Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Startup error


  • Please log in to reply
10 replies to this topic

#1 Mac76

Mac76

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 06 August 2012 - 08:34 PM

Upon restarting Windows Vista 7 Service pack 2, I get a pop up box that says "Could not load or run 'C:users/stephen/appdata/local/temp/{73984~1.exe' specified in the registry. Make sure the file exists on your computer or remove the reference to it in the registry." I have googled this and tried searching the registry for it, but I couldn't come up with anything. I also searched for this on this site to make sure I wasn't posting something that had already been posted, but I didn't see anything. Everything works fine, and I even ran malwarebytes and ccleaner, and it still does it.....I posted in the windows vista forum and was suggested to post here instead.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 06 August 2012 - 11:30 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Mac76

Mac76
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 08 August 2012 - 11:13 AM

My internet was down yesterday, so I didn't get to check this until today at work. When I get home, I will follow your instructions above and post the results. Thank you.

#4 Mac76

Mac76
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 11 August 2012 - 04:07 PM

17:08:17.0590 4268 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
17:08:19.0592 4268 ============================================================
17:08:19.0592 4268 Current date / time: 2012/08/08 17:08:19.0592
17:08:19.0592 4268 SystemInfo:
17:08:19.0592 4268
17:08:19.0592 4268 OS Version: 6.0.6002 ServicePack: 2.0
17:08:19.0592 4268 Product type: Workstation
17:08:19.0593 4268 ComputerName: STEPHEN-PC
17:08:19.0593 4268 UserName: Stephen
17:08:19.0593 4268 Windows directory: C:\Windows
17:08:19.0593 4268 System windows directory: C:\Windows
17:08:19.0593 4268 Processor architecture: Intel x86
17:08:19.0593 4268 Number of processors: 2
17:08:19.0593 4268 Page size: 0x1000
17:08:19.0593 4268 Boot type: Normal boot
17:08:19.0594 4268 ============================================================
17:08:21.0070 4268 Drive \Device\Harddisk0\DR0 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xBE01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:08:21.0092 4268 ============================================================
17:08:21.0092 4268 \Device\Harddisk0\DR0:
17:08:21.0119 4268 MBR partitions:
17:08:21.0119 4268 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2D77DE3D
17:08:21.0119 4268 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2D77DE7C, BlocksNum 0x11B9E45
17:08:21.0119 4268 ============================================================
17:08:21.0221 4268 C: <-> \Device\Harddisk0\DR0\Partition0
17:08:21.0372 4268 D: <-> \Device\Harddisk0\DR0\Partition1
17:08:21.0373 4268 ============================================================
17:08:21.0373 4268 Initialize success
17:08:21.0373 4268 ============================================================
17:09:11.0968 4540 ============================================================
17:09:11.0968 4540 Scan started
17:09:11.0968 4540 Mode: Manual; TDLFS;
17:09:11.0968 4540 ============================================================
17:09:12.0419 4540 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
17:09:12.0422 4540 ACPI - ok
17:09:12.0533 4540 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:09:12.0535 4540 AdobeFlashPlayerUpdateSvc - ok
17:09:12.0633 4540 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
17:09:12.0660 4540 adp94xx - ok
17:09:12.0726 4540 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
17:09:12.0747 4540 adpahci - ok
17:09:12.0778 4540 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
17:09:12.0788 4540 adpu160m - ok
17:09:12.0812 4540 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
17:09:12.0830 4540 adpu320 - ok
17:09:12.0894 4540 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
17:09:12.0895 4540 AeLookupSvc - ok
17:09:12.0975 4540 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
17:09:13.0002 4540 AFD - ok
17:09:13.0061 4540 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
17:09:13.0070 4540 agp440 - ok
17:09:13.0122 4540 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:09:13.0131 4540 aic78xx - ok
17:09:13.0295 4540 AlertService (c86d177967d27c80e466d4ed95c26db9) C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
17:09:13.0297 4540 AlertService - ok
17:09:13.0335 4540 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
17:09:13.0337 4540 ALG - ok
17:09:13.0348 4540 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
17:09:13.0355 4540 aliide - ok
17:09:13.0389 4540 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
17:09:13.0397 4540 amdagp - ok
17:09:13.0424 4540 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
17:09:13.0430 4540 amdide - ok
17:09:13.0482 4540 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
17:09:13.0491 4540 AmdK7 - ok
17:09:13.0502 4540 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
17:09:13.0511 4540 AmdK8 - ok
17:09:13.0553 4540 Andbus (3e59df4984fbd6800d6621480b38a34e) C:\Windows\system32\DRIVERS\lgandbus.sys
17:09:13.0558 4540 Andbus - ok
17:09:13.0577 4540 AndDiag (8e0bf6f3b2c9c292bc7ce0de727cdd56) C:\Windows\system32\DRIVERS\lganddiag.sys
17:09:13.0578 4540 AndDiag - ok
17:09:13.0596 4540 AndGps (1d2c90e25483363d54b652898bbc8f2a) C:\Windows\system32\DRIVERS\lgandgps.sys
17:09:13.0600 4540 AndGps - ok
17:09:13.0624 4540 ANDModem (b1b06a95da2cac7fa19832c60c348c85) C:\Windows\system32\DRIVERS\lgandmodem.sys
17:09:13.0629 4540 ANDModem - ok
17:09:13.0721 4540 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files\Avira\AntiVir Desktop\sched.exe
17:09:13.0732 4540 AntiVirSchedulerService - ok
17:09:13.0815 4540 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
17:09:13.0827 4540 AntiVirService - ok
17:09:13.0902 4540 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
17:09:13.0903 4540 Appinfo - ok
17:09:13.0987 4540 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
17:09:13.0996 4540 arc - ok
17:09:14.0039 4540 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
17:09:14.0048 4540 arcsas - ok
17:09:14.0106 4540 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:09:14.0118 4540 AsyncMac - ok
17:09:14.0143 4540 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
17:09:14.0144 4540 atapi - ok
17:09:14.0313 4540 athur (f1fc2fd87ff77f63cd7f8bf95940b40c) C:\Windows\system32\DRIVERS\athur.sys
17:09:14.0381 4540 athur - ok
17:09:14.0565 4540 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
17:09:14.0569 4540 AudioEndpointBuilder - ok
17:09:14.0575 4540 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
17:09:14.0579 4540 Audiosrv - ok
17:09:14.0664 4540 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\Windows\system32\DRIVERS\avgntflt.sys
17:09:14.0672 4540 avgntflt - ok
17:09:14.0733 4540 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\Windows\system32\DRIVERS\avipbb.sys
17:09:14.0743 4540 avipbb - ok
17:09:14.0762 4540 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys
17:09:14.0769 4540 avkmgr - ok
17:09:14.0854 4540 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:09:14.0857 4540 Beep - ok
17:09:14.0946 4540 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
17:09:14.0951 4540 BFE - ok
17:09:15.0063 4540 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
17:09:15.0078 4540 BITS - ok
17:09:15.0083 4540 blbdrive - ok
17:09:15.0136 4540 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
17:09:15.0144 4540 bowser - ok
17:09:15.0216 4540 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:09:15.0222 4540 BrFiltLo - ok
17:09:15.0232 4540 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:09:15.0237 4540 BrFiltUp - ok
17:09:15.0294 4540 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
17:09:15.0296 4540 Browser - ok
17:09:15.0353 4540 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:09:15.0363 4540 Brserid - ok
17:09:15.0417 4540 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:09:15.0425 4540 BrSerWdm - ok
17:09:15.0431 4540 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:09:15.0436 4540 BrUsbMdm - ok
17:09:15.0462 4540 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:09:15.0468 4540 BrUsbSer - ok
17:09:15.0603 4540 BrYNSvc (ea7e57f87d6fee5fd6c5f813c04e8cd2) C:\Program Files\Browny02\BrYNSvc.exe
17:09:15.0606 4540 BrYNSvc - ok
17:09:15.0656 4540 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
17:09:15.0663 4540 BTHMODEM - ok
17:09:15.0742 4540 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
17:09:15.0744 4540 cdfs - ok
17:09:15.0807 4540 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
17:09:15.0816 4540 cdrom - ok
17:09:15.0911 4540 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
17:09:15.0913 4540 CertPropSvc - ok
17:09:15.0940 4540 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
17:09:15.0948 4540 circlass - ok
17:09:16.0009 4540 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
17:09:16.0012 4540 CLFS - ok
17:09:16.0083 4540 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:09:16.0096 4540 clr_optimization_v2.0.50727_32 - ok
17:09:16.0191 4540 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:09:16.0193 4540 clr_optimization_v4.0.30319_32 - ok
17:09:16.0208 4540 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
17:09:16.0216 4540 cmdide - ok
17:09:16.0230 4540 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
17:09:16.0238 4540 Compbatt - ok
17:09:16.0243 4540 COMSysApp - ok
17:09:16.0260 4540 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
17:09:16.0279 4540 crcdisk - ok
17:09:16.0311 4540 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
17:09:16.0329 4540 Crusoe - ok
17:09:16.0384 4540 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
17:09:16.0385 4540 CryptSvc - ok
17:09:16.0468 4540 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
17:09:16.0476 4540 DcomLaunch - ok
17:09:16.0537 4540 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
17:09:16.0543 4540 DfsC - ok
17:09:16.0730 4540 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
17:09:16.0768 4540 DFSR - ok
17:09:16.0956 4540 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
17:09:16.0959 4540 Dhcp - ok
17:09:17.0052 4540 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
17:09:17.0062 4540 disk - ok
17:09:17.0136 4540 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
17:09:17.0138 4540 Dnscache - ok
17:09:17.0199 4540 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
17:09:17.0202 4540 dot3svc - ok
17:09:17.0258 4540 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
17:09:17.0261 4540 DPS - ok
17:09:17.0367 4540 DQLWinService (a0b584c33f55545d56f9e71fb4e203ac) C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
17:09:17.0380 4540 DQLWinService - ok
17:09:17.0445 4540 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
17:09:17.0450 4540 drmkaud - ok
17:09:17.0537 4540 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
17:09:17.0544 4540 DXGKrnl - ok
17:09:17.0623 4540 e1express (88b16142b40cc080a2d86ae769a30396) C:\Windows\system32\DRIVERS\e1e6032.sys
17:09:17.0638 4540 e1express - ok
17:09:17.0685 4540 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
17:09:17.0696 4540 E1G60 - ok
17:09:17.0761 4540 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
17:09:17.0763 4540 EapHost - ok
17:09:17.0853 4540 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
17:09:17.0876 4540 Ecache - ok
17:09:17.0960 4540 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
17:09:17.0964 4540 ehRecvr - ok
17:09:17.0992 4540 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
17:09:17.0994 4540 ehSched - ok
17:09:18.0002 4540 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
17:09:18.0003 4540 ehstart - ok
17:09:18.0050 4540 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
17:09:18.0054 4540 elxstor - ok
17:09:18.0126 4540 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
17:09:18.0134 4540 EMDMgmt - ok
17:09:18.0209 4540 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
17:09:18.0214 4540 EventSystem - ok
17:09:18.0276 4540 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
17:09:18.0294 4540 exfat - ok
17:09:18.0324 4540 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
17:09:18.0341 4540 fastfat - ok
17:09:18.0390 4540 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
17:09:18.0407 4540 fdc - ok
17:09:18.0455 4540 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
17:09:18.0457 4540 fdPHost - ok
17:09:18.0470 4540 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
17:09:18.0472 4540 FDResPub - ok
17:09:18.0553 4540 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
17:09:18.0560 4540 FileInfo - ok
17:09:18.0572 4540 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
17:09:18.0577 4540 Filetrace - ok
17:09:18.0589 4540 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
17:09:18.0593 4540 flpydisk - ok
17:09:18.0662 4540 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
17:09:18.0664 4540 FltMgr - ok
17:09:18.0787 4540 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
17:09:18.0799 4540 FontCache - ok
17:09:18.0885 4540 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:09:18.0886 4540 FontCache3.0.0.0 - ok
17:09:18.0913 4540 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
17:09:18.0918 4540 Fs_Rec - ok
17:09:18.0957 4540 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
17:09:18.0958 4540 gagp30kx - ok
17:09:19.0092 4540 getPlusHelper (0879dc7444a201df84e69c5dd5083d61) C:\Program Files\NOS\bin\getPlus_Helper.dll
17:09:19.0093 4540 getPlusHelper - ok
17:09:19.0241 4540 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
17:09:19.0249 4540 gpsvc - ok
17:09:19.0965 4540 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
17:09:19.0967 4540 gupdate - ok
17:09:20.0013 4540 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
17:09:20.0015 4540 gupdatem - ok
17:09:20.0327 4540 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:09:20.0341 4540 gusvc - ok
17:09:20.0492 4540 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
17:09:20.0495 4540 HdAudAddService - ok
17:09:20.0567 4540 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:09:20.0575 4540 HDAudBus - ok
17:09:20.0613 4540 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
17:09:20.0614 4540 HidBth - ok
17:09:20.0645 4540 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
17:09:20.0657 4540 HidIr - ok
17:09:20.0713 4540 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
17:09:20.0715 4540 hidserv - ok
17:09:20.0728 4540 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\drivers\hidusb.sys
17:09:20.0729 4540 HidUsb - ok
17:09:20.0785 4540 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
17:09:20.0787 4540 hkmsvc - ok
17:09:20.0914 4540 HP Health Check Service (89f9e1984c1cd9e5f4fe39642d886e11) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
17:09:20.0915 4540 HP Health Check Service - ok
17:09:20.0945 4540 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
17:09:20.0951 4540 HpCISSs - ok
17:09:21.0087 4540 HSF_DP (88749fbf8beb18c90e7d6626c8c1910b) C:\Windows\system32\DRIVERS\HSX_DP.sys
17:09:21.0122 4540 HSF_DP - ok
17:09:21.0156 4540 HSXHWBS2 (fe440536bd98af772130dc3a6fe1915f) C:\Windows\system32\DRIVERS\HSXHWBS2.sys
17:09:21.0170 4540 HSXHWBS2 - ok
17:09:21.0276 4540 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
17:09:21.0355 4540 HTTP - ok
17:09:21.0408 4540 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
17:09:21.0415 4540 i2omp - ok
17:09:21.0578 4540 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
17:09:21.0579 4540 i8042prt - ok
17:09:21.0717 4540 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
17:09:21.0735 4540 iaStorV - ok
17:09:21.0851 4540 IDriverT (6f95324909b502e2651442c1548ab12f) c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:09:21.0852 4540 IDriverT - ok
17:09:21.0976 4540 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:09:21.0989 4540 idsvc - ok
17:09:22.0083 4540 igfx - ok
17:09:22.0133 4540 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
17:09:22.0141 4540 iirsp - ok
17:09:22.0456 4540 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
17:09:22.0529 4540 IKEEXT - ok
17:09:24.0027 4540 IntcAzAudAddService (84ed2154239f9d013bbd3220755ada8b) C:\Windows\system32\drivers\RTKVHDA.sys
17:09:24.0067 4540 IntcAzAudAddService - ok
17:09:24.0335 4540 IntelDHSvcConf (ce5af42679dd85947d2d287594f22ce0) C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
17:09:24.0343 4540 IntelDHSvcConf - ok
17:09:24.0590 4540 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\DRIVERS\intelide.sys
17:09:24.0598 4540 intelide - ok
17:09:24.0659 4540 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
17:09:24.0660 4540 intelppm - ok
17:09:24.0753 4540 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
17:09:24.0756 4540 IPBusEnum - ok
17:09:24.0812 4540 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:09:24.0819 4540 IpFilterDriver - ok
17:09:24.0870 4540 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
17:09:24.0874 4540 iphlpsvc - ok
17:09:24.0881 4540 IpInIp - ok
17:09:24.0954 4540 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
17:09:24.0955 4540 IPMIDRV - ok
17:09:25.0031 4540 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
17:09:25.0032 4540 IPNAT - ok
17:09:25.0088 4540 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
17:09:25.0089 4540 IRENUM - ok
17:09:25.0135 4540 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
17:09:25.0142 4540 isapnp - ok
17:09:25.0198 4540 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
17:09:25.0199 4540 iScsiPrt - ok
17:09:25.0276 4540 ISSM (e29ba28f76c5a703e7f30f74cf36df22) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
17:09:25.0284 4540 ISSM - ok
17:09:25.0348 4540 ISWKL (08a811bfd207dfdec588881c18bacbaa) C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
17:09:25.0356 4540 ISWKL - ok
17:09:25.0471 4540 IswSvc (5b2ccef06f96dfb22893ab8f0b3f891d) C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
17:09:25.0484 4540 IswSvc - ok
17:09:25.0553 4540 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
17:09:25.0561 4540 iteatapi - ok
17:09:25.0617 4540 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
17:09:25.0625 4540 iteraid - ok
17:09:26.0410 4540 jswpsapi (cf9ba304b8047b9582d72d9bfef42eae) C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe
17:09:26.0551 4540 jswpsapi - ok
17:09:26.0658 4540 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:09:26.0666 4540 kbdclass - ok
17:09:26.0798 4540 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
17:09:26.0799 4540 kbdhid - ok
17:09:26.0880 4540 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
17:09:26.0886 4540 KeyIso - ok
17:09:27.0137 4540 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
17:09:27.0161 4540 KSecDD - ok
17:09:27.0214 4540 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
17:09:27.0221 4540 KtmRm - ok
17:09:27.0262 4540 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
17:09:27.0267 4540 LanmanServer - ok
17:09:27.0340 4540 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
17:09:27.0345 4540 LanmanWorkstation - ok
17:09:27.0556 4540 LightScribeService (683a07b982832426128b684b7366710f) c:\Program Files\Common Files\LightScribe\LSSrvc.exe
17:09:27.0566 4540 LightScribeService - ok
17:09:27.0809 4540 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
17:09:27.0820 4540 lltdio - ok
17:09:27.0861 4540 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
17:09:27.0865 4540 lltdsvc - ok
17:09:27.0908 4540 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
17:09:27.0910 4540 lmhosts - ok
17:09:28.0107 4540 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
17:09:28.0109 4540 LSI_FC - ok
17:09:28.0267 4540 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
17:09:28.0300 4540 LSI_SAS - ok
17:09:28.0337 4540 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
17:09:28.0346 4540 LSI_SCSI - ok
17:09:28.0396 4540 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
17:09:28.0406 4540 luafv - ok
17:09:28.0497 4540 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
17:09:28.0504 4540 LVPr2Mon - ok
17:09:28.0603 4540 LVPrcSrv (0ddfdcaa92c7f553328db06ba599bea9) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
17:09:28.0605 4540 LVPrcSrv - ok
17:09:29.0280 4540 LVRS (37072ec9299e825f4335cc554b6fac6a) C:\Windows\system32\DRIVERS\lvrs.sys
17:09:29.0288 4540 LVRS - ok
17:09:34.0740 4540 LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\Windows\system32\DRIVERS\lvuvc.sys
17:09:34.0828 4540 LVUVC - ok
17:09:34.0944 4540 M1 Server (7b073fd0133346d0e555353f164057d7) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
17:09:34.0949 4540 M1 Server - ok
17:09:35.0093 4540 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\Windows\system32\drivers\mbamswissarmy.sys
17:09:35.0099 4540 MBAMSwissArmy - ok
17:09:35.0124 4540 MCLServiceATL (7bba15ca5a2aa4e50c7cbfb78d11db25) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
17:09:35.0135 4540 MCLServiceATL - ok
17:09:35.0186 4540 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
17:09:35.0188 4540 Mcx2Svc - ok
17:09:35.0217 4540 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
17:09:35.0221 4540 mdmxsdk - ok
17:09:35.0299 4540 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
17:09:35.0300 4540 megasas - ok
17:09:35.0334 4540 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
17:09:35.0336 4540 MMCSS - ok
17:09:35.0386 4540 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
17:09:35.0387 4540 Modem - ok
17:09:35.0463 4540 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
17:09:35.0464 4540 monitor - ok
17:09:35.0517 4540 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
17:09:35.0524 4540 mouclass - ok
17:09:35.0544 4540 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
17:09:35.0550 4540 mouhid - ok
17:09:35.0569 4540 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
17:09:35.0596 4540 MountMgr - ok
17:09:35.0627 4540 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
17:09:35.0628 4540 mpio - ok
17:09:35.0656 4540 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
17:09:35.0672 4540 mpsdrv - ok
17:09:35.0744 4540 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
17:09:35.0756 4540 MpsSvc - ok
17:09:35.0775 4540 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
17:09:35.0776 4540 Mraid35x - ok
17:09:35.0840 4540 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
17:09:35.0848 4540 MRxDAV - ok
17:09:35.0901 4540 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:09:35.0908 4540 mrxsmb - ok
17:09:35.0980 4540 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:09:35.0996 4540 mrxsmb10 - ok
17:09:36.0014 4540 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:09:36.0021 4540 mrxsmb20 - ok
17:09:36.0032 4540 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
17:09:36.0033 4540 msahci - ok
17:09:36.0067 4540 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
17:09:36.0068 4540 msdsm - ok
17:09:36.0099 4540 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
17:09:36.0101 4540 MSDTC - ok
17:09:36.0141 4540 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
17:09:36.0146 4540 Msfs - ok
17:09:36.0217 4540 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
17:09:36.0223 4540 msisadrv - ok
17:09:36.0261 4540 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
17:09:36.0281 4540 MSiSCSI - ok
17:09:36.0286 4540 msiserver - ok
17:09:36.0325 4540 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
17:09:36.0330 4540 MSKSSRV - ok
17:09:36.0341 4540 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
17:09:36.0346 4540 MSPCLOCK - ok
17:09:36.0378 4540 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
17:09:36.0383 4540 MSPQM - ok
17:09:36.0434 4540 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
17:09:36.0446 4540 MsRPC - ok
17:09:36.0466 4540 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
17:09:36.0467 4540 mssmbios - ok
17:09:36.0482 4540 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
17:09:36.0487 4540 MSTEE - ok
17:09:36.0505 4540 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
17:09:36.0514 4540 Mup - ok
17:09:36.0587 4540 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
17:09:36.0593 4540 napagent - ok
17:09:36.0669 4540 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
17:09:36.0687 4540 NativeWifiP - ok
17:09:36.0751 4540 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
17:09:36.0758 4540 NDIS - ok
17:09:36.0784 4540 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
17:09:36.0790 4540 NdisTapi - ok
17:09:36.0825 4540 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
17:09:36.0830 4540 Ndisuio - ok
17:09:36.0892 4540 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
17:09:36.0911 4540 NdisWan - ok
17:09:36.0927 4540 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
17:09:36.0935 4540 NDProxy - ok
17:09:36.0944 4540 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
17:09:36.0952 4540 NetBIOS - ok
17:09:37.0019 4540 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
17:09:37.0038 4540 netbt - ok
17:09:37.0099 4540 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
17:09:37.0101 4540 Netlogon - ok
17:09:37.0127 4540 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
17:09:37.0133 4540 Netman - ok
17:09:37.0199 4540 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
17:09:37.0203 4540 netprofm - ok
17:09:37.0236 4540 netr73 - ok
17:09:37.0338 4540 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:09:37.0353 4540 NetTcpPortSharing - ok
17:09:37.0395 4540 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
17:09:37.0403 4540 nfrd960 - ok
17:09:37.0447 4540 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
17:09:37.0451 4540 NlaSvc - ok
17:09:37.0501 4540 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
17:09:37.0508 4540 Npfs - ok
17:09:37.0560 4540 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
17:09:37.0562 4540 nsi - ok
17:09:37.0615 4540 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
17:09:37.0620 4540 nsiproxy - ok
17:09:37.0744 4540 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
17:09:37.0814 4540 Ntfs - ok
17:09:37.0832 4540 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
17:09:37.0839 4540 ntrigdigi - ok
17:09:37.0884 4540 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
17:09:37.0887 4540 Null - ok
17:09:37.0985 4540 NVHDA (3d7fb57354703809b5f0c23287fac1d6) C:\Windows\system32\drivers\nvhda32v.sys
17:09:37.0992 4540 NVHDA - ok
17:09:38.0575 4540 nvlddmkm (e891b3979f0cf2740c1b073f834221fe) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:09:38.0788 4540 nvlddmkm - ok
17:09:38.0913 4540 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
17:09:38.0923 4540 nvraid - ok
17:09:38.0937 4540 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
17:09:38.0947 4540 nvstor - ok
17:09:39.0051 4540 nvsvc (ae2de8e165dcb93a66b21748e6f913df) C:\Windows\system32\nvvsvc.exe
17:09:39.0059 4540 nvsvc - ok
17:09:39.0332 4540 nvUpdatusService (c78581c14699c46fe0f0817416383134) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:09:39.0354 4540 nvUpdatusService - ok
17:09:39.0484 4540 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
17:09:39.0485 4540 nv_agp - ok
17:09:39.0490 4540 NwlnkFlt - ok
17:09:39.0499 4540 NwlnkFwd - ok
17:09:39.0560 4540 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
17:09:39.0561 4540 ohci1394 - ok
17:09:39.0645 4540 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
17:09:39.0657 4540 p2pimsvc - ok
17:09:39.0668 4540 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
17:09:39.0677 4540 p2psvc - ok
17:09:39.0712 4540 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
17:09:39.0714 4540 Parport - ok
17:09:39.0761 4540 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
17:09:39.0771 4540 partmgr - ok
17:09:39.0805 4540 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
17:09:39.0810 4540 Parvdm - ok
17:09:39.0866 4540 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
17:09:39.0869 4540 PcaSvc - ok
17:09:39.0908 4540 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
17:09:39.0909 4540 pci - ok
17:09:39.0918 4540 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
17:09:39.0935 4540 pciide - ok
17:09:39.0981 4540 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
17:09:40.0017 4540 pcmcia - ok
17:09:40.0118 4540 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
17:09:40.0147 4540 PEAUTH - ok
17:09:40.0296 4540 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
17:09:40.0321 4540 pla - ok
17:09:40.0452 4540 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
17:09:40.0456 4540 PlugPlay - ok
17:09:40.0545 4540 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
17:09:40.0552 4540 PNRPAutoReg - ok
17:09:40.0561 4540 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
17:09:40.0567 4540 PNRPsvc - ok
17:09:40.0654 4540 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
17:09:40.0673 4540 PolicyAgent - ok
17:09:40.0746 4540 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
17:09:40.0754 4540 PptpMiniport - ok
17:09:40.0796 4540 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
17:09:40.0804 4540 Processor - ok
17:09:40.0856 4540 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
17:09:40.0860 4540 ProfSvc - ok
17:09:40.0915 4540 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
17:09:40.0917 4540 ProtectedStorage - ok
17:09:40.0996 4540 Ps2 (390c204ced3785609ab24e9c52054a84) C:\Windows\system32\DRIVERS\PS2.sys
17:09:41.0003 4540 Ps2 - ok
17:09:41.0054 4540 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
17:09:41.0063 4540 PSched - ok
17:09:41.0074 4540 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\Windows\system32\Drivers\PxHelp20.sys
17:09:41.0088 4540 PxHelp20 - ok
17:09:41.0189 4540 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
17:09:41.0204 4540 ql2300 - ok
17:09:41.0266 4540 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
17:09:41.0277 4540 ql40xx - ok
17:09:41.0333 4540 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
17:09:41.0339 4540 QWAVE - ok
17:09:41.0356 4540 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
17:09:41.0362 4540 QWAVEdrv - ok
17:09:41.0399 4540 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
17:09:41.0400 4540 RasAcd - ok
17:09:41.0433 4540 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
17:09:41.0437 4540 RasAuto - ok
17:09:41.0446 4540 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:09:41.0455 4540 Rasl2tp - ok
17:09:41.0524 4540 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
17:09:41.0530 4540 RasMan - ok
17:09:41.0592 4540 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
17:09:41.0599 4540 RasPppoe - ok
17:09:41.0662 4540 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
17:09:41.0670 4540 RasSstp - ok
17:09:41.0729 4540 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
17:09:41.0744 4540 rdbss - ok
17:09:41.0774 4540 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:09:41.0775 4540 RDPCDD - ok
17:09:41.0847 4540 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
17:09:41.0850 4540 rdpdr - ok
17:09:41.0866 4540 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
17:09:41.0871 4540 RDPENCDD - ok
17:09:41.0937 4540 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
17:09:41.0954 4540 RDPWD - ok
17:09:42.0061 4540 Remote UI Service (752402f6bd5fa012805813c329f88dd3) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
17:09:42.0122 4540 Remote UI Service - ok
17:09:42.0203 4540 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
17:09:42.0205 4540 RemoteAccess - ok
17:09:42.0264 4540 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
17:09:42.0267 4540 RemoteRegistry - ok
17:09:42.0382 4540 RoxMediaDB9 (2dac86f10c42b55f2511f14cbcee7284) c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
17:09:42.0401 4540 RoxMediaDB9 - ok
17:09:42.0439 4540 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
17:09:42.0441 4540 RpcLocator - ok
17:09:42.0524 4540 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
17:09:42.0531 4540 RpcSs - ok
17:09:42.0598 4540 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
17:09:42.0605 4540 rspndr - ok
17:09:42.0638 4540 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
17:09:42.0640 4540 SamSs - ok
17:09:42.0886 4540 SASDIFSV - ok
17:09:42.0895 4540 SASKUTIL - ok
17:09:42.0942 4540 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
17:09:42.0943 4540 sbp2port - ok
17:09:43.0027 4540 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
17:09:43.0031 4540 SCardSvr - ok
17:09:43.0092 4540 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
17:09:43.0102 4540 Schedule - ok
17:09:43.0132 4540 SCMNdisP (3b68015683c27cb00c7a6b60a37cbcfd) C:\Windows\system32\DRIVERS\scmndisp.sys
17:09:43.0139 4540 SCMNdisP - ok
17:09:43.0200 4540 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
17:09:43.0201 4540 SCPolicySvc - ok
17:09:43.0263 4540 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
17:09:43.0268 4540 SDRSVC - ok
17:09:43.0281 4540 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:09:43.0287 4540 secdrv - ok
17:09:43.0302 4540 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
17:09:43.0306 4540 seclogon - ok
17:09:43.0356 4540 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
17:09:43.0360 4540 SENS - ok
17:09:43.0376 4540 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
17:09:43.0382 4540 Serenum - ok
17:09:43.0420 4540 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
17:09:43.0430 4540 Serial - ok
17:09:43.0499 4540 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
17:09:43.0505 4540 sermouse - ok
17:09:43.0569 4540 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
17:09:43.0573 4540 SessionEnv - ok
17:09:43.0588 4540 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\drivers\sffdisk.sys
17:09:43.0593 4540 sffdisk - ok
17:09:43.0602 4540 sffp_mmc (96ded8b20c734ac41641ce275250e55d) C:\Windows\system32\drivers\sffp_mmc.sys
17:09:43.0608 4540 sffp_mmc - ok
17:09:43.0621 4540 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\drivers\sffp_sd.sys
17:09:43.0626 4540 sffp_sd - ok
17:09:43.0639 4540 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
17:09:43.0644 4540 sfloppy - ok
17:09:43.0674 4540 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
17:09:43.0679 4540 SharedAccess - ok
17:09:43.0716 4540 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
17:09:43.0721 4540 ShellHWDetection - ok
17:09:43.0741 4540 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
17:09:43.0750 4540 sisagp - ok
17:09:43.0782 4540 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
17:09:43.0783 4540 SiSRaid2 - ok
17:09:43.0816 4540 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
17:09:43.0817 4540 SiSRaid4 - ok
17:09:44.0069 4540 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
17:09:44.0129 4540 slsvc - ok
17:09:44.0264 4540 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
17:09:44.0268 4540 SLUINotify - ok
17:09:44.0351 4540 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
17:09:44.0360 4540 Smb - ok
17:09:44.0435 4540 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
17:09:44.0439 4540 SNMPTRAP - ok
17:09:44.0499 4540 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
17:09:44.0505 4540 spldr - ok
17:09:44.0538 4540 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
17:09:44.0542 4540 Spooler - ok
17:09:44.0611 4540 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
17:09:44.0625 4540 srv - ok
17:09:44.0661 4540 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
17:09:44.0679 4540 srv2 - ok
17:09:44.0703 4540 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
17:09:44.0714 4540 srvnet - ok
17:09:44.0770 4540 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
17:09:44.0774 4540 SSDPSRV - ok
17:09:44.0795 4540 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
17:09:44.0801 4540 ssmdrv - ok
17:09:44.0882 4540 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
17:09:44.0886 4540 SstpSvc - ok
17:09:45.0058 4540 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:09:45.0080 4540 Stereo Service - ok
17:09:45.0173 4540 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
17:09:45.0181 4540 stisvc - ok
17:09:45.0263 4540 stllssvr (e5ff667e416dac99bff16b626234a379) c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
17:09:45.0264 4540 stllssvr - ok
17:09:45.0322 4540 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
17:09:45.0329 4540 swenum - ok
17:09:45.0406 4540 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
17:09:45.0413 4540 swprv - ok
17:09:45.0441 4540 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
17:09:45.0448 4540 Symc8xx - ok
17:09:45.0466 4540 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
17:09:45.0474 4540 Sym_hi - ok
17:09:45.0507 4540 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
17:09:45.0514 4540 Sym_u3 - ok
17:09:45.0584 4540 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
17:09:45.0593 4540 SysMain - ok
17:09:45.0626 4540 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
17:09:45.0630 4540 TabletInputService - ok
17:09:45.0699 4540 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
17:09:45.0705 4540 TapiSrv - ok
17:09:45.0766 4540 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
17:09:45.0770 4540 TBS - ok
17:09:45.0873 4540 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
17:09:45.0895 4540 Tcpip - ok
17:09:45.0913 4540 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
17:09:45.0923 4540 Tcpip6 - ok
17:09:45.0973 4540 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
17:09:45.0974 4540 tcpipreg - ok
17:09:46.0027 4540 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
17:09:46.0033 4540 TDPIPE - ok
17:09:46.0052 4540 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
17:09:46.0058 4540 TDTCP - ok
17:09:46.0119 4540 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
17:09:46.0128 4540 tdx - ok
17:09:46.0163 4540 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
17:09:46.0171 4540 TermDD - ok
17:09:46.0246 4540 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
17:09:46.0255 4540 TermService - ok
17:09:46.0299 4540 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
17:09:46.0304 4540 Themes - ok
17:09:46.0359 4540 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
17:09:46.0362 4540 THREADORDER - ok
17:09:46.0417 4540 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
17:09:46.0422 4540 TrkWks - ok
17:09:46.0488 4540 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
17:09:46.0489 4540 TrustedInstaller - ok
17:09:46.0546 4540 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:09:46.0547 4540 tssecsrv - ok
17:09:46.0576 4540 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
17:09:46.0580 4540 tunmp - ok
17:09:46.0586 4540 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
17:09:46.0587 4540 tunnel - ok
17:09:46.0612 4540 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
17:09:46.0613 4540 uagp35 - ok
17:09:46.0666 4540 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
17:09:46.0668 4540 udfs - ok
17:09:46.0742 4540 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
17:09:46.0745 4540 UI0Detect - ok
17:09:46.0774 4540 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
17:09:46.0775 4540 uliagpkx - ok
17:09:46.0805 4540 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
17:09:46.0818 4540 uliahci - ok
17:09:46.0836 4540 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
17:09:46.0837 4540 UlSata - ok
17:09:46.0853 4540 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
17:09:46.0863 4540 ulsata2 - ok
17:09:46.0908 4540 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
17:09:46.0914 4540 umbus - ok
17:09:46.0974 4540 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
17:09:46.0979 4540 upnphost - ok
17:09:47.0063 4540 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
17:09:47.0072 4540 usbaudio - ok
17:09:47.0131 4540 usbbus (af9388e736af0c325067f05edc350010) C:\Windows\system32\DRIVERS\lgusbbus.sys
17:09:47.0136 4540 usbbus - ok
17:09:47.0200 4540 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
17:09:47.0209 4540 usbccgp - ok
17:09:47.0228 4540 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
17:09:47.0230 4540 usbcir - ok
17:09:47.0258 4540 UsbDiag (ae30ea96e60e823c7b525da356283ae8) C:\Windows\system32\DRIVERS\lgusbdiag.sys
17:09:47.0259 4540 UsbDiag - ok
17:09:47.0304 4540 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
17:09:47.0310 4540 usbehci - ok
17:09:47.0345 4540 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
17:09:47.0347 4540 usbhub - ok
17:09:47.0383 4540 USBModem (46ac66df3d6efe81f69bea823a53aab5) C:\Windows\system32\DRIVERS\lgusbmodem.sys
17:09:47.0389 4540 USBModem - ok
17:09:47.0423 4540 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
17:09:47.0428 4540 usbohci - ok
17:09:47.0472 4540 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
17:09:47.0478 4540 usbprint - ok
17:09:47.0497 4540 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:09:47.0505 4540 USBSTOR - ok
17:09:47.0555 4540 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
17:09:47.0556 4540 usbuhci - ok
17:09:47.0604 4540 usbvideo (0a6b81f01bc86399482e27e6fda7b33b) C:\Windows\system32\Drivers\usbvideo.sys
17:09:47.0606 4540 usbvideo - ok
17:09:47.0653 4540 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
17:09:47.0663 4540 UxSms - ok
17:09:47.0737 4540 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
17:09:47.0745 4540 vds - ok
17:09:47.0784 4540 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
17:09:47.0790 4540 vga - ok
17:09:47.0804 4540 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
17:09:47.0810 4540 VgaSave - ok
17:09:47.0830 4540 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
17:09:47.0831 4540 viaagp - ok
17:09:47.0863 4540 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
17:09:47.0864 4540 ViaC7 - ok
17:09:47.0883 4540 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
17:09:47.0890 4540 viaide - ok
17:09:47.0947 4540 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
17:09:47.0956 4540 volmgr - ok
17:09:48.0028 4540 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
17:09:48.0032 4540 volmgrx - ok
17:09:48.0071 4540 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
17:09:48.0074 4540 volsnap - ok
17:09:48.0123 4540 Vsdatant (6983d0bcac64c2d7460c2125f804f118) C:\Windows\system32\DRIVERS\vsdatant.sys
17:09:48.0139 4540 Vsdatant - ok
17:09:48.0145 4540 vsdatant7 - ok
17:09:48.0236 4540 vsmon - ok
17:09:48.0275 4540 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
17:09:48.0294 4540 vsmraid - ok
17:09:48.0398 4540 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
17:09:48.0414 4540 VSS - ok
17:09:48.0481 4540 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
17:09:48.0488 4540 W32Time - ok
17:09:48.0533 4540 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
17:09:48.0548 4540 WacomPen - ok
17:09:48.0597 4540 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:09:48.0602 4540 Wanarp - ok
17:09:48.0606 4540 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:09:48.0607 4540 Wanarpv6 - ok
17:09:48.0639 4540 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
17:09:48.0645 4540 wcncsvc - ok
17:09:48.0674 4540 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
17:09:48.0676 4540 WcsPlugInService - ok


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-08 17:13:44
-----------------------------
17:13:44.872 OS Version: Windows 6.0.6002 Service Pack 2
17:13:44.872 Number of processors: 2 586 0xF0D
17:13:44.885 ComputerName: STEPHEN-PC UserName: Stephen
17:14:03.844 Initialize success
17:25:28.505 AVAST engine defs: 12080801
17:34:56.537 The log file has been saved successfully to "C:\Users\Stephen\Desktop\aswMBR.txt"


I didn't have a log for ESET online scanner. It completed and found no threats, though.

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 11 August 2012 - 04:48 PM

ASWMBR log is incomplete,please run a scan again

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#6 Mac76

Mac76
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 12 August 2012 - 06:26 PM

iniToolBox by Farbar Version: 23-07-2012
Ran by Stephen (administrator) on 12-08-2012 at 19:09:54
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82566DC-2 Gigabit Network Connection = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Stephen-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Intel® 82566DC-2 Gigabit Network Connection
Physical Address. . . . . . . . . : 00-1D-60-13-88-2E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::981c:b7b5:5f65:d9ed%8(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.69(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, August 12, 2012 11:20:22 AM
Lease Expires . . . . . . . . . . : Monday, August 13, 2012 11:20:20 AM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 201333756
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-B0-AD-5F-00-1D-60-13-88-2E
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: homeportal
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4002:802::1005
74.125.139.100
74.125.139.101
74.125.139.102
74.125.139.113
74.125.139.138
74.125.139.139



Pinging google.com [74.125.139.101] with 32 bytes of data:

Reply from 74.125.139.101: bytes=32 time=48ms TTL=40

Reply from 74.125.139.101: bytes=32 time=47ms TTL=40



Ping statistics for 74.125.139.101:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 47ms, Maximum = 48ms, Average = 47ms

Server: homeportal
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=62ms TTL=45

Reply from 209.191.122.70: bytes=32 time=63ms TTL=45



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 62ms, Maximum = 63ms, Average = 62ms

Server: homeportal
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=12ms TTL=128

Reply from 127.0.0.1: bytes=32 time=1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 1ms, Maximum = 12ms, Average = 6ms

===========================================================================
Interface List
8 ...00 1d 60 13 88 2e ...... Intel® 82566DC-2 Gigabit Network Connection
1 ........................... Software Loopback Interface 1
9 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
16 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.69 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.69 276
192.168.1.69 255.255.255.255 On-link 192.168.1.69 276
192.168.1.255 255.255.255.255 On-link 192.168.1.69 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.69 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.69 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
8 276 fe80::/64 On-link
8 276 fe80::981c:b7b5:5f65:d9ed/128
On-link
1 306 ff00::/8 On-link
8 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/12/2012 00:22:27 PM) (Source: Microsoft-Windows-RestartManager) (User: Stephen-PC)Stephen-PC
Description: 0SearchIndexer.exeWindows Search03026216126200

Error: (03/23/2012 08:38:54 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\2Q15RWRU\ZZZZZZZZZZZZZZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (03/23/2012 08:38:54 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\2Q15RWRU\ZZZZZZ.ZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (03/23/2012 08:38:01 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\1DX1LVIS\ZZZZZZZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (03/23/2012 08:38:01 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (03/23/2012 08:37:04 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (03/23/2012 08:37:04 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (03/23/2012 08:37:04 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (03/23/2012 08:37:04 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (03/23/2012 08:36:11 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZ.ZZZZ> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (03/22/2012 07:15:06 AM) (Source: Service Control Manager) (User: )
Description: 30000AntiVirSchedulerService

Error: (03/20/2012 06:43:30 PM) (Source: Service Control Manager) (User: )
Description: SASDIFSV
SASKUTIL

Error: (03/18/2012 10:03:53 PM) (Source: Service Control Manager) (User: )
Description: 30000Netman

Error: (03/18/2012 07:19:54 PM) (Source: Service Control Manager) (User: )
Description: 30000ShellHWDetection

Error: (03/18/2012 05:13:25 PM) (Source: Service Control Manager) (User: )
Description: 30000Netman

Error: (03/18/2012 01:27:19 PM) (Source: Service Control Manager) (User: )
Description: SASDIFSV
SASKUTIL

Error: (03/18/2012 10:07:50 AM) (Source: Service Control Manager) (User: )
Description: 30000Netman

Error: (03/18/2012 03:27:14 AM) (Source: Service Control Manager) (User: )
Description: SASDIFSV
SASKUTIL

Error: (03/17/2012 07:12:58 PM) (Source: Service Control Manager) (User: )
Description: SASDIFSV
SASKUTIL

Error: (03/14/2012 03:36:00 AM) (Source: Service Control Manager) (User: )
Description: SASDIFSV
SASKUTIL


Microsoft Office Sessions:
=========================
Error: (08/12/2012 00:22:27 PM) (Source: Microsoft-Windows-RestartManager)(User: Stephen-PC)Stephen-PC
Description: 0SearchIndexer.exeWindows Search03026216126200

Error: (03/23/2012 08:38:54 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\2Q15RWRU\ZZZZZZZZZZZZZZZZZZZZZ.ZZZ

Error: (03/23/2012 08:38:54 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\2Q15RWRU\ZZZZZZ.ZZZ

Error: (03/23/2012 08:38:01 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\1DX1LVIS\ZZZZZZZZZZZZZZ.ZZZ

Error: (03/23/2012 08:38:01 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZ.ZZZ

Error: (03/23/2012 08:37:04 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ

Error: (03/23/2012 08:37:04 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ

Error: (03/23/2012 08:37:04 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ

Error: (03/23/2012 08:37:04 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ.ZZZ

Error: (03/23/2012 08:36:11 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\STEPHEN\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\0QDUPCET\ZZZZZZZZZZZZZZZZZZZZZ.ZZZZ


=========================== Installed Programs ============================

µTorrent (Version: 3.1.3)
7-Zip 9.15 beta
Acrobat.com (Version: 2.3.0)
Acrobat.com (Version: 2.3.0.0)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 2.0.2.12610)
Adobe Download Manager (Version: 1.6.2.63)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Reader 9.4.5 (Version: 9.4.5)
Apple Application Support (Version: 1.4.1)
Apple Software Update (Version: 2.1.3.127)
Avira Free Antivirus (Version: 12.0.0.1167)
BattlEye Uninstall
Big Fish Games: Game Manager (Version: 2.0.1.46)
Bistro Boulevard
CCleaner (Version: 3.21)
Chat Messenger
D3DX10 (Version: 15.4.2368.0902)
Driver Detective (Version: 8.0.1)
DVD Decoder Pak for Windows XP (Version: 1.0.0)
EA Download Manager (Version: 7.1.3.3)
Easy Media Player 1.1.12 (Version: 1.1.12)
Enhanced Multimedia Keyboard Solution
ESET Online Scanner v3
FastStone Photo Resizer 3.0 (Version: 3.0)
Final Media Player 2010
Google Chrome (Version: 21.0.1180.75)
Google Update Helper (Version: 1.3.21.115)
Grand Theft Auto - Episodes From Liberty City (Version: 1.1.0.0)
Grand Theft Auto IV (Version: 1.0.0013.131)
Grand Theft Auto: Episodes from Liberty City (Version: 1.0.0003.135)
HL-2240 (Version: 1.0.6.0)
Hobby Farm
Hotdog Hotshot
HP Active Support Library (Version: 3.1.6.1)
HP Active Support Library 32 bit components (Version: 2.1.0)
HP Advisor (Version: 3.1.9152.3107)
HP Customer Experience Enhancements (Version: 5.2.0.2296)
HP Customer Feedback (Version: 1.0.0)
HP Easy Setup - Frontend (Version: 5.2.0.2304)
HP On-Screen Cap/Num/Scroll Lock Indicator
HP Photosmart Essential 2.01 (Version: 2.01)
HP Photosmart Essential2.01 (Version: 1.01.0000)
HP Picasso Media Center Add-In (Version: 1.0.0)
HP Update (Version: 5.002.008.001)
HPAsset component for HP Active Support Library (Version: 3.0.0.6)
Intel® Network Connections Drivers
Intel® Viiv™ Software (Version: 1.6.361.6)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 22 (Version: 6.0.220)
Java™ 6 Update 29 (Version: 6.0.290)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
LG CyberLink PowerBackup (Version: 2.5.4511)
LG CyberLink PowerProducer (Version: 085312a(3.7)_Vista_LG)
LG CyberLink YouCam (Version: 1.0.2609)
LG ODD Auto Firmware Update (Version: 9.01.1124.01)
LG United Mobile Driver (Version: 3.6.0.0)
LightScribe 1.6.45.1 (Version: 1.6.45.1)
Logitech Vid HD (Version: 7.2 (7240))
Logitech Webcam Software (Version: 12.10.1113)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Games for Windows - LIVE (Version: 3.1.186.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Office Home and Student 60 day trial
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 08.05.0818)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
My HP Games (Version: HPCMPQ1804)
neroxml (Version: 1.0.0)
NETGEAR WNA1100 wireless USB 2.0 driver (Version: 1.0.0.0)
NVIDIA 3D Vision Controller Driver 296.10 (Version: 296.10)
NVIDIA 3D Vision Driver 296.10 (Version: 296.10)
NVIDIA Control Panel 296.10 (Version: 296.10)
NVIDIA Graphics Driver 296.10 (Version: 296.10)
NVIDIA HD Audio Driver 1.3.12.0 (Version: 1.3.12.0)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9610)
NVIDIA Update 1.7.11 (Version: 1.7.11)
NVIDIA Update Components (Version: 1.7.11)
OpenOffice.org 3.3 (Version: 3.3.9567)
Picasa 3 (Version: 3.8)
PSSWCORE (Version: 2.01.0000)
PVSonyDll (Version: 1.00.0001)
Python 2.5 (Version: 2.5.150)
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.5789)
Rhapsody
Rhapsody Player Engine (Version: 1.0.604)
Rockstar Games Social Club (Version: 1.00.0000)
Roxio Activation Module (Version: 1.0)
Roxio Creator Audio (Version: 3.4.0)
Roxio Creator Basic v9 (Version: 3.4.0)
Roxio Creator Copy (Version: 3.4.0)
Roxio Creator Data (Version: 3.4.0)
Roxio Creator EasyArchive (Version: 3.4.0)
Roxio Creator Tools (Version: 3.4.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio MyDVD Basic v9 (Version: 9.0.572)
Segoe UI (Version: 15.4.2271.0615)
Snapfish Picture Mover (Version: 1.9.0.16)
Soft Data Fax Modem with SmartCP (Version: 7.74.00)
Suite (Version: 1.00.0000)
SWAT 4 - The Stetchkov Syndicate (Version: 1.0)
SWAT 4 (Version: 1.1)
The Sims™ 3 (Version: 1.19.44)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
VideoToolkit01 (Version: 90.0.146.000)
WeatherBug Gadget (Version: 1.0.0.6)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Yahoo! Detect
ZoneAlarm Firewall (Version: 10.1.065.000)
ZoneAlarm Free (Version: 10.1.065.000)
ZoneAlarm Security (Version: 10.1.065.000)
ZoneAlarm Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 3070.39 MB
Available physical RAM: 1743.92 MB
Total Pagefile: 6375.05 MB
Available Pagefile: 4227.19 MB
Total Virtual: 2047.88 MB
Available Virtual: 1958.35 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:363.75 GB) (Free:177.42 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:8.86 GB) (Free:1.2 GB) NTFS

========================= Users: ========================================

User accounts for \\STEPHEN-PC

Administrator Guest IUSR_NMPR
Stephen UpdatusUser


**** End of log ****





Farbar Service Scanner Version: 06-08-2012
Ran by Stephen (administrator) on 12-08-2012 at 19:13:36
Running from "C:\Users\Stephen\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Disabled. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2010-06-21 22:44] - [2008-01-19 03:34] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****




# AdwCleaner v1.800 - Logfile created 08/12/2012 at 19:16:52
# Updated 01/08/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Stephen - STEPHEN-PC
# Running from : C:\Users\Stephen\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\Stephen\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Stephen\AppData\LocalLow\wxDfast
Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Trymedia
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\Ask.com.tmp
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Software
Key Deleted : HKLM\SOFTWARE\Wise Solutions
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.19272

[OK] Registry is clean.

-\\ Google Chrome v21.0.1180.75

File : C:\Users\Stephen\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted : "homepage": "hxxp://blekko.com/ws/?source=f45f13b3&toolbarid=blekkotb_005&u=8ACC64F530D8409B37[...]
Deleted : "homepage": "hxxp://blekko.com/ws/?source=f45f13b3&toolbarid=blekkotb_005&u=8ACC64F530D8409B37F32[...]

*************************

AdwCleaner[S1].txt - [2950 octets] - [12/08/2012 19:16:52]

########## EOF - C:\AdwCleaner[S1].txt - [3078 octets] ##########

#7 Mac76

Mac76
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 12 August 2012 - 06:55 PM

I am posting the completed aswmbr scan as requested. Thanks.


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-12 19:37:21
-----------------------------
19:37:21.332 OS Version: Windows 6.0.6002 Service Pack 2
19:37:21.332 Number of processors: 2 586 0xF0D
19:37:21.332 ComputerName: STEPHEN-PC UserName: Stephen
19:37:39.111 Initialize success
19:38:51.005 AVAST engine defs: 12081201
19:39:19.824 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:39:19.825 Disk 0 Vendor: WDC_WD4000AAJS-65TKA0 12.01C01 Size: 381554MB BusType: 3
19:39:19.832 Disk 0 MBR read successfully
19:39:19.833 Disk 0 MBR scan
19:39:19.867 Disk 0 unknown MBR code
19:39:19.868 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 372475 MB offset 63
19:39:19.900 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 9075 MB offset 762830460
19:39:19.908 Disk 0 scanning sectors +781417665
19:39:19.971 Disk 0 scanning C:\Windows\system32\drivers
19:39:35.513 Service scanning
19:40:03.914 Modules scanning
19:40:30.344 Disk 0 trace - called modules:
19:40:30.356 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
19:40:30.359 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85f98a78]
19:40:30.362 3 CLASSPNP.SYS[8a7a68b3] -> nt!IofCallDriver -> [0x84d8e408]
19:40:30.366 5 acpi.sys[806946bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x8576fb98]
19:40:32.340 AVAST engine scan C:\Windows
19:40:35.781 AVAST engine scan C:\Windows\system32
19:45:25.504 AVAST engine scan C:\Windows\system32\drivers
19:45:47.445 AVAST engine scan C:\Users\Stephen
19:47:31.201 Disk 0 MBR has been saved successfully to "C:\Users\Stephen\Desktop\MBR.dat"
19:47:31.212 The log file has been saved successfully to "C:\Users\Stephen\Desktop\aswMBR.txt"
19:51:40.767 AVAST engine scan C:\ProgramData
19:53:37.228 Scan finished successfully
19:54:13.995 Disk 0 MBR has been saved successfully to "C:\Users\Stephen\Desktop\MBR.dat"
19:54:13.999 The log file has been saved successfully to "C:\Users\Stephen\Desktop\aswMBR2.txt"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 12 August 2012 - 09:43 PM

Create a restore point before modifying registry entries

Press Windows+R key and type

regedit and click ok

Browse to

HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows

On right pane you should find LOAD or RUN key with this value C:users/stephen/appdata/local/temp/{73984~1.exe ,delete it.If you get access denied error

go to HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows

right click on Windows key

Click on permissions

CLick on Everyone

Under permissions ,select FULL CONTROL and click ok,now you should be able to delete the LOAD key

Please run mbam again and post the new log

Edited by narenxp, 12 August 2012 - 09:44 PM.


#9 Mac76

Mac76
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 13 August 2012 - 07:33 PM

I think this is what you wanted me to run.


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-13 20:03:48
-----------------------------
20:03:48.988 OS Version: Windows 6.0.6002 Service Pack 2
20:03:48.988 Number of processors: 2 586 0xF0D
20:03:48.989 ComputerName: STEPHEN-PC UserName: Stephen
20:03:51.488 Initialize success
20:04:00.634 AVAST engine defs: 12081201
20:04:04.920 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
20:04:04.921 Disk 0 Vendor: WDC_WD4000AAJS-65TKA0 12.01C01 Size: 381554MB BusType: 3
20:04:05.017 Disk 0 MBR read successfully
20:04:05.018 Disk 0 MBR scan
20:04:05.042 Disk 0 unknown MBR code
20:04:05.052 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 372475 MB offset 63
20:04:05.122 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 9075 MB offset 762830460
20:04:05.187 Disk 0 scanning sectors +781417665
20:04:05.404 Disk 0 scanning C:\Windows\system32\drivers
20:04:51.224 Service scanning
20:05:24.977 Modules scanning
20:05:55.815 Disk 0 trace - called modules:
20:05:55.855 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys
20:05:55.858 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85f98a78]
20:05:55.862 3 CLASSPNP.SYS[8a7a68b3] -> nt!IofCallDriver -> [0x84d8e408]
20:05:55.866 5 acpi.sys[806946bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x8576fb98]
20:05:57.231 AVAST engine scan C:\Windows
20:06:41.209 AVAST engine scan C:\Windows\system32
20:15:32.625 AVAST engine scan C:\Windows\system32\drivers
20:16:49.993 AVAST engine scan C:\Users\Stephen
20:28:49.457 AVAST engine scan C:\ProgramData
20:31:20.767 Scan finished successfully

#10 Mac76

Mac76
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 13 August 2012 - 07:53 PM

I restarted computer, and it loaded with no box popping up!! I successfully deleted the file! Thank you very much for your help! You are awesome!

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 13 August 2012 - 09:08 PM

Grt :thumbup2:

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows-vista/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users