Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hangups, minor bugs and problems


  • Please log in to reply
19 replies to this topic

#1 tomcatlover

tomcatlover

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 09 April 2013 - 04:36 PM

Ok.........the last couple of weeks I've been experiencing some annoying problems such as minor hangups and screen freezes and nearly always an " I.E. stopped working...will now shut down" message........usually AFTER I've gone off-line, but not always limited to that.

 

I probably have myself a little bug in the system somewhere - and I experienced some definate problems with same in my photobucket account. Ran spywearblaster, malwarebytes, and avast, but nothing turns up.

 

thanks in advance.

 

Mod Edit: Moved from Internet to a more appropriate forum. ~bloopie


Edited by bloopie, 09 April 2013 - 06:15 PM.

Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


BC AdBot (Login to Remove)

 


#2 doinmeedin

doinmeedin

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:01:22 PM

Posted 10 April 2013 - 04:30 AM

Try flushing your DNS Cache

  1. Click the Start button.
  2. On the Start menu, click accessories
  3. Right click CMD and run as administrator
  4. Type the following into CMD text box: ipconfig /flushdns  (make sure you have a space after " ipconfig and / " )
  5. Click enter !

 

Hope this helps !!


If life is not an option then why are we not given the option in the first place !


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:22 AM

Posted 10 April 2013 - 03:53 PM

Next run these please...

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download Malwarebytes Anti-Malware mbamicontw5.gif and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
  • Double-click on the renamed file to install, then follow these instructions
  • for doing a Quick Scan in normal mode.
  • Don't forget to check for database definition updates through the program's interface (preferable method) before scanning.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • After completing the scan, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab .
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, use Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 10 April 2013 - 05:53 PM

can't paste the log file.........I copied, but cannot paste........... used the clipboard......that worked


Edited by tomcatlover, 10 April 2013 - 05:57 PM.

Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


#5 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 10 April 2013 - 05:56 PM

18:43:35.0265 4412 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

18:43:35.0639 4412 ============================================================

18:43:35.0639 4412 Current date / time: 2013/04/10 18:43:35.0639

18:43:35.0639 4412 SystemInfo:

18:43:35.0639 4412

18:43:35.0639 4412 OS Version: 6.1.7601 ServicePack: 1.0

18:43:35.0639 4412 Product type: Workstation

18:43:35.0639 4412 ComputerName: JOHN-PC

18:43:35.0639 4412 UserName: John

18:43:35.0639 4412 Windows directory: C:\Windows

18:43:35.0639 4412 System windows directory: C:\Windows

18:43:35.0639 4412 Running under WOW64

18:43:35.0639 4412 Processor architecture: Intel x64

18:43:35.0639 4412 Number of processors: 2

18:43:35.0639 4412 Page size: 0x1000

18:43:35.0639 4412 Boot type: Normal boot

18:43:35.0639 4412 ============================================================

18:43:36.0029 4412 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

18:43:36.0029 4412 ============================================================

18:43:36.0029 4412 \Device\Harddisk0\DR0:

18:43:36.0029 4412 MBR partitions:

18:43:36.0029 4412 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D00800, BlocksNum 0x32000

18:43:36.0029 4412 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D32800, BlocksNum 0x729D3DB0

18:43:36.0029 4412 ============================================================

18:43:36.0060 4412 C: <-> \Device\Harddisk0\DR0\Partition2

18:43:36.0060 4412 ============================================================

18:43:36.0060 4412 Initialize success

18:43:36.0060 4412 ============================================================

18:44:17.0743 2420 ============================================================

18:44:17.0743 2420 Scan started

18:44:17.0743 2420 Mode: Manual; TDLFS;

18:44:17.0743 2420 ============================================================

18:44:17.0946 2420 ================ Scan system memory ========================

18:44:17.0946 2420 System memory - ok

18:44:17.0946 2420 ================ Scan services =============================

18:44:18.0102 2420 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

18:44:18.0102 2420 1394ohci - ok

18:44:18.0118 2420 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys

18:44:18.0133 2420 ACPI - ok

18:44:18.0165 2420 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

18:44:18.0165 2420 AcpiPmi - ok

18:44:18.0258 2420 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

18:44:18.0274 2420 AdobeARMservice - ok

18:44:18.0399 2420 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

18:44:18.0399 2420 AdobeFlashPlayerUpdateSvc - ok

18:44:18.0445 2420 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys

18:44:18.0445 2420 adp94xx - ok

18:44:18.0477 2420 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys

18:44:18.0477 2420 adpahci - ok

18:44:18.0492 2420 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys

18:44:18.0492 2420 adpu320 - ok

18:44:18.0539 2420 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

18:44:18.0539 2420 AeLookupSvc - ok

18:44:18.0586 2420 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys

18:44:18.0586 2420 AFD - ok

18:44:18.0601 2420 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys

18:44:18.0601 2420 agp440 - ok

18:44:18.0617 2420 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe

18:44:18.0633 2420 ALG - ok

18:44:18.0664 2420 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys

18:44:18.0664 2420 aliide - ok

18:44:18.0664 2420 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys

18:44:18.0664 2420 amdide - ok

18:44:18.0679 2420 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys

18:44:18.0679 2420 AmdK8 - ok

18:44:18.0695 2420 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys

18:44:18.0695 2420 AmdPPM - ok

18:44:18.0711 2420 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys

18:44:18.0726 2420 amdsata - ok

18:44:18.0742 2420 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys

18:44:18.0742 2420 amdsbs - ok

18:44:18.0757 2420 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys

18:44:18.0757 2420 amdxata - ok

18:44:18.0789 2420 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys

18:44:18.0789 2420 AppID - ok

18:44:18.0804 2420 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll

18:44:18.0804 2420 AppIDSvc - ok

18:44:18.0835 2420 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll

18:44:18.0835 2420 Appinfo - ok

18:44:18.0867 2420 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys

18:44:18.0867 2420 arc - ok

18:44:18.0882 2420 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys

18:44:18.0882 2420 arcsas - ok

18:44:18.0913 2420 [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys

18:44:18.0913 2420 aswFsBlk - ok

18:44:18.0960 2420 [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys

18:44:18.0960 2420 aswMonFlt - ok

18:44:19.0007 2420 [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys

18:44:19.0007 2420 aswRdr - ok

18:44:19.0054 2420 [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys

18:44:19.0054 2420 aswRvrt - ok

18:44:19.0085 2420 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys

18:44:19.0101 2420 aswSnx - ok

18:44:19.0116 2420 [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP C:\Windows\system32\drivers\aswSP.sys

18:44:19.0132 2420 aswSP - ok

18:44:19.0147 2420 [ D62C10D1829C65115111C160EA956260 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys

18:44:19.0147 2420 aswTdi - ok

18:44:19.0179 2420 [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm C:\Windows\system32\drivers\aswVmm.sys

18:44:19.0179 2420 aswVmm - ok

18:44:19.0194 2420 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

18:44:19.0194 2420 AsyncMac - ok

18:44:19.0210 2420 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys

18:44:19.0225 2420 atapi - ok

18:44:19.0272 2420 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

18:44:19.0288 2420 AudioEndpointBuilder - ok

18:44:19.0288 2420 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll

18:44:19.0303 2420 AudioSrv - ok

18:44:19.0366 2420 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe

18:44:19.0366 2420 avast! Antivirus - ok

18:44:19.0413 2420 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll

18:44:19.0413 2420 AxInstSV - ok

18:44:19.0444 2420 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys

18:44:19.0459 2420 b06bdrv - ok

18:44:19.0491 2420 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys

18:44:19.0491 2420 b57nd60a - ok

18:44:19.0537 2420 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll

18:44:19.0537 2420 BDESVC - ok

18:44:19.0537 2420 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys

18:44:19.0537 2420 Beep - ok

18:44:19.0600 2420 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll

18:44:19.0615 2420 BFE - ok

18:44:19.0647 2420 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll

18:44:19.0662 2420 BITS - ok

18:44:19.0662 2420 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

18:44:19.0678 2420 blbdrive - ok

18:44:19.0709 2420 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

18:44:19.0709 2420 bowser - ok

18:44:19.0725 2420 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys

18:44:19.0725 2420 BrFiltLo - ok

18:44:19.0740 2420 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys

18:44:19.0740 2420 BrFiltUp - ok

18:44:19.0771 2420 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll

18:44:19.0771 2420 Browser - ok

18:44:19.0787 2420 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys

18:44:19.0803 2420 Brserid - ok

18:44:19.0818 2420 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

18:44:19.0818 2420 BrSerWdm - ok

18:44:19.0818 2420 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

18:44:19.0818 2420 BrUsbMdm - ok

18:44:19.0849 2420 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

18:44:19.0849 2420 BrUsbSer - ok

18:44:19.0849 2420 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys

18:44:19.0849 2420 BTHMODEM - ok

18:44:19.0881 2420 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll

18:44:19.0881 2420 bthserv - ok

18:44:19.0896 2420 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

18:44:19.0896 2420 cdfs - ok

18:44:19.0974 2420 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys

18:44:19.0974 2420 cdrom - ok

18:44:20.0021 2420 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll

18:44:20.0021 2420 CertPropSvc - ok

18:44:20.0037 2420 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys

18:44:20.0052 2420 circlass - ok

18:44:20.0068 2420 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys

18:44:20.0083 2420 CLFS - ok

18:44:20.0161 2420 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

18:44:20.0161 2420 clr_optimization_v2.0.50727_32 - ok

18:44:20.0208 2420 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

18:44:20.0208 2420 clr_optimization_v2.0.50727_64 - ok

18:44:20.0286 2420 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

18:44:20.0286 2420 clr_optimization_v4.0.30319_32 - ok

18:44:20.0333 2420 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

18:44:20.0349 2420 clr_optimization_v4.0.30319_64 - ok

18:44:20.0364 2420 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys

18:44:20.0364 2420 CmBatt - ok

18:44:20.0395 2420 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys

18:44:20.0411 2420 cmdide - ok

18:44:20.0442 2420 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys

18:44:20.0442 2420 CNG - ok

18:44:20.0473 2420 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys

18:44:20.0473 2420 Compbatt - ok

18:44:20.0489 2420 [ 59D203C3F46F3CA536ECAC0E084CD887 ] CompFilter64 C:\Windows\system32\DRIVERS\lvbflt64.sys

18:44:20.0505 2420 CompFilter64 - ok

18:44:20.0520 2420 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys

18:44:20.0520 2420 CompositeBus - ok

18:44:20.0536 2420 COMSysApp - ok

18:44:20.0551 2420 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys

18:44:20.0551 2420 crcdisk - ok

18:44:20.0598 2420 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll

18:44:20.0598 2420 CryptSvc - ok

18:44:20.0676 2420 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

18:44:20.0676 2420 cvhsvc - ok

18:44:20.0723 2420 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll

18:44:20.0739 2420 DcomLaunch - ok

18:44:20.0785 2420 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll

18:44:20.0785 2420 defragsvc - ok

18:44:20.0832 2420 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

18:44:20.0832 2420 DfsC - ok

18:44:20.0879 2420 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll

18:44:20.0895 2420 Dhcp - ok

18:44:20.0910 2420 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys

18:44:20.0910 2420 discache - ok

18:44:20.0941 2420 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys

18:44:20.0941 2420 Disk - ok

18:44:20.0988 2420 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll

18:44:20.0988 2420 Dnscache - ok

18:44:21.0035 2420 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll

18:44:21.0035 2420 dot3svc - ok

18:44:21.0082 2420 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys

18:44:21.0082 2420 Dot4 - ok

18:44:21.0113 2420 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys

18:44:21.0113 2420 Dot4Print - ok

18:44:21.0144 2420 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys

18:44:21.0144 2420 dot4usb - ok

18:44:21.0175 2420 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll

18:44:21.0191 2420 DPS - ok

18:44:21.0207 2420 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

18:44:21.0207 2420 drmkaud - ok

18:44:21.0269 2420 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

18:44:21.0285 2420 DXGKrnl - ok

18:44:21.0300 2420 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys

18:44:21.0300 2420 e1yexpress - ok

18:44:21.0331 2420 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll

18:44:21.0331 2420 EapHost - ok

18:44:21.0409 2420 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys

18:44:21.0487 2420 ebdrv - ok

18:44:21.0534 2420 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe

18:44:21.0534 2420 EFS - ok

18:44:21.0581 2420 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

18:44:21.0597 2420 ehRecvr - ok

18:44:21.0628 2420 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe

18:44:21.0628 2420 ehSched - ok

18:44:21.0659 2420 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys

18:44:21.0675 2420 elxstor - ok

18:44:21.0690 2420 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys

18:44:21.0690 2420 ErrDev - ok

18:44:21.0737 2420 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll

18:44:21.0737 2420 EventSystem - ok

18:44:21.0768 2420 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys

18:44:21.0768 2420 exfat - ok

18:44:21.0784 2420 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys

18:44:21.0799 2420 fastfat - ok

18:44:21.0846 2420 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe

18:44:21.0862 2420 Fax - ok

18:44:21.0877 2420 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys

18:44:21.0893 2420 fdc - ok

18:44:21.0909 2420 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll

18:44:21.0909 2420 fdPHost - ok

18:44:21.0924 2420 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll

18:44:21.0924 2420 FDResPub - ok

18:44:21.0940 2420 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

18:44:21.0940 2420 FileInfo - ok

18:44:21.0955 2420 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

18:44:21.0955 2420 Filetrace - ok

18:44:21.0971 2420 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys

18:44:21.0971 2420 flpydisk - ok

18:44:22.0018 2420 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

18:44:22.0018 2420 FltMgr - ok

18:44:22.0080 2420 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll

18:44:22.0096 2420 FontCache - ok

18:44:22.0158 2420 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

18:44:22.0158 2420 FontCache3.0.0.0 - ok

18:44:22.0174 2420 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

18:44:22.0174 2420 FsDepends - ok

18:44:22.0221 2420 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

18:44:22.0221 2420 Fs_Rec - ok

18:44:22.0267 2420 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

18:44:22.0267 2420 fvevol - ok

18:44:22.0283 2420 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys

18:44:22.0283 2420 gagp30kx - ok

18:44:22.0330 2420 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll

18:44:22.0345 2420 gpsvc - ok

18:44:22.0423 2420 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe

18:44:22.0423 2420 GREGService - ok

18:44:22.0501 2420 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

18:44:22.0501 2420 gupdate - ok

18:44:22.0533 2420 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

18:44:22.0533 2420 gupdatem - ok

18:44:22.0595 2420 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

18:44:22.0595 2420 gusvc - ok

18:44:22.0611 2420 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

18:44:22.0626 2420 hcw85cir - ok

18:44:22.0689 2420 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

18:44:22.0689 2420 HdAudAddService - ok

18:44:22.0735 2420 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys

18:44:22.0735 2420 HDAudBus - ok

18:44:22.0751 2420 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys

18:44:22.0767 2420 HidBatt - ok

18:44:22.0782 2420 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys

18:44:22.0798 2420 HidBth - ok

18:44:22.0798 2420 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys

18:44:22.0798 2420 HidIr - ok

18:44:22.0813 2420 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll

18:44:22.0829 2420 hidserv - ok

18:44:22.0829 2420 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys

18:44:22.0829 2420 HidUsb - ok

18:44:22.0860 2420 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll

18:44:22.0876 2420 hkmsvc - ok

18:44:22.0907 2420 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll

18:44:22.0907 2420 HomeGroupListener - ok

18:44:22.0923 2420 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

18:44:22.0923 2420 HomeGroupProvider - ok

18:44:22.0938 2420 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

18:44:22.0938 2420 HpSAMD - ok

18:44:22.0985 2420 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys

18:44:22.0985 2420 HTTP - ok

18:44:23.0032 2420 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

18:44:23.0032 2420 hwpolicy - ok

18:44:23.0063 2420 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

18:44:23.0063 2420 i8042prt - ok

18:44:23.0094 2420 [ BF5442DC14608D18949DC83DE37E667A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys

18:44:23.0110 2420 iaStor - ok

18:44:23.0125 2420 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

18:44:23.0141 2420 iaStorV - ok

18:44:23.0172 2420 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

18:44:23.0172 2420 IDriverT - ok

18:44:23.0235 2420 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

18:44:23.0250 2420 idsvc - ok

18:44:23.0500 2420 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys

18:44:23.0687 2420 igfx - ok

18:44:23.0718 2420 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys

18:44:23.0718 2420 iirsp - ok

18:44:23.0749 2420 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll

18:44:23.0765 2420 IKEEXT - ok

18:44:23.0812 2420 [ BC64B75E8E0A0B8982AB773483164E72 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

18:44:23.0812 2420 IntcAzAudAddService - ok

18:44:23.0827 2420 [ B014CE58F0A8048D3924BA8D5CCBC5F1 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys

18:44:23.0843 2420 IntcHdmiAddService - ok

18:44:23.0843 2420 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys

18:44:23.0843 2420 intelide - ok

18:44:23.0859 2420 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

18:44:23.0859 2420 intelppm - ok

18:44:23.0937 2420 [ D9DA7B3117BF5EFF921C0CDED4D58050 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe

18:44:23.0937 2420 IntuitUpdateServiceV4 - ok

18:44:23.0937 2420 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll

18:44:23.0937 2420 IPBusEnum - ok

18:44:23.0968 2420 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

18:44:23.0968 2420 IpFilterDriver - ok

18:44:24.0015 2420 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

18:44:24.0015 2420 iphlpsvc - ok

18:44:24.0046 2420 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

18:44:24.0046 2420 IPMIDRV - ok

18:44:24.0061 2420 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys

18:44:24.0061 2420 IPNAT - ok

18:44:24.0093 2420 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys

18:44:24.0093 2420 IRENUM - ok

18:44:24.0108 2420 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys

18:44:24.0108 2420 isapnp - ok

18:44:24.0124 2420 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

18:44:24.0124 2420 iScsiPrt - ok

18:44:24.0155 2420 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys

18:44:24.0155 2420 kbdclass - ok

18:44:24.0186 2420 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys

18:44:24.0186 2420 kbdhid - ok

18:44:24.0202 2420 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe

18:44:24.0202 2420 KeyIso - ok

18:44:24.0233 2420 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

18:44:24.0233 2420 KSecDD - ok

18:44:24.0280 2420 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

18:44:24.0280 2420 KSecPkg - ok

18:44:24.0280 2420 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

18:44:24.0280 2420 ksthunk - ok

18:44:24.0311 2420 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll

18:44:24.0327 2420 KtmRm - ok

18:44:24.0389 2420 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll

18:44:24.0389 2420 LanmanServer - ok

18:44:24.0420 2420 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

18:44:24.0420 2420 LanmanWorkstation - ok

18:44:24.0451 2420 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

18:44:24.0451 2420 lltdio - ok

18:44:24.0483 2420 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll

18:44:24.0483 2420 lltdsvc - ok

18:44:24.0498 2420 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll

18:44:24.0498 2420 lmhosts - ok

18:44:24.0529 2420 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys

18:44:24.0529 2420 LSI_FC - ok

18:44:24.0545 2420 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys

18:44:24.0545 2420 LSI_SAS - ok

18:44:24.0561 2420 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys

18:44:24.0561 2420 LSI_SAS2 - ok

18:44:24.0576 2420 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys

18:44:24.0576 2420 LSI_SCSI - ok

18:44:24.0607 2420 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys

18:44:24.0607 2420 luafv - ok

18:44:24.0670 2420 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys

18:44:24.0670 2420 LVRS64 - ok

18:44:24.0795 2420 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys

18:44:24.0826 2420 LVUVC64 - ok

18:44:24.0919 2420 [ 3D1516114F5B1548864D043177F992A6 ] lxeaCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxeaserv.exe

18:44:24.0919 2420 lxeaCATSCustConnectService - ok

18:44:24.0919 2420 lxea_device - ok

18:44:25.0013 2420 [ 034606B82FA5BD3E73AB427B6D55F915 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe

18:44:25.0013 2420 McComponentHostService - ok

18:44:25.0044 2420 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

18:44:25.0044 2420 Mcx2Svc - ok

18:44:25.0075 2420 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys

18:44:25.0075 2420 megasas - ok

18:44:25.0107 2420 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys

18:44:25.0107 2420 MegaSR - ok

18:44:25.0138 2420 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll

18:44:25.0138 2420 MMCSS - ok

18:44:25.0153 2420 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys

18:44:25.0153 2420 Modem - ok

18:44:25.0185 2420 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys

18:44:25.0185 2420 monitor - ok

18:44:25.0216 2420 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys

18:44:25.0216 2420 mouclass - ok

18:44:25.0231 2420 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

18:44:25.0231 2420 mouhid - ok

18:44:25.0263 2420 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

18:44:25.0263 2420 mountmgr - ok

18:44:25.0278 2420 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys

18:44:25.0278 2420 mpio - ok

18:44:25.0294 2420 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

18:44:25.0309 2420 mpsdrv - ok

18:44:25.0341 2420 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll

18:44:25.0341 2420 MpsSvc - ok

18:44:25.0387 2420 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

18:44:25.0387 2420 MRxDAV - ok

18:44:25.0419 2420 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

18:44:25.0419 2420 mrxsmb - ok

18:44:25.0465 2420 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

18:44:25.0465 2420 mrxsmb10 - ok

18:44:25.0497 2420 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

18:44:25.0497 2420 mrxsmb20 - ok

18:44:25.0512 2420 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys

18:44:25.0512 2420 msahci - ok

18:44:25.0543 2420 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys

18:44:25.0543 2420 msdsm - ok

18:44:25.0559 2420 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe

18:44:25.0575 2420 MSDTC - ok

18:44:25.0606 2420 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys

18:44:25.0606 2420 Msfs - ok

18:44:25.0621 2420 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

18:44:25.0621 2420 mshidkmdf - ok

18:44:25.0637 2420 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

18:44:25.0637 2420 msisadrv - ok

18:44:25.0684 2420 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

18:44:25.0699 2420 MSiSCSI - ok

18:44:25.0699 2420 msiserver - ok

18:44:25.0731 2420 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

18:44:25.0731 2420 MSKSSRV - ok

18:44:25.0762 2420 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

18:44:25.0762 2420 MSPCLOCK - ok

18:44:25.0777 2420 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

18:44:25.0777 2420 MSPQM - ok

18:44:25.0809 2420 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

18:44:25.0809 2420 MsRPC - ok

18:44:25.0824 2420 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys

18:44:25.0840 2420 mssmbios - ok

18:44:25.0840 2420 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

18:44:25.0855 2420 MSTEE - ok

18:44:25.0855 2420 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys

18:44:25.0871 2420 MTConfig - ok

18:44:25.0887 2420 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys

18:44:25.0887 2420 Mup - ok

18:44:25.0933 2420 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll

18:44:25.0933 2420 napagent - ok

18:44:25.0980 2420 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

18:44:25.0980 2420 NativeWifiP - ok

18:44:26.0027 2420 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys

18:44:26.0043 2420 NDIS - ok

18:44:26.0058 2420 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

18:44:26.0058 2420 NdisCap - ok

18:44:26.0089 2420 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

18:44:26.0089 2420 NdisTapi - ok

18:44:26.0136 2420 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

18:44:26.0136 2420 Ndisuio - ok

18:44:26.0167 2420 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

18:44:26.0167 2420 NdisWan - ok

18:44:26.0214 2420 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

18:44:26.0214 2420 NDProxy - ok

18:44:26.0292 2420 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe

18:44:26.0308 2420 Nero BackItUp Scheduler 4.0 - ok

18:44:26.0339 2420 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

18:44:26.0339 2420 NetBIOS - ok

18:44:26.0370 2420 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

18:44:26.0370 2420 NetBT - ok

18:44:26.0386 2420 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe

18:44:26.0386 2420 Netlogon - ok

18:44:26.0433 2420 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll

18:44:26.0448 2420 Netman - ok

18:44:26.0495 2420 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll

18:44:26.0511 2420 netprofm - ok

18:44:26.0542 2420 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

18:44:26.0542 2420 NetTcpPortSharing - ok

18:44:26.0557 2420 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys

18:44:26.0557 2420 nfrd960 - ok

18:44:26.0604 2420 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll

18:44:26.0620 2420 NlaSvc - ok

18:44:26.0635 2420 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys

18:44:26.0635 2420 Npfs - ok

18:44:26.0651 2420 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll

18:44:26.0651 2420 nsi - ok

18:44:26.0667 2420 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

18:44:26.0667 2420 nsiproxy - ok

18:44:26.0729 2420 [ B8965FB53551B5455630A4B804D0791F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

18:44:26.0760 2420 Ntfs - ok

18:44:26.0776 2420 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys

18:44:26.0776 2420 Null - ok

18:44:26.0791 2420 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys

18:44:26.0791 2420 nvraid - ok

18:44:26.0807 2420 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys

18:44:26.0807 2420 nvstor - ok

18:44:26.0854 2420 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

18:44:26.0854 2420 nv_agp - ok

18:44:26.0869 2420 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

18:44:26.0869 2420 ohci1394 - ok

18:44:26.0901 2420 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

18:44:26.0901 2420 ose - ok

18:44:27.0025 2420 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

18:44:27.0119 2420 osppsvc - ok

18:44:27.0150 2420 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

18:44:27.0150 2420 p2pimsvc - ok

18:44:27.0166 2420 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll

18:44:27.0166 2420 p2psvc - ok

18:44:27.0197 2420 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys

18:44:27.0197 2420 Parport - ok

18:44:27.0228 2420 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys

18:44:27.0228 2420 partmgr - ok

18:44:27.0259 2420 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll

18:44:27.0259 2420 PcaSvc - ok

18:44:27.0275 2420 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys

18:44:27.0275 2420 pci - ok

18:44:27.0291 2420 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys

18:44:27.0291 2420 pciide - ok

18:44:27.0306 2420 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys

18:44:27.0322 2420 pcmcia - ok

18:44:27.0337 2420 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys

18:44:27.0337 2420 pcw - ok

18:44:27.0353 2420 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys

18:44:27.0369 2420 PEAUTH - ok

18:44:27.0431 2420 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe


Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


#6 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 10 April 2013 - 06:00 PM

already have the latest version of Malwarebytes.


Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


#7 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 10 April 2013 - 06:08 PM

Malwarebytes log:

 

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.04.04.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
John :: JOHN-PC [administrator]

4/10/2013 7:01:38 PM
mbam-log-2013-04-10 (19-01-38).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 238944
Time elapsed: 3 minute(s), 27 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:22 AM

Posted 10 April 2013 - 06:55 PM

Looks like the end of the TDSS log was cut off ,if the last 2 lines say no infection then skip it. If not post the last 10 or 20 lines.

Sorry

I did see MBAM, meant to post this......

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

    >>>>>

    ADW Cleaner

    Please download AdwCleaner by Xplode onto your desktop.
    •Close all open programs and internet browsers.
    •Double click on adwcleaner.exe to run the tool.
    •Click on Delete.
    •Confirm each time with Ok.
    •You will be prompted to restart your computer. A text file will open after the restart.
    •Please post the contents of that logfile with your next reply.
    •You can find the logfile at C:\AdwCleaner[S1].txt as well.




How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 10 April 2013 - 09:28 PM


 
 

MiniToolBox by Farbar  Version:05-03-2013
Ran by John (administrator) on 10-04-2013 at 22:24:46
Running from "C:\Users\John\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Intel® 82567V-2 Gigabit Network Connection = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : John-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gateway.2wire.net

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Intel® 82567V-2 Gigabit Network Connection
   Physical Address. . . . . . . . . : F8-0F-41-10-05-F6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::9566:9df4:a303:818c%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, April 10, 2013 6:25:23 PM
   Lease Expires . . . . . . . . . . : Thursday, April 11, 2013 6:25:22 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 200806209
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-FC-90-CE-F8-0F-41-10-05-F6
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.gateway.2wire.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:10c0:7e2:9ce2:f805(Preferred)
   Link-local IPv6 Address . . . . . : fe80::10c0:7e2:9ce2:f805%12(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  home
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4009:803::1006
   173.194.46.32
   173.194.46.33
   173.194.46.34
   173.194.46.35
   173.194.46.36
   173.194.46.37
   173.194.46.38
   173.194.46.39
   173.194.46.40
   173.194.46.41
   173.194.46.46


Pinging google.com [74.125.225.136] with 32 bytes of data:
Reply from 74.125.225.136: bytes=32 time=33ms TTL=53
Reply from 74.125.225.136: bytes=32 time=32ms TTL=53

Ping statistics for 74.125.225.136:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 32ms, Maximum = 33ms, Average = 32ms
Server:  home
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=567ms TTL=47
Reply from 98.139.183.24: bytes=32 time=810ms TTL=47

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 567ms, Maximum = 810ms, Average = 688ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...f8 0f 41 10 05 f6 ......Intel® 82567V-2 Gigabit Network Connection
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.65     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.65    276
     192.168.1.65  255.255.255.255         On-link      192.168.1.65    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.65    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.65    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.65    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 12     58 2001::/32                On-link
 12    306 2001:0:9d38:6ab8:10c0:7e2:9ce2:f805/128
                                    On-link
 10    276 fe80::/64                On-link
 12    306 fe80::/64                On-link
 12    306 fe80::10c0:7e2:9ce2:f805/128
                                    On-link
 10    276 fe80::9566:9df4:a303:818c/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/10/2013 06:39:35 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16476, time stamp: 0x5126e7ac
Faulting module name: aswWebRepIE.dll, version: 8.0.1483.72, time stamp: 0x5137d145
Exception code: 0xc0000005
Fault offset: 0x00007cbd
Faulting process id: 0xbb0
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (04/10/2013 10:27:51 AM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16476, time stamp: 0x5126e7ac
Faulting module name: msxml3.dll, version: 8.110.7601.17988, time stamp: 0x5091ff27
Exception code: 0xc0000005
Fault offset: 0x0002e64f
Faulting process id: 0x1c1c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (04/10/2013 07:34:21 AM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16476, time stamp: 0x5126e7ac
Faulting module name: msxml3.dll, version: 8.110.7601.17988, time stamp: 0x5091ff27
Exception code: 0xc0000005
Fault offset: 0x0002e64f
Faulting process id: 0x166c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (04/10/2013 00:31:26 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/09/2013 08:38:42 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16470 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1dc8

Start Time: 01ce357cbfb4f7e5

Termination Time: 61

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (04/09/2013 05:28:44 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16470, time stamp: 0x510c8801
Faulting module name: msxml3.dll, version: 8.110.7601.17988, time stamp: 0x5091ff27
Exception code: 0xc0000005
Fault offset: 0x0002e64f
Faulting process id: 0x16dc
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (04/09/2013 04:51:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16470, time stamp: 0x510c8801
Faulting module name: msxml3.dll, version: 8.110.7601.17988, time stamp: 0x5091ff27
Exception code: 0xc0000005
Fault offset: 0x0002e64f
Faulting process id: 0x22c0
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (04/09/2013 03:42:20 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16470, time stamp: 0x510c8801
Faulting module name: msxml3.dll, version: 8.110.7601.17988, time stamp: 0x5091ff27
Exception code: 0xc0000005
Fault offset: 0x0002e64f
Faulting process id: 0x1dd8
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (04/09/2013 09:33:42 AM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16470, time stamp: 0x510c8801
Faulting module name: msxml3.dll, version: 8.110.7601.17988, time stamp: 0x5091ff27
Exception code: 0xc0000005
Fault offset: 0x0002e64f
Faulting process id: 0x2140
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (04/09/2013 09:30:52 AM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16470, time stamp: 0x510c8801
Faulting module name: msxml3.dll, version: 8.110.7601.17988, time stamp: 0x5091ff27
Exception code: 0xc0000005
Fault offset: 0x0002e64f
Faulting process id: 0x1ae4
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (04/10/2013 06:25:39 PM) (Source: Service Control Manager) (User: )
Description: The lxeaCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (04/10/2013 06:25:39 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the lxeaCATSCustConnectService service to connect.

Error: (04/10/2013 03:19:58 AM) (Source: Service Control Manager) (User: )
Description: The lxeaCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (04/10/2013 03:19:58 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the lxeaCATSCustConnectService service to connect.

Error: (04/09/2013 04:28:40 PM) (Source: DCOM) (User: John-PC)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}John-PCJohnS-1-5-21-4051095993-3228887501-2653097809-1000LocalHost (Using LRPC)

Error: (04/09/2013 08:01:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 107.

Error: (04/09/2013 08:01:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Error: (04/09/2013 08:01:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 107.

Error: (04/09/2013 08:01:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Error: (04/09/2013 08:01:17 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 107.


Microsoft Office Sessions:
=========================
Error: (04/10/2013 06:39:35 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164765126e7acaswWebRepIE.dll8.0.1483.725137d145c000000500007cbdbb001ce363c3ed4a682C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Program Files\AVAST Software\Avast\aswWebRepIE.dll8480dae4-a22f-11e2-a8a2-f80f411005f6

Error: (04/10/2013 10:27:51 AM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164765126e7acmsxml3.dll8.110.7601.179885091ff27c00000050002e64f1c1c01ce35f6ff0e67d8C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\System32\msxml3.dlld2b3addb-a1ea-11e2-ad7b-f80f411005f6

Error: (04/10/2013 07:34:21 AM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164765126e7acmsxml3.dll8.110.7601.179885091ff27c00000050002e64f166c01ce35df44cdedc4C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\System32\msxml3.dll95ede9a0-a1d2-11e2-ad7b-f80f411005f6

Error: (04/10/2013 00:31:26 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Python Libraries\Lib\distutils\command\wininst-8_d.exe

Error: (04/09/2013 08:38:42 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.164701dc801ce357cbfb4f7e561C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (04/09/2013 05:28:44 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.16470510c8801msxml3.dll8.110.7601.179885091ff27c00000050002e64f16dc01ce35687df3bb1bC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\System32\msxml3.dll7440c7fe-a15c-11e2-93b7-f80f411005f6

Error: (04/09/2013 04:51:08 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.16470510c8801msxml3.dll8.110.7601.179885091ff27c00000050002e64f22c001ce3563acf63e22C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\System32\msxml3.dll3392cf59-a157-11e2-93b7-f80f411005f6

Error: (04/09/2013 03:42:20 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.16470510c8801msxml3.dll8.110.7601.179885091ff27c00000050002e64f1dd801ce3559532e7531C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\System32\msxml3.dll97181549-a14d-11e2-93b7-f80f411005f6

Error: (04/09/2013 09:33:42 AM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.16470510c8801msxml3.dll8.110.7601.179885091ff27c00000050002e64f214001ce3526c45091fbC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\System32\msxml3.dll17bc29d5-a11a-11e2-93b7-f80f411005f6

Error: (04/09/2013 09:30:52 AM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.16470510c8801msxml3.dll8.110.7601.179885091ff27c00000050002e64f1ae401ce3525cdbc2dabC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\System32\msxml3.dllb2698c16-a119-11e2-93b7-f80f411005f6


=========================== Installed Programs ============================

ABBYY FineReader 6.0 Sprint (Version: 6.00.2146.41621)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.6.0.6090)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.169)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Advertising Center (Version: 0.0.0.2)
Amazon Kindle
Apple Application Support (Version: 2.3)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 8.0.1483.0)
Best Buy pc app (Version: 3.1.1.0)
CameraHelperMsi (Version: 13.30.1395.0)
CCleaner (Version: 4.00)
Corel Painter Essentials 4
Corel Painter Essentials 4 (Version: 4.2)
Corel PaintShop Photo Pro X3 (Version: 1.00.0000)
Corel PaintShop Photo Pro X3 (Version: 1.6.1.241)
CyberLink PowerDVD 9 (Version: 9.0.2931.50)
D3DX10 (Version: 15.4.2368.0902)
erLT (Version: 1.20.138.34)
Gateway InfoCentre (Version: 3.02.3000)
Gateway Recovery Management (Version: 4.05.3015)
Gateway Registration (Version: 1.03.3003)
Gateway ScreenSaver (Version: 1.1.0825.2010)
Gateway Updater (Version: 1.02.3001)
Google Chrome (Version: 26.0.1410.64)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.135)
HP Photo Creations (Version: 1.0.0.9452)
ICA (Version: 1.6.1.241)
Identity Card (Version: 1.00.3003)
ImagXpress (Version: 7.0.74.0)
ImgBurn (Version: 2.5.7.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2141)
IPM_PSP_CL (Version: 1.00.0000)
IPM_PSP_COM (Version: 1.00.0000)
J2SE Runtime Environment 5.0 Update 17 (Version: 1.5.0.170)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Lexmark Fax Solutions
Lexmark S300-S400 Series
Lexmark Toolbar (Version: 4.3.37.0)
Logitech Vid HD (Version: 7.2 (7259))
Logitech Webcam Software (Version: 2.30)
LWS Facebook (Version: 13.30.1346.0)
LWS Gallery (Version: 13.30.1379.0)
LWS Help_main (Version: 13.30.1396.0)
LWS Launcher (Version: 13.30.1379.0)
LWS Motion Detection (Version: 13.30.1395.0)
LWS Pictures And Video (Version: 13.30.1395.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Video Mask Maker (Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (Version: 13.30.1379.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.30.1346.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft PowerPoint Viewer (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 9 Essentials
Nero ControlCenter (Version: 9.0.0.1)
Nero DiscSpeed (Version: 5.4.13.100)
Nero DiscSpeed Help (Version: 5.4.4.100)
Nero DriveSpeed (Version: 4.4.12.100)
Nero DriveSpeed Help (Version: 4.4.4.100)
Nero Express Help (Version: 9.4.37.100)
Nero InfoTool (Version: 6.4.12.100)
Nero InfoTool Help (Version: 6.4.4.100)
Nero Installer (Version: 4.4.9.0)
Nero Online Upgrade (Version: 1.3.0.0)
Nero StartSmart (Version: 9.4.37.100)
Nero StartSmart Help (Version: 9.4.27.100)
Nero StartSmart OEM (Version: 9.4.10.100)
NeroExpress (Version: 9.4.37.100)
neroxml (Version: 1.0.0)
Nikon Message Center 2 (Version: 2.1.0)
Nikon Movie Editor (Version: 2.7.0)
NOOK for PC (Version: 2.5.5.9347)
PaintShop Photo Pro X3 Registration Incentive (Version: 1.00.0000)
Picasa 3 (Version: 3.9)
Picture Control Utility (Version: 1.2.2)
Picture Control Utility x64 (Version: 1.4.11)
PSPPContent (Version: 1.00.0000)
PSPPRO_DCRAW (Version: 13.0.0)
QuickTime (Version: 7.73.80.64)
Realtek High Definition Audio Driver (Version: 6.0.1.5898)
Setup (Version: 1.6.1.241)
Skype Click to Call (Version: 6.6.11664)
Skype™ 6.3 (Version: 6.3.105)
SpywareBlaster 5.0 (Version: 5.0.0)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.3351)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0496)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0222)
TurboTax 2011 wmiiper (Version: 011.000.1759)
TurboTax 2011 wrapper (Version: 011.000.0121)
TurboTax 2012 (Version: 2012.0)
TurboTax 2012 WinPerFedFormset (Version: 012.000.1925)
TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0433)
TurboTax 2012 WinPerTaxSupport (Version: 012.000.0179)
TurboTax 2012 wmiiper (Version: 012.000.1329)
TurboTax 2012 wrapper (Version: 012.000.0127)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
ViewNX 2 (Version: 2.7.4)
Web Assistant 2.0.0.460
Welcome Center (Version: 1.02.3005)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Yahoo! BrowserPlus 2.9.8

========================= Memory info: ===================================

Percentage of memory in use: 29%
Total physical RAM: 6109.18 MB
Available physical RAM: 4286.36 MB
Total Pagefile: 12216.54 MB
Available Pagefile: 10250.52 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.13 MB

========================= Partitions: =====================================

1 Drive c: (Gateway) (Fixed) (Total:916.91 GB) (Free:813.22 GB) NTFS

========================= Users: ========================================

User accounts for \\JOHN-PC

Administrator            Guest                    John                    


**** End of log ****


Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


#10 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 10 April 2013 - 09:37 PM

# AdwCleaner v2.200 - Logfile created 04/10/2013 at 22:33:53
# Updated 02/04/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : John - JOHN-PC
# Boot Mode : Normal
# Running from : C:\Users\John\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****

Found : Web Assistant Updater

***** [Files / Folders] *****

Folder Found : C:\Program Files\Web Assistant
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd

***** [Registry] *****

Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Found : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Found : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Key Found : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Found : HKLM\Software\Web Assistant
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Key Found : HKLM\SOFTWARE\Web Assistant
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16476

[OK] Registry is clean.

-\\ Google Chrome v26.0.1410.64

File : C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2841 octets] - [10/04/2013 22:33:53]

########## EOF - C:\AdwCleaner[R1].txt - [2901 octets] ##########


Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


#11 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 10 April 2013 - 09:42 PM

second logfile after restart

 

# AdwCleaner v2.200 - Logfile created 04/10/2013 at 22:36:16
# Updated 02/04/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : John - JOHN-PC
# Boot Mode : Normal
# Running from : C:\Users\John\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Web Assistant Updater

***** [Files / Folders] *****

Folder Deleted : C:\Program Files\Web Assistant
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd

***** [Registry] *****

Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Deleted : HKLM\Software\Web Assistant
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Key Deleted : HKLM\SOFTWARE\Web Assistant
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16476

[OK] Registry is clean.

-\\ Google Chrome v26.0.1410.64

File : C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2956 octets] - [10/04/2013 22:33:53]
AdwCleaner[S1].txt - [2777 octets] - [10/04/2013 22:36:16]

########## EOF - C:\AdwCleaner[S1].txt - [2837 octets] ##########


Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:22 AM

Posted 11 April 2013 - 08:20 AM

Your Minitool log showed system errors. Run SFC and see how it is after.
 
We need to run the SFC /SCANNOW Command The sfc /scannow command (System File Checker) scans the integrity of all protected Windows system files and replaces incorrect corrupted, changed/modified, or damaged versions with the correct versions if possible. Note: Be aware that if you have modified your system files as in theming explorer/system files, running sfc /scannow will revert the system files such as explorer.exe back to it's default state. Note: Make the appropriate backups of your system files that you have modified for theming if you wish to save them before running sfc /scannow. For Windows Vista / 7:
  • Click the Windows "Orb" button.
  • Type cmd.
  • Right click on the search result cmd.exe and click Run as Administrator.
  • For Windows XP:
    • Click the Start button.
    • Click Run.
    • Type cmd.
    Next:
    • Copy the following line of text and paste it into the black box. (right-click in the black box and choose paste) sfc /scannow
    • Press Enter to run the command. Note: This may take a while to finish.
    • If SFC could not fix something, then run the command again to see if it may be able to the next time. Sometimes it may take running the sfc /scannow command 3 or more times to completely fix everything that it's able to.
    Retrieving SFC /scannow log For Windows Vista / 7:
    • Click the Windows "Orb" button.
    • Type cmd.
    • Right click on the search result cmd.exe and click Run as Administrator.
    • Copy the following line of text and paste it into the black box. (right-click in the black box and choose paste) findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
    • Press Enter to run the command.
    • A text file sfcdetails.txt should appear on your desktop. Post the content of the file in your next reply.
  • For Windows XP:
    • Click the Start button
    • Click Run
    • Type cmd
    • Press enter
    • Copy the following line of text and paste it into the black box. (right-click in the black box and choose paste) findstr /c:"[SR]" %windir%\setupapi.log >> "%userprofile%\desktop\sfcdetails.txt"
    • Press Enter to run the command.
    • A text file sfcdetails.txt should appear on your desktop. Post the content of the file in your next reply.

Edited by boopme, 11 April 2013 - 08:21 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 11 April 2013 - 04:55 PM

 

Microsoft Windows [Version 6.1.7601]
Copyright © 2009 Microsoft Corporation.  All rights reserved.

C:\Windows\system32>sfc /scannow

Beginning system scan.  This process will take some time.

Beginning verification phase of system scan.
Verification 100% complete.

Windows Resource Protection did not find any integrity violations.

C:\Windows\system32>


Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity


#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:22 AM

Posted 11 April 2013 - 09:20 PM

Well I am thinking its not malware ..lets run a rootkit check and a system repair tool .. If it still ain't right,you will have to ask in the Win7 forum so they can look for other issues.


Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.
  • >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
    Download Windows Repair (all in one) from this site

    Install the program then run it.

    Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

    p22001645.gif



    Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

    p22001646.gif


    Go to Step 4 and under "System Restore" click on Create button:

    p22001644.gif


    Go to Start Repairs tab and click Start button.

    p22001166.gif


    Please ensure that ONLY items seen in the image below are ticked as indicated (they're all checked by default):

    p22001647.gif

    Click on box next to the Restart System when Finished. Then click on Start.

Edited by boopme, 11 April 2013 - 09:21 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 tomcatlover

tomcatlover
  • Topic Starter

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 AM

Posted 12 April 2013 - 06:18 AM

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-04-12 07:11:51
-----------------------------
07:11:51.736    OS Version: Windows x64 6.1.7601 Service Pack 1
07:11:51.736    Number of processors: 2 586 0x170A
07:11:51.736    ComputerName: JOHN-PC  UserName: John
07:11:53.608    Initialize success
07:11:54.434    AVAST engine defs: 13041101
07:12:07.367    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:12:07.382    Disk 0 Vendor: WDC_WD10 80.0 Size: 953869MB BusType: 3
07:12:07.492    Disk 0 MBR read successfully
07:12:07.492    Disk 0 MBR scan
07:12:07.492    Disk 0 Windows 7 default MBR code
07:12:07.507    Disk 0 Partition 1 00     27 Hidden NTFS WinRE NTFS        14848 MB offset 2048
07:12:07.523    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 30410752
07:12:07.523    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       938919 MB offset 30615552
07:12:07.554    Disk 0 scanning C:\Windows\system32\drivers
07:12:15.479    Service scanning
07:12:30.158    Modules scanning
07:12:30.158    Disk 0 trace - called modules:
07:12:30.190    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
07:12:30.205    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800822b060]
07:12:30.205    3 CLASSPNP.SYS[fffff88000faf43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8005f6e050]
07:12:31.812    AVAST engine scan C:\Windows
07:12:34.807    AVAST engine scan C:\Windows\system32
07:14:26.674    AVAST engine scan C:\Windows\system32\drivers
07:14:38.436    AVAST engine scan C:\Users\John
07:16:43.860    Disk 0 MBR has been saved successfully to "C:\Users\John\Desktop\MBR.dat"
07:16:43.860    The log file has been saved successfully to "C:\Users\John\Desktop\aswMBR.txt"


 


Gateway SX2803-25e Win 7 Home Premium Intel Pentium E5800 processor Intel GMA X4500 Graphics 1TB HD,6GB DDR3 Memory
HP Pavilion g7 Notebook PC Win 7 Home Premium SP1 AMD A6-3420M APU with Radeon HD Graphics 1.5 GHz 4 GB RAM 64-bit OS
Ipad 2, ver 7.0.4 13.2 GB capacity





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users