Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DLL Error Message


  • Please log in to reply
11 replies to this topic

#1 dakar

dakar

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 PM

Posted 25 May 2012 - 11:55 AM

Hi all
I have a very annoying problem that has recently started,I am running Windows XP sp3.
I keep getting a pop up message which reads The applicationor DLL C:\Progra~1\Mesha~1\MediaBar\Datamngr\datamngr.dll is not avalid Windows image.
This happens everytime I try to open a programme.
I have run Malwarebytes and Avast in safe mode they found no problem,I was told it might be a problem with my hp printer software,so I uninstalled the printer,still the problem remains,I have reinstalled the printer,and that has not cleared the problem.
I am at a loss as to where to go next,so if anybody can give me a few pointers I would really appreciate it.
Kind Regards
Dakar

Edited by hamluis, 25 May 2012 - 12:00 PM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:33 PM

Posted 25 May 2012 - 12:24 PM

Hello and welcome.
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware and save it to your desktop.
Download Link 1 <<<== Use this one first.

Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

Troubleshoot Malwarebytes' Anti-Malware



Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning
.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 dakar

dakar
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 PM

Posted 25 May 2012 - 03:44 PM

MiniToolBox by Farbar Version: 18-01-2012
Ran by HP_Administrator (administrator) on 25-05-2012 at 21:00:08
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
Hosts file not detected in the default directory
========================= IP Configuration: ================================

1394 Net Adapter = 1394 Connection (Connected)
Belkin High-Speed Mode Wireless G USB Network Adapter = Wireless Network Connection 7 (Connected)
Realtek RTL8139/810x Family Fast Ethernet NIC = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "Wireless Network Connection 7"

set address name="Wireless Network Connection 7" source=dhcp
set dns name="Wireless Network Connection 7" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 7" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : DARYLS

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : home



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC

Physical Address. . . . . . . . . : 00-15-F2-39-BA-80



Ethernet adapter Wireless Network Connection 7:



Connection-specific DNS Suffix . : home

Description . . . . . . . . . . . : Belkin High-Speed Mode Wireless G USB Network Adapter

Physical Address. . . . . . . . . : 00-11-50-7E-24-E0

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.64

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

NetBIOS over Tcpip. . . . . . . . : Disabled

Lease Obtained. . . . . . . . . . : 25 May 2012 20:19:04

Lease Expires . . . . . . . . . . : 26 May 2012 20:19:04

Server: api.home
Address: 192.168.1.254

Name: google.com
Addresses: 173.194.34.103, 173.194.34.102, 173.194.34.99, 173.194.34.96
173.194.34.110, 173.194.34.104, 173.194.34.97, 173.194.34.105, 173.194.34.98
173.194.34.100, 173.194.34.101



Pinging google.com [173.194.34.104] with 32 bytes of data:



Reply from 173.194.34.104: bytes=32 time=9ms TTL=51

Reply from 173.194.34.104: bytes=32 time=9ms TTL=51



Ping statistics for 173.194.34.104:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 9ms, Maximum = 9ms, Average = 9ms

Server: api.home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24, 209.191.122.70, 72.30.38.140



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:



Reply from 72.30.38.140: bytes=32 time=243ms TTL=44

Reply from 72.30.38.140: bytes=32 time=253ms TTL=44



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 243ms, Maximum = 253ms, Average = 248ms

Server: api.home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 15 f2 39 ba 80 ...... Realtek RTL8139/810x Family Fast Ethernet NIC - Packet Scheduler Miniport
0x10004 ...00 11 50 7e 24 e0 ...... Belkin High-Speed Mode Wireless G USB Network Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.64 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.64 192.168.1.64 20
192.168.1.0 255.255.255.0 192.168.1.64 192.168.1.64 25
192.168.1.64 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.64 192.168.1.64 25
224.0.0.0 240.0.0.0 192.168.1.64 192.168.1.64 25
255.255.255.255 255.255.255.255 192.168.1.64 192.168.1.64 1
255.255.255.255 255.255.255.255 192.168.1.64 2 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/25/2012 07:05:09 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2125

Error: (05/25/2012 07:05:09 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2125

Error: (05/25/2012 07:05:09 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/24/2012 04:16:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6937032

Error: (05/24/2012 04:16:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6937032

Error: (05/24/2012 04:16:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/24/2012 04:16:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6935078

Error: (05/24/2012 04:16:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6935078

Error: (05/24/2012 04:16:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/23/2012 09:22:16 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5704828


System errors:
=============
Error: (05/25/2012 05:26:35 PM) (Source: 0) (User: )
Description: \Device\Harddisk6\D

Error: (05/25/2012 04:44:09 PM) (Source: DCOM) (User: SYSTEM)
Description: The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register with DCOM within the required timeout.

Error: (05/25/2012 04:43:31 PM) (Source: Service Control Manager) (User: )
Description: The IMAPI CD-Burning COM Service service failed to start due to the following error:
%%1053

Error: (05/25/2012 04:43:31 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the IMAPI CD-Burning COM Service service to connect.

Error: (05/25/2012 04:43:31 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the NVSvc service.

Error: (05/25/2012 04:41:59 PM) (Source: 0) (User: )
Description: F:

Error: (05/25/2012 04:41:59 PM) (Source: 0) (User: )
Description: F:

Error: (05/25/2012 04:41:59 PM) (Source: 0) (User: )
Description:

Error: (05/25/2012 04:41:59 PM) (Source: 0) (User: )
Description:

Error: (05/25/2012 04:41:59 PM) (Source: 0) (User: )
Description:


Microsoft Office Sessions:
=========================
Error: (05/25/2012 07:05:09 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2125

Error: (05/25/2012 07:05:09 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2125

Error: (05/25/2012 07:05:09 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/24/2012 04:16:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6937032

Error: (05/24/2012 04:16:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6937032

Error: (05/24/2012 04:16:04 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/24/2012 04:16:02 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6935078

Error: (05/24/2012 04:16:02 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6935078

Error: (05/24/2012 04:16:02 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/23/2012 09:22:16 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5704828


=========================== Installed Programs ============================

Adobe AIR (Version: 3.0.0.4080)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.63)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 7.0.1426.0)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2425)
AVG 2012 (Version: 2012.0.1913)
AVG Security Toolbar (Version: 10.2.0.3)
Bonjour (Version: 3.0.0.10)
BT Broadband Desktop Help
BufferChm (Version: 43.1.5.000)
CCleaner (Version: 3.17)
CP_Package_Variety1 (Version: 53.0.13.000)
CP_Package_Variety2 (Version: 53.0.13.000)
CP_Package_Variety3 (Version: 53.0.13.000)
CreativeProjects (Version: 43.1.5.000)
CreativeProjectsTemplates (Version: 43.1.5.000)
CueTour (Version: 43.1.5.000)
Destinations (Version: 43.1.5.000)
DeviceManagementQFolder (Version: 1.00.0000)
Director (Version: 43.1.5.000)
DocumentViewerQFolder (Version: 1.00.0000)
Eraser 6.0.9.2343 (Version: 6.0.2343)
FinePix Studio
FUJIFILM USB Driver
GemMaster Mystic
Google Earth (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Update Helper (Version: 1.3.21.111)
HiJackThis (Version: 1.0.0)
HP Diagnostic Assistant (Version: 1.0.0.0)
HP DigitalMedia Archive (Version: 1.2)
HP Image Zone 4.0 (Version: 4.0)
HP Scanjet 4070 (Version: 4.0)
HP Software Update (Version: 2.0.39.20040212)
hpg4070 (Version: 4.0.0.0)
HpSdpAppCoreApp (Version: 3.00.0000)
HPSystemDiagnostics (Version: 1.5.0.0)
HPTunesAddIn (Version: 1.0.0)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.017)
HTC Sync (Version: 3.0.5606)
Image Transfer (Version: 1.0)
InstantShare (Version: 4.0.0.40)
InterVideo WinDVD Player (Version: 5.0-B11.874)
iTunes (Version: 4.8.0.31)
J2SE Runtime Environment 5.0 Update 7 (Version: 1.5.0.70)
Java Auto Updater (Version: 2.0.5.1)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2604042)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Combat Flight Simulator
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Word 2002 (Version: 10.0.2627.01)
Microsoft Works (Version: 08.04.0623)
Microsoft XML Parser (Version: 8.70.1104.04)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
NVIDIA Drivers (Version: 1.3)
Open PDF Files 0.1 (Version: 0.1)
Overland (Version: 2.1.5)
PhotoGallery (Version: 43.1.5.000)
Photosmart 320,370,7400,8100,8400 Series (Version: 2.0)
PrintScreen (Version: 43.1.5.000)
PS2
PS7400 (Version: 1.00.0000)
PSPrinters06 (Version: 1.00.0000)
QuickProjects (Version: 43.1.5.000)
Scan (Version: 4.1.0.0)
SearchCore for Browsers (Version: 3.0.0.114951)
ShareIns (Version: 1.00.0000)
Sibelius Scorch (ActiveX Only) (Version: 6.2.0)
SkinsHP1 (Version: 43.1.5.000)
Sony USB Driver
Status (Version: 53.0.13.000)
SUPERAntiSpyware (Version: 5.0.1146)
TrayApp (Version: 43.1.5.000)
Unload (Version: 4.0.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 43.1.5.000)
WinASO Registry Optimizer 4.7.6
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell™ 1.0 (Version: 2)
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Yahoo! Detect
Yahoo! Toolbar

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 47%
Total physical RAM: 1535.3 MB
Available physical RAM: 810.69 MB
Total Pagefile: 2153.75 MB
Available Pagefile: 1517.64 MB
Total Virtual: 2047.88 MB
Available Virtual: 1975.61 MB

========================= Partitions: =====================================

1 Drive c: (HP_PAVILION) (Fixed) (Total:144.18 GB) (Free:0.86 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:4.85 GB) (Free:0.47 GB) FAT32
4 Drive f: (Iomega HDD) (Fixed) (Total:232.88 GB) (Free:231.86 GB) NTFS

========================= Users: ========================================

User accounts for \\DARYLS

Administrator Guest HelpAssistant
HP_Administrator SUPPORT_388945a0 SUPPORT_fddfa904

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

#4 dakar

dakar
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 PM

Posted 25 May 2012 - 03:48 PM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.25.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
HP_Administrator :: DARYLS [administrator]

mbam-log-2012-05-25 (21-24-27).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 214194
Time elapsed: 6 minute(s), 57 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:33 PM

Posted 25 May 2012 - 07:47 PM

Hello, you have 2 antivirus running here. You need to remove one. I'd keep Avast)

avast! Free Antivirus (Version: 7.0.1426.0)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2425)
AVG 2012 (Version: 2012.0.1913)
AVG Security Toolbar (Version: 10.2.0.3)


>>> J2SE Runtime Environment 5.0 Update 7 (Version: 1.5.0.70)

Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u4-windows-i586.exe (or jre-7u4-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.






Please run these 2 next and see how it is after.



Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.




I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


[color="#8B0000"]NOTE: In some instances if no malware is found there will be no log produced.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 dakar

dakar
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 PM

Posted 28 May 2012 - 02:40 AM

15:45:00.0765 2112 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30
15:45:00.0875 2112 ============================================================
15:45:00.0875 2112 Current date / time: 2012/05/27 15:45:00.0875
15:45:00.0875 2112 SystemInfo:
15:45:00.0875 2112
15:45:00.0875 2112 OS Version: 5.1.2600 ServicePack: 3.0
15:45:00.0875 2112 Product type: Workstation
15:45:00.0875 2112 ComputerName: DARYLS
15:45:00.0875 2112 UserName: HP_Administrator
15:45:00.0875 2112 Windows directory: C:\WINDOWS
15:45:00.0875 2112 System windows directory: C:\WINDOWS
15:45:00.0875 2112 Processor architecture: Intel x86
15:45:00.0875 2112 Number of processors: 1
15:45:00.0875 2112 Page size: 0x1000
15:45:00.0875 2112 Boot type: Normal boot
15:45:00.0875 2112 ============================================================
15:45:02.0750 2112 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
15:45:02.0750 2112 Drive \Device\Harddisk1\DR3 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:45:03.0281 2112 ============================================================
15:45:03.0281 2112 \Device\Harddisk0\DR0:
15:45:03.0281 2112 MBR partitions:
15:45:03.0281 2112 \Device\Harddisk0\DR0\Partition0: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x9B7FE1
15:45:03.0281 2112 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x9B8020, BlocksNum 0x1205CBE0
15:45:03.0281 2112 \Device\Harddisk1\DR3:
15:45:03.0281 2112 MBR partitions:
15:45:03.0281 2112 \Device\Harddisk1\DR3\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
15:45:03.0281 2112 ============================================================
15:45:03.0328 2112 C: <-> \Device\Harddisk0\DR0\Partition1
15:45:03.0328 2112 D: <-> \Device\Harddisk0\DR0\Partition0
15:45:03.0453 2112 F: <-> \Device\Harddisk1\DR3\Partition0
15:45:03.0453 2112 ============================================================
15:45:03.0453 2112 Initialize success
15:45:03.0453 2112 ============================================================
08:31:39.0421 3980 ============================================================
08:31:39.0421 3980 Scan started
08:31:39.0421 3980 Mode: Manual;
08:31:39.0421 3980 ============================================================
08:31:40.0296 3980 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
08:31:40.0312 3980 !SASCORE - ok
08:31:40.0468 3980 Abiosdsk - ok
08:31:40.0484 3980 abp480n5 - ok
08:31:40.0531 3980 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:31:40.0531 3980 ACPI - ok
08:31:40.0578 3980 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
08:31:40.0578 3980 ACPIEC - ok
08:31:40.0578 3980 adpu160m - ok
08:31:40.0625 3980 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
08:31:40.0625 3980 aec - ok
08:31:40.0671 3980 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
08:31:40.0687 3980 AFD - ok
08:31:40.0687 3980 Aha154x - ok
08:31:40.0703 3980 aic78u2 - ok
08:31:40.0703 3980 aic78xx - ok
08:31:40.0750 3980 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
08:31:40.0750 3980 Alerter - ok
08:31:40.0781 3980 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
08:31:40.0781 3980 ALG - ok
08:31:40.0781 3980 AliIde - ok
08:31:40.0796 3980 amsint - ok
08:31:40.0921 3980 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:31:40.0921 3980 Apple Mobile Device - ok
08:31:40.0984 3980 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
08:31:41.0000 3980 AppMgmt - ok
08:31:41.0031 3980 aracpi (00523019e3579c8f8a94457fe25f0f24) C:\WINDOWS\system32\DRIVERS\aracpi.sys
08:31:41.0031 3980 aracpi - ok
08:31:41.0046 3980 arhidfltr (9fedaa46eb1a572ac4d9ee6b5f123cf2) C:\WINDOWS\system32\DRIVERS\arhidfltr.sys
08:31:41.0046 3980 arhidfltr - ok
08:31:41.0062 3980 arkbcfltr (82969576093cd983dd559f5a86f382b4) C:\WINDOWS\system32\DRIVERS\arkbcfltr.sys
08:31:41.0062 3980 arkbcfltr - ok
08:31:41.0078 3980 armoucfltr (9b21791d8a78faece999fadbebda6c22) C:\WINDOWS\system32\DRIVERS\armoucfltr.sys
08:31:41.0078 3980 armoucfltr - ok
08:31:41.0093 3980 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:31:41.0093 3980 Arp1394 - ok
08:31:41.0109 3980 ARPolicy (7a2da7c7b0c524ef26a79f17a5c69fde) C:\WINDOWS\system32\DRIVERS\arpolicy.sys
08:31:41.0125 3980 ARPolicy - ok
08:31:41.0156 3980 ARSVC (9a0d9b2e263bede80fb79ddbad240ec1) C:\WINDOWS\arservice.exe
08:31:41.0156 3980 ARSVC - ok
08:31:41.0156 3980 asc - ok
08:31:41.0171 3980 asc3350p - ok
08:31:41.0171 3980 asc3550 - ok
08:31:41.0296 3980 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:31:41.0296 3980 aspnet_state - ok
08:31:41.0328 3980 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:31:41.0328 3980 AsyncMac - ok
08:31:41.0359 3980 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
08:31:41.0359 3980 atapi - ok
08:31:41.0359 3980 Atdisk - ok
08:31:41.0390 3980 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:31:41.0390 3980 Atmarpc - ok
08:31:41.0437 3980 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
08:31:41.0437 3980 AudioSrv - ok
08:31:41.0468 3980 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
08:31:41.0468 3980 audstub - ok
08:31:42.0546 3980 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
08:31:43.0718 3980 AVGIDSAgent - ok
08:31:43.0890 3980 AVGIDSDriver (4fa401b33c1b50c816486f6951244a14) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys
08:31:43.0906 3980 AVGIDSDriver - ok
08:31:43.0953 3980 AVGIDSEH (69578bc9d43d614c6b3455db4af19762) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys
08:31:43.0953 3980 AVGIDSEH - ok
08:31:44.0000 3980 AVGIDSFilter (6df528406aa22201f392b9b19121cd6f) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys
08:31:44.0000 3980 AVGIDSFilter - ok
08:31:44.0046 3980 AVGIDSShim (1e01c2166b5599802bcd61b9691f7476) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys
08:31:44.0046 3980 AVGIDSShim - ok
08:31:44.0140 3980 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
08:31:44.0140 3980 Avgldx86 - ok
08:31:44.0187 3980 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
08:31:44.0187 3980 Avgmfx86 - ok
08:31:44.0203 3980 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
08:31:44.0203 3980 Avgrkx86 - ok
08:31:44.0265 3980 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
08:31:44.0281 3980 Avgtdix - ok
08:31:44.0406 3980 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
08:31:44.0421 3980 avgwd - ok
08:31:44.0453 3980 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
08:31:44.0453 3980 Beep - ok
08:31:44.0500 3980 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
08:31:44.0578 3980 BITS - ok
08:31:44.0671 3980 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
08:31:44.0703 3980 Bonjour Service - ok
08:31:44.0750 3980 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
08:31:44.0750 3980 Browser - ok
08:31:44.0796 3980 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
08:31:44.0796 3980 cbidf2k - ok
08:31:44.0812 3980 cd20xrnt - ok
08:31:44.0828 3980 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
08:31:44.0843 3980 Cdaudio - ok
08:31:44.0875 3980 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
08:31:44.0875 3980 Cdfs - ok
08:31:44.0906 3980 cdrbsdrv (351735695e9ead93de6af85d8beb1ca8) C:\WINDOWS\system32\drivers\cdrbsdrv.sys
08:31:44.0968 3980 cdrbsdrv - ok
08:31:45.0000 3980 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:31:45.0000 3980 Cdrom - ok
08:31:45.0000 3980 Changer - ok
08:31:45.0046 3980 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
08:31:45.0046 3980 CiSvc - ok
08:31:45.0062 3980 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
08:31:45.0062 3980 ClipSrv - ok
08:31:45.0187 3980 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:31:45.0203 3980 clr_optimization_v2.0.50727_32 - ok
08:31:45.0203 3980 CmdIde - ok
08:31:45.0218 3980 COMSysApp - ok
08:31:45.0234 3980 Cpqarray - ok
08:31:45.0265 3980 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
08:31:45.0265 3980 CryptSvc - ok
08:31:45.0281 3980 dac2w2k - ok
08:31:45.0296 3980 dac960nt - ok
08:31:45.0359 3980 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
08:31:45.0406 3980 DcomLaunch - ok
08:31:45.0468 3980 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
08:31:45.0468 3980 Dhcp - ok
08:31:45.0484 3980 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
08:31:45.0484 3980 Disk - ok
08:31:45.0500 3980 dmadmin - ok
08:31:45.0562 3980 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
08:31:45.0593 3980 dmboot - ok
08:31:45.0640 3980 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
08:31:45.0640 3980 dmio - ok
08:31:45.0687 3980 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
08:31:45.0687 3980 dmload - ok
08:31:45.0734 3980 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
08:31:45.0734 3980 dmserver - ok
08:31:45.0750 3980 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
08:31:45.0750 3980 DMusic - ok
08:31:45.0796 3980 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
08:31:45.0796 3980 Dnscache - ok
08:31:45.0828 3980 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
08:31:45.0843 3980 Dot3svc - ok
08:31:45.0843 3980 dpti2o - ok
08:31:45.0875 3980 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
08:31:45.0875 3980 drmkaud - ok
08:31:45.0921 3980 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
08:31:45.0921 3980 EapHost - ok
08:31:46.0015 3980 ehRecvr (8301243bde5b6cd316d79c0191d50d9a) C:\WINDOWS\eHome\ehRecvr.exe
08:31:46.0031 3980 ehRecvr - ok
08:31:46.0078 3980 ehSched (a53243709439ac2a4c216b817f8d7411) C:\WINDOWS\eHome\ehSched.exe
08:31:46.0078 3980 ehSched - ok
08:31:46.0125 3980 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
08:31:46.0125 3980 ERSvc - ok
08:31:46.0187 3980 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
08:31:46.0234 3980 Eventlog - ok
08:31:46.0296 3980 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
08:31:46.0312 3980 EventSystem - ok
08:31:46.0359 3980 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
08:31:46.0359 3980 Fastfat - ok
08:31:46.0421 3980 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:31:46.0437 3980 FastUserSwitchingCompatibility - ok
08:31:46.0453 3980 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
08:31:46.0468 3980 Fax - ok
08:31:46.0500 3980 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
08:31:46.0500 3980 Fdc - ok
08:31:46.0531 3980 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
08:31:46.0531 3980 Fips - ok
08:31:46.0546 3980 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:31:46.0546 3980 Flpydisk - ok
08:31:46.0578 3980 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
08:31:46.0578 3980 FltMgr - ok
08:31:46.0687 3980 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:31:46.0687 3980 FontCache3.0.0.0 - ok
08:31:46.0718 3980 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:31:46.0718 3980 Fs_Rec - ok
08:31:46.0734 3980 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:31:46.0734 3980 Ftdisk - ok
08:31:46.0765 3980 GEARAspiWDM (6f55305289a0765bd8ae8e8d32f17117) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
08:31:46.0765 3980 GEARAspiWDM - ok
08:31:46.0796 3980 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:31:46.0796 3980 Gpc - ok
08:31:46.0796 3980 GTNDIS5 - ok
08:31:46.0921 3980 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
08:31:46.0921 3980 gupdate - ok
08:31:46.0921 3980 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
08:31:46.0921 3980 gupdatem - ok
08:31:46.0953 3980 HdAudAddService (2a013e7530beab6e569faa83f517e836) C:\WINDOWS\system32\drivers\HdAudio.sys
08:31:46.0968 3980 HdAudAddService - ok
08:31:47.0000 3980 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:31:47.0000 3980 HDAudBus - ok
08:31:47.0109 3980 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:31:47.0109 3980 helpsvc - ok
08:31:47.0140 3980 HidIr (bb1a6fb7d35a91e599973fa74a619056) C:\WINDOWS\system32\DRIVERS\hidir.sys
08:31:47.0140 3980 HidIr - ok
08:31:47.0187 3980 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
08:31:47.0187 3980 HidServ - ok
08:31:47.0218 3980 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:31:47.0218 3980 HidUsb - ok
08:31:47.0250 3980 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
08:31:47.0250 3980 hkmsvc - ok
08:31:47.0250 3980 hpn - ok
08:31:47.0312 3980 HPZid412 (5faba4775d4c61e55ec669d643ffc71f) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
08:31:47.0312 3980 HPZid412 - ok
08:31:47.0343 3980 HPZipr12 (a3c43980ee1f1beac778b44ea65dbdd4) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
08:31:47.0343 3980 HPZipr12 - ok
08:31:47.0359 3980 HPZius12 (2906949bd4e206f2bb0dd1896ce9f66f) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
08:31:47.0359 3980 HPZius12 - ok
08:31:47.0406 3980 HTCAND32 (cbd09ed9cf6822177ee85aea4d8816a2) C:\WINDOWS\system32\Drivers\ANDROIDUSB.sys
08:31:47.0406 3980 HTCAND32 - ok
08:31:47.0453 3980 htcnprot (04e3b3554076b8192a668efe88a682a1) C:\WINDOWS\system32\DRIVERS\htcnprot.sys
08:31:47.0453 3980 htcnprot - ok
08:31:47.0515 3980 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
08:31:47.0515 3980 HTTP - ok
08:31:47.0578 3980 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
08:31:47.0578 3980 HTTPFilter - ok
08:31:47.0578 3980 i2omgmt - ok
08:31:47.0593 3980 i2omp - ok
08:31:47.0656 3980 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:31:47.0656 3980 i8042prt - ok
08:31:47.0781 3980 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:31:47.0828 3980 idsvc - ok
08:31:47.0859 3980 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
08:31:47.0875 3980 Imapi - ok
08:31:47.0921 3980 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
08:31:47.0937 3980 ImapiService - ok
08:31:47.0984 3980 imhidusb (650d5219ffb925d8273e555275e931c6) C:\WINDOWS\system32\DRIVERS\imhidusb.sys
08:31:47.0984 3980 imhidusb - ok
08:31:48.0000 3980 ini910u - ok
08:31:48.0187 3980 IntcAzAudAddService (d87ffa95d630ec8d1482ca25c454846a) C:\WINDOWS\system32\drivers\RtkHDAud.sys
08:31:48.0296 3980 IntcAzAudAddService - ok
08:31:48.0453 3980 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
08:31:48.0453 3980 IntelIde - ok
08:31:48.0468 3980 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:31:48.0468 3980 intelppm - ok
08:31:48.0484 3980 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
08:31:48.0484 3980 Ip6Fw - ok
08:31:48.0531 3980 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:31:48.0531 3980 IpFilterDriver - ok
08:31:48.0546 3980 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:31:48.0546 3980 IpInIp - ok
08:31:48.0578 3980 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:31:48.0593 3980 IpNat - ok
08:31:48.0609 3980 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:31:48.0609 3980 IPSec - ok
08:31:48.0656 3980 IrBus (b43b36b382aea10861f7c7a37f9d4ae2) C:\WINDOWS\system32\DRIVERS\IrBus.sys
08:31:48.0656 3980 IrBus - ok
08:31:48.0671 3980 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
08:31:48.0671 3980 IRENUM - ok
08:31:48.0687 3980 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:31:48.0703 3980 isapnp - ok
08:31:48.0828 3980 JavaQuickStarterService (1fdb89b860eb7ba96a45e749a784227e) C:\Program Files\Java\jre7\bin\jqs.exe
08:31:48.0828 3980 JavaQuickStarterService - ok
08:31:48.0859 3980 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:31:48.0859 3980 Kbdclass - ok
08:31:48.0906 3980 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:31:48.0906 3980 kbdhid - ok
08:31:48.0968 3980 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
08:31:48.0984 3980 kmixer - ok
08:31:49.0031 3980 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
08:31:49.0031 3980 KSecDD - ok
08:31:49.0062 3980 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
08:31:49.0078 3980 lanmanserver - ok
08:31:49.0109 3980 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
08:31:49.0125 3980 lanmanworkstation - ok
08:31:49.0125 3980 lbrtfdc - ok
08:31:49.0187 3980 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
08:31:49.0203 3980 LmHosts - ok
08:31:49.0312 3980 McciCMService (f8b823414a22dbf3bec10dcaa5f93cd8) C:\Program Files\Common Files\Motive\McciCMService.exe
08:31:49.0312 3980 McciCMService - ok
08:31:49.0375 3980 McrdSvc (df0a511f38f16016bf658fca0090cb87) C:\WINDOWS\ehome\mcrdsvc.exe
08:31:49.0390 3980 McrdSvc - ok
08:31:49.0421 3980 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
08:31:49.0421 3980 Messenger - ok
08:31:49.0453 3980 MHN (b7521f69c0a9b29d356157229376fb21) C:\WINDOWS\System32\mhn.dll
08:31:49.0453 3980 MHN - ok
08:31:49.0484 3980 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
08:31:49.0484 3980 MHNDRV - ok
08:31:49.0531 3980 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
08:31:49.0531 3980 mnmdd - ok
08:31:49.0562 3980 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
08:31:49.0578 3980 mnmsrvc - ok
08:31:49.0593 3980 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
08:31:49.0609 3980 Modem - ok
08:31:49.0625 3980 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:31:49.0625 3980 Mouclass - ok
08:31:49.0656 3980 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:31:49.0656 3980 mouhid - ok
08:31:49.0671 3980 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
08:31:49.0687 3980 MountMgr - ok
08:31:49.0687 3980 mraid35x - ok
08:31:49.0718 3980 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
08:31:49.0734 3980 MREMP50 - ok
08:31:49.0734 3980 MREMPR5 - ok
08:31:49.0734 3980 MRENDIS5 - ok
08:31:49.0750 3980 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
08:31:49.0765 3980 MRESP50 - ok
08:31:49.0796 3980 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:31:49.0812 3980 MRxDAV - ok
08:31:49.0875 3980 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:31:49.0890 3980 MRxSmb - ok
08:31:49.0921 3980 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
08:31:49.0921 3980 MSDTC - ok
08:31:49.0968 3980 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
08:31:49.0968 3980 Msfs - ok
08:31:49.0984 3980 MSIServer - ok
08:31:50.0000 3980 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:31:50.0000 3980 MSKSSRV - ok
08:31:50.0000 3980 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:31:50.0000 3980 MSPCLOCK - ok
08:31:50.0015 3980 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
08:31:50.0015 3980 MSPQM - ok
08:31:50.0031 3980 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:31:50.0031 3980 mssmbios - ok
08:31:50.0093 3980 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
08:31:50.0093 3980 Mup - ok
08:31:50.0156 3980 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
08:31:50.0171 3980 napagent - ok
08:31:50.0203 3980 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
08:31:50.0203 3980 NDIS - ok
08:31:50.0250 3980 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:31:50.0250 3980 NdisTapi - ok
08:31:50.0265 3980 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:31:50.0265 3980 Ndisuio - ok
08:31:50.0281 3980 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:31:50.0296 3980 NdisWan - ok
08:31:50.0406 3980 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
08:31:50.0406 3980 NDProxy - ok
08:31:50.0421 3980 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
08:31:50.0437 3980 NetBIOS - ok
08:31:50.0453 3980 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
08:31:50.0453 3980 NetBT - ok
08:31:50.0500 3980 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
08:31:50.0515 3980 NetDDE - ok
08:31:50.0515 3980 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
08:31:50.0531 3980 NetDDEdsdm - ok
08:31:50.0578 3980 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:31:50.0578 3980 Netlogon - ok
08:31:50.0593 3980 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
08:31:50.0609 3980 Netman - ok
08:31:50.0734 3980 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:31:50.0734 3980 NetTcpPortSharing - ok
08:31:50.0765 3980 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:31:50.0765 3980 NIC1394 - ok
08:31:50.0843 3980 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
08:31:50.0859 3980 Nla - ok
08:31:50.0906 3980 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
08:31:50.0906 3980 Npfs - ok
08:31:50.0937 3980 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
08:31:50.0953 3980 Ntfs - ok
08:31:51.0000 3980 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:31:51.0000 3980 NtLmSsp - ok
08:31:51.0062 3980 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
08:31:51.0078 3980 NtmsSvc - ok
08:31:51.0109 3980 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
08:31:51.0109 3980 Null - ok
08:31:51.0484 3980 nv (bf506d232c5e6f2dae80f5c11b45c60e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:31:51.0734 3980 nv - ok
08:31:51.0843 3980 NVSvc (ce8cce2b9f96aca02e5ded4298a7796d) C:\WINDOWS\system32\nvsvc32.exe
08:31:51.0859 3980 NVSvc - ok
08:31:51.0921 3980 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:31:51.0921 3980 NwlnkFlt - ok
08:31:51.0937 3980 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:31:51.0937 3980 NwlnkFwd - ok
08:31:51.0984 3980 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:31:51.0984 3980 ohci1394 - ok
08:31:52.0000 3980 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
08:31:52.0015 3980 Parport - ok
08:31:52.0046 3980 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
08:31:52.0046 3980 PartMgr - ok
08:31:52.0062 3980 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
08:31:52.0062 3980 ParVdm - ok
08:31:52.0156 3980 PassThru Service (68139940b5ac84affb7eb1b713be66e7) C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
08:31:52.0156 3980 PassThru Service - ok
08:31:52.0171 3980 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
08:31:52.0171 3980 PCI - ok
08:31:52.0187 3980 PCIDump - ok
08:31:52.0203 3980 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
08:31:52.0203 3980 PCIIde - ok
08:31:52.0234 3980 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
08:31:52.0250 3980 Pcmcia - ok
08:31:52.0250 3980 PDCOMP - ok
08:31:52.0265 3980 PDFRAME - ok
08:31:52.0281 3980 PDRELI - ok
08:31:52.0281 3980 PDRFRAME - ok
08:31:52.0296 3980 perc2 - ok
08:31:52.0296 3980 perc2hib - ok
08:31:52.0359 3980 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
08:31:52.0359 3980 PlugPlay - ok
08:31:52.0406 3980 Pml Driver HPZ12 (9d84376931440f3679beef2a414fa493) C:\WINDOWS\system32\HPZipm12.exe
08:31:52.0406 3980 Pml Driver HPZ12 - ok
08:31:52.0453 3980 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:31:52.0453 3980 PolicyAgent - ok
08:31:52.0484 3980 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:31:52.0484 3980 PptpMiniport - ok
08:31:52.0500 3980 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:31:52.0500 3980 ProtectedStorage - ok
08:31:52.0531 3980 Ps2 (0e2eb30605ca6ed2509d59af6a7362b4) C:\WINDOWS\system32\DRIVERS\PS2.sys
08:31:52.0546 3980 Ps2 - ok
08:31:52.0562 3980 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
08:31:52.0562 3980 PSched - ok
08:31:52.0593 3980 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:31:52.0593 3980 Ptilink - ok
08:31:52.0640 3980 PxHelp20 (86724469cd077901706854974cd13c3e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
08:31:52.0640 3980 PxHelp20 - ok
08:31:52.0640 3980 ql1080 - ok
08:31:52.0656 3980 Ql10wnt - ok
08:31:52.0671 3980 ql12160 - ok
08:31:52.0671 3980 ql1240 - ok
08:31:52.0687 3980 ql1280 - ok
08:31:52.0718 3980 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
08:31:52.0718 3980 RasAuto - ok
08:31:52.0734 3980 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:31:52.0734 3980 Rasl2tp - ok
08:31:52.0781 3980 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
08:31:52.0796 3980 RasMan - ok
08:31:52.0828 3980 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:31:52.0843 3980 RasPppoe - ok
08:31:52.0859 3980 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
08:31:52.0859 3980 Raspti - ok
08:31:52.0906 3980 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:31:52.0906 3980 Rdbss - ok
08:31:52.0937 3980 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:31:52.0937 3980 RDPCDD - ok
08:31:52.0984 3980 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:31:53.0000 3980 rdpdr - ok
08:31:53.0062 3980 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
08:31:53.0062 3980 RDPWD - ok
08:31:53.0093 3980 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
08:31:53.0109 3980 RDSessMgr - ok
08:31:53.0140 3980 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
08:31:53.0140 3980 redbook - ok
08:31:53.0171 3980 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
08:31:53.0171 3980 RemoteAccess - ok
08:31:53.0187 3980 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
08:31:53.0203 3980 RemoteRegistry - ok
08:31:53.0218 3980 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
08:31:53.0234 3980 RpcLocator - ok
08:31:53.0296 3980 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
08:31:53.0296 3980 RpcSs - ok
08:31:53.0343 3980 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
08:31:53.0359 3980 RSVP - ok
08:31:53.0406 3980 RTL8023xp (7f0413bdd7d53eb4c7a371e7f6f84df1) C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys
08:31:53.0406 3980 RTL8023xp - ok
08:31:53.0421 3980 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
08:31:53.0437 3980 rtl8139 - ok
08:31:53.0453 3980 SaiHFFB5 (14f356339ef11a70466f553b4c4a670f) C:\WINDOWS\system32\DRIVERS\SaiHFFB5.sys
08:31:53.0453 3980 SaiHFFB5 - ok
08:31:53.0484 3980 SaiIFFB5 (ec45ab6754e931e4335a99933da133f5) C:\WINDOWS\system32\DRIVERS\SaiIFFB5.sys
08:31:53.0500 3980 SaiIFFB5 - ok
08:31:53.0531 3980 SaiMini (f62afcc378ffa34b53d6f89c1c511c21) C:\WINDOWS\system32\DRIVERS\SaiMini.sys
08:31:53.0546 3980 SaiMini - ok
08:31:53.0578 3980 SaiNtBus (2b9b4a25882e1fd2355184f73db75fe7) C:\WINDOWS\system32\drivers\SaiNtBus.sys
08:31:53.0593 3980 SaiNtBus - ok
08:31:53.0640 3980 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:31:53.0640 3980 SamSs - ok
08:31:53.0734 3980 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
08:31:53.0750 3980 SASDIFSV - ok
08:31:53.0765 3980 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
08:31:53.0796 3980 SASKUTIL - ok
08:31:53.0828 3980 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
08:31:53.0828 3980 SCardSvr - ok
08:31:53.0875 3980 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
08:31:53.0890 3980 Schedule - ok
08:31:53.0937 3980 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:31:53.0937 3980 Secdrv - ok
08:31:53.0968 3980 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
08:31:53.0968 3980 seclogon - ok
08:31:54.0000 3980 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
08:31:54.0000 3980 SENS - ok
08:31:54.0015 3980 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
08:31:54.0015 3980 serenum - ok
08:31:54.0031 3980 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
08:31:54.0046 3980 Serial - ok
08:31:54.0078 3980 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
08:31:54.0078 3980 Sfloppy - ok
08:31:54.0125 3980 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
08:31:54.0140 3980 SharedAccess - ok
08:31:54.0203 3980 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:31:54.0218 3980 ShellHWDetection - ok
08:31:54.0218 3980 Simbad - ok
08:31:54.0281 3980 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
08:31:54.0281 3980 SONYPVU1 - ok
08:31:54.0281 3980 Sparrow - ok
08:31:54.0312 3980 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
08:31:54.0312 3980 splitter - ok
08:31:54.0375 3980 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
08:31:54.0375 3980 Spooler - ok
08:31:54.0390 3980 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
08:31:54.0390 3980 sr - ok
08:31:54.0484 3980 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
08:31:54.0484 3980 srservice - ok
08:31:54.0562 3980 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
08:31:54.0578 3980 Srv - ok
08:31:54.0593 3980 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
08:31:54.0593 3980 SSDPSRV - ok
08:31:54.0625 3980 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
08:31:54.0640 3980 stisvc - ok
08:31:54.0687 3980 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
08:31:54.0687 3980 swenum - ok
08:31:54.0718 3980 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
08:31:54.0718 3980 swmidi - ok
08:31:54.0734 3980 SwPrv - ok
08:31:54.0750 3980 symc810 - ok
08:31:54.0750 3980 symc8xx - ok
08:31:54.0765 3980 sym_hi - ok
08:31:54.0781 3980 sym_u3 - ok
08:31:54.0796 3980 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
08:31:54.0796 3980 sysaudio - ok
08:31:54.0843 3980 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
08:31:54.0843 3980 SysmonLog - ok
08:31:54.0890 3980 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
08:31:54.0906 3980 TapiSrv - ok
08:31:54.0968 3980 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:31:54.0968 3980 Tcpip - ok
08:31:55.0015 3980 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
08:31:55.0015 3980 TDPIPE - ok
08:31:55.0031 3980 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
08:31:55.0031 3980 TDTCP - ok
08:31:55.0046 3980 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
08:31:55.0046 3980 TermDD - ok
08:31:55.0078 3980 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
08:31:55.0093 3980 TermService - ok
08:31:55.0156 3980 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:31:55.0156 3980 Themes - ok
08:31:55.0187 3980 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
08:31:55.0187 3980 TlntSvr - ok
08:31:55.0203 3980 TosIde - ok
08:31:55.0234 3980 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
08:31:55.0234 3980 TrkWks - ok
08:31:55.0265 3980 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
08:31:55.0265 3980 Udfs - ok
08:31:55.0281 3980 ultra - ok
08:31:55.0343 3980 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
08:31:55.0359 3980 Update - ok
08:31:55.0390 3980 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
08:31:55.0406 3980 upnphost - ok
08:31:55.0437 3980 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
08:31:55.0437 3980 UPS - ok
08:31:55.0468 3980 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:31:55.0468 3980 usbccgp - ok
08:31:55.0500 3980 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:31:55.0500 3980 usbehci - ok
08:31:55.0531 3980 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:31:55.0531 3980 usbhub - ok
08:31:55.0546 3980 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:31:55.0546 3980 usbprint - ok
08:31:55.0578 3980 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:31:55.0578 3980 usbscan - ok
08:31:55.0609 3980 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:31:55.0609 3980 USBSTOR - ok
08:31:55.0640 3980 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:31:55.0640 3980 usbuhci - ok
08:31:55.0656 3980 USB_RNDIS (bee793d4a059caea55d6ac20e19b3a8f) C:\WINDOWS\system32\DRIVERS\usb8023.sys
08:31:55.0656 3980 USB_RNDIS - ok
08:31:55.0671 3980 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
08:31:55.0671 3980 VgaSave - ok
08:31:55.0703 3980 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
08:31:55.0703 3980 ViaIde - ok
08:31:55.0750 3980 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
08:31:55.0750 3980 VolSnap - ok
08:31:55.0812 3980 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
08:31:55.0828 3980 VSS - ok
08:31:56.0031 3980 vToolbarUpdater10.2.0 (3080f1f093869a19fb3d1f0226c73809) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
08:31:56.0046 3980 vToolbarUpdater10.2.0 - ok
08:31:56.0109 3980 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
08:31:56.0125 3980 W32Time - ok
08:31:56.0171 3980 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:31:56.0171 3980 Wanarp - ok
08:31:56.0218 3980 Wdf01000 (4769596d7cc0f5fa447d2babc239672a) C:\WINDOWS\system32\Drivers\wdf01000.sys
08:31:56.0250 3980 Wdf01000 - ok
08:31:56.0250 3980 WDICA - ok
08:31:56.0281 3980 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
08:31:56.0281 3980 wdmaud - ok
08:31:56.0328 3980 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
08:31:56.0343 3980 WebClient - ok
08:31:56.0500 3980 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
08:31:56.0500 3980 winmgmt - ok
08:31:56.0562 3980 WmdmPmSN (051b1bdecd6dee18c771b5d5ec7f044d) C:\WINDOWS\system32\MsPMSNSv.dll
08:31:56.0578 3980 WmdmPmSN - ok
08:31:56.0640 3980 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
08:31:56.0656 3980 Wmi - ok
08:31:56.0687 3980 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:31:56.0687 3980 WmiApSrv - ok
08:31:56.0921 3980 WMPNetworkSvc (6bab4dc65515a098505f8b3d01fb6fe5) C:\Program Files\Windows Media Player\WMPNetwk.exe
08:31:56.0937 3980 WMPNetworkSvc - ok
08:31:57.0015 3980 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
08:31:57.0015 3980 WS2IFSL - ok
08:31:57.0046 3980 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
08:31:57.0046 3980 wscsvc - ok
08:31:57.0078 3980 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
08:31:57.0078 3980 wuauserv - ok
08:31:57.0109 3980 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
08:31:57.0125 3980 WudfPf - ok
08:31:57.0140 3980 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
08:31:57.0140 3980 WudfRd - ok
08:31:57.0171 3980 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
08:31:57.0171 3980 WudfSvc - ok
08:31:57.0218 3980 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
08:31:57.0250 3980 WZCSVC - ok
08:31:57.0281 3980 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
08:31:57.0281 3980 xmlprov - ok
08:31:57.0328 3980 MBR (0x1B8) (bad0263fbe81b49f5f07b32dc9d198b3) \Device\Harddisk0\DR0
08:31:57.0359 3980 \Device\Harddisk0\DR0 - ok
08:31:57.0359 3980 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR3
08:31:57.0375 3980 \Device\Harddisk1\DR3 - ok
08:31:57.0375 3980 Boot (0x1200) (d35d4a993d9a2e763cf8384ca9c31a2e) \Device\Harddisk0\DR0\Partition0
08:31:57.0375 3980 \Device\Harddisk0\DR0\Partition0 - ok
08:31:57.0406 3980 Boot (0x1200) (24fadeccbab9085bb644e106e053a4e1) \Device\Harddisk0\DR0\Partition1
08:31:57.0406 3980 \Device\Harddisk0\DR0\Partition1 - ok
08:31:57.0421 3980 Boot (0x1200) (55a9b078c1c1e82a08ea99a7d1361096) \Device\Harddisk1\DR3\Partition0
08:31:57.0421 3980 \Device\Harddisk1\DR3\Partition0 - ok
08:31:57.0421 3980 ============================================================
08:31:57.0421 3980 Scan finished
08:31:57.0421 3980 ============================================================
08:31:57.0437 2332 Detected object count: 0
08:31:57.0437 2332 Actual detected object count: 0

#7 dakar

dakar
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 PM

Posted 28 May 2012 - 03:55 AM

Hi boopme
thanks for trying to solve this problem for me,it is much appreciated,as I am no computer geek.
ESET Scanner did not return any threats so no file was saved.
Hope this helps,
Kindest Regards
Dakar

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:33 PM

Posted 28 May 2012 - 08:56 PM

Hello, sorry the I had Mrm day obligations.
Did you remove one of the AV's?

Please run SFC (System File Checker)
Please run System File Checker sfc /scannow... For more information on this tool see How To Use Sfc.exe To Repair System Files

NOTE for Vista/WIN 7 users..The command needs to be run from an Elevated Command Prompt.Click Start, type cmd into the Start/Search box,
right-click cmd.exe in the list above and select 'Run as Administrator'


You will need your operating system CD handy.

Open Windows Task Manager....by pressing CTRL+SHIFT+ESC

Then click File.. then New Task(Run)

In the box that opens type sfc /scannow ......There is a space between c and /

Click OK
Let it run and insert the CD when asked.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 dakar

dakar
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 PM

Posted 29 May 2012 - 12:34 PM

Hi boopme
I have only AVAST running now,I am running sfc/scannow at present and it is asking for XP installation disc,I do not have one as my system came pre installed.
Could you please advise me on what I need to do next.
Kindest regards
Dakar

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:33 PM

Posted 29 May 2012 - 01:37 PM

If you run Windows XP SFC and it asks for your "Service Pack 3 Disk", you can extract the service pack 3 files as follows:

Download the standalone windows XP SP3 package from here:
http://www.microsoft.com/downloads/details...;displaylang=en
and save it to your desktop.

Then extract the files from the package by going to Start -> Run and entering:
"%userprofile%\Desktop\WindowsXP-KB936929-SP3-x86-ENU.exe" -x:C:\xpsp3
This will place the service pack 3 updates to the i386 folder into your C drive under the folder "xpsp3".

You should then be able to point SFC at this folder for the files it can't find from your windows disk or i386 folder.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 dakar

dakar
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:33 PM

Posted 30 May 2012 - 12:06 PM

Hi boopme
run the sfc,got a box "File Protection" which did a scan and finished with no request to insert XP Disc.
Problem still exists.
Kind regards
Daakar

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:33 PM

Posted 30 May 2012 - 07:31 PM

Hello, sorry,this apeears to need a feeper look to find the issue.

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users