43:16.0153 0500 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
00:43:16.0153 0500 HidServ - ok
00:43:16.0200 0500 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
00:43:16.0200 0500 HidUsb - ok
00:43:16.0247 0500 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
00:43:16.0247 0500 hkmsvc - ok
00:43:16.0247 0500 hpn - ok
00:43:16.0278 0500 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
00:43:16.0278 0500 HTTP - ok
00:43:16.0310 0500 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
00:43:16.0310 0500 HTTPFilter - ok
00:43:16.0310 0500 i2omgmt - ok
00:43:16.0325 0500 i2omp - ok
00:43:16.0356 0500 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
00:43:16.0356 0500 i8042prt - ok
00:43:16.0481 0500 ialm (bc1f1ff8d5800398937966cdb0a97fdc) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
00:43:16.0481 0500 ialm - ok
00:43:16.0653 0500 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:43:16.0653 0500 IDriverT - ok
00:43:16.0903 0500 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:43:16.0903 0500 idsvc - ok
00:43:17.0028 0500 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
00:43:17.0028 0500 Imapi - ok
00:43:17.0075 0500 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
00:43:17.0075 0500 ImapiService - ok
00:43:17.0091 0500 ini910u - ok
00:43:17.0341 0500 IntcAzAudAddService (b12a9fc49cd2765a43829d834f518aed) C:\WINDOWS\system32\drivers\RtkHDAud.sys
00:43:17.0372 0500 IntcAzAudAddService - ok
00:43:17.0497 0500 IntelIde - ok
00:43:17.0544 0500 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
00:43:17.0544 0500 intelppm - ok
00:43:17.0544 0500 IO_Memory - ok
00:43:17.0560 0500 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
00:43:17.0560 0500 Ip6Fw - ok
00:43:17.0575 0500 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:43:17.0575 0500 IpFilterDriver - ok
00:43:17.0622 0500 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
00:43:17.0622 0500 IpInIp - ok
00:43:17.0653 0500 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
00:43:17.0653 0500 IpNat - ok
00:43:17.0794 0500 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
00:43:17.0794 0500 iPod Service - ok
00:43:17.0810 0500 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
00:43:17.0810 0500 IPSec - ok
00:43:17.0841 0500 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
00:43:17.0841 0500 IRENUM - ok
00:43:17.0888 0500 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
00:43:17.0888 0500 isapnp - ok
00:43:17.0919 0500 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys
00:43:17.0919 0500 Iviaspi - ok
00:43:18.0013 0500 JavaQuickStarterService (e4ae0cbc0b55a5faa6996e38ce6c981b) C:\Program Files\Java\jre6\bin\jqs.exe
00:43:18.0013 0500 JavaQuickStarterService - ok
00:43:18.0028 0500 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
00:43:18.0028 0500 Kbdclass - ok
00:43:18.0044 0500 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
00:43:18.0044 0500 kmixer - ok
00:43:18.0091 0500 KR10N (00c1ea8decf810b8eccb5c5a8186a96e) C:\WINDOWS\system32\drivers\KR10N.sys
00:43:18.0091 0500 KR10N - ok
00:43:18.0122 0500 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
00:43:18.0122 0500 KSecDD - ok
00:43:18.0153 0500 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
00:43:18.0153 0500 lanmanserver - ok
00:43:18.0200 0500 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
00:43:18.0200 0500 lanmanworkstation - ok
00:43:18.0216 0500 lbrtfdc - ok
00:43:18.0419 0500 LiveUpdate (fb3a35318ca7f6a10fa3c3826a69affe) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
00:43:18.0435 0500 LiveUpdate - ok
00:43:18.0638 0500 LiveUpdate Notice Service (deb2a99c1ad9b9190c78e895ae60a745) C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
00:43:18.0638 0500 LiveUpdate Notice Service - ok
00:43:18.0794 0500 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
00:43:18.0794 0500 LmHosts - ok
00:43:18.0888 0500 Maxtor Sync Service (1bdb34a492109198cab0575f2743be70) C:\Program Files\Maxtor\Sync\SyncServices.exe
00:43:18.0903 0500 Maxtor Sync Service - ok
00:43:18.0950 0500 McrdSvc (df0a511f38f16016bf658fca0090cb87) C:\WINDOWS\ehome\mcrdsvc.exe
00:43:18.0950 0500 McrdSvc - ok
00:43:19.0013 0500 meiudf (7efac183a25b30fb5d64cc9d484b1eb6) C:\WINDOWS\system32\Drivers\meiudf.sys
00:43:19.0013 0500 meiudf - ok
00:43:19.0028 0500 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
00:43:19.0028 0500 Messenger - ok
00:43:19.0060 0500 MHN (b7521f69c0a9b29d356157229376fb21) C:\WINDOWS\System32\mhn.dll
00:43:19.0075 0500 MHN - ok
00:43:19.0091 0500 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
00:43:19.0091 0500 MHNDRV - ok
00:43:19.0122 0500 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
00:43:19.0122 0500 mnmdd - ok
00:43:19.0153 0500 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
00:43:19.0153 0500 mnmsrvc - ok
00:43:19.0185 0500 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
00:43:19.0185 0500 Modem - ok
00:43:19.0200 0500 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
00:43:19.0200 0500 Mouclass - ok
00:43:19.0247 0500 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
00:43:19.0263 0500 mouhid - ok
00:43:19.0278 0500 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
00:43:19.0278 0500 MountMgr - ok
00:43:19.0341 0500 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:43:19.0341 0500 MozillaMaintenance - ok
00:43:19.0341 0500 mraid35x - ok
00:43:19.0356 0500 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
00:43:19.0372 0500 MRxDAV - ok
00:43:19.0419 0500 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:43:19.0435 0500 MRxSmb - ok
00:43:19.0466 0500 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
00:43:19.0466 0500 MSDTC - ok
00:43:19.0466 0500 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
00:43:19.0481 0500 Msfs - ok
00:43:19.0481 0500 MSIServer - ok
00:43:19.0497 0500 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:43:19.0497 0500 MSKSSRV - ok
00:43:19.0513 0500 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:43:19.0513 0500 MSPCLOCK - ok
00:43:19.0513 0500 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
00:43:19.0528 0500 MSPQM - ok
00:43:19.0560 0500 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
00:43:19.0560 0500 mssmbios - ok
00:43:19.0591 0500 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
00:43:19.0591 0500 Mup - ok
00:43:19.0606 0500 MXOPSWD (216ac775320f64de28cfeb7c179c4ff9) C:\WINDOWS\system32\DRIVERS\mxopswd.sys
00:43:19.0606 0500 MXOPSWD - ok
00:43:19.0638 0500 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
00:43:19.0653 0500 napagent - ok
00:43:19.0685 0500 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
00:43:19.0685 0500 NDIS - ok
00:43:19.0731 0500 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:43:19.0731 0500 NdisTapi - ok
00:43:19.0747 0500 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
00:43:19.0747 0500 Ndisuio - ok
00:43:19.0778 0500 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:43:19.0778 0500 NdisWan - ok
00:43:19.0794 0500 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
00:43:19.0794 0500 NDProxy - ok
00:43:19.0810 0500 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
00:43:19.0825 0500 NetBIOS - ok
00:43:19.0841 0500 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
00:43:19.0841 0500 NetBT - ok
00:43:19.0872 0500 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
00:43:19.0872 0500 NetDDE - ok
00:43:19.0888 0500 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
00:43:19.0888 0500 NetDDEdsdm - ok
00:43:19.0903 0500 Netdevio (1265eb253ed4ebe4acb3bd5f548ff796) C:\WINDOWS\system32\DRIVERS\netdevio.sys
00:43:19.0903 0500 Netdevio - ok
00:43:19.0935 0500 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
00:43:19.0935 0500 Netlogon - ok
00:43:19.0950 0500 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
00:43:19.0966 0500 Netman - ok
00:43:20.0075 0500 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:43:20.0075 0500 NetTcpPortSharing - ok
00:43:20.0106 0500 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
00:43:20.0106 0500 NIC1394 - ok
00:43:20.0153 0500 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
00:43:20.0153 0500 Nla - ok
00:43:20.0185 0500 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
00:43:20.0185 0500 Npfs - ok
00:43:20.0231 0500 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
00:43:20.0231 0500 Ntfs - ok
00:43:20.0278 0500 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
00:43:20.0278 0500 NtLmSsp - ok
00:43:20.0341 0500 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
00:43:20.0341 0500 NtmsSvc - ok
00:43:20.0388 0500 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
00:43:20.0388 0500 Null - ok
00:43:20.0435 0500 NWCWorkstation (2c2fd0e6b0180f94c260dd26706aa5f4) C:\WINDOWS\System32\nwwks.dll
00:43:20.0435 0500 NWCWorkstation - ok
00:43:20.0466 0500 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
00:43:20.0466 0500 NwlnkFlt - ok
00:43:20.0481 0500 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
00:43:20.0481 0500 NwlnkFwd - ok
00:43:20.0513 0500 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
00:43:20.0513 0500 NwlnkIpx - ok
00:43:20.0528 0500 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
00:43:20.0528 0500 NwlnkNb - ok
00:43:20.0544 0500 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
00:43:20.0544 0500 NwlnkSpx - ok
00:43:20.0560 0500 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
00:43:20.0560 0500 NWRDR - ok
00:43:20.0575 0500 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
00:43:20.0575 0500 ohci1394 - ok
00:43:20.0731 0500 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:43:20.0731 0500 ose - ok
00:43:20.0763 0500 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
00:43:20.0763 0500 Parport - ok
00:43:20.0778 0500 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
00:43:20.0778 0500 PartMgr - ok
00:43:20.0794 0500 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
00:43:20.0794 0500 ParVdm - ok
00:43:20.0810 0500 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
00:43:20.0810 0500 PCI - ok
00:43:20.0810 0500 PCIDump - ok
00:43:20.0810 0500 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
00:43:20.0825 0500 PCIIde - ok
00:43:20.0841 0500 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
00:43:20.0841 0500 Pcmcia - ok
00:43:20.0856 0500 PDCOMP - ok
00:43:20.0856 0500 PDFRAME - ok
00:43:20.0856 0500 PDRELI - ok
00:43:20.0872 0500 PDRFRAME - ok
00:43:20.0872 0500 perc2 - ok
00:43:20.0872 0500 perc2hib - ok
00:43:20.0903 0500 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
00:43:20.0903 0500 Pfc - ok
00:43:20.0950 0500 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
00:43:20.0966 0500 PlugPlay - ok
00:43:20.0997 0500 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
00:43:20.0997 0500 PolicyAgent - ok
00:43:21.0028 0500 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
00:43:21.0028 0500 PptpMiniport - ok
00:43:21.0028 0500 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
00:43:21.0028 0500 ProtectedStorage - ok
00:43:21.0044 0500 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
00:43:21.0044 0500 PSched - ok
00:43:21.0044 0500 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
00:43:21.0044 0500 Ptilink - ok
00:43:21.0060 0500 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\Drivers\PxHelp20.sys
00:43:21.0060 0500 PxHelp20 - ok
00:43:21.0060 0500 ql1080 - ok
00:43:21.0075 0500 Ql10wnt - ok
00:43:21.0075 0500 ql12160 - ok
00:43:21.0075 0500 ql1240 - ok
00:43:21.0091 0500 ql1280 - ok
00:43:21.0106 0500 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:43:21.0106 0500 RasAcd - ok
00:43:21.0138 0500 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
00:43:21.0138 0500 RasAuto - ok
00:43:21.0169 0500 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
00:43:21.0169 0500 Rasl2tp - ok
00:43:21.0231 0500 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
00:43:21.0231 0500 RasMan - ok
00:43:21.0247 0500 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:43:21.0247 0500 RasPppoe - ok
00:43:21.0263 0500 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
00:43:21.0263 0500 Raspti - ok
00:43:21.0310 0500 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:43:21.0310 0500 Rdbss - ok
00:43:21.0310 0500 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
00:43:21.0325 0500 RDPCDD - ok
00:43:21.0372 0500 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
00:43:21.0372 0500 rdpdr - ok
00:43:21.0419 0500 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
00:43:21.0419 0500 RDPWD - ok
00:43:21.0466 0500 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
00:43:21.0466 0500 RDSessMgr - ok
00:43:21.0481 0500 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
00:43:21.0481 0500 redbook - ok
00:43:21.0591 0500 RegSrvc (1b2857ef12d79a9f9adba14b0637cbf8) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
00:43:21.0591 0500 RegSrvc - ok
00:43:21.0622 0500 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
00:43:21.0638 0500 RemoteAccess - ok
00:43:21.0638 0500 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
00:43:21.0653 0500 RemoteRegistry - ok
00:43:21.0669 0500 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
00:43:21.0669 0500 RpcLocator - ok
00:43:21.0731 0500 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
00:43:21.0731 0500 RpcSs - ok
00:43:21.0763 0500 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
00:43:21.0763 0500 RSVP - ok
00:43:21.0872 0500 S24EventMonitor (6c5155cc0e805c7be6028bff7ac14524) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
00:43:21.0888 0500 S24EventMonitor - ok
00:43:21.0950 0500 s24trans (1cc074e0d48383d4e9bffc6a26c2a58a) C:\WINDOWS\system32\DRIVERS\s24trans.sys
00:43:21.0950 0500 s24trans - ok
00:43:21.0997 0500 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
00:43:21.0997 0500 SamSs - ok
00:43:22.0044 0500 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
00:43:22.0044 0500 SCardSvr - ok
00:43:22.0106 0500 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
00:43:22.0106 0500 Schedule - ok
00:43:22.0122 0500 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
00:43:22.0122 0500 sdbus - ok
00:43:22.0169 0500 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
00:43:22.0169 0500 Secdrv - ok
00:43:22.0185 0500 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
00:43:22.0200 0500 seclogon - ok
00:43:22.0216 0500 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
00:43:22.0216 0500 SENS - ok
00:43:22.0247 0500 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
00:43:22.0263 0500 Serial - ok
00:43:22.0278 0500 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
00:43:22.0294 0500 sffdisk - ok
00:43:22.0294 0500 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
00:43:22.0294 0500 sffp_sd - ok
00:43:22.0310 0500 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
00:43:22.0310 0500 Sfloppy - ok
00:43:22.0356 0500 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
00:43:22.0372 0500 SharedAccess - ok
00:43:22.0419 0500 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
00:43:22.0419 0500 ShellHWDetection - ok
00:43:22.0435 0500 Simbad - ok
00:43:22.0466 0500 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
00:43:22.0466 0500 SONYPVU1 - ok
00:43:22.0466 0500 Sparrow - ok
00:43:22.0497 0500 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
00:43:22.0497 0500 splitter - ok
00:43:22.0544 0500 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
00:43:22.0560 0500 Spooler - ok
00:43:22.0685 0500 sprtsvc_ddoctorv2 (c3716ec0d36ad924b6888d794563e647) C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
00:43:22.0685 0500 sprtsvc_ddoctorv2 - ok
00:43:22.0700 0500 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
00:43:22.0700 0500 sr - ok
00:43:22.0747 0500 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
00:43:22.0763 0500 srservice - ok
00:43:22.0825 0500 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
00:43:22.0825 0500 Srv - ok
00:43:22.0856 0500 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
00:43:22.0856 0500 SSDPSRV - ok
00:43:22.0903 0500 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
00:43:22.0919 0500 stisvc - ok
00:43:22.0919 0500 SVRPEDRV - ok
00:43:22.0966 0500 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
00:43:22.0966 0500 swenum - ok
00:43:22.0981 0500 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
00:43:22.0981 0500 swmidi - ok
00:43:22.0981 0500 SwPrv - ok
00:43:23.0028 0500 Swupdtmr (486a64aabd88e4e174681e89e9736bc9) c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
00:43:23.0044 0500 Swupdtmr - ok
00:43:23.0044 0500 symc810 - ok
00:43:23.0044 0500 symc8xx - ok
00:43:23.0060 0500 sym_hi - ok
00:43:23.0060 0500 sym_u3 - ok
00:43:23.0106 0500 SynTP (e295fffff3aaf9a6a40b29497901908f) C:\WINDOWS\system32\DRIVERS\SynTP.sys
00:43:23.0106 0500 SynTP - ok
00:43:23.0122 0500 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
00:43:23.0122 0500 sysaudio - ok
00:43:23.0153 0500 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
00:43:23.0153 0500 SysmonLog - ok
00:43:23.0185 0500 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
00:43:23.0200 0500 TapiSrv - ok
00:43:23.0294 0500 TAPPSRV (90861642fd6d8fafb1408ee26fa93cb4) C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
00:43:23.0294 0500 TAPPSRV - ok
00:43:23.0325 0500 tbiosdrv (7147b0575bcc93a6ab7d5c90f47c0b9f) C:\WINDOWS\system32\DRIVERS\tbiosdrv.sys
00:43:23.0325 0500 tbiosdrv - ok
00:43:23.0372 0500 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
00:43:23.0372 0500 Tcpip - ok
00:43:23.0419 0500 TcUsb (fc6fe02f400308606a911640e72326b5) C:\WINDOWS\system32\Drivers\tcusb.sys
00:43:23.0419 0500 TcUsb - ok
00:43:23.0435 0500 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
00:43:23.0450 0500 TDPIPE - ok
00:43:23.0450 0500 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
00:43:23.0450 0500 TDTCP - ok
00:43:23.0481 0500 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
00:43:23.0481 0500 TermDD - ok
00:43:23.0544 0500 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
00:43:23.0544 0500 TermService - ok
00:43:23.0606 0500 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
00:43:23.0606 0500 Themes - ok
00:43:23.0638 0500 tifm21 (244cfbffdefb77f3df571a8cd108fc06) C:\WINDOWS\system32\drivers\tifm21.sys
00:43:23.0638 0500 tifm21 - ok
00:43:23.0669 0500 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
00:43:23.0685 0500 TlntSvr - ok
00:43:23.0685 0500 TosIde - ok
00:43:23.0716 0500 tosrfec (cc069342ee0eae55b32a0ae99cf6185c) C:\WINDOWS\system32\DRIVERS\tosrfec.sys
00:43:23.0716 0500 tosrfec - ok
00:43:23.0747 0500 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
00:43:23.0747 0500 TrkWks - ok
00:43:23.0763 0500 TVALD (676db15ddf2e0ff6ec03068dea428b8b) C:\WINDOWS\system32\DRIVERS\NBSMI.sys
00:43:23.0763 0500 TVALD - ok
00:43:23.0778 0500 Tvs (cc6763889198ef975b143d49789bcfa9) C:\WINDOWS\system32\DRIVERS\Tvs.sys
00:43:23.0778 0500 Tvs - ok
00:43:23.0825 0500 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
00:43:23.0825 0500 Udfs - ok
00:43:23.0825 0500 ultra - ok
00:43:23.0888 0500 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
00:43:23.0903 0500 Update - ok
00:43:23.0950 0500 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
00:43:23.0950 0500 upnphost - ok
00:43:23.0966 0500 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
00:43:23.0966 0500 UPS - ok
00:43:24.0013 0500 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\WINDOWS\system32\Drivers\usbaapl.sys
00:43:24.0013 0500 USBAAPL - ok
00:43:24.0044 0500 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
00:43:24.0044 0500 usbaudio - ok
00:43:24.0060 0500 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
00:43:24.0060 0500 usbccgp - ok
00:43:24.0091 0500 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
00:43:24.0091 0500 usbehci - ok
00:43:24.0106 0500 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
00:43:24.0106 0500 usbhub - ok
00:43:24.0138 0500 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
00:43:24.0138 0500 usbprint - ok
00:43:24.0169 0500 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
00:43:24.0169 0500 usbscan - ok
00:43:24.0185 0500 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
00:43:24.0185 0500 USBSTOR - ok
00:43:24.0216 0500 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
00:43:24.0216 0500 usbuhci - ok
00:43:24.0216 0500 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
00:43:24.0216 0500 VgaSave - ok
00:43:24.0231 0500 ViaIde - ok
00:43:24.0231 0500 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
00:43:24.0247 0500 VolSnap - ok
00:43:24.0278 0500 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
00:43:24.0294 0500 VSS - ok
00:43:24.0325 0500 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
00:43:24.0325 0500 W32Time - ok
00:43:24.0450 0500 w39n51 (b1f126e7e28877106d60e6ff3998d033) C:\WINDOWS\system32\DRIVERS\w39n51.sys
00:43:24.0466 0500 w39n51 - ok
00:43:24.0622 0500 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:43:24.0622 0500 Wanarp - ok
00:43:24.0669 0500 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
00:43:24.0669 0500 wanatw - ok
00:43:24.0685 0500 WDICA - ok
00:43:24.0731 0500 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
00:43:24.0731 0500 wdmaud - ok
00:43:24.0778 0500 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
00:43:24.0794 0500 WebClient - ok
00:43:24.0888 0500 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
00:43:24.0888 0500 winmgmt - ok
00:43:24.0935 0500 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
00:43:24.0935 0500 WmdmPmSN - ok
00:43:25.0013 0500 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
00:43:25.0028 0500 Wmi - ok
00:43:25.0060 0500 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
00:43:25.0060 0500 WmiApSrv - ok
00:43:25.0200 0500 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
00:43:25.0216 0500 WMPNetworkSvc - ok
00:43:25.0278 0500 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
00:43:25.0278 0500 WpdUsb - ok
00:43:25.0325 0500 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
00:43:25.0325 0500 WS2IFSL - ok
00:43:25.0356 0500 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
00:43:25.0372 0500 wscsvc - ok
00:43:25.0388 0500 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
00:43:25.0388 0500 wuauserv - ok
00:43:25.0435 0500 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
00:43:25.0435 0500 WudfPf - ok
00:43:25.0450 0500 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
00:43:25.0466 0500 WudfRd - ok
00:43:25.0481 0500 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
00:43:25.0481 0500 WudfSvc - ok
00:43:25.0544 0500 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
00:43:25.0560 0500 WZCSVC - ok
00:43:25.0591 0500 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
00:43:25.0591 0500 xmlprov - ok
00:43:25.0731 0500 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
00:43:25.0747 0500 YahooAUService - ok
00:43:25.0778 0500 MBR (0x1B8) (09ce7397af23d4c0b331b89d0297cc7e) \Device\Harddisk0\DR0
00:43:26.0013 0500 \Device\Harddisk0\DR0 - ok
00:43:26.0013 0500 Boot (0x1200) (972e992c2dcab39b155e153ad65ea7de) \Device\Harddisk0\DR0\Partition0
00:43:26.0013 0500 \Device\Harddisk0\DR0\Partition0 - ok
00:43:26.0013 0500 ============================================================
00:43:26.0013 0500 Scan finished
00:43:26.0013 0500 ============================================================
00:43:26.0028 2588 Detected object count: 0
00:43:26.0028 2588 Actual detected object count: 0
00:43:36.0888 2356 Deinitialize success

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 15 May 2012 - 01:50 AM

Malwarebytes log?

#7 wakko9

wakko9
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:48 PM

Posted 17 May 2012 - 01:49 AM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.14.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Administrator :: TOSHIBA-USER2 [administrator]

5/14/2012 7:56:26 AM
mbam-log-2012-05-14 (07-56-26).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 323296
Time elapsed: 1 hour(s), 11 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 17 May 2012 - 02:02 AM

Did you get back your startmenu programs?

Press Windows+R key and type

%temp% and click ok

If you find a folder called SMTMP ,copy it to a safe location


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#9 wakko9

wakko9
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:48 PM

Posted 18 May 2012 - 10:01 AM

looks like everything is back...



C:\Qoobox\Quarantine\C\Program Files\Search Toolbar\SearchToolbar.dll.vir Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\WINDOWS\system32\MTvFLkkj.ini.vir Win32/Adware.Virtumonde.NEO application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\WINDOWS\system32\MTvFLkkj.ini2.vir Win32/Adware.Virtumonde.NEO application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\WINDOWS\system32\pebgvebv.ini.vir Win32/Adware.Virtumonde.NEO application cleaned by deleting - quarantined




MiniToolBox by Farbar Version: 18-01-2012
Ran by Administrator (administrator) on 18-05-2012 at 09:58:49
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® PRO/100 VE Network Connection = Local Area Connection (Connected)
1394 Net Adapter = 1394 Connection (Connected)
Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : TOSHIBA-USER2

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Wireless Network Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection

Physical Address. . . . . . . . . : 00-18-DE-6A-75-CB



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

Physical Address. . . . . . . . . : 00-A0-D1-5C-3D-72

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 10.175.45.153

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 10.175.45.6

DHCP Server . . . . . . . . . . . : 10.175.45.6

DNS Servers . . . . . . . . . . . : 192.168.15.1

Lease Obtained. . . . . . . . . . : Friday, May 18, 2012 12:12:00 AM

Lease Expires . . . . . . . . . . : Saturday, May 19, 2012 12:12:00 AM

Server: mywimax
Address: 192.168.15.1

Name: google.com
Addresses: 74.125.225.69, 74.125.225.64, 74.125.225.72, 74.125.225.73
74.125.225.67, 74.125.225.71, 74.125.225.68, 74.125.225.78, 74.125.225.70
74.125.225.66, 74.125.225.65



Pinging google.com [74.125.225.64] with 32 bytes of data:



Reply from 74.125.225.64: bytes=32 time=61ms TTL=53

Reply from 74.125.225.64: bytes=32 time=71ms TTL=53



Ping statistics for 74.125.225.64:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 61ms, Maximum = 71ms, Average = 66ms

Server: mywimax
Address: 192.168.15.1

Name: yahoo.com
Addresses: 72.30.38.140, 98.139.183.24, 209.191.122.70



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=603ms TTL=52

Reply from 98.139.183.24: bytes=32 time=642ms TTL=52



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 603ms, Maximum = 642ms, Average = 622ms

Server: mywimax
Address: 192.168.15.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 18 de 6a 75 cb ...... Intel® PRO/Wireless 3945ABG Network Connection - Packet Scheduler Miniport
0x3 ...00 a0 d1 5c 3d 72 ...... Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.175.45.6 10.175.45.153 20
10.175.45.0 255.255.255.0 10.175.45.153 10.175.45.153 20
10.175.45.153 255.255.255.255 127.0.0.1 127.0.0.1 20
10.255.255.255 255.255.255.255 10.175.45.153 10.175.45.153 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 10.175.45.153 10.175.45.153 20
224.0.0.0 240.0.0.0 10.175.45.153 10.175.45.153 20
255.255.255.255 255.255.255.255 10.175.45.153 10.175.45.153 1
255.255.255.255 255.255.255.255 10.175.45.153 2 1
Default Gateway: 10.175.45.6
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/18/2012 03:02:26 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office Standard Edition 2003 - Update 'Security Update for Excel 2003 (KB2597086): EXCEL' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/18/2012 03:01:56 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office OneNote 2003 - Update 'Security Update for Office 2003 (KB2598253): GDIPLUS' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/18/2012 03:01:44 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office Standard Edition 2003 - Update 'Update for Outlook 2003: Junk E-mail Filter (KB2598343): OUTLFLTR' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/18/2012 03:01:28 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office OneNote 2003 - Update 'Security Update for Office 2003 (KB2597112): MSCOMCTL' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/18/2012 03:01:14 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office Standard Edition 2003 - Update 'Security Update for Word 2003 (KB2598332): WINWORD' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/17/2012 03:01:59 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office Standard Edition 2003 - Update 'Security Update for Excel 2003 (KB2597086): EXCEL' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/17/2012 03:01:33 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office OneNote 2003 - Update 'Security Update for Office 2003 (KB2598253): GDIPLUS' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/17/2012 03:01:21 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office Standard Edition 2003 - Update 'Update for Outlook 2003: Junk E-mail Filter (KB2598343): OUTLFLTR' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (05/17/2012 03:01:21 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office Standard Edition 2003 -- Error 1719. The Windows Installer Service could not be accessed. This can occur if you are running Windows in safe mode, or if the Windows Installer is not correctly installed. Contact your support personnel for assistance.

Error: (05/17/2012 03:01:08 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: Microsoft Office OneNote 2003 - Update 'Security Update for Office 2003 (KB2597112): MSCOMCTL' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127


System errors:
=============
Error: (05/18/2012 03:03:29 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Office Excel 2003 (KB2597086).

Error: (05/18/2012 03:02:01 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Office 2003 (KB2598253).

Error: (05/18/2012 03:01:49 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2598343).

Error: (05/18/2012 03:01:33 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Office 2003 (KB2597112).

Error: (05/18/2012 03:01:19 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Office Word 2003 (KB2598332).

Error: (05/18/2012 00:12:51 AM) (Source: Service Control Manager) (User: )
Description: The Microsoft HID Class Support service terminated with the following error:
%%2

Error: (05/17/2012 11:59:35 PM) (Source: Service Control Manager) (User: )
Description: The Microsoft HID Class Support service terminated with the following error:
%%2

Error: (05/17/2012 03:01:38 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Office 2003 (KB2598253).

Error: (05/17/2012 03:01:26 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2598343).

Error: (05/17/2012 03:01:13 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Office 2003 (KB2597112).


Microsoft Office Sessions:
=========================
Error: (05/18/2012 03:02:26 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office Standard Edition 2003Security Update for Excel 2003 (KB2597086): EXCEL1603(NULL)

Error: (05/18/2012 03:01:56 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office OneNote 2003Security Update for Office 2003 (KB2598253): GDIPLUS1603(NULL)

Error: (05/18/2012 03:01:44 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office Standard Edition 2003Update for Outlook 2003: Junk E-mail Filter (KB2598343): OUTLFLTR1603(NULL)

Error: (05/18/2012 03:01:28 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office OneNote 2003Security Update for Office 2003 (KB2597112): MSCOMCTL1603(NULL)

Error: (05/18/2012 03:01:14 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office Standard Edition 2003Security Update for Word 2003 (KB2598332): WINWORD1603(NULL)

Error: (05/17/2012 03:01:59 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office Standard Edition 2003Security Update for Excel 2003 (KB2597086): EXCEL1603(NULL)

Error: (05/17/2012 03:01:33 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office OneNote 2003Security Update for Office 2003 (KB2598253): GDIPLUS1603(NULL)

Error: (05/17/2012 03:01:21 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office Standard Edition 2003Update for Outlook 2003: Junk E-mail Filter (KB2598343): OUTLFLTR1603(NULL)

Error: (05/17/2012 03:01:21 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Product: Microsoft Office Standard Edition 2003 -- Error 1719. The Windows Installer Service could not be accessed. This can occur if you are running Windows in safe mode, or if the Windows Installer is not correctly installed. Contact your support personnel for assistance.(NULL)(NULL)(NULL)

Error: (05/17/2012 03:01:08 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Microsoft Office OneNote 2003Security Update for Office 2003 (KB2597112): MSCOMCTL1603(NULL)


=========================== Installed Programs ============================

Adobe AIR (Version: 1.5.1.8210)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.233)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Reader 7.0.9 (Version: 7.0.9)
America Online (Choose which version to remove)
AOL Connectivity Services
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ArcSoft PhotoStudio 5.5
ARO 2011 (Version: 7.0)
Ask.com Toolbar (Version: 1.2.1.0)
Atari Asteroids (Version: 1.0)
Atari Classics Evolved-Asteroids
Atari Classics Evolved-Asteroids (Version: 1.0)
avast! Free Antivirus (Version: 7.0.1426.0)
AviSynth 2.5
Bejeweled 2 Deluxe (Version: WT010043)
BIONICLE Heroes (Version: 1.00.0000)
Blackhawk Striker 2 (Version: WT006448)
Bluetooth Stack for Windows by Toshiba (Version: v4.00.23(T))
Bonjour (Version: 3.0.0.10)
Brother HL-2170W (Version: 1.00)
Canon MP160 User Registration
CCleaner (Version: 3.16)
CD/DVD Drive Acoustic Silencer (Version: 1.00.008)
Chuzzle Deluxe (Version: WT009952)
Comcast High-Speed Internet Install Wizard
Comcast Toolbar
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CopyPod Suite (remove only)
Coupon Printer for Windows (Version: 4.0)
Critical Update for Windows Media Player 11 (KB959772)
Desktop Dialer
Desktop Doctor (Version: 2.5.5)
DVD-RAM Driver (Version: 5.0.2.5)
EasyCleaner (Version: 2.0.6.369)
Eclipse Illustration Software (Version: 5.15.8)
ESET Online Scanner v3
ESPNMotion (Version: 2.1.6.0011)
Federal Life Term Rate Card
Google Chrome (Version: 19.0.1084.46)
Google Update Helper (Version: 1.3.21.111)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
Higher Score on the SAT/PSAT
HijackThis 2.0.2 (Version: 2.0.2)
HOTLLAMA Media Player
HOTLLAMA Media Player - Update (Version: 1.7.4)
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4436)
Intel® PRO Network Connections Drivers
Intel® PROSet/Wireless Software (Version: 10.01.0000)
InterActual Player
InterVideo WinDVD Creator 2 (Version: 2.0.14.376)
InterVideo WinDVD for TOSHIBA (Version: 5.0-B11.561)
iPod for Windows 2006-01-10 (Version: 4.7.0)
iTunes (Version: 10.6.1.7)
J2SE Runtime Environment 5.0 Update 4 (Version: 1.5.0.40)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 21 (Version: 6.0.210)
Life Illustration System
LiveUpdate 3.1 (Symantec Corporation) (Version: 3.1.0.99)
LiveUpdate Notice (Symantec Corporation) (Version: 1.4.5)
magicJack (Version: 2.0.6073.4252)
Mah Jong Quest (Version: WT009953)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Maxtor Manager (Version: 4.02.0303)
mCore (Version: 5.40.0000)
mDrWiFi (Version: 5.40.0000)
mHelp (Version: 5.40.0000)
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2604042)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office OneNote 2003 (Version: 11.0.8173.0)
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 08.05.0818)
mIWA (Version: 5.40.0000)
mLogView (Version: 5.40.0000)
mMHouse (Version: 5.40.0000)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 11.0 (x86 en-US) (Version: 11.0)
mPfMgr (Version: 5.40.0000)
mPfWiz (Version: 5.40.0000)
mProSafe (Version: 9.00.0000)
MSN
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 and SOAP Toolkit 3.0 (Version: 1.0.0.0)
MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0)
mWlsSafe (Version: 9.00.0000)
mXML (Version: 5.40.0000)
mZConfig (Version: 5.40.0000)
Netflix Movie Viewer (Version: 1.2.211)
Office 2003 Trial Assistant (Version: 1.0.0)
Otto
Palm Desktop (Version: 4.1.0410)
Penguins! (Version: WT009503)
Picasa 3 (Version: 3.8)
Polar Golfer (Version: WT004829)
Pure Networks Port Magic (Version: 1.2.1393.0)
QuickTime (Version: 7.71.80.42)
RealPlayer Basic
Realtek High Definition Audio Driver (Version: 2.02)
Safari (Version: 5.34.55.3)
Samsung ML-2510 Series
ScanSoft OmniPage SE 4.0 (Version: 15.00.0020)
SCRABBLE (Version: WT009954)
SD Secure Module (Version: 1.0.3)
Sonic DLA (Version: 5.2.0)
Sonic Encoders (Version: 1.00)
Sonic RecordNow! (Version: 7.31)
Synaptics Pointing Device Driver (Version: 8.2.9.0)
Texas Instruments PCIxx21/x515/xx12 drivers. (Version: 1.16.0000)
TIPCI (Version: 1.16.0000)
TOSHIBA ConfigFree (Version: 5.90.05)
TOSHIBA Controls
TOSHIBA Hotkey Utility (Version: 1.00.01ST)
Toshiba Media Center Game Console (Version: 1.0.0)
TOSHIBA PC Diagnostic Tool
TOSHIBA Power Saver (Version: 7.03.07.I)
Toshiba Registration (Version: 1.00.0000)
TOSHIBA SD Memory Card Format
TOSHIBA Software Modem (Version: 2.1.62 (SM2162ALD04))
TOSHIBA Software Upgrades
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA TouchPad ON/Off Utility (Version: 1.00.01ST)
TOSHIBA TV Tuner 4.0.12.73 (Version: 4.0.12.73)
TOSHIBA Utilities (Version: 1.00.07ST)
TOSHIBA Virtual Sound
TOSHIBA Zooming Utility
TouchCopy 09 (Version: 9.38)
Unity Web Player (Version: )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update Rollup 2 for Windows XP Media Center Edition 2005
USB Print Server
VC 9.0 Runtime (Version: 1.0.0)
Viewpoint Media Player
WebFldrs XP (Version: 9.50.7523)
WildTangent Web Driver
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 7 (Version: 20061107.210142)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live OneCare safety scanner
Windows Media Format 11 runtime
Windows PowerShell™ 1.0 (Version: 2)
Windows Rights Management Client Backwards Compatibility SP2 (Version: 5.2.70)
Windows Rights Management Client with Service Pack 2 (Version: 5.2.70)
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Windows XP Media Center Edition 2005 KB888316
Windows XP Media Center Edition 2005 KB894553
Windows XP Media Center Edition 2005 KB895678
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3 (Version: 20080414.031525)
Xilisoft iPod Rip (Version: 4.1.1.0418)
Yahoo! Browser Services
Yahoo! BrowserPlus 2.9.8
Yahoo! Install Manager
Yahoo! Internet Mail
Yahoo! Messenger
Yahoo! Music Jukebox
Yahoo! Search Protection
Yahoo! Software Update
Yahoo! Toolbar
ZoneAlarm Firewall (Version: 10.1.101.000)
ZoneAlarm Free (Version: 10.1.101.000)
ZoneAlarm LTD Toolbar
ZoneAlarm Security (Version: 10.1.101.000)

========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 2037.98 MB
Available physical RAM: 1318.55 MB
Total Pagefile: 3933.84 MB
Available Pagefile: 3366.7 MB
Total Virtual: 2047.88 MB
Available Virtual: 1963.25 MB

========================= Partitions: =====================================

1 Drive c: (SQ004224P01) (Fixed) (Total:148.8 GB) (Free:86.45 GB) NTFS

========================= Users: ========================================

User accounts for \\TOSHIBA-USER2

Administrator ASPNET Conrado Javier
Guest HelpAssistant Owner
SUPPORT_388945a0


**** End of log ****

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:48 PM

Posted 18 May 2012 - 10:18 AM

Download the update fixit

fixit

Run it

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://support.microsoft.com/kb/310405

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users