Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

computer crashes whenever im streaming/ downloading


  • Please log in to reply
12 replies to this topic

#1 sam gibson

sam gibson

  • Members
  • 57 posts
  • OFFLINE
  •  
  • Local time:01:51 PM

Posted 15 September 2014 - 11:35 AM

Good morning guys- my computer is freezing/ restarting whenever i download things or sometimes when i stream. It seems that there's a problem when its receiving a lot of data, which isnt something thats ever happened before. I have no idea what the problem could be...

 

Ive run virus checks etc with avast and malwarebyte antimalware and nothing is coming up

 

I appreciate any consideration of this

 

 

regards, sam

 

 



BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 56,379 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:51 PM

Posted 15 September 2014 - 12:41 PM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#3 sam gibson

sam gibson
  • Topic Starter

  • Members
  • 57 posts
  • OFFLINE
  •  
  • Local time:01:51 PM

Posted 16 September 2014 - 11:35 AM

hey louis- something tells me that you have seen this before! but maybe it is a virus or somthing. If not i can reinstall windows ...

 

here is the speccy link : http://speccy.piriform.com/results/NgeOocmterKSNrE0kWAebRW 

 

cheers, sam

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by sam ling gibson (administrator) on 16-09-2014 at 11:34:14
Running from "C:\Documents and Settings\sam ling gibson\Desktop"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/14/2014 00:57:37 PM) (Source: .NET Runtime 2.0 Error Reporting) (User: )
Description: Faulting application armcp.exe, version 4.3.2.0, stamp 4e72bd7a, faulting module kernel32.dll, version 5.1.2600.5512, stamp 4802a12c, debug? 0, fault address 0x00012aeb.

Error: (09/14/2014 00:57:25 PM) (Source: .NET Runtime 2.0 Error Reporting) (User: )
Description: Faulting application armcp.exe, version 4.3.2.0, stamp 4e72bd7a, faulting module kernel32.dll, version 5.1.2600.5512, stamp 4802a12c, debug? 0, fault address 0x00012aeb.

Error: (09/14/2014 00:41:41 PM) (Source: .NET Runtime 2.0 Error Reporting) (User: )
Description: EventType clr20r3, P1 jrmcp.exe, P2 5.0.1.54, P3 5396804d, P4 system, P5 2.0.0.0, P6 4333ae87, P7 5a2, P8 0, P9 clr20r30, P10 clr20r31.

Error: (09/03/2014 00:11:30 AM) (Source: Application Hang) (User: )
Description: Hanging application AutoShutdown.exe, version 1.2.4.5, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/31/2014 03:16:21 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Cannot obtain the collection 'Applications' from the COM+ catalog [0x8004e00f].

Error: (08/31/2014 03:16:12 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Cannot obtain the collection 'Applications' from the COM+ catalog [0x8004e00f].

Error: (08/31/2014 03:16:12 PM) (Source: COM+) (User: )
Description: The run-time environment was unable to initialize for transactions required to support transactional components. Make sure that MS-DTC is running. (DtcGetTransactionManagerEx(): hr = 0x8004d01b)

Error: (08/31/2014 03:10:01 PM) (Source: WinMgmt) (User: )
Description: Failed to load MOF C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.0\WINDOWS COMMUNICATION FOUNDATION\SERVICEMODEL.MOF while recovering repository file.

Error: (08/31/2014 03:10:01 PM) (Source: WinMgmt) (User: )
Description: Failed to load MOF C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ASPNET.MOF while recovering repository file.

Error: (08/31/2014 03:10:00 PM) (Source: WinMgmt) (User: )
Description: Failed to load MOF C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V4.0.30319\MOF\SERVICEMODEL.MOF while recovering repository file.


System errors:
=============
Error: (09/16/2014 08:21:33 AM) (Source: System Error) (User: )
Description: Error code 000000c2, parameter1 00000007, parameter2 00000cd4, parameter3 00000000, parameter4 8a741e70.

Error: (09/15/2014 11:05:25 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} did not register with DCOM within the required timeout.

Error: (09/15/2014 11:03:45 AM) (Source: DCOM) (User: COMPUTER_1)
Description: The server {49BD2028-1523-11D1-AD79-00C04FD8FDFF} did not register with DCOM within the required timeout.

Error: (09/15/2014 11:03:25 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} did not register with DCOM within the required timeout.

Error: (09/10/2014 06:24:56 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.0.5 for the Network Card with network address 0017C44649FC has been
denied by the DHCP server 192.168.1.254 (The DHCP Server sent a DHCPNACK message).

Error: (09/09/2014 10:06:54 PM) (Source: Dhcp) (User: )
Description: Your computer was not assigned an address from the network (by the DHCP
Server) for the Network Card with network address 0017C44649FC.  The following error
occurred:
%%121.
Your computer will continue to try and obtain an address on its own from
the network address (DHCP) server.

Error: (09/08/2014 11:05:54 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} did not register with DCOM within the required timeout.

Error: (09/08/2014 11:03:54 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} did not register with DCOM within the required timeout.

Error: (09/08/2014 11:01:54 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} did not register with DCOM within the required timeout.

Error: (09/08/2014 11:01:39 PM) (Source: DCOM) (User: COMPUTER_1)
Description: The server {49BD2028-1523-11D1-AD79-00C04FD8FDFF} did not register with DCOM within the required timeout.


Microsoft Office Sessions:
=========================
Error: (09/14/2014 00:57:37 PM) (Source: .NET Runtime 2.0 Error Reporting)(User: )
Description: armcp.exe4.3.2.04e72bd7akernel32.dll5.1.2600.55124802a12c000012aeb

Error: (09/14/2014 00:57:25 PM) (Source: .NET Runtime 2.0 Error Reporting)(User: )
Description: armcp.exe4.3.2.04e72bd7akernel32.dll5.1.2600.55124802a12c000012aeb

Error: (09/14/2014 00:41:41 PM) (Source: .NET Runtime 2.0 Error Reporting)(User: )
Description: clr20r3jrmcp.exe5.0.1.545396804dsystem2.0.0.04333ae875a20system.io.filenotfoundexceptionNIL

Error: (09/03/2014 00:11:30 AM) (Source: Application Hang)(User: )
Description: AutoShutdown.exe1.2.4.5hungapp0.0.0.000000000

Error: (08/31/2014 03:16:21 PM) (Source: VSS)(User: )
Description: Applications0x8004e00f

Error: (08/31/2014 03:16:12 PM) (Source: VSS)(User: )
Description: Applications0x8004e00f

Error: (08/31/2014 03:16:12 PM) (Source: COM+)(User: )
Description: (DtcGetTransactionManagerEx(): hr = 0x8004d01b)

Error: (08/31/2014 03:10:01 PM) (Source: WinMgmt)(User: )
Description: C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.0\WINDOWS COMMUNICATION FOUNDATION\SERVICEMODEL.MOF

Error: (08/31/2014 03:10:01 PM) (Source: WinMgmt)(User: )
Description: C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ASPNET.MOF

Error: (08/31/2014 03:10:00 PM) (Source: WinMgmt)(User: )
Description: C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V4.0.30319\MOF\SERVICEMODEL.MOF



=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33870 - BitTorrent Inc.)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.7.0.1530 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit 2 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM\...\{C8C81DD6-A906-4856-91FA-F43DB92BEB99}) (Version: 10.3.183.90 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Fonts All (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS3 (HKLM\...\Adobe_a04a925a57548091300ada368235fc6) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Illustrator CS3 (Version: 13.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS3 (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (HKLM\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (Version: 10 - Adobe Systems Incorporated) Hidden
Adobe Setup (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Type Support (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS3 (Version: 5.1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
AMD Catalyst Install Manager (HKLM\...\{08ED1CD1-1CB1-B7CE-677E-110D0A118590}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.)
Any Video Converter 5.0.5 (HKLM\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Wireless LAN Client Adapter (HKLM\...\{423799F1-0BD5-4B2D-8BD6-2A49BCEA583B}) (Version: 1.0.4.0505 - QMI)
ATI Catalyst Control Center (HKLM\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.010.0210.2338 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.511-080624a-066661C-Acer - )
Audacity 2.0.2 (HKLM\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)
avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2021 - AVAST Software)
BBC iPlayer Desktop (Version: 3.2.15 - British Broadcasting Corp.) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BPM Counter 1.6.0.0 (HKLM\...\BPM Counter_is1) (Version: 1.6.0.0 - AbyssMedia.com)
Camtasia Studio 8 (HKLM\...\{765AD29A-7EF5-4456-8F6F-83467E52AB52}) (Version: 8.4.3.1792 - TechSmith Corporation)
Canon IJ Scan Utility (HKLM\...\Canon_IJ_Scan_Utility) (Version:  - ?Canon Inc.?)
Canon MG2200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2200_series) (Version: 1.01 - Canon Inc.)
CanoScan LiDE 110 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_cnq2414) (Version:  - )
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center HydraVision Full (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Localization All (Version: 2010.0210.2339.42455 - ATI) Hidden
CCC Help Chinese Standard (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Czech (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Danish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Dutch (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help English (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Finnish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help French (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help German (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Greek (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Hungarian (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Italian (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Japanese (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Korean (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Norwegian (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Polish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Portuguese (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Russian (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Spanish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Swedish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Thai (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Turkish (Version: 2010.0210.2338.42455 - ATI) Hidden
ccc-core-preinstall (Version: 2010.0210.2339.42455 - ATI) Hidden
ccc-core-static (Version: 2010.0210.2339.42455 - ATI) Hidden
ccc-utility (Version: 2010.0210.2339.42455 - ATI) Hidden
Cheetah DVD Burner (HKLM\...\{BD01E97F-2A6A-495E-BE38-22C7B80F3CD7}) (Version:  - )
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Decrap my Computer (HKLM\...\Decrap my Computer) (Version:  - Macecraft Software)
dj_sf_software_req (Version: 90.0.235.000 - Hewlett-Packard) Hidden
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
FLV to AVI MPEG WMV 3GP MP4 iPod Converter 6.0.0103 (HKLM\...\FLV to AVI MPEG WMV 3GP MP4 iPod Converter_is1) (Version:  - Aone Software)
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 5.3.1.606 - Foxit Corporation)
Free Alarm Clock 3.0.3 (HKLM\...\{8ED5A2F1-338F-4608-8AF7-BCD1ADC1E1F7}_is1) (Version: 3.0 - Comfort Software Group)
Freemake Video Converter version 3.1.2 (HKLM\...\Freemake Video Converter_is1) (Version: 3.1.2 - Ellora Assets Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
iPubsoft MOBI to PDF Converter build(2.1.6) (HKLM\...\iPubsoft MOBI to PDF Converter_is1) (Version: 2.1.6 - iPubsoft)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Jaksta Streaming Media Recorder (4.3.2) (HKLM\...\Jaksta Streaming Media Recorder) (Version: 4.3.2 - Jaksta Technologies)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden
K-Lite Mega Codec Pack 10.1.0 (HKLM\...\KLiteCodecPack_is1) (Version: 10.1.0 - )
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 2.0 (HKLM\...\Microsoft .NET Framework 2.0) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 2.0 (Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.0 (HKLM\...\Microsoft .NET Framework 3.0) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.0 (Version: 3.0.04506.30 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office Professional Edition 2003 (HKLM\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.40820 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40825 - Microsoft Corporation) Hidden
Mozilla Firefox 31.0 (x86 en-US) (HKLM\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
MP3 Splitter Joiner Pro v4.2 build 2612 (HKLM\...\{F88C04C9-9CDC-4830-A533-CC5E3D69F2A1}_is1) (Version:  - Hoo Technologies)
MPC-HC 1.7.0 (HKLM\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.0.7858 - MPC-HC Team)
MSXML 6.0 Parser (KB925673) (HKLM\...\{FE9126DB-5F84-495A-BB46-3C724F1C2D08}) (Version: 6.00.3888.0 - Microsoft Corporation)
Native Instruments Traktor 2 (HKLM\...\Native Instruments Traktor 2) (Version:  - Native Instruments)
Native Instruments Traktor 2 (Version: 2.0.1.10169 - Native Instruments) Hidden
PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.9.5 - pdfforge)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.309.0 - Tracker Software Products Ltd)
PhoneBrowse 3.0.0 (HKLM\...\{6A4F3A46-FC4A-4B5C-917C-B9BAAB99FE01}}_is1) (Version: 3.0.0 - iMobie Inc.)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
QuickTime (HKLM\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.7111 - Realtek Semiconductor Corp.)
Replay Media Catcher 4 (4.4.3) (HKLM\...\Replay Media Catcher 4) (Version: 4.4.3 - Applian Technologies)
Skins (Version: 2010.0210.2339.42455 - ATI) Hidden
SmartEdit 3.301 (HKLM\...\SmartEdit_is1) (Version:  - Bad Wolf Software)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Subtitle Edit 3.2.8 (HKLM\...\SubtitleEdit_is1) (Version: 3.2.8.1220 - Nikse)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.1.4.0 - Synaptics)
Toolbox (Version: 90.0.146.000 - Hewlett-Packard) Hidden
TreeSize Free V2.7 (HKLM\...\TreeSize Free_is1) (Version: 2.7 - JAM Software)
Tweaking.com - Windows Repair (All in One) (HKLM\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.8.8 - Tweaking.com)
UsbFix By El Desaparecido (HKLM\...\Usbfix) (Version:  - El Desaparecido - www.usbfix.net)
Vector Magic (HKLM\...\Vector Magic) (Version: 1.14 - Vector Magic, Inc.)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
VSO ConvertXtoDVD 5 (beta version) (HKLM\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.16 - VSO-Software SARL)
Windows Communication Foundation (Version: 3.0.04506.30 - Microsoft Corporation) Hidden
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Presentation Foundation (Version: 3.0.6920.0 - Microsoft Corporation) Hidden
Windows Workflow Foundation (Version: 3.0.4203.2 - Microsoft Corporation) Hidden
WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wondershare Video Editor(Build 3.0.2) (HKLM\...\Wondershare Video Editor_is1) (Version:  - Wondershare)
XML Paper Specification Shared Components Pack 1.0 (Version:  - Microsoft Corporation) Hidden

========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 2814.35 MB
Available physical RAM: 1458.73 MB
Total Pagefile: 11175.83 MB
Available Pagefile: 9608.38 MB
Total Virtual: 2047.88 MB
Available Virtual: 1983.36 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:117.19 GB) (Free:14.26 GB) NTFS
2 Drive d: () (Fixed) (Total:115.69 GB) (Free:41.62 GB) NTFS

========================= Users: ========================================

User accounts for \\COMPUTER_1

Administrator            ASPNET                   Guest                    
HelpAssistant            sam ling gibson          SUPPORT_388945a0         


**** End of log ****
 


Edited by hamluis, 16 September 2014 - 12:31 PM.
Pasted log into topic - Hamluis.


#4 hamluis

hamluis

    Moderator


  • Moderator
  • 56,379 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:51 PM

Posted 16 September 2014 - 12:32 PM

Your Speccy link does not work.

 

Louis



#5 ElfBane

ElfBane

  • Members
  • 775 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:02:51 PM

Posted 16 September 2014 - 02:21 PM

Your C: drive only has about 12% free space. Ideally you should have 15-20% (and I prefer 25%). When there's not enough free space the OS can, and does, perform poorly. Try to free up 10-15GB more space.



#6 sam gibson

sam gibson
  • Topic Starter

  • Members
  • 57 posts
  • OFFLINE
  •  
  • Local time:01:51 PM

Posted 16 September 2014 - 07:57 PM

Thanks for the advice- Ive cleared some memory for C Drive.

 

Here is the speccy link again, strange is didnt seem to work - works when i click the link

 

http://speccy.piriform.com/results/mJzDnFqrqHD5cuAFlvrfFGp  

 

sam



#7 hamluis

hamluis

    Moderator


  • Moderator
  • 56,379 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:51 PM

Posted 17 September 2014 - 08:20 AM

Thanks, second link works...is different from the first you posted.

 

Decrap my Computer is a registry cleaner/optmizer application...such are not supported by this website.

 

Microsoft support policy for the use of registry cleaning utilities - http://support.microsoft.com/kb/2563254

 

Registry cleaner - Wikipedia, the free encyclopedia - http://en.wikipedia.org/wiki/Registry_cleaner

 

Registry Cleaner FAQ, PC Support - http://pcsupport.about.com/od/registry-cleaner/a/registry-cleaner-faq.htm

 

Registry Cleaner, Animal - http://www.bleepingcomputer.com/forums/t/526247/tune-up-utilities-2014-problem/?p=3303494

 

Anvi Cloud System Booster Speed Service has a service on your system...yet I don't see it listed among programs installed.  This program, and all other "optimizers" are not supported by this website.  I also note that there are plenty of illegal versions for this program.  If you had installed such and then uninstalled it...I feel it fair to state that there is the possibiility of malware on your system.  We don't explore such in this forum.  If you want to explore that possibility...I can move this topic to the Am I Infected forum here.
 
Between the possibilities of the registry cleaner apps damaging key system files...and malware possibilities via torrenting/illegal software...I would probably advocate checking for malware and ceasing to use "optimizer" software.
 
Louis


#8 sam gibson

sam gibson
  • Topic Starter

  • Members
  • 57 posts
  • OFFLINE
  •  
  • Local time:01:51 PM

Posted 18 September 2014 - 08:52 AM

yes louis if you could move it to the am i infected forum it would be great. 

 

As you previously recomended, i removed the registry optimising programs. what would you recomened to get rid of the reamining processes theyv left?

 

best, sam



#9 hamluis

hamluis

    Moderator


  • Moderator
  • 56,379 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:51 PM

Posted 18 September 2014 - 09:16 AM

Let's address the malware possibility first...before worrying about anything else, please.

 

Moved to Am I Infected.

 

Louis



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:51 PM

Posted 18 September 2014 - 01:52 PM

Please do these next...

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 sam gibson

sam gibson
  • Topic Starter

  • Members
  • 57 posts
  • OFFLINE
  •  
  • Local time:01:51 PM

Posted 20 September 2014 - 11:32 AM

okay- thanks for the reply-

here is all the reports etc:

 

Minitool box:

 

MiniToolBox by Farbar  Version: 21-07-2014

Ran by sam ling gibson (administrator) on 20-09-2014 at 09:06:57

Running from "D:\Films\anti virus"

Microsoft Windows XP Professional Service Pack 3 (X86)

Boot Mode: Normal

***************************************************************************

 

========================= Flush DNS: ===================================

 

 

Windows IP Configuration

 

 

 

Successfully flushed the DNS Resolver Cache.

 

 

========================= IE Proxy Settings: ==============================

 

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ==============================

 

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

 

========================= Hosts content: =================================

 

 

 

 

127.0.0.1       localhost

 

========================= IP Configuration: ================================

 

Atheros AR928x Wireless Network Adapter = Wireless Network Connection (Connected)

Broadcom NetXtreme Gigabit Ethernet = Local Area Connection (Media disconnected)

 

 

# ----------------------------------

# Interface IP Configuration        

# ----------------------------------

pushd interface ip

 

 

# Interface IP Configuration for "Wireless Network Connection"

 

set address name="Wireless Network Connection" source=dhcp

set dns name="Wireless Network Connection" source=dhcp register=PRIMARY

set wins name="Wireless Network Connection" source=dhcp

 

# Interface IP Configuration for "Local Area Connection"

 

set address name="Local Area Connection" source=dhcp

set dns name="Local Area Connection" source=dhcp register=PRIMARY

set wins name="Local Area Connection" source=dhcp

 

 

popd

# End of interface IP configuration

 

 

 

 

Windows IP Configuration

 

 

 

        Host Name . . . . . . . . . . . . : computer_1

 

        Primary Dns Suffix  . . . . . . . :

 

        Node Type . . . . . . . . . . . . : Mixed

 

        IP Routing Enabled. . . . . . . . : No

 

        WINS Proxy Enabled. . . . . . . . : No

 

 

 

Ethernet adapter Wireless Network Connection:

 

 

 

        Connection-specific DNS Suffix  . :

 

        Description . . . . . . . . . . . : Atheros AR928x Wireless Network Adapter

 

        Physical Address. . . . . . . . . : 00-17-C4-46-49-FC

 

        Dhcp Enabled. . . . . . . . . . . : Yes

 

        Autoconfiguration Enabled . . . . : Yes

 

        IP Address. . . . . . . . . . . . : 192.168.1.4

 

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

 

        Default Gateway . . . . . . . . . : 192.168.1.254

 

        DHCP Server . . . . . . . . . . . : 192.168.1.254

 

        DNS Servers . . . . . . . . . . . : 192.168.1.254

 

                                            192.168.1.254

 

        Lease Obtained. . . . . . . . . . : 20 September 2014 06:59:51

 

        Lease Expires . . . . . . . . . . : 21 September 2014 06:59:51

 

 

 

Ethernet adapter Local Area Connection:

 

 

 

        Media State . . . . . . . . . . . : Media disconnected

 

        Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet

 

        Physical Address. . . . . . . . . : 00-1D-72-D6-C3-E9

 

Server:  homerouter.cpe

Address:  192.168.1.254

 

Name:    google.com

Addresses:  74.125.229.194, 74.125.229.200, 74.125.229.192, 74.125.229.195

              74.125.229.197, 74.125.229.193, 74.125.229.198, 74.125.229.201, 74.125.229.199

              74.125.229.206, 74.125.229.196

 

 

 

Pinging google.com [74.125.229.194] with 32 bytes of data:

 

 

 

Reply from 74.125.229.194: bytes=32 time=77ms TTL=57

 

Reply from 74.125.229.194: bytes=32 time=96ms TTL=57

 

 

 

Ping statistics for 74.125.229.194:

 

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

 

Approximate round trip times in milli-seconds:

 

    Minimum = 77ms, Maximum = 96ms, Average = 86ms

 

Server:  homerouter.cpe

Address:  192.168.1.254

 

Name:    yahoo.com

Addresses:  98.139.183.24, 98.138.253.109, 206.190.36.45

 

 

 

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

 

 

 

Reply from 98.139.183.24: bytes=32 time=134ms TTL=52

 

Reply from 98.139.183.24: bytes=32 time=122ms TTL=52

 

 

 

Ping statistics for 98.139.183.24:

 

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

 

Approximate round trip times in milli-seconds:

 

    Minimum = 122ms, Maximum = 134ms, Average = 128ms

 

 

 

Pinging 127.0.0.1 with 32 bytes of data:

 

 

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

 

 

Ping statistics for 127.0.0.1:

 

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

 

Approximate round trip times in milli-seconds:

 

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

 

===========================================================================

Interface List

0x1 ........................... MS TCP Loopback interface

0x2 ...00 17 c4 46 49 fc ...... Atheros AR928x Wireless Network Adapter - Packet Scheduler Miniport

0x3 ...00 1d 72 d6 c3 e9 ...... Broadcom NetXtreme Gigabit Ethernet - Packet Scheduler Miniport

===========================================================================

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.4     20

        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1

      192.168.1.0    255.255.255.0      192.168.1.4     192.168.1.4         20

      192.168.1.4  255.255.255.255        127.0.0.1       127.0.0.1           20

    192.168.1.255  255.255.255.255      192.168.1.4     192.168.1.4     20

        224.0.0.0        240.0.0.0      192.168.1.4     192.168.1.4   20

  255.255.255.255  255.255.255.255      192.168.1.4     192.168.1.4   1

  255.255.255.255  255.255.255.255      192.168.1.4               3          1

Default Gateway:     192.168.1.254

===========================================================================

Persistent Routes:

  None

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (09/19/2014 10:11:41 PM) (Source: Application Hang) (User: )

Description: Hanging application AutoShutdown.exe, version 1.2.4.5, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

 

Error: (09/18/2014 04:57:24 PM) (Source: Application Hang) (User: )

Description: Hanging application iTunes.exe, version 11.1.5.5, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

 

Error: (09/18/2014 08:57:41 AM) (Source: Application Error) (User: )

Description: Faulting application SynTPEnh.exe, version 11.1.4.0, faulting module SynTPEnh.exe, version 11.1.4.0, fault address 0x0002c28c.

Processing media-specific event for [SynTPEnh.exe!ws!]

 

Error: (09/14/2014 00:57:37 PM) (Source: .NET Runtime 2.0 Error Reporting) (User: )

Description: Faulting application armcp.exe, version 4.3.2.0, stamp 4e72bd7a, faulting module kernel32.dll, version 5.1.2600.5512, stamp 4802a12c, debug? 0, fault address 0x00012aeb.

 

Error: (09/14/2014 00:57:25 PM) (Source: .NET Runtime 2.0 Error Reporting) (User: )

Description: Faulting application armcp.exe, version 4.3.2.0, stamp 4e72bd7a, faulting module kernel32.dll, version 5.1.2600.5512, stamp 4802a12c, debug? 0, fault address 0x00012aeb.

 

Error: (09/14/2014 00:41:41 PM) (Source: .NET Runtime 2.0 Error Reporting) (User: )

Description: EventType clr20r3, P1 jrmcp.exe, P2 5.0.1.54, P3 5396804d, P4 system, P5 2.0.0.0, P6 4333ae87, P7 5a2, P8 0, P9 clr20r30, P10 clr20r31.

 

Error: (09/03/2014 00:11:30 AM) (Source: Application Hang) (User: )

Description: Hanging application AutoShutdown.exe, version 1.2.4.5, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

 

Error: (08/31/2014 03:16:21 PM) (Source: VSS) (User: )

Description: Volume Shadow Copy Service error: Cannot obtain the collection 'Applications' from the COM+ catalog [0x8004e00f].

 

Error: (08/31/2014 03:16:12 PM) (Source: VSS) (User: )

Description: Volume Shadow Copy Service error: Cannot obtain the collection 'Applications' from the COM+ catalog [0x8004e00f].

 

Error: (08/31/2014 03:16:12 PM) (Source: COM+) (User: )

Description: The run-time environment was unable to initialize for transactions required to support transactional components. Make sure that MS-DTC is running. (DtcGetTransactionManagerEx(): hr = 0x8004d01b)

 

 

System errors:

=============

Error: (09/19/2014 06:32:40 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: The server {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} did not register with DCOM within the required timeout.

 

Error: (09/19/2014 06:32:29 PM) (Source: DCOM) (User: COMPUTER_1)

Description: The server {49BD2028-1523-11D1-AD79-00C04FD8FDFF} did not register with DCOM within the required timeout.

 

Error: (09/19/2014 06:31:14 PM) (Source: Service Control Manager) (User: )

Description: The HTTP SSL service failed to start due to the following error:

%%1053

 

Error: (09/19/2014 06:31:14 PM) (Source: Service Control Manager) (User: )

Description: Timeout (30000 milliseconds) waiting for the HTTP SSL service to connect.

 

Error: (09/19/2014 06:30:44 PM) (Source: Service Control Manager) (User: )

Description: The HTTP SSL service failed to start due to the following error:

%%1053

 

Error: (09/19/2014 06:30:44 PM) (Source: Service Control Manager) (User: )

Description: Timeout (30000 milliseconds) waiting for the HTTP SSL service to connect.

 

Error: (09/19/2014 00:28:22 PM) (Source: Service Control Manager) (User: )

Description: Timeout (30000 milliseconds) waiting for a transaction response from the WZCSVC service.

 

Error: (09/18/2014 09:56:20 AM) (Source: DCOM) (User: NT AUTHORITY)

Description: The server {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} did not register with DCOM within the required timeout.

 

Error: (09/18/2014 09:54:20 AM) (Source: DCOM) (User: NT AUTHORITY)

Description: The server {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} did not register with DCOM within the required timeout.

 

Error: (09/18/2014 09:54:00 AM) (Source: DCOM) (User: COMPUTER_1)

Description: The server {49BD2028-1523-11D1-AD79-00C04FD8FDFF} did not register with DCOM within the required timeout.

 

 

Microsoft Office Sessions:

=========================

Error: (09/19/2014 10:11:41 PM) (Source: Application Hang)(User: )

Description: AutoShutdown.exe1.2.4.5hungapp0.0.0.000000000

 

Error: (09/18/2014 04:57:24 PM) (Source: Application Hang)(User: )

Description: iTunes.exe11.1.5.5hungapp0.0.0.000000000

 

Error: (09/18/2014 08:57:41 AM) (Source: Application Error)(User: )

Description: SynTPEnh.exe11.1.4.0SynTPEnh.exe11.1.4.00002c28c

 

Error: (09/14/2014 00:57:37 PM) (Source: .NET Runtime 2.0 Error Reporting)(User: )

Description: armcp.exe4.3.2.04e72bd7akernel32.dll5.1.2600.55124802a12c000012aeb

 

Error: (09/14/2014 00:57:25 PM) (Source: .NET Runtime 2.0 Error Reporting)(User: )

Description: armcp.exe4.3.2.04e72bd7akernel32.dll5.1.2600.55124802a12c000012aeb

 

Error: (09/14/2014 00:41:41 PM) (Source: .NET Runtime 2.0 Error Reporting)(User: )

Description: clr20r3jrmcp.exe5.0.1.545396804dsystem2.0.0.04333ae875a20system.io.filenotfoundexceptionNIL

 

Error: (09/03/2014 00:11:30 AM) (Source: Application Hang)(User: )

Description: AutoShutdown.exe1.2.4.5hungapp0.0.0.000000000

 

Error: (08/31/2014 03:16:21 PM) (Source: VSS)(User: )

Description: Applications0x8004e00f

 

Error: (08/31/2014 03:16:12 PM) (Source: VSS)(User: )

Description: Applications0x8004e00f

 

Error: (08/31/2014 03:16:12 PM) (Source: COM+)(User: )

Description: (DtcGetTransactionManagerEx(): hr = 0x8004d01b)

 

 

 

=========================== Installed Programs ============================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33870 - BitTorrent Inc.)

Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated)

Adobe AIR (Version: 3.7.0.1530 - Adobe Systems Incorporated) Hidden

Adobe Bridge CS3 (Version: 2 - Adobe Systems Incorporated) Hidden

Adobe Default Language CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Device Central CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe ExtendScript Toolkit 2 (Version: 2.0 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 10 ActiveX (HKLM\...\{C8C81DD6-A906-4856-91FA-F43DB92BEB99}) (Version: 10.3.183.90 - Adobe Systems Incorporated)

Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)

Adobe Fonts All (Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Help Viewer CS3 (Version: 1 - Adobe Systems Incorporated) Hidden

Adobe Illustrator CS3 (HKLM\...\Adobe_a04a925a57548091300ada368235fc6) (Version: 13.0 - Adobe Systems Incorporated)

Adobe Illustrator CS3 (Version: 13.0 - Adobe Systems Incorporated) Hidden

Adobe Linguistics CS3 (Version: 3.0.0 - Adobe Systems Incorporated) Hidden

Adobe PDF Library Files (Version: 8.0 - Adobe Systems Incorporated) Hidden

Adobe Photoshop CS3 (HKLM\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated)

Adobe Photoshop CS3 (Version: 10 - Adobe Systems Incorporated) Hidden

Adobe Setup (Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Type Support (Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Update Manager CS3 (Version: 5.1.0 - Adobe Systems Incorporated) Hidden

Adobe Version Cue CS3 Client (Version: 3 - Adobe Systems Incorporated) Hidden

Adobe XMP Panels CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden

AMD Catalyst Install Manager (HKLM\...\{08ED1CD1-1CB1-B7CE-677E-110D0A118590}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.)

Any Video Converter 5.0.5 (HKLM\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)

Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)

Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Atheros Wireless LAN Client Adapter (HKLM\...\{423799F1-0BD5-4B2D-8BD6-2A49BCEA583B}) (Version: 1.0.4.0505 - QMI)

ATI Catalyst Control Center (HKLM\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.010.0210.2338 - )

ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.511-080624a-066661C-Acer - )

Audacity 2.0.2 (HKLM\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)

avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2021 - AVAST Software)

BBC iPlayer Desktop (Version: 3.2.15 - British Broadcasting Corp.) Hidden

Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)

BPM Counter 1.6.0.0 (HKLM\...\BPM Counter_is1) (Version: 1.6.0.0 - AbyssMedia.com)

Camtasia Studio 8 (HKLM\...\{765AD29A-7EF5-4456-8F6F-83467E52AB52}) (Version: 8.4.3.1792 - TechSmith Corporation)

Canon IJ Scan Utility (HKLM\...\Canon_IJ_Scan_Utility) (Version:  - ?Canon Inc.?)

Canon MG2200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2200_series) (Version: 1.01 - Canon Inc.)

CanoScan LiDE 110 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_cnq2414) (Version:  - )

Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden

Catalyst Control Center Core Implementation (Version: 2010.0210.2339.42455 - ATI) Hidden

Catalyst Control Center Graphics Full Existing (Version: 2010.0210.2339.42455 - ATI) Hidden

Catalyst Control Center Graphics Full New (Version: 2010.0210.2339.42455 - ATI) Hidden

Catalyst Control Center Graphics Light (Version: 2010.0210.2339.42455 - ATI) Hidden

Catalyst Control Center Graphics Previews Common (Version: 2010.0210.2339.42455 - ATI) Hidden

Catalyst Control Center HydraVision Full (Version: 2010.0210.2339.42455 - ATI) Hidden

Catalyst Control Center Localization All (Version: 2010.0210.2339.42455 - ATI) Hidden

CCC Help Chinese Standard (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Chinese Traditional (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Czech (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Danish (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Dutch (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help English (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Finnish (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help French (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help German (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Greek (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Hungarian (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Italian (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Japanese (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Korean (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Norwegian (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Polish (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Portuguese (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Russian (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Spanish (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Swedish (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Thai (Version: 2010.0210.2338.42455 - ATI) Hidden

CCC Help Turkish (Version: 2010.0210.2338.42455 - ATI) Hidden

ccc-core-preinstall (Version: 2010.0210.2339.42455 - ATI) Hidden

ccc-core-static (Version: 2010.0210.2339.42455 - ATI) Hidden

ccc-utility (Version: 2010.0210.2339.42455 - ATI) Hidden

Cheetah DVD Burner (HKLM\...\{BD01E97F-2A6A-495E-BE38-22C7B80F3CD7}) (Version:  - )

Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)

CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )

Decrap my Computer (HKLM\...\Decrap my Computer) (Version:  - Macecraft Software)

dj_sf_software_req (Version: 90.0.235.000 - Hewlett-Packard) Hidden

ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )

FLV to AVI MPEG WMV 3GP MP4 iPod Converter 6.0.0103 (HKLM\...\FLV to AVI MPEG WMV 3GP MP4 iPod Converter_is1) (Version:  - Aone Software)

Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 5.3.1.606 - Foxit Corporation)

Free Alarm Clock 3.0.3 (HKLM\...\{8ED5A2F1-338F-4608-8AF7-BCD1ADC1E1F7}_is1) (Version: 3.0 - Comfort Software Group)

Freemake Video Converter version 3.1.2 (HKLM\...\Freemake Video Converter_is1) (Version: 3.1.2 - Ellora Assets Corporation)

Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)

Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden

iPubsoft MOBI to PDF Converter build(2.1.6) (HKLM\...\iPubsoft MOBI to PDF Converter_is1) (Version: 2.1.6 - iPubsoft)

iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)

Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.670 - Oracle)

Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden

K-Lite Mega Codec Pack 10.1.0 (HKLM\...\KLiteCodecPack_is1) (Version: 10.1.0 - )

Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)

Microsoft .NET Framework 2.0 (HKLM\...\Microsoft .NET Framework 2.0) (Version:  - Microsoft Corporation)

Microsoft .NET Framework 2.0 (Version: 2.0.50727 - Microsoft Corporation) Hidden

Microsoft .NET Framework 3.0 (HKLM\...\Microsoft .NET Framework 3.0) (Version:  - Microsoft Corporation)

Microsoft .NET Framework 3.0 (Version: 3.0.04506.30 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)

Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden

Microsoft Office Professional Edition 2003 (HKLM\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.40820 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40825 - Microsoft Corporation) Hidden

Mozilla Firefox 31.0 (x86 en-US) (HKLM\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)

MP3 Splitter Joiner Pro v4.2 build 2612 (HKLM\...\{F88C04C9-9CDC-4830-A533-CC5E3D69F2A1}_is1) (Version:  - Hoo Technologies)

MPC-HC 1.7.0 (HKLM\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.0.7858 - MPC-HC Team)

MSXML 6.0 Parser (KB925673) (HKLM\...\{FE9126DB-5F84-495A-BB46-3C724F1C2D08}) (Version: 6.00.3888.0 - Microsoft Corporation)

Native Instruments Traktor 2 (HKLM\...\Native Instruments Traktor 2) (Version:  - Native Instruments)

Native Instruments Traktor 2 (Version: 2.0.1.10169 - Native Instruments) Hidden

PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden

PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.9.5 - pdfforge)

PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.309.0 - Tracker Software Products Ltd)

PhoneBrowse 3.0.0 (HKLM\...\{6A4F3A46-FC4A-4B5C-917C-B9BAAB99FE01}}_is1) (Version: 3.0.0 - iMobie Inc.)

Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)

QuickTime (HKLM\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)

Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.7111 - Realtek Semiconductor Corp.)

Replay Media Catcher 4 (4.4.3) (HKLM\...\Replay Media Catcher 4) (Version: 4.4.3 - Applian Technologies)

Skins (Version: 2010.0210.2339.42455 - ATI) Hidden

SmartEdit 3.301 (HKLM\...\SmartEdit_is1) (Version:  - Bad Wolf Software)

Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)

Subtitle Edit 3.2.8 (HKLM\...\SubtitleEdit_is1) (Version: 3.2.8.1220 - Nikse)

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.1.4.0 - Synaptics)

Toolbox (Version: 90.0.146.000 - Hewlett-Packard) Hidden

TreeSize Free V2.7 (HKLM\...\TreeSize Free_is1) (Version: 2.7 - JAM Software)

Tweaking.com - Windows Repair (All in One) (HKLM\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.8.8 - Tweaking.com)

UsbFix By El Desaparecido (HKLM\...\Usbfix) (Version:  - El Desaparecido - www.usbfix.net)

Vector Magic (HKLM\...\Vector Magic) (Version: 1.14 - Vector Magic, Inc.)

VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)

VSO ConvertXtoDVD 5 (beta version) (HKLM\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.16 - VSO-Software SARL)

Windows Communication Foundation (Version: 3.0.04506.30 - Microsoft Corporation) Hidden

Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)

Windows Presentation Foundation (Version: 3.0.6920.0 - Microsoft Corporation) Hidden

Windows Workflow Foundation (Version: 3.0.4203.2 - Microsoft Corporation) Hidden

WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

Wondershare Video Editor(Build 3.0.2) (HKLM\...\Wondershare Video Editor_is1) (Version:  - Wondershare)

XML Paper Specification Shared Components Pack 1.0 (Version:  - Microsoft Corporation) Hidden

 

========================= Devices: ================================

 

Name: HDAUDIO Soft Data Fax Modem with SmartCP

Description: HDAUDIO Soft Data Fax Modem with SmartCP

Class Guid: {4D36E96D-E325-11CE-BFC1-08002BE10318}

Manufacturer: CXT

Service: Modem

Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)

Resolution: The start type for this driver is set to disabled in the registry.

Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.

 

 

========================= Memory info: ===================================

 

Percentage of memory in use: 35%

Total physical RAM: 2814.35 MB

Available physical RAM: 1819.49 MB

Total Pagefile: 11175.88 MB

Available Pagefile: 10134.18 MB

Total Virtual: 2047.88 MB

Available Virtual: 1979.21 MB

 

========================= Partitions: =====================================

 

1 Drive c: () (Fixed) (Total:117.19 GB) (Free:24.61 GB) NTFS

2 Drive d: () (Fixed) (Total:115.69 GB) (Free:31.37 GB) NTFS

 

========================= Users: ========================================

 

User accounts for \\COMPUTER_1

 

Administrator            ASPNET                   Guest                   

HelpAssistant            sam ling gibson          SUPPORT_388945a0         

 

 

**** End of log ****

 

 

 

TDSS killer:

 

09:07:51.0203 0x0680  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58

09:07:54.0140 0x0680  ============================================================

09:07:54.0140 0x0680  Current date / time: 2014/09/20 09:07:54.0140

09:07:54.0140 0x0680  SystemInfo:

09:07:54.0140 0x0680 

09:07:54.0140 0x0680  OS Version: 5.1.2600 ServicePack: 3.0

09:07:54.0140 0x0680  Product type: Workstation

09:07:54.0140 0x0680  ComputerName: COMPUTER_1

09:07:54.0140 0x0680  UserName: sam ling gibson

09:07:54.0140 0x0680  Windows directory: C:\WINDOWS

09:07:54.0140 0x0680  System windows directory: C:\WINDOWS

09:07:54.0140 0x0680  Processor architecture: Intel x86

09:07:54.0140 0x0680  Number of processors: 1

09:07:54.0140 0x0680  Page size: 0x1000

09:07:54.0140 0x0680  Boot type: Normal boot

09:07:54.0140 0x0680  ============================================================

09:07:57.0109 0x0680  KLMD registered as C:\WINDOWS\system32\drivers\34432387.sys

09:07:57.0453 0x0680  System UUID: {1A7DE6F7-61F1-0FD9-A04D-6AFE8EB633FF}

09:07:58.0203 0x0680  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054

09:07:58.0218 0x0680  ============================================================

09:07:58.0218 0x0680  \Device\Harddisk0\DR0:

09:07:58.0218 0x0680  MBR partitions:

09:07:58.0218 0x0680  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xEA60903

09:07:58.0234 0x0680  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xEA60981, BlocksNum 0xE75FD3F

09:07:58.0234 0x0680  ============================================================

09:07:58.0281 0x0680  C: <-> \Device\Harddisk0\DR0\Partition1

09:07:58.0312 0x0680  D: <-> \Device\Harddisk0\DR0\Partition2

09:07:58.0312 0x0680  ============================================================

09:07:58.0312 0x0680  Initialize success

09:07:58.0312 0x0680  ============================================================

09:08:00.0593 0x0438  ============================================================

09:08:00.0593 0x0438  Scan started

09:08:00.0593 0x0438  Mode: Manual;

09:08:00.0593 0x0438  ============================================================

09:08:00.0593 0x0438  KSN ping started

09:08:18.0296 0x0438  KSN ping finished: true

09:08:20.0859 0x0438  ================ Scan system memory ========================

09:08:20.0859 0x0438  System memory - ok

09:08:20.0859 0x0438  ================ Scan services =============================

09:08:21.0031 0x0438  Abiosdsk - ok

09:08:21.0031 0x0438  abp480n5 - ok

09:08:21.0078 0x0438  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys

09:08:21.0093 0x0438  ACPI - ok

09:08:21.0218 0x0438  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys

09:08:21.0218 0x0438  ACPIEC - ok

09:08:21.0234 0x0438  adpu160m - ok

09:08:21.0265 0x0438  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys

09:08:21.0281 0x0438  aec - ok

09:08:21.0328 0x0438  [ FE3EA6E9AFC1A78E6EDCA121E006AFB7, B596ABBAC058D93C505C9DBF8685049C88E4364195A4092DB580D2D44FA8C23C ] Afc             C:\WINDOWS\system32\drivers\Afc.sys

09:08:21.0328 0x0438  Afc - ok

09:08:21.0359 0x0438  [ 322D0E36693D6E24A2398BEE62A268CD, FB0BFF5846E50DBCC2826639318A6A1DE79EE7DEA2719ED74A5F6F44454E13D0 ] AFD             C:\WINDOWS\System32\drivers\afd.sys

09:08:21.0375 0x0438  AFD - ok

09:08:21.0375 0x0438  Aha154x - ok

09:08:21.0375 0x0438  aic78u2 - ok

09:08:21.0406 0x0438  aic78xx - ok

09:08:21.0468 0x0438  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll

09:08:21.0484 0x0438  Alerter - ok

09:08:21.0500 0x0438  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe

09:08:21.0500 0x0438  ALG - ok

09:08:21.0515 0x0438  AliIde - ok

09:08:21.0640 0x0438  [ 267FC636801EDC5AB28E14036349E3BE, CFEF5DF5F9BE820283376BB86DB3CF6609C02D316A742E17459A2BFA42E724E0 ] Ambfilt         C:\WINDOWS\system32\drivers\Ambfilt.sys

09:08:21.0718 0x0438  Ambfilt - ok

09:08:21.0718 0x0438  AmdPPM - ok

09:08:21.0734 0x0438  amsint - ok

09:08:21.0890 0x0438  [ AD3246F152B17D4F1547C2F4540AB81D, BB4837C0EB208804E331C6156610497AA8CFAF384FB85904A3BDE10DD6ADF0AE ] AnviCsbSvc      C:\Program Files\Anvisoft\Cloud System Booster\CSBSvc.exe

09:08:21.0906 0x0438  AnviCsbSvc - ok

09:08:22.0078 0x0438  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

09:08:22.0093 0x0438  Apple Mobile Device - ok

09:08:22.0125 0x0438  [ 69370F2E2827FFBA910D0BFA9E62E484, 36FFD6EFA2D15460B5B8BD58BF1324AA5072CA775C19B8FEE4812CCB65DBA9D7 ] appliand        C:\WINDOWS\system32\DRIVERS\appliand.sys

09:08:22.0125 0x0438  appliand - ok

09:08:22.0125 0x0438  [ 69370F2E2827FFBA910D0BFA9E62E484, 36FFD6EFA2D15460B5B8BD58BF1324AA5072CA775C19B8FEE4812CCB65DBA9D7 ] appliandMP      C:\WINDOWS\system32\DRIVERS\appliand.sys

09:08:22.0125 0x0438  appliandMP - ok

09:08:22.0203 0x0438  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll

09:08:22.0203 0x0438  AppMgmt - ok

09:08:23.0140 0x0438  [ 0297AF4B89769159058B996C21218421, F56908F423B1137A3EACAF8E2845054A353389D2145AFDCC027FD16CAA2463F5 ] AR5416          C:\WINDOWS\system32\DRIVERS\athw.sys

09:08:23.0203 0x0438  AR5416 - ok

09:08:23.0218 0x0438  asc - ok

09:08:23.0218 0x0438  asc3350p - ok

09:08:23.0234 0x0438  asc3550 - ok

09:08:23.0312 0x0438  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe

09:08:23.0312 0x0438  aspnet_state - ok

09:08:23.0343 0x0438  [ 3BFBB5DAE801CB893B8B46345FED6437, 2C2B71C1294585265D4871E74F17541500CA20DE34AC516F2A906DD81964C833 ] aswHwid         C:\WINDOWS\system32\drivers\aswHwid.sys

09:08:23.0359 0x0438  aswHwid - ok

09:08:23.0390 0x0438  [ C3014C735F450FE822C97FFBB0627113, 1CCFE845AED1757B8C1F52D310933076FF1EC197D82E499DB4592B09D66137B0 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys

09:08:23.0390 0x0438  aswMonFlt - ok

09:08:23.0421 0x0438  [ D6C9024F5D14843D33ADA8A6A10A1BE1, D40022D0A360FD4010D3D5D452BBC4CE9EE68224DEAB9584626E6F435E128857 ] AswRdr          C:\WINDOWS\system32\drivers\aswRdr.sys

09:08:23.0453 0x0438  AswRdr - ok

09:08:23.0468 0x0438  [ B7750AF7EDFD95674EB7CA92BCDD3358, A097577004F3CF71E2F9465F02B073D39926D7DEE2E2A9516D888158A5CB19E9 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys

09:08:23.0468 0x0438  aswRvrt - ok

09:08:23.0531 0x0438  [ 51FDE588D860857A97E4C4B560E40C9B, 8A3AC3E55249DAE6CCD95593989F8B100D5C4712A16681A36E5D0F2F08BD57AA ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys

09:08:23.0562 0x0438  aswSnx - ok

09:08:23.0593 0x0438  [ 1AEB8CDB797666AF709A291B47AE81E0, 12AC4DBC6338BA5E5C04B449FF8362E7EC8EBFCA675C4F21BE847DFDCAE8F7C9 ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys

09:08:23.0609 0x0438  aswSP - ok

09:08:23.0640 0x0438  [ 26C51C289E39E8EE0F12B8B06B71E436, 81382FC3E836698432EE832A166F09251CC9164B17584E90F73037A1FA54E4F7 ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys

09:08:23.0640 0x0438  aswTdi - ok

09:08:23.0656 0x0438  [ 90BEE0170D70D6744CEF2355EEAF8086, 8F9FF53F529B854934020E2F8163605DC794FF48464D3D4439BAAF70ECE8E963 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys

09:08:23.0671 0x0438  aswVmm - ok

09:08:23.0718 0x0438  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys

09:08:23.0718 0x0438  AsyncMac - ok

09:08:23.0734 0x0438  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys

09:08:23.0734 0x0438  atapi - ok

09:08:23.0750 0x0438  Atdisk - ok

09:08:23.0812 0x0438  [ 1E7E66136C8F1DAD9F5A0CC74E384758, 939E2583E59072BA89A583507422764C7682212C7B0902B1E604C320196DCEBB ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe

09:08:23.0828 0x0438  Ati HotKey Poller - ok

09:08:24.0015 0x0438  [ 35C9ED69A581EE5E36A1BCD45F17167D, 238756734316F9ECF47193ADD7AA6A253CB012CAC62A3B64BEDE1F1C27E1020C ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys

09:08:24.0109 0x0438  ati2mtag - ok

09:08:24.0187 0x0438  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys

09:08:24.0187 0x0438  Atmarpc - ok

09:08:24.0218 0x0438  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll

09:08:24.0218 0x0438  AudioSrv - ok

09:08:24.0234 0x0438  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys

09:08:24.0250 0x0438  audstub - ok

09:08:24.0328 0x0438  [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe

09:08:24.0328 0x0438  avast! Antivirus - ok

09:08:24.0375 0x0438  [ 0BB5248A2A5C6FBB50584C75C32AC2D0, 88B5943CFAC631400FD97AEA08CC295643FFF82C1677E4648EEED4923A49B462 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys

09:08:24.0390 0x0438  b57w2k - ok

09:08:24.0437 0x0438  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys

09:08:24.0437 0x0438  Beep - ok

09:08:24.0484 0x0438  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll

09:08:24.0515 0x0438  BITS - ok

09:08:24.0578 0x0438  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

09:08:24.0593 0x0438  Bonjour Service - ok

09:08:24.0640 0x0438  [ A06CE3399D16DB864F55FAEB1F1927A9, 3430FA8552D91670D9FB0A921C735ADBE2DA7FF108C199DDEEF2FB2E50713AF3 ] Browser         C:\WINDOWS\System32\browser.dll

09:08:24.0640 0x0438  Browser - ok

09:08:24.0656 0x0438  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys

09:08:24.0656 0x0438  cbidf2k - ok

09:08:24.0671 0x0438  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

09:08:24.0671 0x0438  CCDECODE - ok

09:08:24.0687 0x0438  cd20xrnt - ok

09:08:24.0703 0x0438  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys

09:08:24.0703 0x0438  Cdaudio - ok

09:08:24.0734 0x0438  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys

09:08:24.0734 0x0438  Cdfs - ok

09:08:24.0750 0x0438  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys

09:08:24.0750 0x0438  Cdrom - ok

09:08:24.0765 0x0438  Changer - ok

09:08:24.0781 0x0438  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe

09:08:24.0781 0x0438  CiSvc - ok

09:08:24.0812 0x0438  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe

09:08:24.0812 0x0438  ClipSrv - ok

09:08:24.0875 0x0438  [ 3C4D595E7F9B747325AEF28B4ADCAAE5, 4A283F3E2E659DA996EC16BC8181E9F521BDFDFCF246D0E432D65D2672AC9629 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

09:08:24.0890 0x0438  clr_optimization_v2.0.50727_32 - ok

09:08:24.0921 0x0438  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

09:08:24.0921 0x0438  clr_optimization_v4.0.30319_32 - ok

09:08:24.0937 0x0438  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys

09:08:24.0937 0x0438  CmBatt - ok

09:08:24.0953 0x0438  CmdIde - ok

09:08:24.0968 0x0438  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys

09:08:24.0968 0x0438  Compbatt - ok

09:08:24.0984 0x0438  COMSysApp - ok

09:08:25.0000 0x0438  Cpqarray - ok

09:08:25.0078 0x0438  cpuz137 - ok

09:08:25.0109 0x0438  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll

09:08:25.0125 0x0438  CryptSvc - ok

09:08:25.0125 0x0438  dac2w2k - ok

09:08:25.0140 0x0438  dac960nt - ok

09:08:25.0218 0x0438  [ 2589FE6015A316C0F5D5112B4DA7B509, 2753785BA07A1A7A25E275332F5F9F403F6E8CBF396FD0905D6BA84B98C403A6 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll

09:08:25.0250 0x0438  DcomLaunch - ok

09:08:25.0265 0x0438  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll

09:08:25.0281 0x0438  Dhcp - ok

09:08:25.0296 0x0438  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys

09:08:25.0312 0x0438  Disk - ok

09:08:25.0312 0x0438  dmadmin - ok

09:08:25.0406 0x0438  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys

09:08:25.0468 0x0438  dmboot - ok

09:08:25.0578 0x0438  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys

09:08:25.0593 0x0438  dmio - ok

09:08:25.0609 0x0438  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys

09:08:25.0609 0x0438  dmload - ok

09:08:25.0640 0x0438  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll

09:08:25.0640 0x0438  dmserver - ok

09:08:25.0687 0x0438  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys

09:08:25.0687 0x0438  DMusic - ok

09:08:25.0703 0x0438  [ 474B4DC3983173E4B4C9740B0DAC98A6, C0B1B5B3A87529FFA93BCFCC2BC013A96CAD7F5049ED4D999E8D5D9AC91F95B7 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll

09:08:25.0703 0x0438  Dnscache - ok

09:08:25.0734 0x0438  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll

09:08:25.0750 0x0438  Dot3svc - ok

09:08:25.0750 0x0438  dpti2o - ok

09:08:25.0765 0x0438  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys

09:08:25.0765 0x0438  drmkaud - ok

09:08:25.0796 0x0438  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll

09:08:25.0796 0x0438  EapHost - ok

09:08:25.0828 0x0438  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll

09:08:25.0843 0x0438  ERSvc - ok

09:08:25.0875 0x0438  [ 0E776ED5F7CC9F94299E70461B7B8185, 22750B3829133D1D4BB3CE2FA6247BE2373B5D15A6ED1C8A71673AA1CE7D9530 ] Eventlog        C:\WINDOWS\system32\services.exe

09:08:25.0890 0x0438  Eventlog - ok

09:08:25.0921 0x0438  [ 19A799805B24990867B00C120D300C3A, 3C8CB64BE0508B5136D4F4919DA665AB86366EFFFFDD890A9B27E7CE39DCF098 ] EventSystem     C:\WINDOWS\system32\es.dll

09:08:25.0937 0x0438  EventSystem - ok

09:08:25.0968 0x0438  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys

09:08:25.0984 0x0438  Fastfat - ok

09:08:26.0015 0x0438  [ 1926899BF9FFE2602B63074971700412, F5C48EDBE5C6507527630B49C95BAA9F1E47EACC5A910F2B9A4528733E81A966 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll

09:08:26.0031 0x0438  FastUserSwitchingCompatibility - ok

09:08:26.0046 0x0438  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys

09:08:26.0046 0x0438  Fdc - ok

09:08:26.0062 0x0438  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys

09:08:26.0062 0x0438  Fips - ok

09:08:26.0078 0x0438  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys

09:08:26.0078 0x0438  Flpydisk - ok

09:08:26.0125 0x0438  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys

09:08:26.0125 0x0438  FltMgr - ok

09:08:26.0218 0x0438  [ FACECF3F75BAF3775A879D1168402270, CD22DD066F3A7A03963DAE73BF5E3F813362629B8832B20B7CC64DD03C1A732F ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

09:08:26.0234 0x0438  FontCache3.0.0.0 - ok

09:08:26.0281 0x0438  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys

09:08:26.0281 0x0438  Fs_Rec - ok

09:08:26.0312 0x0438  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys

09:08:26.0312 0x0438  Ftdisk - ok

09:08:26.0343 0x0438  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys

09:08:26.0359 0x0438  GEARAspiWDM - ok

09:08:26.0390 0x0438  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys

09:08:26.0406 0x0438  Gpc - ok

09:08:26.0468 0x0438  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe

09:08:26.0468 0x0438  gupdate - ok

09:08:26.0484 0x0438  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe

09:08:26.0500 0x0438  gupdatem - ok

09:08:26.0562 0x0438  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

09:08:26.0562 0x0438  gusvc - ok

09:08:26.0625 0x0438  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

09:08:26.0640 0x0438  HDAudBus - ok

09:08:26.0703 0x0438  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

09:08:26.0703 0x0438  helpsvc - ok

09:08:26.0812 0x0438  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll

09:08:26.0812 0x0438  HidServ - ok

09:08:26.0859 0x0438  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys

09:08:26.0859 0x0438  HidUsb - ok

09:08:26.0890 0x0438  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll

09:08:26.0906 0x0438  hkmsvc - ok

09:08:26.0906 0x0438  hpn - ok

09:08:27.0000 0x0438  [ 3F53B4AF98F8FD83B7F0B8B65D2D90A7, BBE82055699FC998BA54013B7DE7E1BD70E0DAE031A41CA6929B62C61A4A00F7 ] HSF_DPV         C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys

09:08:27.0015 0x0438  HSF_DPV - ok

09:08:27.0046 0x0438  [ 194BC52FC0F53E540FAF9DE8A9C05255, 83161D0BCEEFEDB9AC0AB14860067EB4F1C726998045E37E2138B41CB1B89C2C ] HSXHWAZL        C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys

09:08:27.0062 0x0438  HSXHWAZL - ok

09:08:27.0125 0x0438  [ F6AACF5BCE2893E0C1754AFEB672E5C9, 62A7A70515B5570A649DC30A3A122B1302F6839A63927C8B29EBE04ABA654892 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys

09:08:27.0125 0x0438  HTTP - ok

09:08:27.0171 0x0438  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll

09:08:27.0171 0x0438  HTTPFilter - ok

09:08:27.0187 0x0438  i2omgmt - ok

09:08:27.0187 0x0438  i2omp - ok

09:08:27.0218 0x0438  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys

09:08:27.0218 0x0438  i8042prt - ok

09:08:27.0312 0x0438  [ EA7267505149B3A10DF32506A4E4E412, B15EBB0135A3DBEDE3ABE4A75ED848D7827A5F9CD794625A25372E6BE25290B1 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

09:08:27.0328 0x0438  idsvc - ok

09:08:27.0359 0x0438  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys

09:08:27.0359 0x0438  Imapi - ok

09:08:27.0390 0x0438  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe

09:08:27.0406 0x0438  ImapiService - ok

09:08:27.0406 0x0438  ini910u - ok

09:08:27.0921 0x0438  [ 1F7C55FC32919644BA9124217A612A64, 7EEDB81C2C0205DE6908955A5E190FD2EE1469F8C966B040593120B7205EF41A ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys

09:08:28.0093 0x0438  IntcAzAudAddService - ok

09:08:28.0109 0x0438  IntelIde - ok

09:08:28.0171 0x0438  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys

09:08:28.0171 0x0438  Ip6Fw - ok

09:08:28.0218 0x0438  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

09:08:28.0234 0x0438  IpFilterDriver - ok

09:08:28.0265 0x0438  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys

09:08:28.0265 0x0438  IpInIp - ok

09:08:28.0281 0x0438  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys

09:08:28.0281 0x0438  IpNat - ok

09:08:28.0562 0x0438  [ 463790AEF94D8EAB674631257F53252E, A02972457F45AD6816CB5F60DE4CD15D68256695FA0F3E4EAD6F9E36CBE54576 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe

09:08:28.0609 0x0438  iPod Service - ok

09:08:28.0671 0x0438  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys

09:08:28.0687 0x0438  IPSec - ok

09:08:28.0984 0x0438  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys

09:08:28.0984 0x0438  IRENUM - ok

09:08:29.0015 0x0438  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys

09:08:29.0015 0x0438  isapnp - ok

09:08:29.0125 0x0438  [ BF918C9473D64BBD53C22C47045883F5, 1980726FBFEEE75E4B360B1A4F438CF1ADD929AC21BD5197F740CB8AD8194BD2 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe

09:08:29.0125 0x0438  JavaQuickStarterService - ok

09:08:29.0187 0x0438  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys

09:08:29.0187 0x0438  Kbdclass - ok

09:08:29.0218 0x0438  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys

09:08:29.0218 0x0438  kbdhid - ok

09:08:29.0250 0x0438  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys

09:08:29.0250 0x0438  kmixer - ok

09:08:29.0312 0x0438  [ 1705745D900DABF2D89F90EBADDC7517, FE90589415BDB3BA482D3EBE1A87A7BF1429791E8F18BCB66BF8874631CC8B2C ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys

09:08:29.0312 0x0438  KSecDD - ok

09:08:29.0359 0x0438  [ F385F4B02C535BFFE1D70CAB80838123, A1695E161673BCB77CE150C2D98A07FCB454C53F10EEBECD754D2CC40DEAA1E0 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll

09:08:29.0375 0x0438  LanmanServer - ok

09:08:29.0406 0x0438  [ 1B67B632786FEF1C1BBAEF46C2F3F2E6, 48A6DB1EC7515F0DDD0639AEE3056F32C273B4D541F3647915A32ABA140DA34A ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll

09:08:29.0421 0x0438  lanmanworkstation - ok

09:08:29.0421 0x0438  lbrtfdc - ok

09:08:29.0468 0x0438  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll

09:08:29.0468 0x0438  LmHosts - ok

09:08:29.0500 0x0438  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys

09:08:29.0500 0x0438  mdmxsdk - ok

09:08:29.0531 0x0438  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll

09:08:29.0531 0x0438  Messenger - ok

09:08:29.0578 0x0438  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys

09:08:29.0578 0x0438  mnmdd - ok

09:08:29.0609 0x0438  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe

09:08:29.0609 0x0438  mnmsrvc - ok

09:08:29.0656 0x0438  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys

09:08:29.0656 0x0438  Modem - ok

09:08:29.0750 0x0438  [ C7D9F9717916B34C1B00DD4834AF485C, A9512A03E8142C83534189963F90ADA6FA425BD606928C40C3D724177105A658 ] Monfilt         C:\WINDOWS\system32\drivers\Monfilt.sys

09:08:29.0796 0x0438  Monfilt - ok

09:08:29.0812 0x0438  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys

09:08:29.0828 0x0438  Mouclass - ok

09:08:29.0859 0x0438  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys

09:08:29.0859 0x0438  mouhid - ok

09:08:30.0031 0x0438  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys

09:08:30.0046 0x0438  MountMgr - ok

09:08:30.0046 0x0438  mraid35x - ok

09:08:30.0187 0x0438  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys

09:08:30.0187 0x0438  MRxDAV - ok

09:08:30.0234 0x0438  [ 68755F0FF16070178B54674FE5B847B0, 2FFBCE3A67FA7E30E373624521C602E5510C5565F04381C6C9F961253DA928A6 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

09:08:30.0250 0x0438  MRxSmb - ok

09:08:30.0281 0x0438  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe

09:08:30.0296 0x0438  MSDTC - ok

09:08:30.0296 0x0438  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys

09:08:30.0312 0x0438  Msfs - ok

09:08:30.0312 0x0438  MSIServer - ok

09:08:30.0343 0x0438  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys

09:08:30.0343 0x0438  MSKSSRV - ok

09:08:30.0343 0x0438  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys

09:08:30.0359 0x0438  MSPCLOCK - ok

09:08:30.0359 0x0438  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys

09:08:30.0359 0x0438  MSPQM - ok

09:08:30.0375 0x0438  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys

09:08:30.0375 0x0438  mssmbios - ok

09:08:30.0390 0x0438  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys

09:08:30.0390 0x0438  MSTEE - ok

09:08:30.0406 0x0438  [ 2F625D11385B1A94360BFC70AAEFDEE1, 23E4974120233CF1A7BEE48977706A0A55418699379D1450502ABEB24191AC80 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys

09:08:30.0421 0x0438  Mup - ok

09:08:30.0421 0x0438  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

09:08:30.0437 0x0438  NABTSFEC - ok

09:08:30.0468 0x0438  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll

09:08:30.0484 0x0438  napagent - ok

09:08:30.0515 0x0438  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys

09:08:30.0515 0x0438  NDIS - ok

09:08:30.0531 0x0438  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys

09:08:30.0531 0x0438  NdisIP - ok

09:08:30.0546 0x0438  [ 1AB3D00C991AB086E69DB84B6C0ED78F, 1F881FCCF5557C44C078D99CA2DD38D635413D6212DBEDC06A428EDAC7F8B04E ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys

09:08:30.0562 0x0438  NdisTapi - ok

09:08:30.0578 0x0438  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys

09:08:30.0578 0x0438  Ndisuio - ok

09:08:30.0578 0x0438  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys

09:08:30.0593 0x0438  NdisWan - ok

09:08:30.0593 0x0438  [ 6215023940CFD3702B46ABC304E1D45A, C767F3A349B365F6E7566C0738E2F62D8FFF8CB4457347E3614BD403BC6CADCB ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys

09:08:30.0609 0x0438  NDProxy - ok

09:08:30.0640 0x0438  [ 9213AA35BCA94EB79D366DA254E4BDF5, 5E1C71BEB6CFFF5A6F149E9FE6E169D087A6CBE63A504FEE8D42170284952F85 ] Netaapl         C:\WINDOWS\system32\DRIVERS\netaapl.sys

09:08:30.0640 0x0438  Netaapl - ok

09:08:30.0656 0x0438  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys

09:08:30.0656 0x0438  NetBIOS - ok

09:08:30.0703 0x0438  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys

09:08:30.0703 0x0438  NetBT - ok

09:08:30.0750 0x0438  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe

09:08:30.0750 0x0438  NetDDE - ok

09:08:30.0765 0x0438  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe

09:08:30.0781 0x0438  NetDDEdsdm - ok

09:08:30.0812 0x0438  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe

09:08:30.0812 0x0438  Netlogon - ok

09:08:30.0828 0x0438  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll

09:08:30.0843 0x0438  Netman - ok

09:08:30.0875 0x0438  [ 8070BB07FE06DE8B9ACB29B07016A273, 4E74B717103987D72E7A825584279A3C064443FF50945F2CDF6EDF97ED0F466C ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

09:08:30.0890 0x0438  NetTcpPortSharing - ok

09:08:30.0937 0x0438  [ B4138E99236F0F57D4CF49BAE98A0746, DDEAE046C1165C41F06933E808B143118208B02BB83FA80BEF8F550D4DC78149 ] Nla             C:\WINDOWS\System32\mswsock.dll

09:08:30.0953 0x0438  Nla - ok

09:08:30.0968 0x0438  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys

09:08:30.0968 0x0438  Npfs - ok

09:08:31.0000 0x0438  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys

09:08:31.0015 0x0438  Ntfs - ok

09:08:31.0046 0x0438  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe

09:08:31.0046 0x0438  NtLmSsp - ok

09:08:31.0078 0x0438  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll

09:08:31.0109 0x0438  NtmsSvc - ok

09:08:31.0140 0x0438  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys

09:08:31.0140 0x0438  Null - ok

09:08:31.0171 0x0438  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

09:08:31.0171 0x0438  NwlnkFlt - ok

09:08:31.0203 0x0438  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

09:08:31.0203 0x0438  NwlnkFwd - ok

09:08:31.0265 0x0438  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

09:08:31.0281 0x0438  ose - ok

09:08:31.0328 0x0438  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\drivers\Parport.sys

09:08:31.0328 0x0438  Parport - ok

09:08:31.0343 0x0438  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys

09:08:31.0359 0x0438  PartMgr - ok

09:08:31.0390 0x0438  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys

09:08:31.0390 0x0438  ParVdm - ok

09:08:31.0406 0x0438  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys

09:08:31.0406 0x0438  PCI - ok

09:08:31.0406 0x0438  PCIDump - ok

09:08:31.0421 0x0438  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys

09:08:31.0437 0x0438  PCIIde - ok

09:08:31.0468 0x0438  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys

09:08:31.0468 0x0438  Pcmcia - ok

09:08:31.0484 0x0438  PDCOMP - ok

09:08:31.0484 0x0438  PDFRAME - ok

09:08:31.0500 0x0438  PDRELI - ok

09:08:31.0500 0x0438  PDRFRAME - ok

09:08:31.0500 0x0438  perc2 - ok

09:08:31.0515 0x0438  perc2hib - ok

09:08:31.0546 0x0438  [ 0E776ED5F7CC9F94299E70461B7B8185, 22750B3829133D1D4BB3CE2FA6247BE2373B5D15A6ED1C8A71673AA1CE7D9530 ] PlugPlay        C:\WINDOWS\system32\services.exe

09:08:31.0562 0x0438  PlugPlay - ok

09:08:31.0609 0x0438  [ D31F88C5F19EEFA366A415D6BC5F2ABC, ED998680048286454B92AF0E5917B2BC79A3ADA2632A1DB21D478B0597167F5C ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe

09:08:31.0609 0x0438  Pml Driver HPZ12 - ok

09:08:31.0625 0x0438  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe

09:08:31.0625 0x0438  PolicyAgent - ok

09:08:31.0671 0x0438  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys

09:08:31.0671 0x0438  PptpMiniport - ok

09:08:31.0687 0x0438  [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys

09:08:31.0687 0x0438  Processor - ok

09:08:31.0703 0x0438  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe

09:08:31.0718 0x0438  ProtectedStorage - ok

09:08:31.0718 0x0438  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys

09:08:31.0718 0x0438  PSched - ok

09:08:31.0750 0x0438  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys

09:08:31.0750 0x0438  Ptilink - ok

09:08:31.0750 0x0438  ql1080 - ok

09:08:31.0765 0x0438  Ql10wnt - ok

09:08:31.0765 0x0438  ql12160 - ok

09:08:31.0781 0x0438  ql1240 - ok

09:08:31.0781 0x0438  ql1280 - ok

09:08:31.0796 0x0438  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys

09:08:31.0796 0x0438  RasAcd - ok

09:08:31.0828 0x0438  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll

09:08:31.0843 0x0438  RasAuto - ok

09:08:31.0859 0x0438  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

09:08:31.0875 0x0438  Rasl2tp - ok

09:08:31.0906 0x0438  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll

09:08:31.0921 0x0438  RasMan - ok

09:08:31.0921 0x0438  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys

09:08:31.0921 0x0438  RasPppoe - ok

09:08:31.0937 0x0438  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys

09:08:31.0937 0x0438  Raspti - ok

09:08:31.0984 0x0438  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys

09:08:31.0984 0x0438  Rdbss - ok

09:08:32.0000 0x0438  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

09:08:32.0000 0x0438  RDPCDD - ok

09:08:32.0062 0x0438  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys

09:08:32.0062 0x0438  rdpdr - ok

09:08:32.0109 0x0438  [ 6728E45B66F93C08F11DE2E316FC70DD, EA63ECD4F84CAE08BD2BF843C48AF505B1B9D7B61349A63536C9C6FEBEF23452 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys

09:08:32.0109 0x0438  RDPWD - ok

09:08:32.0156 0x0438  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe

09:08:32.0171 0x0438  RDSessMgr - ok

09:08:32.0187 0x0438  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys

09:08:32.0187 0x0438  redbook - ok

09:08:32.0234 0x0438  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll

09:08:32.0234 0x0438  RemoteAccess - ok

09:08:32.0281 0x0438  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll

09:08:32.0296 0x0438  RemoteRegistry - ok

09:08:32.0359 0x0438  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe

09:08:32.0375 0x0438  RpcLocator - ok

09:08:32.0406 0x0438  [ 2589FE6015A316C0F5D5112B4DA7B509, 2753785BA07A1A7A25E275332F5F9F403F6E8CBF396FD0905D6BA84B98C403A6 ] RpcSs           C:\WINDOWS\system32\rpcss.dll

09:08:32.0437 0x0438  RpcSs - ok

09:08:32.0468 0x0438  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe

09:08:32.0484 0x0438  RSVP - ok

09:08:32.0515 0x0438  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe

09:08:32.0531 0x0438  SamSs - ok

09:08:32.0546 0x0438  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe

09:08:32.0562 0x0438  SCardSvr - ok

09:08:32.0609 0x0438  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll

09:08:32.0687 0x0438  Schedule - ok

09:08:32.0734 0x0438  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys

09:08:32.0734 0x0438  Secdrv - ok

09:08:32.0765 0x0438  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll

09:08:32.0765 0x0438  seclogon - ok

09:08:32.0781 0x0438  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll

09:08:32.0796 0x0438  SENS - ok

09:08:32.0796 0x0438  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\drivers\Serial.sys

09:08:32.0812 0x0438  Serial - ok

09:08:32.0843 0x0438  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys

09:08:32.0843 0x0438  Sfloppy - ok

09:08:32.0875 0x0438  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll

09:08:32.0890 0x0438  SharedAccess - ok

09:08:32.0906 0x0438  [ 1926899BF9FFE2602B63074971700412, F5C48EDBE5C6507527630B49C95BAA9F1E47EACC5A910F2B9A4528733E81A966 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

09:08:32.0921 0x0438  ShellHWDetection - ok

09:08:32.0921 0x0438  Simbad - ok

09:08:32.0984 0x0438  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe

09:08:32.0984 0x0438  SkypeUpdate - ok

09:08:33.0000 0x0438  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys

09:08:33.0015 0x0438  SLIP - ok

09:08:33.0015 0x0438  Sparrow - ok

09:08:33.0062 0x0438  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys

09:08:33.0062 0x0438  splitter - ok

09:08:33.0093 0x0438  [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B, 130D686A220AF97EBF33DD481B79990F259B4EE38DD95A35CD3D0F0517790FF0 ] Spooler         C:\WINDOWS\system32\spoolsv.exe

09:08:33.0109 0x0438  Spooler - ok

09:08:33.0140 0x0438  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys

09:08:33.0156 0x0438  sr - ok

09:08:33.0203 0x0438  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll

09:08:33.0203 0x0438  srservice - ok

09:08:33.0265 0x0438  [ 25ECEA986742275ECB23A1CB6BC87A61, 2E97710FE15446BDA78DBDBD9D67CF2E932D89A46E08A7F5097910BCB4CF4A45 ] SRS_SSCFilter   C:\WINDOWS\system32\drivers\srs_sscfilter_i386.sys

09:08:33.0265 0x0438  SRS_SSCFilter - ok

09:08:33.0312 0x0438  [ 5252605079810904E31C332E241CD59B, 039DD965DE2137219168F95CA3BF1CA7353957026BDD0481F7964E2578DF2128 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys

09:08:33.0328 0x0438  Srv - ok

09:08:33.0343 0x0438  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll

09:08:33.0359 0x0438  SSDPSRV - ok

09:08:33.0390 0x0438  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll

09:08:33.0406 0x0438  stisvc - ok

09:08:33.0437 0x0438  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys

09:08:33.0484 0x0438  streamip - ok

09:08:33.0500 0x0438  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys

09:08:33.0500 0x0438  swenum - ok

09:08:33.0515 0x0438  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys

09:08:33.0515 0x0438  swmidi - ok

09:08:33.0531 0x0438  SwPrv - ok

09:08:33.0531 0x0438  symc810 - ok

09:08:33.0546 0x0438  symc8xx - ok

09:08:33.0546 0x0438  sym_hi - ok

09:08:33.0546 0x0438  sym_u3 - ok

09:08:33.0593 0x0438  [ 409F7EEB079D6154CCB26A02E6E27844, C84193003F4D8938F0EF9AAC32391C16AF13F863ACC1E6488DCBE358797EDF21 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys

09:08:33.0593 0x0438  SynTP - ok

09:08:33.0640 0x0438  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys

09:08:33.0640 0x0438  sysaudio - ok

09:08:33.0671 0x0438  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe

09:08:33.0687 0x0438  SysmonLog - ok

09:08:33.0734 0x0438  [ 0C3B2A9C4BD2DD9A6C2E4084314DD719, AEB6D9616BC7083BEF1D199CC7E0307DDF9A63541E60380697749F7B6497E847 ] taphss          C:\WINDOWS\system32\DRIVERS\taphss.sys

09:08:33.0734 0x0438  taphss - ok

09:08:33.0781 0x0438  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll

09:08:33.0796 0x0438  TapiSrv - ok

09:08:33.0843 0x0438  [ 93EA8D04EC73A85DB02EB8805988F733, 013008E23F5F14E0C836C28524D1181759BAF84530C6331163882A772217F398 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys

09:08:33.0859 0x0438  Tcpip - ok

09:08:33.0875 0x0438  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys

09:08:33.0875 0x0438  TDPIPE - ok

09:08:33.0906 0x0438  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys

09:08:33.0921 0x0438  TDTCP - ok

09:08:33.0953 0x0438  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys

09:08:33.0953 0x0438  TermDD - ok

09:08:34.0015 0x0438  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll

09:08:34.0031 0x0438  TermService - ok

09:08:34.0046 0x0438  [ 1926899BF9FFE2602B63074971700412, F5C48EDBE5C6507527630B49C95BAA9F1E47EACC5A910F2B9A4528733E81A966 ] Themes          C:\WINDOWS\System32\shsvcs.dll

09:08:34.0062 0x0438  Themes - ok

09:08:34.0093 0x0438  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe

09:08:34.0109 0x0438  TlntSvr - ok

09:08:34.0109 0x0438  TosIde - ok

09:08:34.0125 0x0438  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll

09:08:34.0140 0x0438  TrkWks - ok

09:08:34.0187 0x0438  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys

09:08:34.0187 0x0438  Udfs - ok

09:08:34.0203 0x0438  ultra - ok

09:08:34.0234 0x0438  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys

09:08:34.0250 0x0438  Update - ok

09:08:34.0281 0x0438  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll

09:08:34.0296 0x0438  upnphost - ok

09:08:34.0312 0x0438  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe

09:08:34.0312 0x0438  UPS - ok

09:08:34.0359 0x0438  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys

09:08:34.0359 0x0438  USBAAPL - ok

09:08:34.0390 0x0438  [ E919708DB44ED8543A7C017953148330, 226D032912D396117213FC29CD0BB5A8B2F872DD91D92F254F2F1FE392481B61 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys

09:08:34.0390 0x0438  usbaudio - ok

09:08:34.0406 0x0438  [ 173F317CE0DB8E21322E71B7E60A27E8, 7042441BA63AE38AE9D7BE0BC5CA7404FC9EE5BB3F084604A68F01E82769652A ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys

09:08:34.0406 0x0438  usbccgp - ok

09:08:34.0421 0x0438  [ 65DCF09D0E37D4C6B11B5B0B76D470A7, 90EBA8BAF45932B453D905EDF2BDDDF3A432BFD50B9F7DF58CDEAE98D11C2E2F ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys

09:08:34.0421 0x0438  usbehci - ok

09:08:34.0437 0x0438  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys

09:08:34.0437 0x0438  usbhub - ok

09:08:34.0468 0x0438  [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys

09:08:34.0484 0x0438  usbohci - ok

09:08:34.0515 0x0438  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys

09:08:34.0515 0x0438  usbprint - ok

09:08:34.0546 0x0438  [ A0B8CF9DEB1184FBDD20784A58FA75D4, D8AFD45BD9CF7B02F2554AA6085194DE82893AF794EDF479BC9B9E9C1758DC75 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys

09:08:34.0546 0x0438  usbscan - ok

09:08:34.0546 0x0438  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

09:08:34.0546 0x0438  usbstor - ok

09:08:34.0562 0x0438  [ 63BBFCA7F390F4C49ED4B96BFB1633E0, AEB89CF43376709CDD715D844E8CBB8F2BE24D39795F45F7C84F21962F3A52AB ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys

09:08:34.0578 0x0438  usbvideo - ok

09:08:34.0609 0x0438  [ FF7FF42DD951DB8CF70E70184AA018EA, 0F67971861C898B4FB04B439BE66BBA86809B7AA188CDC6A231DCFB189E3269E ] VBoxDrv         C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys

09:08:34.0609 0x0438  VBoxDrv - ok

09:08:34.0640 0x0438  [ 85BE2230CFEF3FB299358E45A33F29A9, 75B9C921006F83212ECF76BD5AB554CDE76772A4FE7B15DBBF87F42A955EA300 ] VBoxNetAdp      C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys

09:08:34.0640 0x0438  VBoxNetAdp - ok

09:08:34.0656 0x0438  VBoxNetFlt - ok

09:08:34.0671 0x0438  [ 1DE8E377496E2E2864976CE769713862, 35A6C662069C0DF33837CA06CE021F7D610178D34308D3798A04AE605119297F ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys

09:08:34.0687 0x0438  VBoxUSBMon - ok

09:08:34.0703 0x0438  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys

09:08:34.0718 0x0438  VgaSave - ok

09:08:34.0718 0x0438  ViaIde - ok

09:08:34.0734 0x0438  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys

09:08:34.0750 0x0438  VolSnap - ok

09:08:34.0781 0x0438  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe

09:08:34.0796 0x0438  VSS - ok

09:08:34.0828 0x0438  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll

09:08:34.0843 0x0438  W32Time - ok

09:08:34.0859 0x0438  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys

09:08:34.0859 0x0438  Wanarp - ok

09:08:34.0921 0x0438  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys

09:08:34.0937 0x0438  Wdf01000 - ok

09:08:34.0937 0x0438  WDICA - ok

09:08:35.0031 0x0438  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys

09:08:35.0156 0x0438  wdmaud - ok

09:08:35.0234 0x0438  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll

09:08:35.0250 0x0438  WebClient - ok

09:08:35.0296 0x0438  [ C9C63410D8CF98F621B9CC62243FB877, 0A9E1FEBBC73D79AB544E6330977F3B281CCE50A8C9101AED0A7DD1DA0BBBEFC ] winachsf        C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys

09:08:35.0328 0x0438  winachsf - ok

09:08:35.0406 0x0438  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll

09:08:35.0406 0x0438  winmgmt - ok

09:08:35.0453 0x0438  [ C7E39EA41233E9F5B86C8DA3A9F1E4A8, 98C21DEEB7124426D749FACDAD06EBD7F500AE5C465A98D558919C2A51C08554 ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll

09:08:35.0468 0x0438  WmdmPmSN - ok

09:08:35.0531 0x0438  [ BAB489A5FE26F2D0C910CF7AF7E4CF92, 700325258CA7A2BC2D7AA6E3176194D21229BEA76EA37BEAE117BBF87CE4ECD4 ] Wmi             C:\WINDOWS\System32\advapi32.dll

09:08:35.0546 0x0438  Wmi - ok

09:08:35.0562 0x0438  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys

09:08:35.0578 0x0438  WmiAcpi - ok

09:08:35.0609 0x0438  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe

09:08:35.0609 0x0438  WmiApSrv - ok

09:08:35.0718 0x0438  [ DCF3E3EDF5109EE8BC02FE6E1F045795, 4B8E14B1CFB095982D34DAEC336114F5039D7793080FB787DC95A63B6B945DD0 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

09:08:35.0750 0x0438  WPFFontCache_v0400 - ok

09:08:35.0781 0x0438  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys

09:08:35.0781 0x0438  WS2IFSL - ok

09:08:35.0812 0x0438  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll

09:08:35.0828 0x0438  wscsvc - ok

09:08:35.0843 0x0438  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

09:08:35.0843 0x0438  WSTCODEC - ok

09:08:35.0890 0x0438  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll

09:08:35.0890 0x0438  wuauserv - ok

09:08:35.0921 0x0438  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll

09:08:35.0953 0x0438  WZCSVC - ok

09:08:35.0984 0x0438  [ 2E579520E114A9CA309F13BF40AD8292, A7C926AD8E126E90F83799D907AD51F8F3C2C2799E2E2D005357DEE58B73B333 ] XAudio          C:\WINDOWS\system32\DRIVERS\xaudio.sys

09:08:36.0000 0x0438  XAudio - ok

09:08:36.0031 0x0438  [ F82FC2C30A19442B95AE554215837C46, 7CAD611D660264BB22069148DC16601D3458D1372FC1DE85BD004906E19D05B4 ] XAudioService   C:\WINDOWS\system32\DRIVERS\xaudio.exe

09:08:36.0046 0x0438  XAudioService - ok

09:08:36.0078 0x0438  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll

09:08:36.0093 0x0438  xmlprov - ok

09:08:36.0109 0x0438  ================ Scan global ===============================

09:08:36.0125 0x0438  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll

09:08:36.0156 0x0438  [ 1618F36D4F7F6CCCEB3EE44BA95BE85C, 1ED920E475221228EF215708701EC166A0B1BBCBD236E5B047420EBD0FF1371A ] C:\WINDOWS\system32\winsrv.dll

09:08:36.0187 0x0438  [ 1618F36D4F7F6CCCEB3EE44BA95BE85C, 1ED920E475221228EF215708701EC166A0B1BBCBD236E5B047420EBD0FF1371A ] C:\WINDOWS\system32\winsrv.dll

09:08:36.0218 0x0438  [ 0E776ED5F7CC9F94299E70461B7B8185, 22750B3829133D1D4BB3CE2FA6247BE2373B5D15A6ED1C8A71673AA1CE7D9530 ] C:\WINDOWS\system32\services.exe

09:08:36.0234 0x0438  [ Global ] - ok

09:08:36.0234 0x0438  ================ Scan MBR ==================================

09:08:36.0250 0x0438  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0

09:08:36.0500 0x0438  \Device\Harddisk0\DR0 - ok

09:08:36.0500 0x0438  ================ Scan VBR ==================================

09:08:36.0500 0x0438  [ CE9BC7E3A89FD7F7483B9507F9CF5328 ] \Device\Harddisk0\DR0\Partition1

09:08:36.0531 0x0438  \Device\Harddisk0\DR0\Partition1 - ok

09:08:36.0531 0x0438  [ 84B10D75BBF0B9035AFC6611AB15F1EE ] \Device\Harddisk0\DR0\Partition2

09:08:36.0578 0x0438  \Device\Harddisk0\DR0\Partition2 - ok

09:08:36.0578 0x0438  ================ Scan generic autorun ======================

09:08:36.0671 0x0438  [ 855FFC135F055A3FDDD14DF5D241B4C2, 7BF1067A8337DE3DB4225D340C9284B1435D45737B78EFBD298D95B690880F37 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

09:08:36.0703 0x0438  SynTPEnh - ok

09:08:36.0890 0x0438  [ 26AFC1F16494FFE66F2197153B342A27, 817436E38F832500E120F196941F2F8392B192262E16D5E52CD5DFAC34749C15 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe

09:08:37.0000 0x0438  AvastUI.exe - ok

09:08:37.0125 0x0438  [ 53FD418622B72D709CE92AA8DBFDB0F6, 6169893D35E424EC5CBF480C35935D5C8B464B2045D10A4A475B8442FF3C528B ] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

09:08:37.0125 0x0438  StartCCC - ok

09:08:37.0140 0x0438  KernelFaultCheck - ok

09:08:37.0187 0x0438  [ 308F2EE28005510DE616409148CF077B, A2126CB185B0053086BDD6F0A16A503F6CA629AC677E4B7AE6D43C770061D087 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe

09:08:37.0203 0x0438  SunJavaUpdateSched - ok

09:08:37.0234 0x0438  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe

09:08:37.0234 0x0438  ctfmon.exe - ok

09:08:37.0250 0x0438  Waiting for KSN requests completion. In queue: 208

09:08:38.0250 0x0438  Waiting for KSN requests completion. In queue: 180

09:08:39.0250 0x0438  Waiting for KSN requests completion. In queue: 153

09:08:40.0359 0x0438  Waiting for KSN requests completion. In queue: 113

09:08:41.0359 0x0438  Waiting for KSN requests completion. In queue: 113

09:08:42.0359 0x0438  Waiting for KSN requests completion. In queue: 86

09:08:43.0359 0x0438  Waiting for KSN requests completion. In queue: 59

09:08:44.0359 0x0438  Waiting for KSN requests completion. In queue: 59

09:08:45.0375 0x0438  Waiting for KSN requests completion. In queue: 59

09:08:46.0375 0x0438  Waiting for KSN requests completion. In queue: 59

09:08:47.0375 0x0438  Waiting for KSN requests completion. In queue: 59

09:08:48.0437 0x0438  Waiting for KSN requests completion. In queue: 2

09:08:49.0468 0x0438  AV detected via SS1: avast! Antivirus, 5.0.150996965, enabled, updated

09:08:49.0484 0x0438  Win FW state via NFM: enabled

09:08:52.0046 0x0438  ============================================================

09:08:52.0046 0x0438  Scan finished

09:08:52.0046 0x0438  ============================================================

09:08:52.0062 0x0ccc  Detected object count: 0

09:08:52.0062 0x0ccc  Actual detected object count: 0

 

 

Adwcleaner:

 

# AdwCleaner v3.310 - Report created 20/09/2014 at 09:15:43

# Updated 12/09/2014 by Xplode

# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)

# Username : sam ling gibson - COMPUTER_1

# Running from : C:\Documents and Settings\sam ling gibson\My Documents\Downloads\AdwCleaner.exe

# Option : Clean

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

Folder Deleted : C:\DOCUME~1\SAMLIN~1\LOCALS~1\Temp\OCS

Folder Deleted : C:\Documents and Settings\All Users\AVG SafeGuard toolbar

File Deleted : C:\Documents and Settings\sam ling gibson\daemonprocess.txt

 

***** [ Scheduled Tasks ] *****

 

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd

Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{000123B4-9B42-4900-B3F7-F4B073EFC214}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}

Key Deleted : HKCU\Software\OCS

Key Deleted : HKCU\Software\UpdateStar

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FilesFrog Update Checker

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wajam

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467

 

***** [ Browsers ] *****

 

-\\ Internet Explorer v8.0.6001.18702

 

 

-\\ Mozilla Firefox v31.0 (x86 en-US)

 

[ File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\fpkjnf3j.default\prefs.js ]

 

 

[ File : C:\Documents and Settings\sam ling gibson\Application Data\Mozilla\Firefox\Profiles\n5kvfmeg.default\prefs.js ]

 

 

-\\ Google Chrome v37.0.2062.120

 

[ File : C:\Documents and Settings\sam ling gibson\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]

 

Deleted [Search Provider] : hxxp://feed.snapdo.com/?publisher=SnapdoEMonYB&dpid=SnapdoEMonYB&co=CO&userid=2b43c255-1207-4e58-b822-7859a947d65c&searchtype=ds&q={searchTerms}&installDate=03/10/2013

Deleted [Search Provider] : hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=E4EC001D72D6C3E9&affID=119721&tt=110813_YTB&tsp=4974

Deleted [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3302872&octid=EB_ORIGINAL_CTID&ISID=1f22ad30-2273-40e1-88cd-475b7fb13f9e&SearchSource=58&CUI=&UM=5&UP=SP93787134-AE52-48B3-B653-4B301FFC68F0&q={searchTerms}&SSPV=

Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

Deleted [Search Provider] : hxxp://www.softonic.com/s/{searchTerms}

 

*************************

 

AdwCleaner[R0].txt - [4224 octets] - [04/10/2013 21:49:59]

AdwCleaner[R1].txt - [1826 octets] - [09/10/2013 08:33:02]

AdwCleaner[R2].txt - [2549 octets] - [20/09/2014 09:09:45]

AdwCleaner[S0].txt - [4162 octets] - [04/10/2013 21:51:59]

AdwCleaner[S1].txt - [1895 octets] - [09/10/2013 08:38:45]

AdwCleaner[S2].txt - [3215 octets] - [20/09/2014 09:15:43]

 

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [3275 octets] ##########

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.1.9 (09.20.2014:1)

OS: Microsoft Windows XP x86

Ran by sam ling gibson on 20/09/2014 at  8:39:38.31

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

~~~ Services

 

 

 

~~~ Registry Values

 

 

 

~~~ Registry Keys

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\update jump flip

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\update outobox

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\util jump flip

 

 

 

~~~ Files

 

 

 

~~~ Folders

 

 

 

~~~ FireFox

 

Emptied folder: C:\Documents and Settings\sam ling gibson\Application Data\mozilla\firefox\profiles\n5kvfmeg.default\minidumps [1 files]

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 20/09/2014 at  9:00:33.62

End of JRT log

 

 

Eset scanner:

 

C:\AdwCleaner\Quarantine\C\Documents and Settings\sam ling gibson\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl\1.4_0\GoogleChromeRemotePlugin.dll.vir            Win32/Toolbar.Linkury.D potentially unwanted application        deleted - quarantined

C:\AdwCleaner\Quarantine\C\Documents and Settings\sam ling gibson\Local Settings\Temp\OCS\ocs_v71b.exe.vir      a variant of Win32/DownloadSponsor.A potentially unwanted application deleted - quarantined

D:\Films\anti virus\ccsetup406.exe         Win32/Bundled.Toolbar.Google.D potentially unsafe application            deleted - quarantined



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:51 PM

Posted 20 September 2014 - 08:17 PM

How is it now? You had some junk removed. Probably from torrent downloads.

Run this and see how it is .

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
>>>>

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 redwolfe_98

redwolfe_98

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:South Carolina, USA
  • Local time:01:51 PM

Posted 05 October 2014 - 09:06 AM

from the sound of things ("my computer is freezing/ restarting whenever i download things" ), i am thinking that the person might have a "poweliks" malware-infection..






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users