Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirect virus - can't shake it


  • Please log in to reply
17 replies to this topic

#1 benbaggins

benbaggins

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:28 AM

Posted 08 December 2012 - 01:29 PM

Hi,

I have a good redirect virus. I have run close to a dozen malware scans in various order (from reading the other threads on here) but I can't get rid of this thing. Help would be much appreciated. Thanks.

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:28 AM

Posted 08 December 2012 - 02:20 PM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs, unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.


:step2:

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the full contents of that document.


:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.


:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 benbaggins

benbaggins
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:28 AM

Posted 08 December 2012 - 03:14 PM

Thank you. Here are my log files:

TDSSkiller:

11:34:58.0330 7556 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
11:34:58.0814 7556 ============================================================
11:34:58.0814 7556 Current date / time: 2012/12/08 11:34:58.0814
11:34:58.0814 7556 SystemInfo:
11:34:58.0814 7556
11:34:58.0814 7556 OS Version: 6.0.6001 ServicePack: 1.0
11:34:58.0814 7556 Product type: Workstation
11:34:58.0814 7556 ComputerName: MT-LAPTOP
11:34:58.0814 7556 UserName: Jimbo
11:34:58.0814 7556 Windows directory: C:\Windows
11:34:58.0814 7556 System windows directory: C:\Windows
11:34:58.0814 7556 Processor architecture: Intel x86
11:34:58.0814 7556 Number of processors: 2
11:34:58.0814 7556 Page size: 0x1000
11:34:58.0814 7556 Boot type: Normal boot
11:34:58.0814 7556 ============================================================
11:35:00.0124 7556 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:35:00.0124 7556 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:35:00.0124 7556 ============================================================
11:35:00.0124 7556 \Device\Harddisk0\DR0:
11:35:00.0124 7556 MBR partitions:
11:35:00.0124 7556 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xDF93800
11:35:00.0124 7556 \Device\Harddisk1\DR1:
11:35:00.0124 7556 MBR partitions:
11:35:00.0124 7556 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
11:35:00.0124 7556 ============================================================
11:35:00.0171 7556 C: <-> \Device\Harddisk0\DR0\Partition1
11:35:00.0171 7556 F: <-> \Device\Harddisk1\DR1\Partition1
11:35:00.0171 7556 ============================================================
11:35:00.0171 7556 Initialize success
11:35:00.0171 7556 ============================================================
11:35:04.0196 0584 ============================================================
11:35:04.0196 0584 Scan started
11:35:04.0196 0584 Mode: Manual; SigCheck; TDLFS;
11:35:04.0212 0584 ============================================================
11:35:05.0226 0584 ================ Scan system memory ========================
11:35:05.0226 0584 System memory - ok
11:35:05.0226 0584 ================ Scan services =============================
11:35:05.0413 0584 51c7b90 - ok
11:35:05.0428 0584 58726de4 - ok
11:35:05.0475 0584 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
11:35:05.0631 0584 ACPI - ok
11:35:05.0740 0584 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:35:05.0756 0584 AdobeARMservice - ok
11:35:05.0787 0584 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:35:05.0803 0584 adp94xx - ok
11:35:05.0834 0584 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:35:05.0850 0584 adpahci - ok
11:35:05.0865 0584 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:35:05.0881 0584 adpu160m - ok
11:35:05.0896 0584 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:35:05.0912 0584 adpu320 - ok
11:35:05.0928 0584 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:35:05.0974 0584 AeLookupSvc - ok
11:35:06.0037 0584 [ 763E172A55177E478CB419F88FD0BA03 ] AFD C:\Windows\system32\drivers\afd.sys
11:35:06.0068 0584 AFD - ok
11:35:06.0115 0584 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:35:06.0115 0584 agp440 - ok
11:35:06.0146 0584 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:35:06.0146 0584 aic78xx - ok
11:35:06.0162 0584 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
11:35:06.0208 0584 ALG - ok
11:35:06.0224 0584 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
11:35:06.0224 0584 aliide - ok
11:35:06.0255 0584 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:35:06.0255 0584 amdagp - ok
11:35:06.0286 0584 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
11:35:06.0286 0584 amdide - ok
11:35:06.0318 0584 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:35:06.0349 0584 AmdK7 - ok
11:35:06.0364 0584 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:35:06.0411 0584 AmdK8 - ok
11:35:06.0442 0584 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
11:35:06.0489 0584 Appinfo - ok
11:35:06.0520 0584 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
11:35:06.0520 0584 arc - ok
11:35:06.0552 0584 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:35:06.0567 0584 arcsas - ok
11:35:06.0583 0584 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:35:06.0614 0584 AsyncMac - ok
11:35:06.0630 0584 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
11:35:06.0645 0584 atapi - ok
11:35:06.0692 0584 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:35:06.0739 0584 AudioEndpointBuilder - ok
11:35:06.0770 0584 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:35:06.0801 0584 Audiosrv - ok
11:35:07.0020 0584 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
11:35:07.0347 0584 AVGIDSAgent - ok
11:35:07.0363 0584 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
11:35:07.0410 0584 AVGIDSDriver - ok
11:35:07.0425 0584 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
11:35:07.0441 0584 AVGIDSHX - ok
11:35:07.0456 0584 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
11:35:07.0472 0584 AVGIDSShim - ok
11:35:07.0488 0584 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
11:35:07.0503 0584 Avgldx86 - ok
11:35:07.0534 0584 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
11:35:07.0550 0584 Avglogx - ok
11:35:07.0566 0584 [ 6C7C00B8DD22B4343B47FED148387057 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
11:35:07.0566 0584 Avgmfx86 - ok
11:35:07.0597 0584 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
11:35:07.0597 0584 Avgrkx86 - ok
11:35:07.0612 0584 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
11:35:07.0628 0584 Avgtdix - ok
11:35:07.0659 0584 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
11:35:07.0675 0584 avgwd - ok
11:35:07.0722 0584 [ 746F59822A5187510471FC46889B8CC9 ] BCM43XV C:\Windows\system32\DRIVERS\bcmwl6.sys
11:35:07.0753 0584 BCM43XV - ok
11:35:07.0800 0584 [ 746F59822A5187510471FC46889B8CC9 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
11:35:07.0815 0584 BCM43XX - ok
11:35:07.0846 0584 [ 08015D34F6FDD0B355805BAD978497C3 ] bcm4sbxp C:\Windows\system32\DRIVERS\bcm4sbxp.sys
11:35:08.0034 0584 bcm4sbxp - ok
11:35:08.0096 0584 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:35:08.0127 0584 Beep - ok
11:35:08.0190 0584 [ 8582E233C346AEFE759833E8A30DD697 ] BFE C:\Windows\System32\bfe.dll
11:35:08.0236 0584 BFE - ok
11:35:08.0314 0584 [ 02ED7B4DBC2A3232A389106DA7515C3D ] BITS C:\Windows\system32\qmgr.dll
11:35:08.0377 0584 BITS - ok
11:35:08.0408 0584 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
11:35:08.0470 0584 blbdrive - ok
11:35:08.0486 0584 [ 74B442B2BE1260B7588C136177CEAC66 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:35:08.0533 0584 bowser - ok
11:35:08.0580 0584 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:35:08.0626 0584 BrFiltLo - ok
11:35:08.0658 0584 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:35:08.0704 0584 BrFiltUp - ok
11:35:08.0736 0584 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
11:35:08.0782 0584 Browser - ok
11:35:08.0814 0584 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:35:08.0907 0584 Brserid - ok
11:35:08.0923 0584 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:35:09.0016 0584 BrSerWdm - ok
11:35:09.0048 0584 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:35:09.0126 0584 BrUsbMdm - ok
11:35:09.0157 0584 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:35:09.0219 0584 BrUsbSer - ok
11:35:09.0250 0584 [ DA7B195275BDA7F8FCF79B40E0F45DDE ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
11:35:09.0297 0584 BthEnum - ok
11:35:09.0328 0584 [ 5FFA6988FF9597986FF2ADA736CC90C0 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:35:09.0375 0584 BTHMODEM - ok
11:35:09.0391 0584 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:35:09.0438 0584 BthPan - ok
11:35:09.0484 0584 [ 671134053D59E23704F08DB19F11E10B ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
11:35:09.0531 0584 BTHPORT - ok
11:35:09.0547 0584 [ 58EE7F5E68310BC8D4E7CEBD8358C12E ] BthServ C:\Windows\System32\bthserv.dll
11:35:09.0594 0584 BthServ - ok
11:35:09.0609 0584 [ 93D7007E2C660DFCCA6AE72622740B14 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
11:35:09.0640 0584 BTHUSB - ok
11:35:09.0781 0584 catchme - ok
11:35:09.0812 0584 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:35:09.0874 0584 cdfs - ok
11:35:09.0906 0584 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:35:09.0984 0584 cdrom - ok
11:35:10.0015 0584 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
11:35:10.0093 0584 CertPropSvc - ok
11:35:10.0108 0584 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
11:35:10.0186 0584 circlass - ok
11:35:10.0218 0584 [ 745D20B75B3BDDA545022625ED5DBB1B ] CISVC C:\Windows\system32\CISVC.EXE
11:35:10.0249 0584 CISVC - ok
11:35:10.0264 0584 [ 465745561C832B29F7C48B488AAB3842 ] CLFS C:\Windows\system32\CLFS.sys
11:35:10.0280 0584 CLFS - ok
11:35:10.0358 0584 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:35:10.0358 0584 clr_optimization_v2.0.50727_32 - ok
11:35:10.0436 0584 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:35:10.0452 0584 clr_optimization_v4.0.30319_32 - ok
11:35:10.0498 0584 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:35:10.0530 0584 CmBatt - ok
11:35:10.0545 0584 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:35:10.0545 0584 cmdide - ok
11:35:10.0561 0584 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:35:10.0561 0584 Compbatt - ok
11:35:10.0576 0584 COMSysApp - ok
11:35:10.0592 0584 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:35:10.0608 0584 crcdisk - ok
11:35:10.0623 0584 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:35:10.0639 0584 Crusoe - ok
11:35:10.0686 0584 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:35:10.0717 0584 CryptSvc - ok
11:35:10.0764 0584 [ 33FB1F0193EE2051067441492D56113C ] DcomLaunch C:\Windows\system32\rpcss.dll
11:35:10.0826 0584 DcomLaunch - ok
11:35:10.0904 0584 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
11:35:11.0013 0584 DFSR - ok
11:35:11.0044 0584 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:35:11.0107 0584 Dhcp - ok
11:35:11.0138 0584 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
11:35:11.0138 0584 disk - ok
11:35:11.0388 0584 [ 12CA083A5C9463CDA58E448E489C866B ] DisplayLinkService C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
11:35:11.0590 0584 DisplayLinkService - ok
11:35:11.0637 0584 [ 03F0E57A127FBE09B7641D68A9483D2D ] DisplayLinkUsbPort C:\Windows\system32\DRIVERS\DisplayLinkUsbPort_5.5.27797.0.sys
11:35:11.0684 0584 DisplayLinkUsbPort - ok
11:35:11.0731 0584 [ C5D57D70AD00D2FBAF04B38675F1ED0A ] dlkmd C:\Windows\system32\drivers\dlkmd.sys
11:35:11.0746 0584 dlkmd - ok
11:35:11.0778 0584 [ B0A027364265D1FCA68C27C9596DDA0F ] dlkmdldr C:\Windows\system32\drivers\dlkmdldr.sys
11:35:11.0778 0584 dlkmdldr - ok
11:35:11.0809 0584 [ F5A0F1DA1ED8B429597E71D27D976E31 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:35:11.0856 0584 Dnscache - ok
11:35:11.0887 0584 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
11:35:11.0934 0584 dot3svc - ok
11:35:11.0949 0584 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
11:35:12.0012 0584 DPS - ok
11:35:12.0074 0584 [ BB45013A0E6EC0F39BE4EF663FF2E993 ] DragonSvc C:\Program Files\Common Files\Nuance\dgnsvc.exe
11:35:12.0090 0584 DragonSvc - ok
11:35:12.0121 0584 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:35:12.0168 0584 drmkaud - ok
11:35:12.0214 0584 [ F8BF50A8D862F8CC089080BEC509BCA6 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:35:12.0308 0584 DXGKrnl - ok
11:35:12.0324 0584 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:35:12.0370 0584 E1G60 - ok
11:35:12.0402 0584 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
11:35:12.0558 0584 EapHost - ok
11:35:12.0604 0584 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:35:12.0636 0584 Ecache - ok
11:35:12.0682 0584 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:35:12.0745 0584 ehRecvr - ok
11:35:12.0760 0584 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
11:35:12.0792 0584 ehSched - ok
11:35:12.0823 0584 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
11:35:12.0854 0584 ehstart - ok
11:35:12.0901 0584 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:35:12.0932 0584 elxstor - ok
11:35:12.0994 0584 [ BA4E96D951DDAD6AC3AF3C91D4AC68BF ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:35:13.0088 0584 EMDMgmt - ok
11:35:13.0119 0584 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:35:13.0182 0584 ErrDev - ok
11:35:13.0228 0584 [ F4BF4FA769DB51B106D2B4B35256988B ] EventSystem C:\Windows\system32\es.dll
11:35:13.0306 0584 EventSystem - ok
11:35:13.0353 0584 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
11:35:13.0416 0584 exfat - ok
11:35:13.0447 0584 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:35:13.0525 0584 fastfat - ok
11:35:13.0556 0584 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:35:13.0618 0584 fdc - ok
11:35:13.0650 0584 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:35:13.0712 0584 fdPHost - ok
11:35:13.0743 0584 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:35:13.0806 0584 FDResPub - ok
11:35:13.0821 0584 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:35:13.0821 0584 FileInfo - ok
11:35:13.0837 0584 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:35:13.0868 0584 Filetrace - ok
11:35:13.0884 0584 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:35:13.0915 0584 flpydisk - ok
11:35:13.0930 0584 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:35:13.0930 0584 FltMgr - ok
11:35:13.0977 0584 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:35:13.0977 0584 FontCache3.0.0.0 - ok
11:35:14.0008 0584 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:35:14.0055 0584 Fs_Rec - ok
11:35:14.0055 0584 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:35:14.0071 0584 gagp30kx - ok
11:35:14.0102 0584 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
11:35:14.0149 0584 gpsvc - ok
11:35:14.0242 0584 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
11:35:14.0258 0584 gupdate - ok
11:35:14.0258 0584 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
11:35:14.0258 0584 gupdatem - ok
11:35:14.0320 0584 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:35:14.0320 0584 gusvc - ok
11:35:14.0367 0584 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:35:14.0430 0584 HdAudAddService - ok
11:35:14.0445 0584 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:35:14.0476 0584 HDAudBus - ok
11:35:14.0508 0584 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:35:14.0539 0584 HidBth - ok
11:35:14.0570 0584 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
11:35:14.0617 0584 HidIr - ok
11:35:14.0632 0584 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\System32\hidserv.dll
11:35:14.0679 0584 hidserv - ok
11:35:14.0695 0584 [ 854CA287AB7FAF949617A788306D967E ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:35:14.0726 0584 HidUsb - ok
11:35:14.0757 0584 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:35:14.0773 0584 hkmsvc - ok
11:35:14.0804 0584 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:35:14.0820 0584 HpCISSs - ok
11:35:14.0851 0584 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
11:35:14.0882 0584 HSFHWAZL - ok
11:35:14.0898 0584 [ EC36F1D542ED4252390D446BF6D4DFD0 ] HSF_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS
11:35:14.0960 0584 HSF_DPV - ok
11:35:14.0991 0584 [ 406C027C18E98A396FAA1963DAD5FF70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:35:15.0038 0584 HTTP - ok
11:35:15.0054 0584 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:35:15.0069 0584 i2omp - ok
11:35:15.0132 0584 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:35:15.0163 0584 i8042prt - ok
11:35:15.0194 0584 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:35:15.0210 0584 iaStorV - ok
11:35:15.0288 0584 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:35:15.0334 0584 idsvc - ok
11:35:15.0366 0584 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:35:15.0381 0584 iirsp - ok
11:35:15.0428 0584 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
11:35:15.0490 0584 IKEEXT - ok
11:35:15.0537 0584 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
11:35:15.0553 0584 intelide - ok
11:35:15.0584 0584 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:35:15.0615 0584 intelppm - ok
11:35:15.0646 0584 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:35:15.0693 0584 IPBusEnum - ok
11:35:15.0724 0584 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:35:15.0756 0584 IpFilterDriver - ok
11:35:15.0818 0584 [ CAD416B8A4309B5E1CE75425381E7D2F ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:35:15.0865 0584 iphlpsvc - ok
11:35:15.0880 0584 IpInIp - ok
11:35:15.0912 0584 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:35:15.0974 0584 IPMIDRV - ok
11:35:15.0990 0584 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:35:16.0036 0584 IPNAT - ok
11:35:16.0052 0584 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:35:16.0083 0584 IRENUM - ok
11:35:16.0130 0584 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:35:16.0146 0584 isapnp - ok
11:35:16.0177 0584 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:35:16.0192 0584 iScsiPrt - ok
11:35:16.0224 0584 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:35:16.0239 0584 iteatapi - ok
11:35:16.0255 0584 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:35:16.0270 0584 iteraid - ok
11:35:16.0286 0584 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:35:16.0302 0584 kbdclass - ok
11:35:16.0317 0584 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:35:16.0364 0584 kbdhid - ok
11:35:16.0395 0584 [ DCF733788C7D088D814E5F80EB4B3E0F ] KeyIso C:\Windows\system32\lsass.exe
11:35:16.0426 0584 KeyIso - ok
11:35:16.0473 0584 [ 5367DC846CAE9639B899BFD13B97A8C9 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:35:16.0504 0584 KSecDD - ok
11:35:16.0551 0584 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:35:16.0598 0584 KtmRm - ok
11:35:16.0629 0584 [ 05CE901A4472B3FBF9407C94AD1DB693 ] LanmanServer C:\Windows\System32\srvsvc.dll
11:35:16.0676 0584 LanmanServer - ok
11:35:16.0707 0584 [ DEC1A338B86C5D582C25C40836DD76C3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:35:16.0770 0584 LanmanWorkstation - ok
11:35:16.0785 0584 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:35:16.0848 0584 lltdio - ok
11:35:16.0863 0584 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:35:16.0926 0584 lltdsvc - ok
11:35:16.0941 0584 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:35:17.0004 0584 lmhosts - ok
11:35:17.0035 0584 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:35:17.0066 0584 LSI_FC - ok
11:35:17.0082 0584 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:35:17.0097 0584 LSI_SAS - ok
11:35:17.0113 0584 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:35:17.0128 0584 LSI_SCSI - ok
11:35:17.0144 0584 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
11:35:17.0206 0584 luafv - ok
11:35:17.0222 0584 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:35:17.0253 0584 Mcx2Svc - ok
11:35:17.0269 0584 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
11:35:17.0284 0584 megasas - ok
11:35:17.0316 0584 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
11:35:17.0347 0584 MegaSR - ok
11:35:17.0378 0584 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:35:17.0409 0584 MMCSS - ok
11:35:17.0425 0584 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
11:35:17.0472 0584 Modem - ok
11:35:17.0487 0584 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:35:17.0534 0584 monitor - ok
11:35:17.0534 0584 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:35:17.0550 0584 mouclass - ok
11:35:17.0565 0584 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:35:17.0612 0584 mouhid - ok
11:35:17.0628 0584 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:35:17.0643 0584 MountMgr - ok
11:35:17.0706 0584 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:35:17.0706 0584 MozillaMaintenance - ok
11:35:17.0737 0584 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
11:35:17.0752 0584 mpio - ok
11:35:17.0768 0584 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:35:17.0784 0584 mpsdrv - ok
11:35:17.0830 0584 [ D1639BA315B0D79DEC49A4B0E1FB929B ] MpsSvc C:\Windows\system32\mpssvc.dll
11:35:17.0862 0584 MpsSvc - ok
11:35:17.0893 0584 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:35:17.0893 0584 Mraid35x - ok
11:35:17.0908 0584 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:35:17.0924 0584 MRxDAV - ok
11:35:17.0924 0584 [ C4AD205530888404E2B5FC8D9319B119 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:35:17.0955 0584 mrxsmb - ok
11:35:17.0986 0584 [ 67E55CED3FC143C82A8197988BFC1F9A ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:35:18.0018 0584 mrxsmb10 - ok
11:35:18.0018 0584 [ 3268B8C3FA92BFC086355C39B45E9CC9 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:35:18.0033 0584 mrxsmb20 - ok
11:35:18.0064 0584 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
11:35:18.0080 0584 msahci - ok
11:35:18.0096 0584 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:35:18.0111 0584 msdsm - ok
11:35:18.0127 0584 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
11:35:18.0158 0584 MSDTC - ok
11:35:18.0174 0584 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:35:18.0220 0584 Msfs - ok
11:35:18.0252 0584 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:35:18.0252 0584 msisadrv - ok
11:35:18.0283 0584 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:35:18.0298 0584 MSiSCSI - ok
11:35:18.0330 0584 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:35:18.0376 0584 MSKSSRV - ok
11:35:18.0392 0584 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:35:18.0423 0584 MSPCLOCK - ok
11:35:18.0439 0584 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:35:18.0470 0584 MSPQM - ok
11:35:18.0486 0584 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:35:18.0501 0584 MsRPC - ok
11:35:18.0517 0584 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:35:18.0517 0584 mssmbios - ok
11:35:18.0548 0584 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:35:18.0595 0584 MSTEE - ok
11:35:18.0610 0584 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
11:35:18.0610 0584 Mup - ok
11:35:18.0657 0584 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
11:35:18.0704 0584 napagent - ok
11:35:18.0735 0584 [ DD721F8635191132992E7CEAA3C43C84 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:35:18.0751 0584 NativeWifiP - ok
11:35:18.0782 0584 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:35:18.0798 0584 NDIS - ok
11:35:18.0829 0584 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:35:18.0860 0584 NdisTapi - ok
11:35:18.0891 0584 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:35:18.0922 0584 Ndisuio - ok
11:35:18.0938 0584 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:35:18.0969 0584 NdisWan - ok
11:35:18.0985 0584 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:35:19.0000 0584 NDProxy - ok
11:35:19.0203 0584 [ FD4C174C1C12EA47D2FAFFEB10961DDA ] ndsvc C:\Program Files\NetDrive\ndsvc.exe
11:35:19.0312 0584 ndsvc ( UnsignedFile.Multi.Generic ) - warning
11:35:19.0312 0584 ndsvc - detected UnsignedFile.Multi.Generic (1)
11:35:19.0390 0584 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:35:19.0437 0584 NetBIOS - ok
11:35:19.0468 0584 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:35:19.0515 0584 netbt - ok
11:35:19.0515 0584 [ DCF733788C7D088D814E5F80EB4B3E0F ] Netlogon C:\Windows\system32\lsass.exe
11:35:19.0546 0584 Netlogon - ok
11:35:19.0593 0584 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
11:35:19.0656 0584 Netman - ok
11:35:19.0671 0584 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
11:35:19.0718 0584 netprofm - ok
11:35:19.0749 0584 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:35:19.0765 0584 NetTcpPortSharing - ok
11:35:19.0812 0584 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:35:19.0827 0584 nfrd960 - ok
11:35:19.0952 0584 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:35:19.0999 0584 NlaSvc - ok
11:35:20.0030 0584 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:35:20.0077 0584 Npfs - ok
11:35:20.0108 0584 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
11:35:20.0155 0584 nsi - ok
11:35:20.0170 0584 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:35:20.0217 0584 nsiproxy - ok
11:35:20.0326 0584 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:35:20.0373 0584 Ntfs - ok
11:35:20.0389 0584 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:35:20.0451 0584 ntrigdigi - ok
11:35:20.0467 0584 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
11:35:20.0498 0584 Null - ok
11:35:20.0888 0584 [ 615024CAFE830D0BDCCAFDDAC8A23650 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:35:21.0278 0584 nvlddmkm - ok
11:35:21.0309 0584 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:35:21.0325 0584 nvraid - ok
11:35:21.0356 0584 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:35:21.0372 0584 nvstor - ok
11:35:21.0387 0584 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:35:21.0403 0584 nv_agp - ok
11:35:21.0450 0584 [ 9EDF6FD48A9EB4AFDF225EB9C5111DF6 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
11:35:21.0512 0584 NWADI - ok
11:35:21.0559 0584 [ 1A859F70728CAD712F90F9953667AD7F ] NWDellModem C:\Windows\system32\DRIVERS\nwdelmdm.sys
11:35:21.0590 0584 NWDellModem - ok
11:35:21.0621 0584 [ 1A859F70728CAD712F90F9953667AD7F ] NWDellPort C:\Windows\system32\DRIVERS\nwdelser.sys
11:35:21.0637 0584 NWDellPort - ok
11:35:21.0637 0584 NwlnkFlt - ok
11:35:21.0637 0584 NwlnkFwd - ok
11:35:21.0730 0584 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:35:21.0762 0584 odserv - ok
11:35:21.0824 0584 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:35:21.0855 0584 ohci1394 - ok
11:35:21.0918 0584 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:35:21.0918 0584 ose - ok
11:35:22.0089 0584 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:35:22.0152 0584 p2pimsvc - ok
11:35:22.0183 0584 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
11:35:22.0214 0584 p2psvc - ok
11:35:22.0245 0584 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
11:35:22.0292 0584 Parport - ok
11:35:22.0323 0584 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:35:22.0339 0584 partmgr - ok
11:35:22.0354 0584 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:35:22.0401 0584 Parvdm - ok
11:35:22.0448 0584 [ 1961590AA191B6B7DCF18A6A693AF7B8 ] PCASp50 C:\Windows\system32\Drivers\PCASp50.sys
11:35:22.0448 0584 PCASp50 - ok
11:35:22.0479 0584 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
11:35:22.0495 0584 PcaSvc - ok
11:35:22.0510 0584 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
11:35:22.0526 0584 pci - ok
11:35:22.0542 0584 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
11:35:22.0557 0584 pciide - ok
11:35:22.0573 0584 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:35:22.0588 0584 pcmcia - ok
11:35:22.0635 0584 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:35:22.0713 0584 PEAUTH - ok
11:35:22.0776 0584 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
11:35:22.0994 0584 pla - ok
11:35:23.0072 0584 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:35:23.0119 0584 PlugPlay - ok
11:35:23.0150 0584 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:35:23.0181 0584 PNRPAutoReg - ok
11:35:23.0197 0584 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:35:23.0275 0584 PNRPsvc - ok
11:35:23.0337 0584 [ 017FB87911583B00DA1581F07CB7E7F2 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:35:23.0446 0584 PolicyAgent - ok
11:35:23.0462 0584 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:35:23.0509 0584 PptpMiniport - ok
11:35:23.0524 0584 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
11:35:23.0556 0584 Processor - ok
11:35:23.0587 0584 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
11:35:23.0618 0584 ProfSvc - ok
11:35:23.0634 0584 [ DCF733788C7D088D814E5F80EB4B3E0F ] ProtectedStorage C:\Windows\system32\lsass.exe
11:35:23.0649 0584 ProtectedStorage - ok
11:35:23.0665 0584 [ A114CFE308C24B8235B03CFDFFE11E99 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:35:23.0696 0584 PSched - ok
11:35:23.0758 0584 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:35:23.0790 0584 ql2300 - ok
11:35:23.0821 0584 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:35:23.0836 0584 ql40xx - ok
11:35:23.0868 0584 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
11:35:23.0899 0584 QWAVE - ok
11:35:23.0914 0584 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:35:23.0930 0584 QWAVEdrv - ok
11:35:23.0930 0584 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:35:23.0977 0584 RasAcd - ok
11:35:24.0008 0584 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
11:35:24.0039 0584 RasAuto - ok
11:35:24.0039 0584 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:35:24.0086 0584 Rasl2tp - ok
11:35:24.0117 0584 [ 6E7C284FC5C4EC07AD164D93810385A6 ] RasMan C:\Windows\System32\rasmans.dll
11:35:24.0164 0584 RasMan - ok
11:35:24.0180 0584 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:35:24.0211 0584 RasPppoe - ok
11:35:24.0242 0584 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:35:24.0273 0584 RasSstp - ok
11:35:24.0336 0584 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:35:24.0367 0584 rdbss - ok
11:35:24.0367 0584 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:35:24.0398 0584 RDPCDD - ok
11:35:24.0414 0584 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:35:24.0429 0584 rdpdr - ok
11:35:24.0445 0584 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:35:24.0476 0584 RDPENCDD - ok
11:35:24.0507 0584 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:35:24.0523 0584 RDPWD - ok
11:35:24.0554 0584 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:35:24.0570 0584 RemoteAccess - ok
11:35:24.0601 0584 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:35:24.0648 0584 RemoteRegistry - ok
11:35:24.0679 0584 [ 34CC78C06587718C2AD6D3AA83B1F072 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:35:24.0694 0584 RFCOMM - ok
11:35:24.0726 0584 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
11:35:24.0757 0584 RpcLocator - ok
11:35:24.0804 0584 [ 33FB1F0193EE2051067441492D56113C ] RpcSs C:\Windows\system32\rpcss.dll
11:35:24.0835 0584 RpcSs - ok
11:35:24.0866 0584 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:35:24.0897 0584 rspndr - ok
11:35:24.0913 0584 [ DCF733788C7D088D814E5F80EB4B3E0F ] SamSs C:\Windows\system32\lsass.exe
11:35:24.0944 0584 SamSs - ok
11:35:24.0960 0584 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:35:24.0960 0584 sbp2port - ok
11:35:24.0991 0584 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:35:25.0022 0584 SCardSvr - ok
11:35:25.0053 0584 [ 1D5E99DB3C10F4FA034010DC49043CA4 ] Schedule C:\Windows\system32\schedsvc.dll
11:35:25.0100 0584 Schedule - ok
11:35:25.0131 0584 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
11:35:25.0162 0584 SCPolicySvc - ok
11:35:25.0194 0584 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
11:35:25.0240 0584 sdbus - ok
11:35:25.0256 0584 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:35:25.0287 0584 SDRSVC - ok
11:35:25.0318 0584 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:35:25.0381 0584 secdrv - ok
11:35:25.0396 0584 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
11:35:25.0428 0584 seclogon - ok
11:35:25.0443 0584 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
11:35:25.0490 0584 SENS - ok
11:35:25.0506 0584 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:35:25.0568 0584 Serenum - ok
11:35:25.0599 0584 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
11:35:25.0662 0584 Serial - ok
11:35:25.0677 0584 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:35:25.0708 0584 sermouse - ok
11:35:25.0771 0584 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:35:25.0802 0584 SessionEnv - ok
11:35:25.0818 0584 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
11:35:25.0849 0584 sffdisk - ok
11:35:25.0880 0584 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:35:25.0927 0584 sffp_mmc - ok
11:35:25.0942 0584 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
11:35:25.0974 0584 sffp_sd - ok
11:35:25.0989 0584 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:35:26.0052 0584 sfloppy - ok
11:35:26.0114 0584 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:35:26.0161 0584 SharedAccess - ok
11:35:26.0192 0584 [ 27F10F348E508243F6254846F8370D0D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:35:26.0239 0584 ShellHWDetection - ok
11:35:26.0254 0584 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:35:26.0270 0584 sisagp - ok
11:35:26.0286 0584 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:35:26.0301 0584 SiSRaid2 - ok
11:35:26.0317 0584 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:35:26.0332 0584 SiSRaid4 - ok
11:35:26.0488 0584 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
11:35:26.0504 0584 SkypeUpdate - ok
11:35:26.0785 0584 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
11:35:26.0988 0584 slsvc - ok
11:35:27.0003 0584 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:35:27.0034 0584 SLUINotify - ok
11:35:27.0066 0584 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:35:27.0081 0584 Smb - ok
11:35:27.0097 0584 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:35:27.0112 0584 SNMPTRAP - ok
11:35:27.0159 0584 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
11:35:27.0159 0584 spldr - ok
11:35:27.0175 0584 [ 846CDF9A3CF4DA9B306ADFB7D55EE4C2 ] Spooler C:\Windows\System32\spoolsv.exe
11:35:27.0206 0584 Spooler - ok
11:35:27.0222 0584 [ 3D7C04ABA41AC96BA7E9D123EC8F7FA3 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:35:27.0253 0584 srv - ok
11:35:27.0253 0584 [ 805FAC010405AD3F82EF8DF0BB035D81 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:35:27.0300 0584 srv2 - ok
11:35:27.0300 0584 [ F63A0A58AAFE34D7A1A0A74ABCCDD9C0 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:35:27.0346 0584 srvnet - ok
11:35:27.0362 0584 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:35:27.0393 0584 SSDPSRV - ok
11:35:27.0409 0584 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:35:27.0424 0584 SstpSvc - ok
11:35:27.0456 0584 [ B218068EBA6F46F102B4218BDB81BE0B ] STacSV C:\Windows\system32\STacSV.exe
11:35:27.0471 0584 STacSV - ok
11:35:27.0518 0584 [ 167909A1C36AA3E8F2582962F0CCC748 ] STHDA C:\Windows\system32\drivers\stwrt.sys
11:35:27.0534 0584 STHDA - ok
11:35:27.0565 0584 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
11:35:27.0627 0584 stisvc - ok
11:35:27.0658 0584 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:35:27.0674 0584 swenum - ok
11:35:27.0736 0584 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
11:35:27.0768 0584 swprv - ok
11:35:27.0783 0584 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:35:27.0783 0584 Symc8xx - ok
11:35:27.0830 0584 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:35:27.0830 0584 Sym_hi - ok
11:35:27.0846 0584 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:35:27.0861 0584 Sym_u3 - ok
11:35:27.0908 0584 [ DD17B63F26430E179EF6BDEF5AC735BD ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:35:27.0908 0584 SynTP - ok
11:35:27.0955 0584 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
11:35:27.0986 0584 SysMain - ok
11:35:28.0017 0584 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:35:28.0033 0584 TabletInputService - ok
11:35:28.0048 0584 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
11:35:28.0080 0584 TapiSrv - ok
11:35:28.0095 0584 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
11:35:28.0126 0584 TBS - ok
11:35:28.0173 0584 [ FC6E2835D667774D409C7C7021EAF9C4 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:35:28.0251 0584 Tcpip - ok
11:35:28.0314 0584 [ FC6E2835D667774D409C7C7021EAF9C4 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:35:28.0360 0584 Tcpip6 - ok
11:35:28.0392 0584 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:35:28.0438 0584 tcpipreg - ok
11:35:28.0454 0584 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:35:28.0501 0584 TDPIPE - ok
11:35:28.0516 0584 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:35:28.0548 0584 TDTCP - ok
11:35:28.0563 0584 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:35:28.0610 0584 tdx - ok
11:35:28.0641 0584 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:35:28.0641 0584 TermDD - ok
11:35:28.0672 0584 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
11:35:28.0704 0584 TermService - ok
11:35:28.0735 0584 [ 27F10F348E508243F6254846F8370D0D ] Themes C:\Windows\system32\shsvcs.dll
11:35:28.0750 0584 Themes - ok
11:35:28.0766 0584 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:35:28.0797 0584 THREADORDER - ok
11:35:28.0813 0584 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
11:35:28.0844 0584 TrkWks - ok
11:35:28.0891 0584 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:35:28.0906 0584 TrustedInstaller - ok
11:35:28.0938 0584 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:35:28.0953 0584 tssecsrv - ok
11:35:28.0969 0584 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:35:28.0984 0584 tunmp - ok
11:35:29.0000 0584 [ 119B8184E106BAEDC83FCE5DDF3950DA ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:35:29.0031 0584 tunnel - ok
11:35:29.0031 0584 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:35:29.0047 0584 uagp35 - ok
11:35:29.0078 0584 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:35:29.0094 0584 udfs - ok
11:35:29.0125 0584 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:35:29.0172 0584 UI0Detect - ok
11:35:29.0203 0584 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:35:29.0203 0584 uliagpkx - ok
11:35:29.0218 0584 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:35:29.0234 0584 uliahci - ok
11:35:29.0265 0584 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:35:29.0265 0584 UlSata - ok
11:35:29.0281 0584 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:35:29.0296 0584 ulsata2 - ok
11:35:29.0343 0584 [ 5A5BD0F66E84EB039CB227520D49908C ] UltraMonUtility C:\Program Files\Common Files\Realtime Soft\UltraMonMirrorDrv\x32\UltraMonUtility.sys
11:35:29.0359 0584 UltraMonUtility - ok
11:35:29.0374 0584 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:35:29.0421 0584 umbus - ok
11:35:29.0452 0584 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
11:35:29.0499 0584 upnphost - ok
11:35:29.0530 0584 [ 292A25BB75A568AE2C67169BA2C6365A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
11:35:29.0562 0584 usbaudio - ok
11:35:29.0562 0584 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:35:29.0593 0584 usbccgp - ok
11:35:29.0608 0584 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:35:29.0655 0584 usbcir - ok
11:35:29.0686 0584 [ CEBE90821810E76320155BEBA722FCF9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:35:29.0702 0584 usbehci - ok
11:35:29.0718 0584 [ CC6B28E4CE39951357963119CE47B143 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:35:29.0749 0584 usbhub - ok
11:35:29.0749 0584 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:35:29.0796 0584 usbohci - ok
11:35:29.0827 0584 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:35:29.0858 0584 usbprint - ok
11:35:29.0889 0584 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:35:29.0920 0584 usbscan - ok
11:35:29.0936 0584 [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:35:29.0952 0584 USBSTOR - ok
11:35:29.0983 0584 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:35:30.0014 0584 usbuhci - ok
11:35:30.0076 0584 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
11:35:30.0108 0584 usbvideo - ok
11:35:30.0139 0584 [ 032A0ACC3909AE7215D524E29D536797 ] UxSms C:\Windows\System32\uxsms.dll
11:35:30.0170 0584 UxSms - ok
11:35:30.0201 0584 [ B13BC395B9D6116628F5AF47E0802AC4 ] vds C:\Windows\System32\vds.exe
11:35:30.0248 0584 vds - ok
11:35:30.0279 0584 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:35:30.0326 0584 vga - ok
11:35:30.0342 0584 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
11:35:30.0373 0584 VgaSave - ok
11:35:30.0404 0584 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:35:30.0404 0584 viaagp - ok
11:35:30.0420 0584 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:35:30.0451 0584 ViaC7 - ok
11:35:30.0466 0584 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
11:35:30.0466 0584 viaide - ok
11:35:30.0482 0584 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:35:30.0498 0584 volmgr - ok
11:35:30.0513 0584 [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:35:30.0529 0584 volmgrx - ok
11:35:30.0544 0584 [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:35:30.0560 0584 volsnap - ok
11:35:30.0576 0584 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:35:30.0591 0584 vsmraid - ok
11:35:30.0622 0584 [ D5FB73D19C46ADE183F968E13F186B23 ] VSS C:\Windows\system32\vssvc.exe
11:35:30.0700 0584 VSS - ok
11:35:30.0716 0584 [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time C:\Windows\system32\w32time.dll
11:35:30.0747 0584 W32Time - ok
11:35:30.0778 0584 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:35:30.0810 0584 WacomPen - ok
11:35:30.0888 0584 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:35:30.0903 0584 Wanarp - ok
11:35:30.0934 0584 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:35:30.0950 0584 Wanarpv6 - ok
11:35:31.0028 0584 [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:35:31.0044 0584 wcncsvc - ok
11:35:31.0059 0584 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:35:31.0090 0584 WcsPlugInService - ok
11:35:31.0106 0584 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
11:35:31.0122 0584 Wd - ok
11:35:31.0137 0584 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:35:31.0153 0584 Wdf01000 - ok
11:35:31.0184 0584 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:35:31.0215 0584 WdiServiceHost - ok
11:35:31.0215 0584 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:35:31.0246 0584 WdiSystemHost - ok
11:35:31.0262 0584 [ CF9A5F41789B642DB967021DE06A2713 ] WebClient C:\Windows\System32\webclnt.dll
11:35:31.0278 0584 WebClient - ok
11:35:31.0309 0584 [ 905214925A88311FCE52F66153DE7610 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:35:31.0324 0584 Wecsvc - ok
11:35:31.0340 0584 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:35:31.0356 0584 wercplsupport - ok
11:35:31.0387 0584 [ 4081288554294F144E5A7D4EE20E3CE6 ] WerSvc C:\Windows\System32\WerSvc.dll
11:35:31.0402 0584 WerSvc - ok
11:35:31.0434 0584 [ 5C7BDCF5864DB00323FE2D90FA26A8A2 ] winachsf C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
11:35:31.0512 0584 winachsf - ok
11:35:31.0574 0584 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:35:31.0590 0584 WinDefend - ok
11:35:31.0605 0584 WinHttpAutoProxySvc - ok
11:35:31.0652 0584 [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:35:31.0683 0584 Winmgmt - ok
11:35:31.0730 0584 [ 20FC93FDC916843CFDFCAA7A1B0DB16F ] WinRM C:\Windows\system32\WsmSvc.dll
11:35:31.0792 0584 WinRM - ok
11:35:31.0839 0584 [ 4B40FF01DB5357299DCBDB5A5746AD21 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:35:31.0886 0584 Wlansvc - ok
11:35:31.0886 0584 wltrysvc - ok
11:35:31.0917 0584 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:35:31.0948 0584 WmiAcpi - ok
11:35:31.0980 0584 [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:35:32.0011 0584 wmiApSrv - ok
11:35:32.0073 0584 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:35:32.0120 0584 WMPNetworkSvc - ok
11:35:32.0167 0584 [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:35:32.0198 0584 WPCSvc - ok
11:35:32.0214 0584 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:35:32.0229 0584 WPDBusEnum - ok
11:35:32.0245 0584 [ 0CEC23084B51B8288099EB710224E955 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:35:32.0292 0584 WpdUsb - ok
11:35:32.0401 0584 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:35:32.0432 0584 WPFFontCache_v0400 - ok
11:35:32.0448 0584 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:35:32.0510 0584 ws2ifsl - ok
11:35:32.0572 0584 [ 683DD16B590372F2C9661D277F35E49C ] wscsvc C:\Windows\system32\wscsvc.dll
11:35:32.0588 0584 wscsvc - ok
11:35:32.0588 0584 WSearch - ok
11:35:32.0666 0584 [ D79538B67FA641E986855DEF651E78FE ] wuauserv C:\Windows\system32\wuaueng.dll
11:35:32.0838 0584 wuauserv - ok
11:35:32.0869 0584 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:35:32.0900 0584 WUDFRd - ok
11:35:32.0931 0584 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:35:32.0962 0584 wudfsvc - ok
11:35:32.0994 0584 ================ Scan global ===============================
11:35:33.0025 0584 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:35:33.0056 0584 [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
11:35:33.0072 0584 [ 8B05FAF8603E6FDE90C5B103761CC3F6 ] C:\Windows\system32\winsrv.dll
11:35:33.0118 0584 [ 2B336AB6286D6C81FA02CBAB914E3C6C ] C:\Windows\system32\services.exe
11:35:33.0118 0584 [Global] - ok
11:35:33.0118 0584 ================ Scan MBR ==================================
11:35:33.0134 0584 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
11:35:33.0696 0584 \Device\Harddisk0\DR0 - ok
11:35:33.0711 0584 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
11:35:33.0898 0584 \Device\Harddisk1\DR1 - ok
11:35:33.0898 0584 ================ Scan VBR ==================================
11:35:33.0930 0584 [ 3E1B26B77A17C554E2E62AAAFC65519A ] \Device\Harddisk0\DR0\Partition1
11:35:33.0930 0584 \Device\Harddisk0\DR0\Partition1 - ok
11:35:33.0945 0584 [ 400F98934046D78989612232E4C729D3 ] \Device\Harddisk1\DR1\Partition1
11:35:33.0945 0584 \Device\Harddisk1\DR1\Partition1 - ok
11:35:33.0945 0584 ============================================================
11:35:33.0945 0584 Scan finished
11:35:33.0945 0584 ============================================================
11:35:33.0976 6948 Detected object count: 1
11:35:33.0976 6948 Actual detected object count: 1
11:56:04.0050 6948 ndsvc ( UnsignedFile.Multi.Generic ) - skipped by user
11:56:04.0050 6948 ndsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:56:07.0378 7388 Deinitialize success

Security Check:

Results of screen317's Security Check version 0.99.56
Windows Vista Service Pack 1 x86 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
AVG Anti-Virus Free Edition 2013
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Trojan Remover 6.8.5
Malwarebytes Anti-Malware version 1.65.1.1000
Java™ 6 Update 27
Java version out of Date!
Adobe Flash Player 11.5.502.110
Adobe Reader 10.1.1 Adobe Reader out of Date!
Mozilla Firefox (17.0.1)
````````Process Check: objlist.exe by Laurent````````
AVG avgwdsvc.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 1 %
````````````````````End of Log``````````````````````

______________________________________________________________________________________

Farbar:

Farbar Service Scanner Version: 07-12-2012
Ran by Jimbo (administrator) on 08-12-2012 at 12:07:45
Running from "C:\Users\Jimbo\Desktop"
Windows Vista ™ Home Premium Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll
[2008-01-20 18:24] - [2008-01-20 18:24] - 0393216 ____A (Microsoft Corporation) D1639BA315B0D79DEC49A4B0E1FB929B

C:\Windows\system32\bfe.dll
[2008-01-20 18:23] - [2008-01-20 18:23] - 0328704 ____A (Microsoft Corporation) 8582E233C346AEFE759833E8A30DD697

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe
[2008-01-20 18:23] - [2008-01-20 18:23] - 1054720 ____A (Microsoft Corporation) D5FB73D19C46ADE183F968E13F186B23

C:\Windows\system32\wscsvc.dll
[2008-01-20 18:23] - [2008-01-20 18:23] - 0061440 ____A (Microsoft Corporation) 683DD16B590372F2C9661D277F35E49C

C:\Windows\system32\wbem\WMIsvc.dll
[2008-01-20 18:24] - [2008-01-20 18:24] - 0161792 ____A (Microsoft Corporation) 00B79A7C984678F24CF052E5BEB3A2F5

C:\Windows\system32\wuaueng.dll
[2008-01-20 18:25] - [2008-01-20 18:25] - 1695232 ____A (Microsoft Corporation) D79538B67FA641E986855DEF651E78FE

C:\Windows\system32\qmgr.dll
[2008-01-20 18:25] - [2008-01-20 18:25] - 0758272 ____A (Microsoft Corporation) 02ED7B4DBC2A3232A389106DA7515C3D

C:\Windows\system32\es.dll
[2008-01-20 18:24] - [2008-01-20 18:24] - 0262144 ____A (Microsoft Corporation) F4BF4FA769DB51B106D2B4B35256988B

C:\Windows\system32\cryptsvc.dll
[2008-01-20 18:24] - [2008-01-20 18:24] - 0128000 ____A (Microsoft Corporation) 6DE363F9F99334514C46AEC02D3E3678

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

____________________
Mini Toolbox:


MiniToolBox by Farbar Version: 25-11-2012
Ran by Jimbo (administrator) on 08-12-2012 at 12:09:41
Running from "C:\Users\Jimbo\Desktop"
Windows Vista ™ Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1505 Draft 802.11n WLAN Mini-Card = Wireless Network Connection (Connected)
Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : MT-laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.ca.comcast.net.

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 00-1D-D9-E6-E1-5E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : hsd1.ca.comcast.net.
Description . . . . . . . . . . . : Dell Wireless 1505 Draft 802.11n WLAN Mini-Card
Physical Address. . . . . . . . . : 00-1E-4C-63-B8-FB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b4ca:8fd8:d8dd:9eb3%11(Preferred)
IPv4 Address. . . . . . . . . . . : 10.0.1.17(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, December 08, 2012 9:46:08 AM
Lease Expires . . . . . . . . . . : Saturday, December 08, 2012 3:46:08 PM
Default Gateway . . . . . . . . . : 10.0.1.1
DHCP Server . . . . . . . . . . . : 10.0.1.1
DNS Servers . . . . . . . . . . . : 10.0.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
Physical Address. . . . . . . . . : 00-1D-09-AA-FC-B2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.ca.comcast.net.
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:75:1966:f5ff:feee(Preferred)
Link-local IPv6 Address . . . . . : fe80::75:1966:f5ff:feee%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{EBE5686D-9AF0-4CA0-9C92-5F2D07CB2223}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{D5BB335F-BD20-479C-AFC5-FC56EE30900D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 10.0.1.1

Name: google.com
Addresses: 2001:4860:4001:802::1003
74.125.224.142
74.125.224.133
74.125.224.128
74.125.224.135
74.125.224.134
74.125.224.132
74.125.224.129
74.125.224.131
74.125.224.136
74.125.224.130
74.125.224.137



Pinging google.com [74.125.224.142] with 32 bytes of data:

Reply from 74.125.224.142: bytes=32 time=15ms TTL=55

Reply from 74.125.224.142: bytes=32 time=15ms TTL=55



Ping statistics for 74.125.224.142:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 15ms, Maximum = 15ms, Average = 15ms

Server: UnKnown
Address: 10.0.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=115ms TTL=53

Reply from 72.30.38.140: bytes=32 time=100ms TTL=53



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 100ms, Maximum = 115ms, Average = 107ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
13 ...00 1d d9 e6 e1 5e ...... Bluetooth Device (Personal Area Network)
11 ...00 1e 4c 63 b8 fb ...... Dell Wireless 1505 Draft 802.11n WLAN Mini-Card
10 ...00 1d 09 aa fc b2 ...... Broadcom 440x 10/100 Integrated Controller
1 ........................... Software Loopback Interface 1
18 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
16 ...00 00 00 00 00 00 00 e0 isatap.{EBE5686D-9AF0-4CA0-9C92-5F2D07CB2223}
17 ...00 00 00 00 00 00 00 e0 isatap.{D5BB335F-BD20-479C-AFC5-FC56EE30900D}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.0.1.1 10.0.1.17 25
10.0.1.0 255.255.255.0 On-link 10.0.1.17 281
10.0.1.17 255.255.255.255 On-link 10.0.1.17 281
10.0.1.255 255.255.255.255 On-link 10.0.1.17 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.0.1.17 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.0.1.17 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 18 ::/0 On-link
1 306 ::1/128 On-link
14 18 2001::/32 On-link
14 266 2001:0:9d38:6ab8:75:1966:f5ff:feee/128
On-link
11 281 fe80::/64 On-link
14 266 fe80::/64 On-link
14 266 fe80::75:1966:f5ff:feee/128
On-link
11 281 fe80::b4ca:8fd8:d8dd:9eb3/128
On-link
1 306 ff00::/8 On-link
14 266 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/08/2012 10:50:54 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/08/2012 10:30:20 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 07:11:23 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 07:11:22 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 05:07:16 PM) (Source: Application Error) (User: )
Description: Faulting application a2cmd.exe, version 7.0.0.9, time stamp 0x509b22e1, faulting module kernel32.dll, version 6.0.6001.18000, time stamp 0x4791a7a6, exception code 0xc0000142, fault offset 0x00009cac,
process id 0x157c, application start time 0xa2cmd.exe0.

Error: (12/07/2012 05:04:56 PM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (12/07/2012 05:04:54 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (12/07/2012 04:12:08 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-SHM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 03:19:22 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-SHM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 09:43:01 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-SHM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (12/06/2012 05:10:18 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/06/2012 05:10:18 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (12/06/2012 05:08:56 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (12/06/2012 05:03:03 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/06/2012 04:53:57 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/06/2012 04:53:57 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/06/2012 04:53:57 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (12/06/2012 04:52:40 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (12/06/2012 04:30:41 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/06/2012 04:30:41 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5


Microsoft Office Sessions:
=========================
Error: (02/26/2012 08:38:32 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 15 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/24/2012 11:58:06 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 8299 seconds with 1740 seconds of active time. This session ended with a crash.

Error: (01/06/2012 07:13:23 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1110 seconds with 120 seconds of active time. This session ended with a crash.

Error: (10/27/2011 04:41:52 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 163 seconds with 0 seconds of active time. This session ended with a crash.

Error: (10/04/2011 07:39:37 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 87 seconds with 60 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2012-12-08 10:20:29.049
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:29.033
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:29.018
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:29.002
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:28.986
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:28.971
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:28.940
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:28.924
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:28.908
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 10:20:28.877
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

µTorrent (Version: 3.2.1.28086)
7-Zip 9.20
Adobe AIR (Version: 3.2.0.2070)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Dreamweaver CS3 (Version: 9)
Adobe Dreamweaver CS3 (Version: 9.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Flash Player 11 Plugin (Version: 11.5.502.110)
Adobe Flash Player ActiveX (Version: 9.0.124.0)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader X (10.1.1) (Version: 10.1.1)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AVG 2013 (Version: 13.0.2634)
AVG 2013 (Version: 13.0.2793)
AVG 2013 (Version: 2013.0.2793)
calibre (Version: 0.8.35)
Canon MP Navigator EX 1.0
Canon MP470 series User Registration
Combined Community Codec Pack 2011-07-30 (Version: 2011.07.30.0)
DelinvFile - 4.04 (Version: 4.04)
Dell Mobile Broadband Card Utility (Version: 2.06.02.060)
Dell Resource CD (Version: 1.00.0000)
Dell Touchpad (Version: 9.1.18.6)
Dell Wireless WLAN Card (Version: 4.102.15.61)
Dir Utils v1
DisplayLink Core Software (Version: 5.5.27797.0)
DisplayLink Graphics (Version: 5.5.27887.0)
Dragon NaturallySpeaking 11 (Version: 11.0.200)
Dropbox (Version: 1.4.7)
ExtractNow
FileZilla Client 3.5.1 (Version: 3.5.1)
FXCM Trading Station (Version: 011212)
Google Drive (Version: 1.6.3837.2778)
Google Talk Plugin (Version: 3.10.2.10212)
Google Update Helper (Version: 1.3.21.123)
Half-Life 2 Episode One
HiddenFilesToggle Extension
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (Version: 6.0.270)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MetaTrader 4 (Version: 4.00)
MGTEK dopisp (Version: 3.0.1742)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
Mozilla Maintenance Service (Version: 17.0.1)
Music Manager
NetDrive (Version: 1.3.2.0)
NVIDIA Drivers
PDF Settings (Version: 1.0)
Picasa 3 (Version: 3.8)
PowerISO
SigmaTel Audio (Version: 5.10.5102.0)
Skype™ 5.10 (Version: 5.10.116)
StreetSmart Edge® (Version: 1.16.120.0)
StreetSmart Pro (Version: 4.40)
SyncBack
Tracker (Version: 2.3.3)
Trojan Remover 6.8.5 (Version: 6.8.5)
UltraMon (Version: 3.1.0)
ViewSonic Monitor Drivers
Visual C++ 9.0 Runtime for Dragon NaturallySpeaking (Version: 11.0.0)
WebInterpoint (Version: 8.5.10.40)

========================= Devices: ================================

Name: Microsoft ISATAP Adapter #2
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 3581.12 MB
Available physical RAM: 2130.9 MB
Total Pagefile: 7405.23 MB
Available Pagefile: 5977.6 MB
Total Virtual: 2047.88 MB
Available Virtual: 1932.72 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.79 GB) (Free:10.88 GB) NTFS
3 Drive f: (EXTERNAL HD) (Fixed) (Total:465.76 GB) (Free:105.93 GB) NTFS

========================= Users: ========================================

User accounts for \\MT-LAPTOP

Administrator Guest Jimbo

========================= Minidump Files ==================================

========================= Restore Points ==================================

02-12-2012 20:39:37 Scheduled Checkpoint
04-12-2012 03:58:31 Scheduled Checkpoint
04-12-2012 17:08:29 Scheduled Checkpoint
06-12-2012 06:19:44 Scheduled Checkpoint
07-12-2012 01:02:34 Restore Operation
07-12-2012 17:33:16 Installed StreetSmart Edge®

**** End of log ****

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:28 AM

Posted 08 December 2012 - 03:44 PM

Hi

:step1:

Going over your logs I noticed that you have utorrent installed.
  • Avoid peer-to-peer (P2P) file sharing programs.
  • They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
  • P2p programs share a directory or set of directories on your computer to the world. Anyone can type in a search, and potentially download something from your computer. This makes the machine an open web server -- massively increasing the attack surface of the machine.
  • To reduce the risk of infection avoid using any P2P applications.
It is pretty much certain that if you continue to use P2P programs, you will get infected again.
I would recommend that you uninstall utorrent, however that choice is up to you.

If you choose to remove these programs, you can do so via:

  • Click the "Windows Orb" button - Posted Image.
  • Click Control Panel then Programs and Features..

If you wish to keep it, please do not use it until your computer is cleaned.


:step2:

I see that you do not have the latest Service Pack installed, thus:

Run Windows / Microsoft Update to check for updates

  • Click the Start button, click Control Panel, and then click Windows Update.
  • Click Check for Updates
  • If there are any Important / High priority updates to install, please install them.
  • Do not install any of the Optional updates.
  • Restart your computer


:step3:

Rerun Security Check by screen317 on your desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document in your next reply.


:step4:

Please rerun Minitoolbox on your desktop

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 benbaggins

benbaggins
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:28 AM

Posted 08 December 2012 - 06:32 PM

Hello,

I uninstalled utorrent, and ran the windows updates. Here are the two logs:

Results of screen317's Security Check version 0.99.56
Windows Vista Service Pack 1 x86 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
AVG Anti-Virus Free Edition 2013
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Trojan Remover 6.8.5
Malwarebytes Anti-Malware version 1.65.1.1000
Java™ 6 Update 27
Java version out of Date!
Adobe Flash Player 11.5.502.110
Adobe Reader 10.1.1 Adobe Reader out of Date!
Mozilla Firefox (17.0.1)
````````Process Check: objlist.exe by Laurent````````
AVG avgwdsvc.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 2 % Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````




MiniToolBox by Farbar Version: 25-11-2012
Ran by Jimbo (administrator) on 08-12-2012 at 15:29:31
Running from "C:\Users\Jimbo\Desktop"
Windows Vista ™ Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1505 Draft 802.11n WLAN Mini-Card = Wireless Network Connection (Connected)
Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : MT-laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.ca.comcast.net.

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 00-1D-D9-E6-E1-5E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : hsd1.ca.comcast.net.
Description . . . . . . . . . . . : Dell Wireless 1505 Draft 802.11n WLAN Mini-Card
Physical Address. . . . . . . . . : 00-1E-4C-63-B8-FB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b4ca:8fd8:d8dd:9eb3%11(Preferred)
IPv4 Address. . . . . . . . . . . : 10.0.1.17(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, December 08, 2012 3:20:49 PM
Lease Expires . . . . . . . . . . : Saturday, December 08, 2012 7:20:49 PM
Default Gateway . . . . . . . . . : 10.0.1.1
DHCP Server . . . . . . . . . . . : 10.0.1.1
DNS Servers . . . . . . . . . . . : 10.0.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
Physical Address. . . . . . . . . : 00-1D-09-AA-FC-B2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.ca.comcast.net.
Description . . . . . . . . . . . : isatap.hsd1.ca.comcast.net.
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:5d:3982:f5ff:feee(Preferred)
Link-local IPv6 Address . . . . . : fe80::5d:3982:f5ff:feee%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{EBE5686D-9AF0-4CA0-9C92-5F2D07CB2223}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{D5BB335F-BD20-479C-AFC5-FC56EE30900D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 10.0.1.1

Name: google.com
Addresses: 2001:4860:4001:801::1000
74.125.224.98
74.125.224.103
74.125.224.97
74.125.224.110
74.125.224.96
74.125.224.100
74.125.224.101
74.125.224.99
74.125.224.102
74.125.224.104
74.125.224.105



Pinging google.com [74.125.224.98] with 32 bytes of data:

Reply from 74.125.224.98: bytes=32 time=15ms TTL=55

Reply from 74.125.224.98: bytes=32 time=16ms TTL=55



Ping statistics for 74.125.224.98:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 15ms, Maximum = 16ms, Average = 15ms

Server: UnKnown
Address: 10.0.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=26ms TTL=53

Reply from 72.30.38.140: bytes=32 time=16ms TTL=53



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 16ms, Maximum = 26ms, Average = 21ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
13 ...00 1d d9 e6 e1 5e ...... Bluetooth Device (Personal Area Network)
11 ...00 1e 4c 63 b8 fb ...... Dell Wireless 1505 Draft 802.11n WLAN Mini-Card
10 ...00 1d 09 aa fc b2 ...... Broadcom 440x 10/100 Integrated Controller
1 ........................... Software Loopback Interface 1
18 ...00 00 00 00 00 00 00 e0 isatap.hsd1.ca.comcast.net.
14 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
16 ...00 00 00 00 00 00 00 e0 isatap.{EBE5686D-9AF0-4CA0-9C92-5F2D07CB2223}
17 ...00 00 00 00 00 00 00 e0 isatap.{D5BB335F-BD20-479C-AFC5-FC56EE30900D}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.0.1.1 10.0.1.17 25
10.0.1.0 255.255.255.0 On-link 10.0.1.17 281
10.0.1.17 255.255.255.255 On-link 10.0.1.17 281
10.0.1.255 255.255.255.255 On-link 10.0.1.17 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.0.1.17 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.0.1.17 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 18 ::/0 On-link
1 306 ::1/128 On-link
14 18 2001::/32 On-link
14 266 2001:0:4137:9e76:5d:3982:f5ff:feee/128
On-link
11 281 fe80::/64 On-link
14 266 fe80::/64 On-link
14 266 fe80::5d:3982:f5ff:feee/128
On-link
11 281 fe80::b4ca:8fd8:d8dd:9eb3/128
On-link
1 306 ff00::/8 On-link
14 266 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/08/2012 03:21:31 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 10:50:54 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/08/2012 10:30:20 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 07:11:23 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 07:11:22 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 05:07:16 PM) (Source: Application Error) (User: )
Description: Faulting application a2cmd.exe, version 7.0.0.9, time stamp 0x509b22e1, faulting module kernel32.dll, version 6.0.6001.18000, time stamp 0x4791a7a6, exception code 0xc0000142, fault offset 0x00009cac,
process id 0x157c, application start time 0xa2cmd.exe0.

Error: (12/07/2012 05:04:56 PM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (12/07/2012 05:04:54 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (12/07/2012 04:12:08 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-SHM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/07/2012 03:19:22 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-SHM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (12/08/2012 03:24:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for Windows Desktop Search 4.0 for Windows Vista (KB979688){489B8419-5D97-4D3D-8DA0-8A92DC8BC0A5}100

Error: (12/08/2012 03:24:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for Windows Vista (KB977816){834CCD73-EE40-40F2-867E-1B26C3D5CE51}101

Error: (12/08/2012 03:24:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for Windows Vista (KB2296011){C0A1EE10-DB85-4B04-BEAF-37F4FFC67A4A}102

Error: (12/08/2012 03:24:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for Windows Vista (KB2555917){3697DEB7-4AF1-4A4A-A16B-5FED1A2FB9D8}102

Error: (12/08/2012 03:24:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for Windows Vista (KB2503665){B67D21B5-6888-4245-B2DC-AE7BF09046D5}101

Error: (12/08/2012 03:24:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for Windows Vista (KB973507){4E4B3FCC-C9EF-4865-9ED2-DDDA3091FF64}101

Error: (12/08/2012 03:24:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for .NET Framework 3.5 SP1 on Windows Vista SP1 and Windows Server 2008 x86 (KB2518865){2F740764-DF8D-46E5-AB19-8E36710FE538}101

Error: (12/08/2012 03:24:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for Internet Explorer 8 for Windows Vista (KB2544521){89C2E75D-2A80-47B1-8187-D86EF288F566}103

Error: (12/08/2012 03:24:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Update for Windows Vista (KB955020){3EE8157D-8C29-4AB2-827C-53AEF51AF4C4}101

Error: (12/08/2012 03:24:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x800f0826Security Update for Windows Vista (KB954154){73DA2AAE-0D6A-488D-B986-D5B15C88691A}108


Microsoft Office Sessions:
=========================
Error: (02/26/2012 08:38:32 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 15 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/24/2012 11:58:06 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 8299 seconds with 1740 seconds of active time. This session ended with a crash.

Error: (01/06/2012 07:13:23 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1110 seconds with 120 seconds of active time. This session ended with a crash.

Error: (10/27/2011 04:41:52 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 163 seconds with 0 seconds of active time. This session ended with a crash.

Error: (10/04/2011 07:39:37 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 87 seconds with 60 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2012-12-08 15:28:49.503
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:28:49.368
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:28:49.251
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:28:49.174
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:28:49.119
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:28:49.070
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:28:48.989
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:28:48.900
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:13:12.532
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-08 15:13:12.470
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

7-Zip 9.20
Adobe AIR (Version: 3.2.0.2070)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Dreamweaver CS3 (Version: 9)
Adobe Dreamweaver CS3 (Version: 9.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Flash Player 11 Plugin (Version: 11.5.502.110)
Adobe Flash Player ActiveX (Version: 9.0.124.0)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader X (10.1.1) (Version: 10.1.1)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AVG 2013 (Version: 13.0.2634)
AVG 2013 (Version: 13.0.2793)
AVG 2013 (Version: 2013.0.2793)
calibre (Version: 0.8.35)
Canon MP Navigator EX 1.0
Canon MP470 series User Registration
Combined Community Codec Pack 2011-07-30 (Version: 2011.07.30.0)
DelinvFile - 4.04 (Version: 4.04)
Dell Mobile Broadband Card Utility (Version: 2.06.02.060)
Dell Resource CD (Version: 1.00.0000)
Dell Touchpad (Version: 9.1.18.6)
Dell Wireless WLAN Card (Version: 4.102.15.61)
Dir Utils v1
DisplayLink Core Software (Version: 5.5.27797.0)
DisplayLink Graphics (Version: 5.5.27887.0)
Dragon NaturallySpeaking 11 (Version: 11.0.200)
Dropbox (Version: 1.4.7)
ExtractNow
FileZilla Client 3.5.1 (Version: 3.5.1)
FXCM Trading Station (Version: 011212)
Google Drive (Version: 1.6.3837.2778)
Google Talk Plugin (Version: 3.10.2.10212)
Google Update Helper (Version: 1.3.21.123)
Half-Life 2 Episode One
HiddenFilesToggle Extension
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (Version: 6.0.270)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MetaTrader 4 (Version: 4.00)
MGTEK dopisp (Version: 3.0.1742)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
Mozilla Maintenance Service (Version: 17.0.1)
Music Manager
NetDrive (Version: 1.3.2.0)
NVIDIA Drivers
PDF Settings (Version: 1.0)
Picasa 3 (Version: 3.8)
PowerISO
SigmaTel Audio (Version: 5.10.5102.0)
Skype™ 5.10 (Version: 5.10.116)
StreetSmart Edge® (Version: 1.16.120.0)
StreetSmart Pro (Version: 4.40)
SyncBack
Tracker (Version: 2.3.3)
Trojan Remover 6.8.5 (Version: 6.8.5)
UltraMon (Version: 3.1.0)
ViewSonic Monitor Drivers
Visual C++ 9.0 Runtime for Dragon NaturallySpeaking (Version: 11.0.0)
WebInterpoint (Version: 8.5.10.40)

========================= Devices: ================================

Name: Microsoft ISATAP Adapter #2
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 3581.12 MB
Available physical RAM: 2294.18 MB
Total Pagefile: 7347.23 MB
Available Pagefile: 6152.39 MB
Total Virtual: 2047.88 MB
Available Virtual: 1940.74 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.79 GB) (Free:4 GB) NTFS
3 Drive f: (EXTERNAL HD) (Fixed) (Total:465.76 GB) (Free:105.93 GB) NTFS
4 Drive z: (NetDrive @ Tekberry) (Fixed) (Total:512 GB) (Free:512 GB) NDFS

========================= Users: ========================================

User accounts for \\MT-LAPTOP

Administrator Guest Jimbo

========================= Minidump Files ==================================

========================= Restore Points ==================================

02-12-2012 20:39:37 Scheduled Checkpoint
04-12-2012 03:58:31 Scheduled Checkpoint
04-12-2012 17:08:29 Scheduled Checkpoint
06-12-2012 06:19:44 Scheduled Checkpoint
07-12-2012 01:02:34 Restore Operation
07-12-2012 17:33:16 Installed StreetSmart Edge®
08-12-2012 22:20:41 Windows Update

**** End of log ****

#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:28 AM

Posted 08 December 2012 - 09:03 PM

Hmm one of the logs shows that your OS Service Pack is still version 1. I'ld like to get some more information first.

Please do the following next:

:step1:

Windows Update log file

  • Click "Windows Orb" Start button on your desktop.
  • In the "Search programs and files" box, type windowsupdate.log without the quotes, and then click OK.
  • Attach the file in your next reply.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 benbaggins

benbaggins
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:28 AM

Posted 08 December 2012 - 09:43 PM

I should mention, when I did the windows security update in the earlier step, something like 7 of 110 updates failed to install. It took a while to reboot after that and I forgot to mention it in my last post. Not sure if that is what is causing what you are seeing.

I'm not seeing an option here to attach a file, and its too much to paste, so I uploaded the log here: http://www.sendspace.com/file/8wll8w

Thanks.

#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:28 AM

Posted 09 December 2012 - 06:33 AM

Hi

Please follow instructions on http://windows.microsoft.com/en-US/windows-vista/Turn-automatic-updating-on-or-off first.

Let me know once you have done this.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:28 AM

Posted 09 December 2012 - 06:38 AM

<ignore this post>

Edited by dev00790, 09 December 2012 - 06:39 AM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#10 benbaggins

benbaggins
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:28 AM

Posted 09 December 2012 - 02:36 PM

Hi,

UPDATE AGAIN -- All updates are now installed correctly. Ran it 3 times, and now it reports 100% success. Here is the log file:

http://www.sendspace.com/file/k13x6x

Thanks.

Edited by benbaggins, 09 December 2012 - 02:53 PM.


#11 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:28 AM

Posted 09 December 2012 - 04:28 PM

Hi

Ok sounds good :).
Please do the following next - this provides me with more info.

:step1:

Rerun Security Check by screen317 on your desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document in your next reply.

:step2:

Please rerun Minitoolbox on your desktop

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Edited by dev00790, 09 December 2012 - 04:28 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#12 benbaggins

benbaggins
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:28 AM

Posted 09 December 2012 - 08:19 PM

Here are the logs:

Results of screen317's Security Check version 0.99.56
Windows Vista Service Pack 1 x86 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
AVG Anti-Virus Free Edition 2013
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Trojan Remover 6.8.5
Malwarebytes Anti-Malware version 1.65.1.1000
Java™ 6 Update 27
Java version out of Date!
Adobe Flash Player 11.5.502.110
Adobe Reader 10.1.1 Adobe Reader out of Date!
Mozilla Firefox (17.0.1)
````````Process Check: objlist.exe by Laurent````````
AVG avgwdsvc.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 3 % Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````





MiniToolBox by Farbar Version: 25-11-2012
Ran by Jimbo (administrator) on 09-12-2012 at 17:16:03
Running from "C:\Users\Jimbo\Desktop"
Windows Vista ™ Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1505 Draft 802.11n WLAN Mini-Card = Wireless Network Connection (Connected)
Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : MT-laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.ca.comcast.net.

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 00-1D-D9-E6-E1-5E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : hsd1.ca.comcast.net.
Description . . . . . . . . . . . : Dell Wireless 1505 Draft 802.11n WLAN Mini-Card
Physical Address. . . . . . . . . : 00-1E-4C-63-B8-FB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b4ca:8fd8:d8dd:9eb3%11(Preferred)
IPv4 Address. . . . . . . . . . . : 10.0.1.17(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, December 09, 2012 5:03:30 PM
Lease Expires . . . . . . . . . . : Sunday, December 09, 2012 9:03:29 PM
Default Gateway . . . . . . . . . : 10.0.1.1
DHCP Server . . . . . . . . . . . : 10.0.1.1
DNS Servers . . . . . . . . . . . : 10.0.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
Physical Address. . . . . . . . . : 00-1D-09-AA-FC-B2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.ca.comcast.net.
Description . . . . . . . . . . . : isatap.hsd1.ca.comcast.net.
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:879:43:f5ff:feee(Preferred)
Link-local IPv6 Address . . . . . : fe80::879:43:f5ff:feee%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{EBE5686D-9AF0-4CA0-9C92-5F2D07CB2223}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{D5BB335F-BD20-479C-AFC5-FC56EE30900D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 10.0.1.1

Name: google.com
Addresses: 2001:4860:4001:801::1006
74.125.224.103
74.125.224.101
74.125.224.102
74.125.224.100
74.125.224.104
74.125.224.97
74.125.224.110
74.125.224.105
74.125.224.99
74.125.224.96
74.125.224.98

Pinging google.com [74.125.224.103] with 32 bytes of data:Reply from 74.125.224.103: bytes=32 time=14ms TTL=55Reply from 74.125.224.103: bytes=32 time=15ms TTL=55Ping statistics for 74.125.224.103: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 14ms, Maximum = 15ms, Average = 14msServer: UnKnown
Address: 10.0.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:Reply from 72.30.38.140: bytes=32 time=50ms TTL=53Reply from 72.30.38.140: bytes=32 time=16ms TTL=53Ping statistics for 72.30.38.140: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 16ms, Maximum = 50ms, Average = 33msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
13 ...00 1d d9 e6 e1 5e ...... Bluetooth Device (Personal Area Network)
11 ...00 1e 4c 63 b8 fb ...... Dell Wireless 1505 Draft 802.11n WLAN Mini-Card
10 ...00 1d 09 aa fc b2 ...... Broadcom 440x 10/100 Integrated Controller
1 ........................... Software Loopback Interface 1
18 ...00 00 00 00 00 00 00 e0 isatap.hsd1.ca.comcast.net.
14 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
16 ...00 00 00 00 00 00 00 e0 isatap.{EBE5686D-9AF0-4CA0-9C92-5F2D07CB2223}
17 ...00 00 00 00 00 00 00 e0 isatap.{D5BB335F-BD20-479C-AFC5-FC56EE30900D}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.0.1.1 10.0.1.17 25
10.0.1.0 255.255.255.0 On-link 10.0.1.17 281
10.0.1.17 255.255.255.255 On-link 10.0.1.17 281
10.0.1.255 255.255.255.255 On-link 10.0.1.17 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.0.1.17 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.0.1.17 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 18 ::/0 On-link
1 306 ::1/128 On-link
14 18 2001::/32 On-link
14 266 2001:0:4137:9e76:879:43:f5ff:feee/128
On-link
11 281 fe80::/64 On-link
14 266 fe80::/64 On-link
14 266 fe80::879:43:f5ff:feee/128
On-link
11 281 fe80::b4ca:8fd8:d8dd:9eb3/128
On-link
1 306 ff00::/8 On-link
14 266 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog5 08 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/09/2012 05:04:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/09/2012 11:43:56 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/09/2012 11:24:36 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/09/2012 11:18:44 AM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{AA44355E-6911-4447-BA5D-6720480579AF}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (12/08/2012 10:55:06 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-SHM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (12/08/2012 05:10:16 PM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (12/08/2012 05:10:14 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (12/08/2012 04:46:34 PM) (Source: Perflib) (User: )
Description: BITSC:\Windows\system32\bitsperf.dll4

Error: (12/08/2012 03:21:31 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/08/2012 10:50:54 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JIMBO\APPDATA\LOCAL\GOOGLE\DRIVE\SYNC_CONFIG.DB-WAL> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (12/09/2012 05:04:03 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/09/2012 05:04:03 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (12/09/2012 05:03:23 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (12/09/2012 00:18:43 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (12/09/2012 00:18:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x80070643Security Update for Microsoft .NET Framework 3.5 SP1 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008 x86 (KB2416473){AAB2AD8D-7E60-49D8-85AF-820B430D9F67}102

Error: (12/09/2012 00:18:35 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x80070643Update to .NET Framework 3.5 Service Pack 1 for the .NET Framework Assistant 1.0 x86 (KB963707){8266A188-8F06-42ED-ABD7-5E467E9AAD81}102

Error: (12/09/2012 00:18:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x80070643Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2478663){3967DD7D-E56B-464E-8B95-A3F360DD90E9}101

Error: (12/09/2012 00:18:21 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x80070643Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update (KB951847) x86{BD213D3C-B0B6-4E5B-A665-E605DCBD6C74}101

Error: (12/09/2012 00:18:15 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x80070643Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2518870){C38C111F-A9A8-4146-A678-C4121C18BF4A}102

Error: (12/09/2012 00:18:01 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: 0x80070643Security Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB954430){2B0B2515-192D-470A-9745-4A3FB7C0203A}106


Microsoft Office Sessions:
=========================
Error: (02/26/2012 08:38:32 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 15 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/24/2012 11:58:06 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 8299 seconds with 1740 seconds of active time. This session ended with a crash.

Error: (01/06/2012 07:13:23 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1110 seconds with 120 seconds of active time. This session ended with a crash.

Error: (10/27/2011 04:41:52 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 163 seconds with 0 seconds of active time. This session ended with a crash.

Error: (10/04/2011 07:39:37 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 87 seconds with 60 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2012-12-09 11:33:09.552
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:33:09.505
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:33:09.459
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:33:09.396
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:33:09.349
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:33:09.303
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:33:09.271
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:33:09.209
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:32:34.396
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-12-09 11:32:34.334
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

7-Zip 9.20
Adobe AIR (Version: 3.2.0.2070)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Dreamweaver CS3 (Version: 9)
Adobe Dreamweaver CS3 (Version: 9.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Flash Player 11 Plugin (Version: 11.5.502.110)
Adobe Flash Player ActiveX (Version: 9.0.124.0)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader X (10.1.1) (Version: 10.1.1)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AVG 2013 (Version: 13.0.2634)
AVG 2013 (Version: 13.0.2793)
AVG 2013 (Version: 2013.0.2793)
calibre (Version: 0.8.35)
Canon MP Navigator EX 1.0
Canon MP470 series User Registration
Combined Community Codec Pack 2011-07-30 (Version: 2011.07.30.0)
DelinvFile - 4.04 (Version: 4.04)
Dell Mobile Broadband Card Utility (Version: 2.06.02.060)
Dell Resource CD (Version: 1.00.0000)
Dell Touchpad (Version: 9.1.18.6)
Dell Wireless WLAN Card (Version: 4.102.15.61)
Dir Utils v1
DisplayLink Core Software (Version: 5.5.27797.0)
DisplayLink Graphics (Version: 5.5.27887.0)
Dragon NaturallySpeaking 11 (Version: 11.0.200)
Dropbox (Version: 1.4.7)
ExtractNow
FileZilla Client 3.5.1 (Version: 3.5.1)
FXCM Trading Station (Version: 011212)
Google Drive (Version: 1.6.3837.2778)
Google Talk Plugin (Version: 3.10.2.10212)
Google Update Helper (Version: 1.3.21.123)
Half-Life 2 Episode One
HiddenFilesToggle Extension
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (Version: 6.0.270)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MetaTrader 4 (Version: 4.00)
MGTEK dopisp (Version: 3.0.1742)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
Mozilla Maintenance Service (Version: 17.0.1)
Music Manager
NetDrive (Version: 1.3.2.0)
NVIDIA Drivers
PDF Settings (Version: 1.0)
Picasa 3 (Version: 3.8)
PowerISO
SigmaTel Audio (Version: 5.10.5102.0)
Skype™ 5.10 (Version: 5.10.116)
StreetSmart Edge® (Version: 1.16.120.0)
StreetSmart Pro (Version: 4.40)
SyncBack
Tracker (Version: 2.3.3)
Trojan Remover 6.8.5 (Version: 6.8.5)
UltraMon (Version: 3.1.0)
ViewSonic Monitor Drivers
Visual C++ 9.0 Runtime for Dragon NaturallySpeaking (Version: 11.0.0)
WebInterpoint (Version: 8.5.10.40)
Winamp (Version: 5.63 )
Winamp Detector Plug-in (Version: 1.0.0.1)

========================= Devices: ================================

Name: Microsoft ISATAP Adapter #2
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 3581.12 MB
Available physical RAM: 2238.84 MB
Total Pagefile: 7387.23 MB
Available Pagefile: 6091.73 MB
Total Virtual: 2047.88 MB
Available Virtual: 1936.72 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.79 GB) (Free:3.43 GB) NTFS
3 Drive f: (EXTERNAL HD) (Fixed) (Total:465.76 GB) (Free:105.98 GB) NTFS

========================= Users: ========================================

User accounts for \\MT-LAPTOP

Administrator Guest Jimbo

========================= Minidump Files ==================================

========================= Restore Points ==================================

04-12-2012 03:58:31 Scheduled Checkpoint
04-12-2012 17:08:29 Scheduled Checkpoint
06-12-2012 06:19:44 Scheduled Checkpoint
07-12-2012 01:02:34 Restore Operation
07-12-2012 17:33:16 Installed StreetSmart Edge®
08-12-2012 22:20:41 Windows Update
09-12-2012 18:10:21 Windows Update
09-12-2012 19:38:54 Windows Update
09-12-2012 19:50:28 Windows Update
09-12-2012 19:54:24 Windows Update
09-12-2012 19:57:32 Windows Update
09-12-2012 20:17:52 Windows Update

**** End of log ****

#13 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:28 AM

Posted 10 December 2012 - 05:07 AM

Hi

Please do the following next:

:step1:

Please follow the instructions on link for Winver (the article is written for Windows XP, but it similarly works for Windows 7) using the "Search programs and files" box.

:step2:

Then take a screenshot of it, upload it, then post the link to it via the below:

  • Please take a screenshot of the problem (How to take a screenshot)
  • Save it as a picture file (eg .jpg / .gif) to your desktop using e.g. Paint.
  • Upload the file saved on your desktop to a site like Mediafire
  • Please post the link to the file in your next reply.

Note:
The reasons I ask you to upload the file to a site like Mediafire, instead of posting the picture on BC instead:

1) It would take up a significant portion of your storage allowance.
2) If the picture is subsequently deleted from BC storage, then it would not show in this post anymore.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#14 benbaggins

benbaggins
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:28 AM

Posted 10 December 2012 - 11:55 AM

Hello. Here it is: http://www.sendspace.com/file/8tdh6w

#15 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:28 AM

Posted 10 December 2012 - 03:13 PM

Hi, since I'm away from my computer for circa 10 days (using Mobile now), I advise that if you haven't received a reply from me in circa 3 days you post in the topic "Post here if you have not received a reply in 3 days" topic in "Am I infected."

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users