Jump to content


Photo

PC reboots by itself


  • This topic is locked This topic is locked
27 replies to this topic

#1 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 09 December 2011 - 07:06 AM

My pc reboots all by itself. The problem has existed for some time. Some days the pc works away quite happily. Other days it will reboot without warning. There is no common link to when the problem occurs. I can be running a variety of programmes eg Internet Explorer, Firefox, Outlook Express. However, on one recent session, I booted up, did not load anything but after 7 minutes the pc rebooted.

Today, I resolved to post the problem on your forum. I was going through the preparations before posting and had reached the last item, Spybot-Search and Destroy, when the pc rebooted during the scan. When it restarted, I ran Spybot again. Again the pc rebooted about three quarters of the way through the scan (20 minutes or so). I ran Spybot for the third time and again about three quarters of the way through the pc rebooted. I am posting the problem without Spybot and will try to include it later. [Edited: I have now scanned with Spybot and give a brief report on the results below after SecurityCheck]

Below, I am copying Malwarebytes, DDS, HijackThis and Security Check. I have read the FAQ and followed the directions.

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8340

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

09/12/2011 10:51:48
mbam-log-2011-12-09 (10-51-48).txt

Scan type: Quick scan
Objects scanned: 184326
Time elapsed: 7 minute(s), 28 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)



.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Jim Currie at 11:00:39 on 2011-12-09
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1024.417 [GMT 0:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\ShareDLL\CtNotify.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Creative\ShareDLL\MediaDet.Exe
svchost.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\O2\bin\sprtsvc.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.bbc.co.uk/
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20110915212425.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil11c_ActiveX.exe -update activex
mRun: [Disc Detector] c:\program files\creative\sharedll\CtNotify.exe
mRun: [CTStartup] c:\program files\creative\splash screen\CTEaxSpl.EXE /run
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-explorer: <NO NAME> =
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
Trusted Zone: internet
Trusted Zone: mcafee.com
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{52DCD9FF-BD90-41E2-A1DE-E76BA0B158B1} : DhcpNameServer = 192.168.1.254
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\jim currie\application data\mozilla\firefox\profiles\8ej24102.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.bbc.co.uk/
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\documents and settings\jim currie\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\mcafee\siteadvisor\NPMcFFPlg32.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dll
.
---- FIREFOX POLICIES ----
FF - user.js: dom.disable_open_during_load - true // Popupblocker control handled by McAfee Privacy Service
.
============= SERVICES / DRIVERS ===============
.
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2011-3-13 459728]
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2011-9-15 84200]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-9-15 271480]
R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-9-15 271480]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-9-15 271480]
R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-9-15 271480]
R2 McShield;McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2011-9-15 171168]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2011-9-15 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-9-15 148520]
R2 sprtsvc_O2;SupportSoft Sprocket Service (O2);c:\program files\o2\bin\sprtsvc.exe [2007-6-7 202280]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2011-9-15 56064]
R3 emu10kx;Creative EMU10K1/EMU10K2 Audio Driver (WDM);c:\windows\system32\drivers\e10kx2k.sys [2011-11-5 1758336]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2011-9-15 153280]
R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2011-9-15 52320]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2011-9-15 314088]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2011-9-15 88736]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2011-9-15 88736]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2011-9-15 84488]
.
=============== Created Last 30 ================
.
2011-11-25 13:39:57 -------- d-----w- c:\documents and settings\jim currie\application data\Malwarebytes
2011-11-25 13:39:37 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2011-11-25 13:39:33 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-25 13:39:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
.
==================== Find3M ====================
.
2011-11-06 15:08:13 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 14:22:41 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-09-28 07:06:50 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-09-26 10:41:20 611328 ------w- c:\windows\system32\uiautomationcore.dll
2011-09-26 10:41:20 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 10:41:14 20480 ----a-w- c:\windows\system32\oleaccrc.dll
.
============= FINISH: 11:02:02.53 ===============


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:21:23, on 09/12/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\ShareDLL\CtNotify.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Creative\ShareDLL\MediaDet.Exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\O2\bin\sprtsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\System32\svchost.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bbc.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110915212425.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://*.mcafee.com
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.m...ash/swflash.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SupportSoft Sprocket Service (O2) (sprtsvc_O2) - SupportSoft, Inc. - C:\Program Files\O2\bin\sprtsvc.exe
O23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Common Files\supportsoft\bin\ssrc.exe

--
End of file - 7126 bytes

Results of screen317's Security Check version 0.99.28
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
McAfee Internet Security
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
CCleaner
Adobe Flash Player 11.0.1.152
Adobe Reader X (10.1.1)
Mozilla Firefox (6.0.) Firefox out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

``````````End of Log````````````

Brief report on Spybot check. 3 problems detected.

1. Double Click 1 entry Browser
2. Mediaplex 2 entries Browser
3. Newsupdate 7 entries Spyware

Edited by chiswick_doonhamer, 09 December 2011 - 08:46 AM.


#2 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 10 December 2011 - 03:55 PM

Please download tdsskiller.exe and save it to your Desktop. Go here for information.

  • Double-click on TDSSKiller.exe to run the application.
  • Click on the Start Scan button and wait for the scan and disinfection process to be over.
  • If an infected file is detected, the default action will be Cure, click on Continue
  • If a suspicious file is detected, the default action will be Skip, click on Continue
  • If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file in your next reply.
  • If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.

Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#3 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 12 December 2011 - 04:26 PM

Thank you Mother Lion for your help. Here is the report from TDSSKiller

21:52:20.0875 1668 TDSS rootkit removing tool 2.6.22.0 Dec 7 2011 13:21:06
21:52:22.0078 1668 ============================================================
21:52:22.0078 1668 Current date / time: 2011/12/12 21:52:22.0078
21:52:22.0078 1668 SystemInfo:
21:52:22.0078 1668
21:52:22.0078 1668 OS Version: 5.1.2600 ServicePack: 3.0
21:52:22.0078 1668 Product type: Workstation
21:52:22.0078 1668 ComputerName: JIM
21:52:22.0078 1668 UserName: Jim Currie
21:52:22.0078 1668 Windows directory: C:\WINDOWS
21:52:22.0078 1668 System windows directory: C:\WINDOWS
21:52:22.0078 1668 Processor architecture: Intel x86
21:52:22.0078 1668 Number of processors: 1
21:52:22.0078 1668 Page size: 0x1000
21:52:22.0078 1668 Boot type: Normal boot
21:52:22.0078 1668 ============================================================
21:52:26.0562 1668 Initialize success
21:52:37.0359 2416 ============================================================
21:52:37.0359 2416 Scan started
21:52:37.0359 2416 Mode: Manual;
21:52:37.0359 2416 ============================================================
21:52:38.0328 2416 Abiosdsk - ok
21:52:38.0375 2416 abp480n5 - ok
21:52:38.0484 2416 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:52:38.0484 2416 ACPI - ok
21:52:38.0609 2416 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:52:38.0625 2416 ACPIEC - ok
21:52:38.0750 2416 adpu160m - ok
21:52:38.0906 2416 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:52:38.0921 2416 aec - ok
21:52:39.0078 2416 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:52:39.0093 2416 AFD - ok
21:52:39.0218 2416 Aha154x - ok
21:52:39.0265 2416 aic78u2 - ok
21:52:39.0312 2416 aic78xx - ok
21:52:39.0390 2416 AliIde - ok
21:52:39.0468 2416 AmdK7 (8fce268cdbdd83b23419d1f35f42c7b1) C:\WINDOWS\system32\DRIVERS\amdk7.sys
21:52:39.0484 2416 AmdK7 - ok
21:52:39.0578 2416 amsint - ok
21:52:39.0671 2416 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:52:39.0687 2416 Arp1394 - ok
21:52:39.0828 2416 asc - ok
21:52:39.0906 2416 asc3350p - ok
21:52:39.0968 2416 asc3550 - ok
21:52:40.0125 2416 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:52:40.0140 2416 AsyncMac - ok
21:52:40.0328 2416 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:52:40.0343 2416 atapi - ok
21:52:40.0453 2416 Atdisk - ok
21:52:40.0531 2416 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:52:40.0546 2416 Atmarpc - ok
21:52:40.0703 2416 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:52:40.0718 2416 audstub - ok
21:52:40.0890 2416 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:52:40.0906 2416 Beep - ok
21:52:41.0078 2416 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:52:41.0093 2416 cbidf2k - ok
21:52:41.0203 2416 cd20xrnt - ok
21:52:41.0281 2416 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:52:41.0281 2416 Cdaudio - ok
21:52:41.0437 2416 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:52:41.0453 2416 Cdfs - ok
21:52:41.0562 2416 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:52:41.0578 2416 Cdrom - ok
21:52:41.0703 2416 cfwids (7fd604cd7a7a0ff8975af61bdf64c577) C:\WINDOWS\system32\drivers\cfwids.sys
21:52:41.0953 2416 cfwids - ok
21:52:42.0046 2416 Changer - ok
21:52:42.0156 2416 CmdIde - ok
21:52:42.0250 2416 Cpqarray - ok
21:52:42.0375 2416 ctac32k (99c09667068e2259497c273372f4bb4d) C:\WINDOWS\system32\drivers\ctac32k.sys
21:52:42.0562 2416 ctac32k - ok
21:52:42.0734 2416 ctprxy2k (b493ec482fa7b4352694cc473d22d3b7) C:\WINDOWS\system32\drivers\ctprxy2k.sys
21:52:43.0000 2416 ctprxy2k - ok
21:52:43.0140 2416 ctsfm2k (8fa23b25c33670e22ba584a0da2531b3) C:\WINDOWS\system32\drivers\ctsfm2k.sys
21:52:43.0312 2416 ctsfm2k - ok
21:52:43.0437 2416 dac2w2k - ok
21:52:43.0484 2416 dac960nt - ok
21:52:43.0593 2416 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:52:43.0625 2416 Disk - ok
21:52:43.0968 2416 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
21:52:44.0015 2416 dmboot - ok
21:52:44.0156 2416 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
21:52:44.0187 2416 dmio - ok
21:52:44.0281 2416 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:52:44.0296 2416 dmload - ok
21:52:44.0437 2416 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:52:44.0453 2416 DMusic - ok
21:52:44.0578 2416 dpti2o - ok
21:52:44.0671 2416 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:52:44.0687 2416 drmkaud - ok
21:52:44.0968 2416 emu10kx (205b61a67019c7af933b6ee422a889f6) C:\WINDOWS\system32\drivers\e10kx2k.sys
21:52:45.0265 2416 emu10kx - ok
21:52:45.0390 2416 emupia (16f794ab0a5a0dcd45c69579b426a6e3) C:\WINDOWS\system32\drivers\emupia2k.sys
21:52:45.0562 2416 emupia - ok
21:52:45.0750 2416 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:52:45.0765 2416 Fastfat - ok
21:52:45.0921 2416 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:52:45.0937 2416 Fdc - ok
21:52:46.0078 2416 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
21:52:46.0093 2416 Fips - ok
21:52:46.0218 2416 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:52:46.0234 2416 Flpydisk - ok
21:52:46.0375 2416 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:52:46.0406 2416 FltMgr - ok
21:52:46.0562 2416 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:52:46.0562 2416 Fs_Rec - ok
21:52:46.0734 2416 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:52:46.0750 2416 Ftdisk - ok
21:52:46.0875 2416 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
21:52:46.0875 2416 gameenum - ok
21:52:47.0015 2416 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:52:47.0031 2416 Gpc - ok
21:52:47.0187 2416 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:52:47.0203 2416 hidusb - ok
21:52:47.0312 2416 hpn - ok
21:52:47.0359 2416 hpt3xx - ok
21:52:47.0437 2416 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:52:47.0453 2416 HPZid412 - ok
21:52:47.0578 2416 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:52:47.0765 2416 HPZipr12 - ok
21:52:47.0890 2416 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:52:48.0062 2416 HPZius12 - ok
21:52:48.0203 2416 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:52:48.0218 2416 HTTP - ok
21:52:48.0343 2416 i2omgmt - ok
21:52:48.0390 2416 i2omp - ok
21:52:48.0484 2416 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:52:48.0500 2416 i8042prt - ok
21:52:48.0640 2416 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys
21:52:48.0656 2416 Imapi - ok
21:52:48.0859 2416 ini910u - ok
21:52:48.0921 2416 IntelIde - ok
21:52:49.0015 2416 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:52:49.0015 2416 ip6fw - ok
21:52:49.0140 2416 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:52:49.0156 2416 IpFilterDriver - ok
21:52:49.0265 2416 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:52:49.0281 2416 IpInIp - ok
21:52:49.0406 2416 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:52:49.0421 2416 IpNat - ok
21:52:49.0562 2416 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:52:49.0578 2416 IPSec - ok
21:52:49.0718 2416 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:52:49.0718 2416 IRENUM - ok
21:52:49.0890 2416 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:52:49.0890 2416 isapnp - ok
21:52:50.0031 2416 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:52:50.0046 2416 Kbdclass - ok
21:52:50.0187 2416 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:52:50.0203 2416 kmixer - ok
21:52:50.0343 2416 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:52:50.0343 2416 KSecDD - ok
21:52:50.0468 2416 lbrtfdc - ok
21:52:50.0984 2416 mfeapfk (688b626fca708ee9eb161cad1f7363a9) C:\WINDOWS\system32\drivers\mfeapfk.sys
21:52:51.0218 2416 mfeapfk - ok
21:52:51.0406 2416 mfeavfk (dbf6e1b388d5c070d438c61adb990c30) C:\WINDOWS\system32\drivers\mfeavfk.sys
21:52:51.0609 2416 mfeavfk - ok
21:52:51.0796 2416 mfeavfk01 - ok
21:52:51.0921 2416 mfebopk (a528b15e330edb83ea649be318d841d5) C:\WINDOWS\system32\drivers\mfebopk.sys
21:52:52.0109 2416 mfebopk - ok
21:52:52.0265 2416 mfefirek (c7da1b8003c89acedaa13768f7a1c622) C:\WINDOWS\system32\drivers\mfefirek.sys
21:52:52.0515 2416 mfefirek - ok
21:52:52.0812 2416 mfehidk (44184f32392fa2e94d08d056ce750d56) C:\WINDOWS\system32\drivers\mfehidk.sys
21:52:53.0296 2416 mfehidk - ok
21:52:53.0453 2416 mfendisk (b1728195877b18ce63cf0cd00b2871eb) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
21:52:53.0687 2416 mfendisk - ok
21:52:53.0781 2416 mfendiskmp (b1728195877b18ce63cf0cd00b2871eb) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
21:52:53.0781 2416 mfendiskmp - ok
21:52:53.0906 2416 mferkdet (ce1711f7c3f72f6762abd241dcfd5ee1) C:\WINDOWS\system32\drivers\mferkdet.sys
21:52:54.0125 2416 mferkdet - ok
21:52:54.0250 2416 mfetdi2k (25e12c68b49a64ffc873603dfd578236) C:\WINDOWS\system32\drivers\mfetdi2k.sys
21:52:54.0453 2416 mfetdi2k - ok
21:52:54.0609 2416 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:52:54.0625 2416 mnmdd - ok
21:52:54.0812 2416 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
21:52:54.0828 2416 Modem - ok
21:52:54.0937 2416 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:52:54.0953 2416 Mouclass - ok
21:52:55.0125 2416 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:52:55.0140 2416 mouhid - ok
21:52:55.0296 2416 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:52:55.0312 2416 MountMgr - ok
21:52:55.0421 2416 mraid35x - ok
21:52:55.0515 2416 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:52:55.0546 2416 MRxDAV - ok
21:52:55.0671 2416 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:52:55.0687 2416 MRxSmb - ok
21:52:55.0859 2416 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:52:55.0875 2416 Msfs - ok
21:52:56.0046 2416 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:52:56.0062 2416 MSKSSRV - ok
21:52:56.0171 2416 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:52:56.0187 2416 MSPCLOCK - ok
21:52:56.0296 2416 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:52:56.0312 2416 MSPQM - ok
21:52:56.0421 2416 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:52:56.0421 2416 mssmbios - ok
21:52:56.0562 2416 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:52:56.0578 2416 Mup - ok
21:52:56.0750 2416 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:52:56.0765 2416 NDIS - ok
21:52:56.0921 2416 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:52:56.0921 2416 NdisTapi - ok
21:52:57.0031 2416 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:52:57.0046 2416 Ndisuio - ok
21:52:57.0187 2416 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:52:57.0203 2416 NdisWan - ok
21:52:57.0312 2416 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:52:57.0328 2416 NDProxy - ok
21:52:57.0406 2416 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:52:57.0406 2416 NetBIOS - ok
21:52:57.0546 2416 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:52:57.0578 2416 NetBT - ok
21:52:57.0875 2416 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:52:57.0875 2416 NIC1394 - ok
21:52:58.0015 2416 nmwcd (cfe3462a9e94a57dcd9676f6b7fe7f67) C:\WINDOWS\system32\drivers\ccdcmb.sys
21:52:58.0234 2416 nmwcd - ok
21:52:58.0390 2416 nmwcdc (8f2a94f991f8c73cec26b4b5620d1edc) C:\WINDOWS\system32\drivers\ccdcmbo.sys
21:52:58.0593 2416 nmwcdc - ok
21:52:58.0750 2416 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:52:58.0765 2416 Npfs - ok
21:52:58.0906 2416 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:52:58.0953 2416 Ntfs - ok
21:52:59.0109 2416 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:52:59.0125 2416 Null - ok
21:52:59.0343 2416 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:52:59.0468 2416 nv - ok
21:52:59.0609 2416 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:52:59.0625 2416 NwlnkFlt - ok
21:52:59.0828 2416 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:52:59.0843 2416 NwlnkFwd - ok
21:52:59.0984 2416 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:52:59.0984 2416 ohci1394 - ok
21:53:00.0156 2416 ossrv (d653f455b176529f0427b24361139619) C:\WINDOWS\system32\drivers\ctoss2k.sys
21:53:00.0375 2416 ossrv - ok
21:53:00.0515 2416 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
21:53:00.0546 2416 Parport - ok
21:53:00.0656 2416 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:53:00.0656 2416 PartMgr - ok
21:53:00.0875 2416 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
21:53:00.0875 2416 ParVdm - ok
21:53:01.0000 2416 pavboot (3adb8bd6154a3ef87496e8fce9c22493) C:\WINDOWS\system32\drivers\pavboot.sys
21:53:01.0343 2416 pavboot - ok
21:53:01.0500 2416 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
21:53:01.0734 2416 pccsmcfd - ok
21:53:01.0843 2416 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
21:53:01.0859 2416 PCI - ok
21:53:01.0968 2416 PCIDump - ok
21:53:02.0046 2416 PCIIde - ok
21:53:02.0125 2416 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:53:02.0140 2416 Pcmcia - ok
21:53:02.0250 2416 PDCOMP - ok
21:53:02.0312 2416 PDFRAME - ok
21:53:02.0421 2416 PDRELI - ok
21:53:02.0468 2416 PDRFRAME - ok
21:53:02.0531 2416 perc2 - ok
21:53:02.0578 2416 perc2hib - ok
21:53:02.0828 2416 PfModNT (2f5532f9b0f903b26847da674b4f55b2) C:\WINDOWS\system32\PfModNT.sys
21:53:03.0062 2416 PfModNT - ok
21:53:03.0218 2416 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:53:03.0250 2416 PptpMiniport - ok
21:53:03.0375 2416 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
21:53:03.0390 2416 Processor - ok
21:53:03.0515 2416 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:53:03.0531 2416 PSched - ok
21:53:03.0656 2416 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:53:03.0656 2416 Ptilink - ok
21:53:03.0890 2416 PxHelp20 (0457e25bb122b854e267cf552dcdc370) C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:53:04.0140 2416 PxHelp20 - ok
21:53:04.0234 2416 ql1080 - ok
21:53:04.0281 2416 Ql10wnt - ok
21:53:04.0328 2416 ql12160 - ok
21:53:04.0390 2416 ql1240 - ok
21:53:04.0437 2416 ql1280 - ok
21:53:04.0515 2416 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:53:04.0531 2416 RasAcd - ok
21:53:04.0656 2416 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:53:04.0671 2416 Rasl2tp - ok
21:53:04.0859 2416 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:53:04.0875 2416 RasPppoe - ok
21:53:05.0015 2416 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:53:05.0031 2416 Raspti - ok
21:53:05.0187 2416 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:53:05.0218 2416 Rdbss - ok
21:53:05.0328 2416 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:53:05.0343 2416 RDPCDD - ok
21:53:05.0500 2416 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:53:05.0515 2416 RDPWD - ok
21:53:05.0640 2416 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:53:05.0656 2416 redbook - ok
21:53:05.0875 2416 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:53:05.0890 2416 rtl8139 - ok
21:53:06.0093 2416 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:53:06.0109 2416 Secdrv - ok
21:53:06.0296 2416 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:53:06.0312 2416 serenum - ok
21:53:06.0421 2416 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
21:53:06.0437 2416 Serial - ok
21:53:06.0640 2416 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:53:06.0656 2416 Sfloppy - ok
21:53:06.0859 2416 Simbad - ok
21:53:06.0984 2416 Sparrow - ok
21:53:07.0078 2416 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:53:07.0093 2416 splitter - ok
21:53:07.0281 2416 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
21:53:07.0296 2416 sr - ok
21:53:07.0468 2416 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:53:07.0484 2416 Srv - ok
21:53:07.0640 2416 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:53:07.0656 2416 swenum - ok
21:53:07.0859 2416 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:53:07.0875 2416 swmidi - ok
21:53:08.0000 2416 symc810 - ok
21:53:08.0062 2416 symc8xx - ok
21:53:08.0109 2416 sym_hi - ok
21:53:08.0171 2416 sym_u3 - ok
21:53:08.0250 2416 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:53:08.0265 2416 sysaudio - ok
21:53:08.0453 2416 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:53:08.0453 2416 Tcpip - ok
21:53:08.0593 2416 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:53:08.0609 2416 TDPIPE - ok
21:53:08.0765 2416 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:53:08.0781 2416 TDTCP - ok
21:53:08.0921 2416 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:53:08.0921 2416 TermDD - ok
21:53:09.0078 2416 TosIde - ok
21:53:09.0203 2416 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:53:09.0218 2416 Udfs - ok
21:53:09.0296 2416 ultra - ok
21:53:09.0406 2416 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:53:09.0453 2416 Update - ok
21:53:09.0609 2416 upperdev (ec01da44b090d2651fc032c8b9257232) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
21:53:09.0953 2416 upperdev - ok
21:53:10.0093 2416 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:53:10.0109 2416 usbccgp - ok
21:53:10.0265 2416 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:53:10.0281 2416 usbhub - ok
21:53:10.0406 2416 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:53:10.0421 2416 usbprint - ok
21:53:10.0562 2416 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:53:10.0578 2416 usbscan - ok
21:53:10.0718 2416 usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
21:53:10.0718 2416 usbser - ok
21:53:10.0890 2416 UsbserFilt (4abd37cfbd710e64f01f9da8710c73f7) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
21:53:11.0062 2416 UsbserFilt - ok
21:53:11.0218 2416 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:53:11.0218 2416 USBSTOR - ok
21:53:11.0437 2416 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:53:11.0437 2416 usbuhci - ok
21:53:11.0562 2416 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:53:11.0578 2416 VgaSave - ok
21:53:11.0781 2416 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:53:11.0796 2416 viaagp - ok
21:53:11.0906 2416 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
21:53:11.0921 2416 ViaIde - ok
21:53:12.0046 2416 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
21:53:12.0062 2416 VolSnap - ok
21:53:12.0281 2416 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:53:12.0296 2416 Wanarp - ok
21:53:12.0437 2416 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
21:53:13.0140 2416 Wdf01000 - ok
21:53:13.0250 2416 WDICA - ok
21:53:13.0328 2416 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:53:13.0359 2416 wdmaud - ok
21:53:13.0859 2416 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:53:13.0875 2416 WpdUsb - ok
21:53:14.0046 2416 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:53:14.0078 2416 WudfPf - ok
21:53:14.0265 2416 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:53:14.0281 2416 WudfRd - ok
21:53:14.0421 2416 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
21:53:14.0921 2416 \Device\Harddisk0\DR0 - ok
21:53:14.0953 2416 Boot (0x1200) (f6670aae27cabd7508541ae060953f3c) \Device\Harddisk0\DR0\Partition0
21:53:14.0953 2416 \Device\Harddisk0\DR0\Partition0 - ok
21:53:14.0968 2416 ============================================================
21:53:14.0968 2416 Scan finished
21:53:14.0968 2416 ============================================================
21:53:15.0046 3140 Detected object count: 0
21:53:15.0046 3140 Actual detected object count: 0
21:53:55.0703 3804 ============================================================
21:53:55.0703 3804 Scan started
21:53:55.0703 3804 Mode: Manual;
21:53:55.0703 3804 ============================================================
21:53:56.0000 3804 Abiosdsk - ok
21:53:56.0046 3804 abp480n5 - ok
21:53:56.0125 3804 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:53:56.0125 3804 ACPI - ok
21:53:56.0250 3804 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:53:56.0250 3804 ACPIEC - ok
21:53:56.0343 3804 adpu160m - ok
21:53:56.0437 3804 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:53:56.0437 3804 aec - ok
21:53:56.0562 3804 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:53:56.0578 3804 AFD - ok
21:53:56.0656 3804 Aha154x - ok
21:53:56.0687 3804 aic78u2 - ok
21:53:56.0765 3804 aic78xx - ok
21:53:56.0843 3804 AliIde - ok
21:53:56.0906 3804 AmdK7 (8fce268cdbdd83b23419d1f35f42c7b1) C:\WINDOWS\system32\DRIVERS\amdk7.sys
21:53:56.0921 3804 AmdK7 - ok
21:53:57.0031 3804 amsint - ok
21:53:57.0125 3804 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:53:57.0125 3804 Arp1394 - ok
21:53:57.0234 3804 asc - ok
21:53:57.0281 3804 asc3350p - ok
21:53:57.0343 3804 asc3550 - ok
21:53:57.0484 3804 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:53:57.0484 3804 AsyncMac - ok
21:53:57.0625 3804 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:53:57.0640 3804 atapi - ok
21:53:57.0734 3804 Atdisk - ok
21:53:57.0875 3804 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:53:57.0875 3804 Atmarpc - ok
21:53:58.0015 3804 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:53:58.0015 3804 audstub - ok
21:53:58.0187 3804 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:53:58.0187 3804 Beep - ok
21:53:58.0359 3804 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:53:58.0359 3804 cbidf2k - ok
21:53:58.0437 3804 cd20xrnt - ok
21:53:58.0515 3804 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:53:58.0515 3804 Cdaudio - ok
21:53:58.0656 3804 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:53:58.0656 3804 Cdfs - ok
21:53:58.0921 3804 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:53:58.0921 3804 Cdrom - ok
21:53:59.0046 3804 cfwids (7fd604cd7a7a0ff8975af61bdf64c577) C:\WINDOWS\system32\drivers\cfwids.sys
21:53:59.0046 3804 cfwids - ok
21:53:59.0140 3804 Changer - ok
21:53:59.0265 3804 CmdIde - ok
21:53:59.0359 3804 Cpqarray - ok
21:53:59.0500 3804 ctac32k (99c09667068e2259497c273372f4bb4d) C:\WINDOWS\system32\drivers\ctac32k.sys
21:53:59.0500 3804 ctac32k - ok
21:53:59.0656 3804 ctprxy2k (b493ec482fa7b4352694cc473d22d3b7) C:\WINDOWS\system32\drivers\ctprxy2k.sys
21:53:59.0656 3804 ctprxy2k - ok
21:53:59.0937 3804 ctsfm2k (8fa23b25c33670e22ba584a0da2531b3) C:\WINDOWS\system32\drivers\ctsfm2k.sys
21:53:59.0937 3804 ctsfm2k - ok
21:54:00.0046 3804 dac2w2k - ok
21:54:00.0093 3804 dac960nt - ok
21:54:00.0218 3804 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:54:00.0218 3804 Disk - ok
21:54:00.0406 3804 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
21:54:00.0421 3804 dmboot - ok
21:54:00.0531 3804 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
21:54:00.0531 3804 dmio - ok
21:54:00.0656 3804 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:54:00.0671 3804 dmload - ok
21:54:00.0921 3804 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:54:00.0937 3804 DMusic - ok
21:54:01.0078 3804 dpti2o - ok
21:54:01.0171 3804 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:54:01.0171 3804 drmkaud - ok
21:54:01.0390 3804 emu10kx (205b61a67019c7af933b6ee422a889f6) C:\WINDOWS\system32\drivers\e10kx2k.sys
21:54:01.0406 3804 emu10kx - ok
21:54:01.0578 3804 emupia (16f794ab0a5a0dcd45c69579b426a6e3) C:\WINDOWS\system32\drivers\emupia2k.sys
21:54:01.0578 3804 emupia - ok
21:54:01.0796 3804 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:54:01.0796 3804 Fastfat - ok
21:54:01.0984 3804 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:54:01.0984 3804 Fdc - ok
21:54:02.0093 3804 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
21:54:02.0093 3804 Fips - ok
21:54:02.0218 3804 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:54:02.0218 3804 Flpydisk - ok
21:54:02.0359 3804 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:54:02.0359 3804 FltMgr - ok
21:54:02.0515 3804 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:54:02.0515 3804 Fs_Rec - ok
21:54:02.0656 3804 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:54:02.0656 3804 Ftdisk - ok
21:54:02.0859 3804 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
21:54:02.0859 3804 gameenum - ok
21:54:03.0015 3804 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:54:03.0015 3804 Gpc - ok
21:54:03.0187 3804 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:54:03.0187 3804 hidusb - ok
21:54:03.0281 3804 hpn - ok
21:54:03.0343 3804 hpt3xx - ok
21:54:03.0406 3804 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:54:03.0421 3804 HPZid412 - ok
21:54:03.0531 3804 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:54:03.0531 3804 HPZipr12 - ok
21:54:03.0671 3804 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:54:03.0671 3804 HPZius12 - ok
21:54:03.0859 3804 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:54:03.0859 3804 HTTP - ok
21:54:04.0000 3804 i2omgmt - ok
21:54:04.0046 3804 i2omp - ok
21:54:04.0125 3804 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:54:04.0125 3804 i8042prt - ok
21:54:04.0265 3804 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys
21:54:04.0265 3804 Imapi - ok
21:54:04.0406 3804 ini910u - ok
21:54:04.0453 3804 IntelIde - ok
21:54:04.0531 3804 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:54:04.0546 3804 ip6fw - ok
21:54:04.0656 3804 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:54:04.0656 3804 IpFilterDriver - ok
21:54:04.0812 3804 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:54:04.0812 3804 IpInIp - ok
21:54:04.0937 3804 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:54:04.0953 3804 IpNat - ok
21:54:05.0078 3804 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:54:05.0078 3804 IPSec - ok
21:54:05.0203 3804 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:54:05.0203 3804 IRENUM - ok
21:54:05.0343 3804 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:54:05.0343 3804 isapnp - ok
21:54:05.0484 3804 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:54:05.0484 3804 Kbdclass - ok
21:54:05.0640 3804 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:54:05.0640 3804 kmixer - ok
21:54:05.0859 3804 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:54:05.0875 3804 KSecDD - ok
21:54:06.0015 3804 lbrtfdc - ok
21:54:06.0312 3804 mfeapfk (688b626fca708ee9eb161cad1f7363a9) C:\WINDOWS\system32\drivers\mfeapfk.sys
21:54:06.0328 3804 mfeapfk - ok
21:54:06.0437 3804 mfeavfk (dbf6e1b388d5c070d438c61adb990c30) C:\WINDOWS\system32\drivers\mfeavfk.sys
21:54:06.0437 3804 mfeavfk - ok
21:54:06.0546 3804 mfeavfk01 - ok
21:54:06.0625 3804 mfebopk (a528b15e330edb83ea649be318d841d5) C:\WINDOWS\system32\drivers\mfebopk.sys
21:54:06.0625 3804 mfebopk - ok
21:54:06.0812 3804 mfefirek (c7da1b8003c89acedaa13768f7a1c622) C:\WINDOWS\system32\drivers\mfefirek.sys
21:54:06.0828 3804 mfefirek - ok
21:54:06.0984 3804 mfehidk (44184f32392fa2e94d08d056ce750d56) C:\WINDOWS\system32\drivers\mfehidk.sys
21:54:06.0984 3804 mfehidk - ok
21:54:07.0125 3804 mfendisk (b1728195877b18ce63cf0cd00b2871eb) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
21:54:07.0125 3804 mfendisk - ok
21:54:07.0187 3804 mfendiskmp (b1728195877b18ce63cf0cd00b2871eb) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
21:54:07.0187 3804 mfendiskmp - ok
21:54:07.0312 3804 mferkdet (ce1711f7c3f72f6762abd241dcfd5ee1) C:\WINDOWS\system32\drivers\mferkdet.sys
21:54:07.0312 3804 mferkdet - ok
21:54:07.0437 3804 mfetdi2k (25e12c68b49a64ffc873603dfd578236) C:\WINDOWS\system32\drivers\mfetdi2k.sys
21:54:07.0437 3804 mfetdi2k - ok
21:54:07.0578 3804 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:54:07.0578 3804 mnmdd - ok
21:54:07.0765 3804 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
21:54:07.0765 3804 Modem - ok
21:54:07.0906 3804 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:54:07.0906 3804 Mouclass - ok
21:54:08.0046 3804 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:54:08.0046 3804 mouhid - ok
21:54:08.0187 3804 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:54:08.0187 3804 MountMgr - ok
21:54:08.0296 3804 mraid35x - ok
21:54:08.0375 3804 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:54:08.0390 3804 MRxDAV - ok
21:54:08.0546 3804 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:54:08.0546 3804 MRxSmb - ok
21:54:08.0703 3804 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:54:08.0703 3804 Msfs - ok
21:54:08.0859 3804 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:54:08.0875 3804 MSKSSRV - ok
21:54:08.0968 3804 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:54:08.0968 3804 MSPCLOCK - ok
21:54:09.0093 3804 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:54:09.0093 3804 MSPQM - ok
21:54:09.0218 3804 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:54:09.0218 3804 mssmbios - ok
21:54:09.0343 3804 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:54:09.0343 3804 Mup - ok
21:54:09.0531 3804 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:54:09.0531 3804 NDIS - ok
21:54:09.0656 3804 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:54:09.0656 3804 NdisTapi - ok
21:54:10.0000 3804 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:54:10.0000 3804 Ndisuio - ok
21:54:10.0140 3804 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:54:10.0140 3804 NdisWan - ok
21:54:10.0296 3804 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:54:10.0296 3804 NDProxy - ok
21:54:10.0375 3804 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:54:10.0375 3804 NetBIOS - ok
21:54:10.0515 3804 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:54:10.0515 3804 NetBT - ok
21:54:10.0906 3804 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:54:10.0906 3804 NIC1394 - ok
21:54:11.0093 3804 nmwcd (cfe3462a9e94a57dcd9676f6b7fe7f67) C:\WINDOWS\system32\drivers\ccdcmb.sys
21:54:11.0093 3804 nmwcd - ok
21:54:11.0218 3804 nmwcdc (8f2a94f991f8c73cec26b4b5620d1edc) C:\WINDOWS\system32\drivers\ccdcmbo.sys
21:54:11.0218 3804 nmwcdc - ok
21:54:11.0343 3804 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:54:11.0343 3804 Npfs - ok
21:54:11.0500 3804 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:54:11.0500 3804 Ntfs - ok
21:54:11.0687 3804 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:54:11.0687 3804 Null - ok
21:54:11.0984 3804 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:54:12.0015 3804 nv - ok
21:54:12.0171 3804 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:54:12.0171 3804 NwlnkFlt - ok
21:54:12.0281 3804 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:54:12.0281 3804 NwlnkFwd - ok
21:54:12.0468 3804 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:54:12.0484 3804 ohci1394 - ok
21:54:12.0859 3804 ossrv (d653f455b176529f0427b24361139619) C:\WINDOWS\system32\drivers\ctoss2k.sys
21:54:12.0875 3804 ossrv - ok
21:54:13.0031 3804 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
21:54:13.0046 3804 Parport - ok
21:54:13.0265 3804 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:54:13.0265 3804 PartMgr - ok
21:54:13.0375 3804 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
21:54:13.0375 3804 ParVdm - ok
21:54:13.0500 3804 pavboot (3adb8bd6154a3ef87496e8fce9c22493) C:\WINDOWS\system32\drivers\pavboot.sys
21:54:13.0515 3804 pavboot - ok
21:54:13.0812 3804 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
21:54:13.0828 3804 pccsmcfd - ok
21:54:14.0140 3804 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
21:54:14.0140 3804 PCI - ok
21:54:14.0359 3804 PCIDump - ok
21:54:14.0531 3804 PCIIde - ok
21:54:14.0875 3804 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:54:14.0890 3804 Pcmcia - ok
21:54:15.0078 3804 PDCOMP - ok
21:54:15.0250 3804 PDFRAME - ok
21:54:15.0500 3804 PDRELI - ok
21:54:15.0718 3804 PDRFRAME - ok
21:54:15.0968 3804 perc2 - ok
21:54:16.0187 3804 perc2hib - ok
21:54:16.0437 3804 PfModNT (2f5532f9b0f903b26847da674b4f55b2) C:\WINDOWS\system32\PfModNT.sys
21:54:16.0437 3804 PfModNT - ok
21:54:16.0781 3804 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:54:16.0781 3804 PptpMiniport - ok
21:54:17.0062 3804 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
21:54:17.0078 3804 Processor - ok
21:54:17.0328 3804 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:54:17.0343 3804 PSched - ok
21:54:17.0593 3804 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:54:17.0593 3804 Ptilink - ok
21:54:17.0843 3804 PxHelp20 (0457e25bb122b854e267cf552dcdc370) C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:54:17.0843 3804 PxHelp20 - ok
21:54:18.0078 3804 ql1080 - ok
21:54:18.0265 3804 Ql10wnt - ok
21:54:18.0500 3804 ql12160 - ok
21:54:18.0734 3804 ql1240 - ok
21:54:18.0859 3804 ql1280 - ok
21:54:18.0937 3804 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:54:18.0937 3804 RasAcd - ok
21:54:19.0125 3804 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:54:19.0125 3804 Rasl2tp - ok
21:54:19.0421 3804 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:54:19.0421 3804 RasPppoe - ok
21:54:19.0656 3804 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:54:19.0656 3804 Raspti - ok
21:54:20.0000 3804 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:54:20.0000 3804 Rdbss - ok
21:54:20.0250 3804 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:54:20.0265 3804 RDPCDD - ok
21:54:20.0562 3804 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:54:20.0578 3804 RDPWD - ok
21:54:20.0890 3804 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:54:20.0890 3804 redbook - ok
21:54:21.0187 3804 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:54:21.0187 3804 rtl8139 - ok
21:54:21.0375 3804 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:54:21.0375 3804 Secdrv - ok
21:54:21.0562 3804 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:54:21.0562 3804 serenum - ok
21:54:21.0906 3804 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
21:54:21.0906 3804 Serial - ok
21:54:22.0109 3804 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:54:22.0109 3804 Sfloppy - ok
21:54:22.0265 3804 Simbad - ok
21:54:22.0359 3804 Sparrow - ok
21:54:22.0484 3804 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:54:22.0484 3804 splitter - ok
21:54:22.0890 3804 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
21:54:22.0890 3804 sr - ok
21:54:23.0156 3804 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:54:23.0171 3804 Srv - ok
21:54:23.0468 3804 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:54:23.0468 3804 swenum - ok
21:54:23.0734 3804 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:54:23.0734 3804 swmidi - ok
21:54:24.0000 3804 symc810 - ok
21:54:24.0250 3804 symc8xx - ok
21:54:24.0453 3804 sym_hi - ok
21:54:24.0593 3804 sym_u3 - ok
21:54:24.0875 3804 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:54:24.0875 3804 sysaudio - ok
21:54:25.0156 3804 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:54:25.0171 3804 Tcpip - ok
21:54:25.0484 3804 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:54:25.0484 3804 TDPIPE - ok
21:54:25.0687 3804 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:54:25.0687 3804 TDTCP - ok
21:54:25.0875 3804 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:54:25.0875 3804 TermDD - ok
21:54:26.0125 3804 TosIde - ok
21:54:26.0421 3804 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:54:26.0421 3804 Udfs - ok
21:54:26.0546 3804 ultra - ok
21:54:26.0812 3804 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:54:26.0828 3804 Update - ok
21:54:26.0984 3804 upperdev (ec01da44b090d2651fc032c8b9257232) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
21:54:27.0000 3804 upperdev - ok
21:54:27.0140 3804 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:54:27.0140 3804 usbccgp - ok
21:54:27.0296 3804 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:54:27.0312 3804 usbhub - ok
21:54:27.0437 3804 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:54:27.0437 3804 usbprint - ok
21:54:27.0734 3804 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:54:27.0750 3804 usbscan - ok
21:54:28.0046 3804 usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
21:54:28.0046 3804 usbser - ok
21:54:28.0281 3804 UsbserFilt (4abd37cfbd710e64f01f9da8710c73f7) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
21:54:28.0281 3804 UsbserFilt - ok
21:54:28.0515 3804 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:54:28.0515 3804 USBSTOR - ok
21:54:28.0671 3804 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:54:28.0671 3804 usbuhci - ok
21:54:28.0875 3804 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:54:28.0875 3804 VgaSave - ok
21:54:29.0234 3804 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:54:29.0234 3804 viaagp - ok
21:54:29.0500 3804 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
21:54:29.0500 3804 ViaIde - ok
21:54:29.0828 3804 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
21:54:29.0828 3804 VolSnap - ok
21:54:30.0125 3804 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:54:30.0125 3804 Wanarp - ok
21:54:30.0421 3804 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
21:54:30.0421 3804 Wdf01000 - ok
21:54:30.0625 3804 WDICA - ok
21:54:30.0937 3804 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:54:30.0953 3804 wdmaud - ok
21:54:31.0390 3804 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:54:31.0390 3804 WpdUsb - ok
21:54:31.0687 3804 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:54:31.0687 3804 WudfPf - ok
21:54:31.0953 3804 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:54:31.0953 3804 WudfRd - ok
21:54:32.0093 3804 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
21:54:33.0078 3804 \Device\Harddisk0\DR0 - ok
21:54:33.0125 3804 Boot (0x1200) (f6670aae27cabd7508541ae060953f3c) \Device\Harddisk0\DR0\Partition0
21:54:33.0125 3804 \Device\Harddisk0\DR0\Partition0 - ok
21:54:33.0125 3804 ============================================================
21:54:33.0125 3804 Scan finished
21:54:33.0125 3804 ============================================================
21:54:33.0187 0968 Detected object count: 0
21:54:33.0187 0968 Actual detected object count: 0
22:12:43.0812 1540 ============================================================
22:12:43.0812 1540 Scan started
22:12:43.0812 1540 Mode: Manual;
22:12:43.0812 1540 ============================================================
22:12:44.0781 1540 Abiosdsk - ok
22:12:44.0906 1540 abp480n5 - ok
22:12:45.0187 1540 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:12:45.0375 1540 ACPI - ok
22:12:45.0515 1540 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:12:45.0531 1540 ACPIEC - ok
22:12:45.0671 1540 adpu160m - ok
22:12:45.0781 1540 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
22:12:45.0812 1540 aec - ok
22:12:45.0968 1540 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
22:12:46.0156 1540 AFD - ok
22:12:46.0312 1540 Aha154x - ok
22:12:46.0375 1540 aic78u2 - ok
22:12:46.0437 1540 aic78xx - ok
22:12:46.0515 1540 AliIde - ok
22:12:46.0703 1540 AmdK7 (8fce268cdbdd83b23419d1f35f42c7b1) C:\WINDOWS\system32\DRIVERS\amdk7.sys
22:12:46.0718 1540 AmdK7 - ok
22:12:46.0812 1540 amsint - ok
22:12:46.0921 1540 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:12:46.0937 1540 Arp1394 - ok
22:12:47.0046 1540 asc - ok
22:12:47.0093 1540 asc3350p - ok
22:12:47.0140 1540 asc3550 - ok
22:12:47.0390 1540 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:12:47.0406 1540 AsyncMac - ok
22:12:47.0546 1540 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:12:47.0609 1540 atapi - ok
22:12:47.0734 1540 Atdisk - ok
22:12:47.0812 1540 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:12:47.0828 1540 Atmarpc - ok
22:12:48.0000 1540 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:12:48.0062 1540 audstub - ok
22:12:48.0234 1540 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:12:48.0312 1540 Beep - ok
22:12:48.0468 1540 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:12:48.0484 1540 cbidf2k - ok
22:12:48.0578 1540 cd20xrnt - ok
22:12:48.0656 1540 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:12:48.0687 1540 Cdaudio - ok
22:12:48.0843 1540 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
22:12:48.0859 1540 Cdfs - ok
22:12:49.0015 1540 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:12:49.0046 1540 Cdrom - ok
22:12:49.0171 1540 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\WINDOWS\system32\drivers\cfwids.sys
22:12:49.0328 1540 cfwids - ok
22:12:49.0421 1540 Changer - ok
22:12:49.0625 1540 CmdIde - ok
22:12:49.0703 1540 Cpqarray - ok
22:12:49.0796 1540 ctac32k (99c09667068e2259497c273372f4bb4d) C:\WINDOWS\system32\drivers\ctac32k.sys
22:12:49.0984 1540 ctac32k - ok
22:12:50.0140 1540 ctprxy2k (b493ec482fa7b4352694cc473d22d3b7) C:\WINDOWS\system32\drivers\ctprxy2k.sys
22:12:50.0265 1540 ctprxy2k - ok
22:12:50.0421 1540 ctsfm2k (8fa23b25c33670e22ba584a0da2531b3) C:\WINDOWS\system32\drivers\ctsfm2k.sys
22:12:50.0546 1540 ctsfm2k - ok
22:12:50.0640 1540 dac2w2k - ok
22:12:50.0687 1540 dac960nt - ok
22:12:50.0953 1540 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
22:12:50.0953 1540 Disk - ok
22:12:51.0125 1540 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
22:12:51.0171 1540 dmboot - ok
22:12:51.0296 1540 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
22:12:51.0328 1540 dmio - ok
22:12:51.0421 1540 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:12:51.0437 1540 dmload - ok
22:12:51.0593 1540 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
22:12:51.0609 1540 DMusic - ok
22:12:51.0765 1540 dpti2o - ok
22:12:51.0843 1540 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
22:12:51.0859 1540 drmkaud - ok
22:12:52.0062 1540 emu10kx (205b61a67019c7af933b6ee422a889f6) C:\WINDOWS\system32\drivers\e10kx2k.sys
22:12:52.0328 1540 emu10kx - ok
22:12:52.0468 1540 emupia (16f794ab0a5a0dcd45c69579b426a6e3) C:\WINDOWS\system32\drivers\emupia2k.sys
22:12:52.0593 1540 emupia - ok
22:12:52.0796 1540 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
22:12:52.0812 1540 Fastfat - ok
22:12:52.0953 1540 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:12:52.0968 1540 Fdc - ok
22:12:53.0125 1540 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
22:12:53.0140 1540 Fips - ok
22:12:53.0281 1540 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:12:53.0296 1540 Flpydisk - ok
22:12:53.0484 1540 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
22:12:53.0500 1540 FltMgr - ok
22:12:53.0656 1540 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:12:53.0656 1540 Fs_Rec - ok
22:12:53.0703 1540 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:12:53.0718 1540 Ftdisk - ok
22:12:53.0875 1540 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
22:12:53.0875 1540 gameenum - ok
22:12:54.0015 1540 Gpc (0a02c63c8b1

Edited by chiswick_doonhamer, 12 December 2011 - 04:29 PM.


#4 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 12 December 2011 - 04:47 PM

Now please post the DDS file 'Attach.txt' which should be on your Desktop. (Copy, don't attach it).

It's possible your reboots are caused by heat buildup.
Shut down the PC and unplug it.
Open the case.
Remove any dust by blowing with short puffs.
Make sure the fans are unobstructed.
Plug in and start the PC with case open. Are all fans turning fast?
Does reboot happen with the case open?

After checking that for a while, shut down the PC and unplug it.
Put the case back on, plug in, turn on.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#5 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 12 December 2011 - 05:26 PM

Thanks Mother Lion. I appreciate your help. I attach the log as requested. Incidentally, when I turned the pc on for the current session, the pc rebooted almost immediately. I will now try the "cover off" mode as you suggested. It will take me some time (days?) to see what difference that makes. I will get back to you. Many, many thanks again for your time.


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 28/08/2011 23:20:56
System Uptime: 09/12/2011 10:08:51 (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | A7V333
Processor: AMD Athlon™ XP 2100+ | SOCKET A | 1311/100mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 57 GiB total, 39.58 GiB free.
D: is CDROM ()
E: is CDROM ()
G: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Universal Serial Bus (USB) Controller
Device ID: PCI\VEN_1106&DEV_3104&SUBSYS_80801043&REV_51\3&61AAA01&0&4A
Manufacturer:
Name: Universal Serial Bus (USB) Controller
PNP Device ID: PCI\VEN_1106&DEV_3104&SUBSYS_80801043&REV_51\3&61AAA01&0&4A
Service:
.
==== System Restore Points ===================
.
RP19: 05/09/2011 20:06:09 - System Checkpoint
RP20: 06/09/2011 20:45:32 - System Checkpoint
RP21: 06/09/2011 22:04:36 - Software Distribution Service 3.0
RP22: 08/09/2011 19:51:45 - System Checkpoint
RP23: 10/09/2011 18:57:49 - System Checkpoint
RP24: 12/09/2011 19:38:26 - System Checkpoint
RP25: 12/09/2011 19:55:33 - Software Distribution Service 3.0
RP26: 13/09/2011 20:13:48 - System Checkpoint
RP27: 16/09/2011 15:54:58 - System Checkpoint
RP28: 16/09/2011 16:18:11 - Software Distribution Service 3.0
RP29: 19/09/2011 09:23:50 - Software Distribution Service 3.0
RP30: 19/09/2011 17:29:52 - Installed Windows Media Player 11
RP31: 19/09/2011 17:31:22 - Software Distribution Service 3.0
RP32: 19/09/2011 18:40:11 - Installed Windows XP Wdf01009.
RP33: 20/09/2011 19:31:27 - Software Distribution Service 3.0
RP34: 22/09/2011 20:02:44 - Software Distribution Service 3.0
RP35: 26/09/2011 20:58:58 - Restore Operation
RP36: 29/09/2011 16:00:42 - Software Distribution Service 3.0
RP37: 06/10/2011 13:33:14 - System Checkpoint
RP38: 14/10/2011 14:10:10 - Software Distribution Service 3.0
RP39: 04/11/2011 12:01:52 - System Checkpoint
RP40: 05/11/2011 11:34:50 - Software Distribution Service 3.0
RP41: 05/11/2011 20:31:59 - Software Distribution Service 3.0
RP42: 05/11/2011 20:50:04 - Printer Driver Microsoft XPS Document Writer Installed
RP43: 06/11/2011 15:28:23 - Software Distribution Service 3.0
RP44: 09/11/2011 15:38:20 - System Checkpoint
RP45: 09/11/2011 21:00:32 - Software Distribution Service 3.0
RP46: 15/11/2011 19:44:31 - Software Distribution Service 3.0
RP47: 30/11/2011 14:46:27 - System Checkpoint
RP48: 02/12/2011 12:51:31 - System Checkpoint
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.1)
AiO_Scan_CDA
AiOSoftwareNPI
BufferChm
C4100
c4100_Help
CCleaner
CP_CalendarTemplates1
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Panorama1Config
cp_PosterPrintConfig
CueTour
CustomerResearchQFolder
Destinations
DeviceManagementQFolder
DocProc
DocProcQFolder
DocumentViewer
DocumentViewerQFolder
eSupportQFolder
Fax_CDA
FullDPAppQFolder
Google Chrome
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB976002-v5)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 7.0
HP Document Viewer 7.0
HP Imaging Device Functions 7.0
HP Photosmart Premier Software 6.5
HP Photosmart, Officejet and Deskjet 7.0.A
HP Software Update
HP Solution Center 7.0
HPPhotoSmartExpress
HPProductAssistant
InstantShareDevices
InstantShareDevicesMFC
Malwarebytes' Anti-Malware version 1.51.2.1300
MarketResearch
McAfee Internet Security
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Plus 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Mozilla Firefox 6.0 (x86 en-GB)
MSVC80_x86_v2
MSVC90_x86
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NewCopy_CDA
Nokia Connectivity Cable Driver
Nokia Ovi Suite
Nokia Ovi Suite Software Updater
O2 Broadband Assistant
O2InstV2Win7UpdateV2
OCR Software by I.R.I.S 7.0
Ovi Desktop Sync Engine
OviMPlatform
PanoStandAlone
PC Connectivity Solution
PhotoGallery
PowerDVD
ProductContextNPI
RandMap
Readme
Scan
ScannerCopy
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2553074)
Security Update for 2007 Microsoft Office System (KB2553089)
Security Update for 2007 Microsoft Office System (KB2553090)
Security Update for 2007 Microsoft Office System (KB2584063)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB2553073)
Security Update for Microsoft Office InfoPath 2007 (KB2510061)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2535818)
Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
Security Update for Microsoft Office Publisher 2007 (KB2284697)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982381)
Security Update for Windows XP (KB982665)
SkinsHP1
Sky Go Desktop
SlideShow
SolutionCenter
Sonic_PrimoSDK
Sound Blaster Audigy
Status
Toolbox
TrayApp
Unload
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Outlook 2007 Junk Email Filter (KB2596560)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
WebFldrs XP
WebReg
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
.
==== End Of File ===========================

#6 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 12 December 2011 - 05:59 PM

You might try one of your Restore Points if you can roughly pinpoint when the trouble started.

Please update your Firefox.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#7 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 13 December 2011 - 06:24 AM

Thanks Mother Lion.

Yesterday I took the cover off and did as you suggested. There are two fans, both of which are running fast and blowing out air. No reboot after that and the pc remained ok for several hours. However, when I booted up this morning with the cover still off, the pc rebooted within a couple of minutes. It is still running as I type after 80 minutes of operation.

I have now done System Restore to a date in September.

I have updated Firefox. Strangely, Firefox was configured to automatic updates but this did not cut in!

I very much appreciate your time and trouble. I will see how things develop and get back in touch with you.

Edited after pc has been on 2 hours: Went to "Start" button, clicked on "My Computer" and pc immediately rebooted. Back to square one !!

Edited again. Disaster! Pc worked ok for a time. I then switched off for a short time to go out. When I came back, I tried to boot but no success. Pc kept rebooting, offering me the dos screen that says safe mode, safe mode with networking, safe mode with command prompt and last known good configeration. Nothing worked. Kept comomg back to that sreen. So have turned off. This edit was sent on my mobile phone. Help!

Edited by chiswick_doonhamer, 13 December 2011 - 09:43 AM.


#8 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 13 December 2011 - 11:47 AM

What is the make and model of your PC? There will be a way to restore factory settings but of course that is a last resort.

There are a number of free Rescue Disks you can use to get access to the PC. These disks run Linux and are completely separate from Windows.

The Avira and Kaspersky disks can update themselves via the internet. The BitDefender disk includes TestDisk which can do a memory test and do some file recovery.

I suggest using the Avira disk first. Directions are here: http://www.howtogeek...ur-infected-pc/ There are also links there to the directions for the other rescue disks. Once you're familiar with making and booting the Avira disk then you can try the others.

You will use your other PC to download the .iso file and burn the image. (You must not just copy the .iso file; it is a full disk image). You can also use the other PC to have the directions in front of you.

Then put the CD in your unbootable PC and turn the PC on. The CD should boot.
(You may possibly need to go into the BIOS to change the boot order so that CD is first.)

If you still can't boot Windows on the sick PC then try the BitDefender disk. There is a description of TestDisk here.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#9 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 15 December 2011 - 05:02 AM

Your help is so, so appreciated.
The computer was built by a company called Best Price Computers Ltd. I don't have a make or model as such. It was recommended in PC Advisor magazine some tears ago. The invoice gives the full spec. Does the absence of make and model nullify what you suggested I try next?

Edited by chiswick_doonhamer, 15 December 2011 - 05:09 AM.


#10 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 15 December 2011 - 12:08 PM

That's fine. I just wanted to find out if there was a way for you to restore original factory setup, or if recovery/repair disk was available for your PC. And if driver updates were provided. All I could find was http://www.arbico.co.uk/faq.php#014. It says there

Q16) Does the PC come with all driver and installation disks?

Ans: All our PCs are supplied with the driver CDs for all the parts that are installed in the PC. Any PCs purchased with an operating system are supplied with the original license and CD supplied with the PC. We DON'T supply recovery discs. We supply the full original CDs. In short any CDs that we receive are supplied with the PC. If we don't receive a CD that means the latest drivers are supposed to be downloaded from the manufacturer's website. In all instances a motherboard driver CD is provided.


Anyway I hope we can get you up and running without that.
Please try the Avira Rescue Disk.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#11 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 17 December 2011 - 04:58 AM

Continued thanks Mother Lion. Will try recovery and get back in touch.

#12 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 17 December 2011 - 05:56 PM

If you don't mind paying $10 you can get an actual Windows Recovery Disk. As of November 2011 they are no longer available free, unfortunately.
http://systemdiscs.c...n=Win7_Recovery

The Windows disk would give you the option to run System Restore.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#13 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 19 December 2011 - 04:02 PM

I have managed to restart the pc using the Avira Rescue Disk. The Avira scan showed up several alerts but nothing I was told that had to be dealt with. (I have also burned the Kasperski and Bitdefender Recovery Disks.) I don't suppose that what I have done with Avira will cure the rebooting problem, bearing in mind that it didn't find any threats on the pc. Should I try the other recovery disks as a matter of course?

My thanks to you again.

#14 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 19 December 2011 - 06:55 PM

Yes, I agree - since the problem doesn't appear to be malware it's unlikely that the anti-malware operations can help.

What we really want is to enable you to do a System Restore.

Let's try OTLPE. Download: http://oldtimer.geek...o.com/OTLPE.iso
Burn the .iso file to a CD and boot.

Your system should now display a REATOGO-X-PE desktop.
Double-click on the OTLPE icon.
When asked "Do you wish to load the remote registry", select Yes
When asked "Do you wish to load remote user profile(s) for scanning", select Yes
Ensure the box "Automatically Load All Remaining Users" is checked and press OK
OTL should now start.

If you have succeeded in booting the disk and bringing up OTL, then do this:
Enter this in its Custom Scans/Fixes window:

restorepoints


Then click the blue 'Run Scan'.
Let it run and do not interrupt it. It might take some time depending on how many restore points are found. You should get a log back that looks like this:

========== Custom Scans ==========

========== Restore Points Found ==========
[2010/02/08 14:04:53 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{78FB2821-AC54-4A12-BD2D-C6728C0F7E78}\RP168\snapshot
[2010/02/07 13:53:11 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{78FB2821-AC54-4A12-BD2D-C6728C0F7E78}\RP167\snapshot
[2010/02/05 22:45:17 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{78FB2821-AC54-4A12-BD2D-C6728C0F7E78}\RP166\snapshot


They will be listed by the most recent restore point to the oldest restore point.
When finished, the file will be saved in drive C:\OTL.txt
Copy this file to your USB drive if you do not have internet connection on this system
Please post the contents of the C:\OTL.txt file in your reply.
If you can't get the log, you'll need to write down the complete exact info about the Restore Point you want to use.

To restore the machine hives from one of these restore points just take the line that you want and copy/paste it into a fix using the :restorepoint section like this:
(This goes in the Custom Scans/Fixes window; note the colon before restorepoint this time)

:restorepoint
[2010/02/08 14:04:53 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{78FB2821-AC54-4A12-BD2D-C6728C0F7E78}\RP168\snapshot

Click the red 'Run Fix' button.
OTL will take the machine hives in the restore point given and copy them to the root of the system drive. It will then require a reboot to move those copies into the config folder. The user MUST boot normally for this to occur. Booting back into the PE environment will NOT work. Since the hives are being replaced live, some machines have blue-screened. That's Ok. Just reboot the machine normally again and everything should be fine.

These directions are quoted from elsewhere and have never been used by me, so good luck! I really hope it works.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#15 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 20 December 2011 - 03:30 PM

Many, many thanks again, Mother Lion. I will give it all a try and get back to you.

#16 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 21 December 2011 - 10:54 AM

Sorry, but I have tried the OTLPE link and it is not recognised.

#17 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 21 December 2011 - 02:10 PM

Sorry - please try this one: http://oldtimer.geek...om/OTLPEStd.exe
Run it, put blank CD in drive, click Yes.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#18 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 22 December 2011 - 06:51 AM

Everything has worked as you described. Below is the OTL log file. The earliest restore point is 05/09/2011 and I will restore to that point and see what happens. Thanks, thanks, thanks again! [Edited: I have now restored to 05/09/2011.]


OTL logfile created on: 12/22/2011 12:15:19 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

1,024.00 Mb Total Physical Memory | 834.00 Mb Available Physical Memory | 81.00% Memory free
907.00 Mb Paging File | 854.00 Mb Available in Paging File | 94.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 57.26 Gb Total Space | 35.66 Gb Free Space | 62.28% Space Free | Partition Type: NTFS
Drive D: | 1.92 Gb Total Space | 1.29 Gb Free Space | 67.29% Space Free | Partition Type: FAT
Drive X: | 284.12 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand] -- -- (AppMgmt)
SRV - [2011/10/18 11:59:54 | 000,361,976 | ---- | M] (McAfee, Inc.) [On_Demand] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2011/10/18 09:32:30 | 000,150,856 | ---- | M] (McAfee, Inc.) [Auto] -- C:\WINDOWS\System32\mfevtps.exe -- (mfevtp)
SRV - [2011/10/18 09:28:34 | 000,160,608 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV - [2011/10/18 09:28:18 | 000,166,288 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe -- (McShield)
SRV - [2011/06/08 07:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV - [2010/09/24 11:07:18 | 000,329,080 | ---- | M] (SupportSoft, Inc.) [Auto] -- C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe -- (SupportSoft RemoteAssist)
SRV - [2007/06/07 10:19:40 | 000,202,280 | R--- | M] (SupportSoft, Inc.) [Auto] -- C:\Program Files\O2\bin\sprtsvc.exe -- (sprtsvc_O2) SupportSoft Sprocket Service (O2)
SRV - [2006/03/03 15:03:10 | 000,069,632 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand] -- -- (mfeavfk01)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - [2011/10/15 08:16:16 | 000,464,176 | ---- | M] (McAfee, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2011/10/15 08:16:16 | 000,338,176 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2011/10/15 08:16:16 | 000,180,816 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2011/10/15 08:16:16 | 000,121,256 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2011/10/15 08:16:16 | 000,089,792 | ---- | M] (McAfee, Inc.) [Kernel | System] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k)
DRV - [2011/10/15 08:16:16 | 000,087,656 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2011/10/15 08:16:16 | 000,083,856 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp)
DRV - [2011/10/15 08:16:16 | 000,083,856 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk)
DRV - [2011/10/15 08:16:16 | 000,059,456 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2011/10/15 08:16:16 | 000,057,600 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids)
DRV - [2008/08/26 04:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/04/13 18:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2004/08/03 16:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2001/11/05 07:02:30 | 001,758,336 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\e10kx2k.sys -- (emu10kx) Creative EMU10K1/EMU10K2 Audio Driver (WDM)
DRV - [2001/11/01 10:31:30 | 000,110,168 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTAC32K.SYS -- (ctac32k)
DRV - [2001/10/18 11:46:18 | 000,207,572 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTSFM2K.SYS -- (ctsfm2k)
DRV - [2001/09/11 07:14:16 | 000,154,284 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\EMUPIA2K.SYS -- (emupia)
DRV - [2001/09/11 07:10:18 | 000,011,036 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTPRXY2K.SYS -- (ctprxy2k)
DRV - [2001/09/11 07:10:14 | 000,186,944 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [1999/12/16 19:00:00 | 000,006,752 | ---- | M] (Creative Technology Ltd.) [Kernel | Auto] -- C:\WINDOWS\system32\PfModNT.sys -- (PfModNT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\Jim_Currie_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bbc.co.uk/
IE - HKU\Jim_Currie_ON_C\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKU\Jim_Currie_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\LocalService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.bbc.co.uk/"
FF - prefs.js..network.proxy.type: 0


FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: C:\Program Files\McAfee\MSC\npMcSnFFPl.dll ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\NPMcFFPlg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Jim Currie\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Jim Currie\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2011/11/10 10:37:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files\Common Files\McAfee\SystemCore [2011/12/22 06:54:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/12/13 07:02:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011/09/19 12:34:24 | 000,000,000 | ---D | M]

[2011/08/31 13:29:52 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jim Currie\Application Data\Mozilla\Extensions
[2011/08/31 13:27:20 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) --
[2011/12/22 06:54:41 | 000,000,000 | ---D | M] (McAfee ScriptScan for Firefox) -- C:\PROGRAM FILES\COMMON FILES\MCAFEE\SYSTEMCORE
[2011/11/10 10:37:42 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR
[2011/12/13 07:02:50 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/04/14 08:01:38 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\mozilla firefox\components\Scriptff.dll
[2011/12/13 07:02:31 | 000,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2011/12/13 07:02:31 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/12/13 07:02:31 | 000,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2011/12/13 07:02:31 | 000,001,180 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2011/12/13 07:02:31 | 000,001,135 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: ([2011/12/09 09:36:23 | 000,438,843 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15095 more lines...
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - File not found
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\Mcafee\SystemCore\ScriptSn.20111218163535.dll (McAfee, Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O4 - HKLM..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CTNotify.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Jim_Currie_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = _ [binary data]
O7 - HKU\Jim_Currie_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/08/28 17:18:55 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{d9462743-d1c9-11e0-9b03-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{d9462743-d1c9-11e0-9b03-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{d9462743-d1c9-11e0-9b03-806d6172696f}\Shell\AutoRun\command - "" = E:\reatogoMenu.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/12/22 06:54:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
[2011/12/21 10:56:45 | 000,000,000 | ---D | C] -- C:\bd_logs
[2011/12/18 11:36:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Jim Currie\Recent
[2011/12/13 06:27:52 | 000,000,000 | ---D | C] -- C:\1e160c1fde04d4128bf3cffd92d0b8
[2011/12/13 06:21:18 | 000,000,000 | ---D | C] -- C:\Media
[2011/12/13 06:21:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Defaults
[2011/12/09 10:57:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32\config\systemprofile\IETldCache
[2011/12/09 09:56:29 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2011/12/09 06:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011/12/09 06:15:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2011/12/09 06:07:28 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/11/25 08:39:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Currie\Application Data\Malwarebytes
[2011/11/25 08:39:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/11/25 08:39:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/08/30 16:06:29 | 000,049,152 | ---- | C] ( ) -- C:\WINDOWS\System32\A3D.DLL
[2006/02/18 21:28:56 | 000,012,288 | ---- | C] (Hewlett-Packard Development Company, L.P.) -- C:\WINDOWS\Fonts\RandFont.dll
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/12/22 07:07:02 | 000,000,946 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1960408961-725345543-1004Core.job
[2011/12/22 07:07:00 | 000,000,998 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1960408961-725345543-1004UA.job
[2011/12/22 06:54:52 | 000,001,595 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\McAfee Internet Security.lnk
[2011/12/22 06:54:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
[2011/12/22 06:50:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/12/21 11:55:30 | 000,024,888 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000000-00000000-0000000E-00001102-00000004-00511102}.rfx
[2011/12/21 11:55:30 | 000,024,888 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000000-00000000-0000000E-00001102-00000004-00511102}.rfx
[2011/12/21 11:55:30 | 000,019,088 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000000-00000000-0000000E-00001102-00000004-00511102}.rfx
[2011/12/21 11:55:30 | 000,019,088 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000000-00000000-0000000E-00001102-00000004-00511102}.rfx
[2011/12/21 11:55:30 | 000,001,072 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2011/12/21 11:55:30 | 000,001,072 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2011/12/21 11:55:30 | 000,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCStateBkp-{00000000-00000000-0000000E-00001102-00000004-00511102}.dat
[2011/12/21 11:55:30 | 000,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000000-00000000-0000000E-00001102-00000004-00511102}.dat
[2011/12/20 16:11:54 | 000,013,746 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/12/19 14:59:52 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011/12/19 14:51:12 | 000,274,168 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/12/18 12:05:15 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/12/13 09:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2011/12/13 08:15:15 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/12/13 07:10:57 | 000,002,301 | ---- | M] () -- C:\Documents and Settings\Jim Currie\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/12/13 07:10:56 | 000,002,323 | ---- | M] () -- C:\Documents and Settings\Jim Currie\Desktop\Google Chrome.lnk
[2011/12/13 06:55:57 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/12/13 06:32:25 | 000,444,336 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/12/13 06:32:25 | 000,072,020 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/12/09 09:36:23 | 000,438,843 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/12/09 09:23:58 | 000,000,734 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20111209-143623.backup
[2011/11/23 08:25:32 | 001,859,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2011/11/23 08:25:32 | 001,859,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/12/18 11:46:12 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011/11/05 20:33:04 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\DVCStateBkp-{00000000-00000000-0000000E-00001102-00000004-00511102}.dat
[2011/11/05 20:33:04 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\DVCState-{00000000-00000000-0000000E-00001102-00000004-00511102}.dat
[2011/11/05 17:45:07 | 000,144,493 | ---- | C] () -- C:\WINDOWS\System32\ctstatic.dat
[2011/11/05 17:45:06 | 000,161,900 | ---- | C] () -- C:\WINDOWS\System32\ctdlang.dat
[2011/11/05 17:45:06 | 000,111,223 | ---- | C] () -- C:\WINDOWS\System32\CTBASICW.DAT
[2011/11/05 17:45:06 | 000,111,123 | ---- | C] () -- C:\WINDOWS\System32\ctbas2w.dat
[2011/11/05 17:45:06 | 000,044,055 | ---- | C] () -- C:\WINDOWS\System32\ctdaught.dat
[2011/11/05 17:44:42 | 001,048,576 | ---- | C] () -- C:\WINDOWS\System32\sfman.dat
[2011/08/31 15:21:34 | 000,000,028 | ---- | C] () -- C:\WINDOWS\LDLog.INI
[2011/08/31 13:23:25 | 000,000,133 | ---- | C] () -- C:\Documents and Settings\Jim Currie\Local Settings\Application Data\fusioncache.dat
[2011/08/30 16:06:36 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\REGPLIB.EXE
[2011/08/30 16:06:35 | 000,176,128 | ---- | C] () -- C:\WINDOWS\PSCONV.EXE
[2011/08/30 16:06:35 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\KILLAPPS.EXE
[2011/08/30 16:06:35 | 000,000,166 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI
[2011/08/30 16:06:27 | 000,027,679 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2011/08/30 16:06:24 | 000,000,231 | ---- | C] () -- C:\WINDOWS\ac3api.ini
[2011/08/30 15:59:55 | 000,000,376 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2011/08/30 15:40:08 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2011/08/30 15:27:07 | 000,117,094 | ---- | C] () -- C:\WINDOWS\hpoins11.dat
[2011/08/29 08:50:54 | 000,000,728 | ---- | C] () -- C:\WINDOWS\{4507868A-A9CD-4ECC-BD54-0EAB6EE81D42}_WiseFW.ini
[2011/08/28 18:03:53 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/08/28 18:02:57 | 000,274,168 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/08/28 17:21:01 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/08/28 17:16:21 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006/05/05 15:49:28 | 000,011,634 | ---- | C] () -- C:\WINDOWS\hpomdl11.dat
[2004/08/02 08:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001/08/18 07:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001/08/18 07:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001/08/18 07:00:00 | 000,444,336 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001/08/18 07:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001/08/18 07:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001/08/18 07:00:00 | 000,072,020 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001/08/18 07:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001/08/18 07:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001/08/18 07:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001/08/18 07:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2001/08/18 07:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2001/07/06 21:00:00 | 000,003,399 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini

========== LOP Check ==========

[2011/09/19 12:42:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Currie\Application Data\PC Suite
[2011/12/13 06:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Currie\Application Data\Spotify
[2011/09/15 13:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Citrix
[2011/09/19 12:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache
[2011/09/19 12:38:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2011/08/29 08:51:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft

========== Purity Check ==========



========== Custom Scans ==========



========== Restore Points Found ==========
[2011/12/19 16:04:51 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP54\snapshot
[2011/12/18 11:45:36 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP53\snapshot
[2011/12/13 09:22:24 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP52\snapshot
[2011/12/13 06:30:17 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP32\snapshot
[2011/12/13 06:29:33 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP51\snapshot
[2011/12/12 20:30:54 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP50\snapshot
[2011/12/09 06:07:27 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP49\snapshot
[2011/12/02 07:51:32 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP48\snapshot
[2011/11/30 09:46:27 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP47\snapshot
[2011/11/15 14:44:31 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP46\snapshot
[2011/11/09 16:00:32 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP45\snapshot
[2011/11/09 10:38:20 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP44\snapshot
[2011/11/06 10:28:23 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP43\snapshot
[2011/11/05 15:50:05 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP42\snapshot
[2011/11/05 15:31:59 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP41\snapshot
[2011/11/05 06:34:50 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP40\snapshot
[2011/11/04 07:01:52 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP39\snapshot
[2011/10/14 08:10:10 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP38\snapshot
[2011/10/06 07:33:14 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP37\snapshot
[2011/09/29 10:00:42 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP36\snapshot
[2011/09/27 07:49:31 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP34\snapshot
[2011/09/26 14:58:55 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP35\snapshot
[2011/09/20 13:31:27 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP33\snapshot
[2011/09/19 11:31:22 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP31\snapshot
[2011/09/19 11:29:52 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP30\snapshot
[2011/09/19 03:23:51 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP29\snapshot
[2011/09/16 10:18:11 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP28\snapshot
[2011/09/16 09:54:59 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP27\snapshot
[2011/09/13 14:13:48 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP26\snapshot
[2011/09/12 13:55:33 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP25\snapshot
[2011/09/12 13:38:26 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP24\snapshot
[2011/09/10 12:57:50 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP23\snapshot
[2011/09/08 13:51:45 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP22\snapshot
[2011/09/06 16:04:36 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP21\snapshot
[2011/09/06 14:45:32 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP20\snapshot
[2011/09/05 14:06:10 | 000,000,000 | ---D | M] -- C:\System Volume Information\_restore{55A88D4B-B1A7-4ECD-B742-CC36B1E866FD}\RP19\snapshot
< End of report >

Edited by chiswick_doonhamer, 22 December 2011 - 07:15 AM.


#19 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 22 December 2011 - 12:24 PM

Well done. I'm so glad it worked.

Is the PC booting by itself now, or does it seem fairly normal?

I suggest immediately backing up all your important data. It is possible that your hard drive is failing and could go out completely -

You can Backup using XP built-in
This is a helpful article though business oriented. http://www.techrepub...-backup/6104186 and tells you why many people avoid it.

Macrium free edition is popular and reliable. It is primarily for making a complete disk image but can also back up just files and folders. This is a good short article about the free version: http://www.howtogeek...backup-utility/
Ask Leo has a very full series of articles but prefers the full version (which has a 30-day free trial but costs $45): http://ask-leo.com/b...reflect_50.html
Do read Leo's articles.

Backing up a full disk image will take a lot of CDs and fewer but still a lot of DVDs. Making the image on another hard drive is more practical. One terabyte hard drives are still relatively cheap although the prices have gone up a lot. I have this one and consider it great: runs cool and is almost totally silent. http://www.newegg.co...N82E16822136939 It only cost me around $90 though.

Please read the Forum FAQ and post the usual requested logs. We need to take stock.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#20 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 23 December 2011 - 03:20 AM

Pc was running ok. I moved it slightly to remove a USB flash drive from the back and it rebooted. But only to the safe mode etc screen. Can't get any further. Even the rescue disks won't run. Avira gets to the point where it states "Booting the kernel." Then it stops with the cursor flashing. Possible terminal failure?

#21 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 23 December 2011 - 10:48 AM

Pc was running ok. I moved it slightly to remove a USB flash drive from the back and it rebooted. But only to the safe mode etc screen. Can't get any further. Even the rescue disks won't run. Avira gets to the point where it states "Booting the kernel." Then it stops with the cursor flashing. Possible terminal failure?

Yes, I think it's time for a new hard drive.

Although the inability to boot the rescue disk suggests something wrong with either the CD drive or the BIOS. Can you still boot the OTL PE disk?

Can you get into the BIOS? When you first turn on the PC it should say what key to press (often Del) to enter the BIOS. If you can bring up the BIOS it will probably have a way to restore defaults. After you restore defaults make sure the CD is first in the boot order. If you tell me what brand of BIOS it is I can help you further with that.

A whole new PC might be your best plan. You've gotten 9 years of use out of it, so that's not too bad. And PCs are a lot cheaper now than they were in 2002, with a lot more speed and storage for the money.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#22 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 26 December 2011 - 03:21 AM

I have restored the BIOS defaults. The brand of BIOS is ASUS - 42302e31 Award Modular BIOS v6.0 Dated 05/23/02.

I have managed to boot the OTL PE disk so have computer access for the moment.

#23 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 26 December 2011 - 11:49 AM

Could be that something inside is loose.

Turn it off (shutdown) and unplug the power cord.
Open the case.
Remove any dust wads and fuzz by blowing with short puffs.
Carefully reseat all the connections you can reach. This includes both ends of the cable connecting the hard drive.
Remove each ram and put it firmly back.
Make sure all fans are unobstructed and able to turn freely.
Make sure the hard drive is securely mounted.

Put the case cover back. Plug the PC back in and turn it on. If still no success boot the OTLPE disk and repeat the System Restore you did earlier.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#24 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 27 December 2011 - 05:47 AM

Did as you suggested. In addition, I replaced the CMOS battery while I was inside the machine! Pc then fired up under "Last known good configeration". So all the components still appear to be working up to a point. (eg in Task Manager, the CPU usage jumps to 100% for short bursts. The "System Idle Process" is the culprit.) But a new pc is now under consideration.

You have spent a lot of time helping me out with loads of good advice, particularly the rescue disks. I am very grateful to you Mother Lion. What a great site. Thanks.

#25 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 27 December 2011 - 12:34 PM

You're welcome.

System Idle Process 100% is normal - just means Windows has nothing to do at the moment.

Glad you have it working, but a new computer definitely seems like a good idea.

Remember you can boot the OTLPE disk you made to do another System Restore if it becomes necessary.

Please update your Firefox.

Cleanup:
Please delete the DDS files, TDSSKiller, and Security Check foler from your Desktop.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#26 chiswick_doonhamer

chiswick_doonhamer

    Member

  • Full Member
  • Pip
  • 59 posts

Posted 03 January 2012 - 07:32 AM

Thanks again. All done. New pc on order!

Let me wish you a Happy New Year.

#27 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 03 January 2012 - 11:06 AM

A Happy New Year to you. :)

Advice for malware prevention:

Configure Windows to do automatic updates or get into the habit of checking Windows Update regularly. They usually have security updates every month. You can set Windows to notify you of Updates so that you can choose, but only do this if you believe you are able to understand which ones are needed. This is a crucial security measure.

Keep MalwareBytes Anti-Malware updated and run it whenever you suspect a problem.

The free FileHippo Update Checker makes it easy to keep all your programs up to date - run it every few weeks.

Please consider using an alternate browser. Mozilla's Firefox browser is a very good alternative. In addition to being generally more secure than Internet Explorer, it has a very good built-in popup blocker and add-ons, like NoScripts, can make it even more secure. Chrome is another good option.
If you are interested, Firefox may be downloaded from here
Chrome is available here: http://www.google.co...e/features.html

Note that there are a lot of rogue programs out there that want to scare you into giving them your money and some malware actually claims to be security programs. If you get a popup for a security program that you did not install yourself, do NOT click on it and ask for help immediately. It is very important to run an antivirus and firewall, but you can't always rely on reviews and ads for information. Ask in a security forum that you trust if you are not sure. If you are unsure and looking for anti-spyware programs, you may be able to find out if it is a rogue here:

http://www.systemloo...p?type=filename

A similar category of programs is now called "scareware." Scareware programs are active infections that will pop-up on your computer and tell you that you are infected. If you look closely, it will usually have a name that looks like it might be legitimate, but it is NOT one of the programs you installed. It tells you to click and install it right away. If you click on any part of it, including the 'X' to close it, you may actually help it infect your computer further. Keeping protection updated and running resident protection can help prevent these infections. If it happens anyway, get offline as quickly as you can. Pull the internet connection cable or shut down the computer if you have to. Contact someone to help by using another computer if possible. These programs are also sometimes called 'rogues', but they are different from the rogues mentioned above.

For much more old but still useful information, read Tony Klein's excellent article: How did I get infected in the first place
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE

#28 cnm

cnm

    Mother Lion of SWI

  • Retired Staff
  • PipPipPipPipPip
  • 25,317 posts

Posted 03 January 2012 - 06:59 PM

Glad we could help. :)

If you need this topic reopened, please tell the moderating team by replying here with the address of the thread. This applies only to the original topic starter. Everyone else please begin a New Topic.
Microsoft MVP Windows Security 2005-2006
How camest thou in this pickle? -- William Shakespeare:(1564-1616)
The various helper groups here
UNITE




Member of UNITE
Support SpywareInfo Forum - click the button