Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Anti-virus & anti-malware programs won't run [Solved]


  • This topic is locked This topic is locked

#1
xorn42

xorn42

    New Member

  • Member
  • Pip
  • 4 posts

Hi, I'm having trouble getting getting AVG or Malwarebytes to run. I've been reading other messages in this board and have run the Farbar Tool with the following results. I don't know what to do with these reports. Can someone please help.

 

FRST report:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by Shane (administrator) on SHANE-PC on 27-03-2015 22:46:48
Running from C:\FRST
Loaded Profiles: Shane (Available profiles: Shane)
Platform: Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: English (United States)
Internet Explorer Version 9 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Cyberlink Corp.) C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Nuance Communications, Inc.) C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
(Sony Corporation) C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(PIXELA CORPORATION) C:\Program Files\PIXELA\Everio MediaBrowser 3\MBCameraMonitor.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_16_0_0_305_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [RemoteControl] => C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [71216 2007-03-14] (Cyberlink Corp.)
HKLM\...\Run: [LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [52256 2007-01-08] ()
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG)
HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM\...\Run: [PaperPort PTD] => C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [29984 2007-10-11] (Nuance Communications, Inc.)
HKLM\...\Run: [IndexSearch] => C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [46368 2007-10-11] (Nuance Communications, Inc.)
HKLM\...\Run: [PPort11reminder] => C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.)
HKLM\...\Run: [BrMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [1089536 2008-02-19] (Brother Industries, Ltd.)
HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [86016 2007-12-21] (Brother Industries, Ltd.)
HKLM\...\Run: [MobileBroadband] => C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [408064 2011-02-15] (Vodafone)
HKLM\...\Run: [Reader Application Helper] => C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2014-05-23] (Sony Corporation)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2013\avgui.exe [4411952 2014-11-04] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\...\Run: [AVG-Secure-Search-Update_0913b] => C:\Users\Shane\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid 6fbe91ad068447d3a80c7d8e9b988fbb-9039697854a0b6a62c1c0acf8f2909d80677c671 --CMPID 0913b
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\...\MountPoints2: J - J:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\...\MountPoints2: {60dcd186-f976-11e0-a75f-0024215de94b} - J:\Autorun.exe
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\...\MountPoints2: {710a185f-fa35-11e0-9a2b-0024215de94b} - J:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\...\MountPoints2: {710a186d-fa35-11e0-9a2b-0024215de94b} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\...\MountPoints2: {90edb706-fad3-11e0-9ff7-0024215de94b} - E:\setup_vmb_lite.exe /checkApplicationPresence
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Device Monitor 3.lnk
ShortcutTarget: Device Monitor 3.lnk -> C:\Program Files\PIXELA\Everio MediaBrowser 3\MBCameraMonitor.exe (PIXELA CORPORATION)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3079339976-73176916-3153912546-1003\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com.au/?gws_rd=ssl
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ninemsn.com.au/?ocid=iehp
HKU\S-1-5-21-3079339976-73176916-3153912546-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/?...=EIE9HP&PC=UP51
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3079339976-73176916-3153912546-1003 -> DefaultScope {CDBB0202-1C37-43FB-90DF-6C67F27C45F4} URL = https://www.google.c...?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3079339976-73176916-3153912546-1003 -> {CDBB0202-1C37-43FB-90DF-6C67F27C45F4} URL = https://www.google.c...?q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} ->  No File
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-07-25] (Oracle Corporation)
BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-07-25] (Oracle Corporation)
BHO: Windows Live Toolbar Helper -> {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} -> C:\Program Files\Windows Live\Toolbar\wltcore.dll [2008-12-08] (Microsoft Corporation)
Toolbar: HKLM - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2008-12-08] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-3079339976-73176916-3153912546-1003 -> &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2008-12-08] (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF Plugin: @ei.HowToSimplified_8e.com/Plugin -> C:\Program Files\HowToSimplified_8eEI\Installr\1.bin\NP8eEISB.dll [2013-09-15] (HowToSimplified)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-07-25] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @sony.com/ReaderDesktop -> C:\Program Files\Sony\ReaderDesktop\npreaderdetectmoz.dll [2014-05-23] (Sony Corporation)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-04-06]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4942384 2014-10-17] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-05-14] ()
S3 Sony SCSI Helper Service; C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2014-04-25] (Sony Corporation) [File not signed]
R2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [9216 2011-02-15] (Vodafone) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [620056 2015-03-08] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [172856 2014-11-04] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182584 2014-10-17] (AVG Technologies CZ, s.r.o.)
S3 BS2417151589; C:\Users\Shane\AppData\Local\Temp\Low\NTFS.sys [10760 2015-03-12] (Sysinternals) [File not signed]
S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [85632 2011-02-14] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [51456 2011-02-14] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [26496 2011-02-14] (Huawei Technologies Co., Ltd.)
R3 pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [47360 2010-05-22] (VSO Software) [File not signed]
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NTACCESS; \??\D:\NTACCESS.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 SetupNTGLM7X; \??\D:\NTGLM7X.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-27 22:34 - 2015-03-27 22:46 - 00000000 ____D () C:\FRST
2015-03-27 22:23 - 2015-03-27 22:23 - 12375040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 09747968 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-03-27 22:23 - 2015-03-27 22:23 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-27 22:23 - 2015-03-27 22:23 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 01803264 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-27 22:23 - 2015-03-27 22:23 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-03-27 22:23 - 2015-03-27 22:23 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-03-27 22:23 - 2015-03-27 22:23 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-03-27 22:23 - 2015-03-27 22:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-27 22:23 - 2015-03-27 22:23 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-03-27 22:23 - 2015-03-27 22:23 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-03-27 22:23 - 2015-03-27 22:23 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-27 22:23 - 2015-03-27 22:23 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-03-27 22:23 - 2015-03-27 22:23 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-03-27 22:23 - 2015-03-27 22:23 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-03-27 22:23 - 2015-03-27 22:23 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-03-27 22:22 - 2015-03-27 22:23 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-03-27 22:22 - 2015-03-27 22:22 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00797184 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2015-03-27 22:22 - 2015-03-27 22:22 - 00638336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-03-27 22:22 - 2015-03-27 22:22 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2015-03-27 22:22 - 2015-03-27 22:22 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-03-27 22:22 - 2015-03-27 22:22 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2015-03-27 22:21 - 2015-03-27 22:21 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-27 22:21 - 2015-03-27 22:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-03-27 22:21 - 2015-03-27 22:21 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-27 22:21 - 2015-03-27 22:21 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-03-27 22:21 - 2015-03-27 22:21 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2015-03-27 22:21 - 2015-03-27 22:21 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2015-03-27 22:21 - 2015-03-27 22:21 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-03-27 22:19 - 2015-03-27 22:23 - 00010537 _____ () C:\Windows\IE9_main.log
2015-03-27 22:03 - 2015-03-27 22:03 - 00000000 ____D () C:\Windows\system32\vi-VN
2015-03-27 22:03 - 2015-03-27 22:03 - 00000000 ____D () C:\Windows\system32\eu-ES
2015-03-27 22:03 - 2015-03-27 22:03 - 00000000 ____D () C:\Windows\system32\ca-ES
2015-03-27 21:49 - 2015-03-27 21:50 - 04197016 _____ (Kaspersky Lab ZAO) C:\Users\Shane\Desktop\tdsskiller.exe
2015-03-27 17:00 - 2015-03-27 17:00 - 04864752 _____ (AVAST Software) C:\Users\Shane\Downloads\avast_free_antivirus_setup_online.exe
2015-03-27 16:55 - 2015-03-27 16:55 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Shane\Downloads\mbam-clean-2.1.1.1001.exe
2015-03-27 16:55 - 2015-03-27 16:55 - 00000615 _____ () C:\Users\Shane\Desktop\mbam-setup-2.1.4.1018 - Shortcut.lnk
2015-03-27 16:49 - 2015-03-27 16:49 - 16727128 _____ () C:\Users\Shane\Downloads\RogueKiller.exe
2015-03-27 16:41 - 2015-03-27 16:41 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Shane\Downloads\mbam-setup-2.1.4.1018.exe
2015-03-27 16:15 - 2015-03-27 16:30 - 00000000 ____D () C:\AdwCleaner
2015-03-17 10:01 - 2015-03-17 10:01 - 00138944 _____ () C:\Windows\Minidump\Mini031715-01.dmp
2015-03-16 13:10 - 2015-03-16 13:10 - 00000000 ____D () C:\Windows\system32\EventProviders
2015-03-12 12:28 - 2015-03-25 07:00 - 01141708 _____ () C:\Windows\system32\CFG2417151589
2015-03-12 12:21 - 2015-03-17 10:01 - 236007226 _____ () C:\Windows\MEMORY.DMP
2015-03-12 12:21 - 2015-03-17 10:01 - 00000000 ____D () C:\Windows\Minidump
2015-03-12 12:21 - 2015-03-12 12:21 - 00138944 _____ () C:\Windows\Minidump\Mini031215-01.dmp
2015-03-08 17:36 - 2015-03-08 17:36 - 00000000 ____D () C:\Users\Shane\AppData\Local\AVG Web TuneUp
2015-03-08 17:35 - 2015-03-08 17:35 - 00000000 ____D () C:\ProgramData\AVG Web TuneUp
2015-03-08 17:34 - 2015-03-08 17:35 - 00000000 ____D () C:\Program Files\AVG Web TuneUp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-27 22:43 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\rescache
2015-03-27 22:37 - 2009-05-17 12:54 - 01983944 _____ () C:\Windows\WindowsUpdate.log
2015-03-27 22:35 - 2006-11-02 20:33 - 00769072 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-27 22:27 - 2009-05-17 12:58 - 00000000 ____D () C:\Users\Shane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2015-03-27 22:27 - 2009-05-17 12:57 - 00000959 _____ () C:\Users\Shane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-03-27 22:27 - 2006-11-02 22:45 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-27 22:27 - 2006-11-02 22:45 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-27 22:26 - 2008-01-21 13:02 - 00068514 _____ () C:\Windows\PFRO.log
2015-03-27 22:26 - 2006-11-02 22:58 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-27 22:25 - 2006-11-02 22:58 - 00032646 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-27 22:24 - 2006-11-02 21:18 - 00000000 ___RD () C:\Windows\Offline Web Pages
2015-03-27 22:23 - 2006-11-02 16:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat
2015-03-27 22:23 - 2006-11-02 16:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat
2015-03-27 22:21 - 2013-10-08 20:24 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-27 22:15 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-03-27 22:09 - 2009-05-17 12:57 - 00000925 _____ () C:\Users\Shane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2015-03-27 22:07 - 2006-11-02 22:49 - 00085512 _____ () C:\Windows\setupact.log
2015-03-27 22:06 - 2006-11-02 22:44 - 00380272 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-27 22:03 - 2006-11-02 22:35 - 00000000 ____D () C:\Windows\system32\XPSViewer
2015-03-27 22:03 - 2006-11-02 22:35 - 00000000 ____D () C:\Program Files\Windows Sidebar
2015-03-27 22:03 - 2006-11-02 22:35 - 00000000 ____D () C:\Program Files\Windows Photo Gallery
2015-03-27 22:03 - 2006-11-02 22:35 - 00000000 ____D () C:\Program Files\Windows Defender
2015-03-27 22:03 - 2006-11-02 22:35 - 00000000 ____D () C:\Program Files\Windows Collaboration
2015-03-27 22:03 - 2006-11-02 22:35 - 00000000 ____D () C:\Program Files\Windows Calendar
2015-03-27 22:03 - 2006-11-02 22:35 - 00000000 ____D () C:\Program Files\Movie Maker
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\zh-TW
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\zh-CN
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\uk-UA
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\tr-TR
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\th-TH
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\sv-SE
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\SLUI
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\sl-SI
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\sk-SK
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\ru-RU
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\ro-RO
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\pt-PT
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\pt-BR
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\pl-PL
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\nl-NL
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\nb-NO
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\lv-LV
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\lt-LT
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\ko-KR
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\ja-JP
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\it-IT
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\hu-HU
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\hr-HR
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\he-IL
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\fr-FR
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\fi-FI
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\et-EE
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\el-GR
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\de-DE
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\bg-BG
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\ar-SA
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Windows\IME
2015-03-27 22:03 - 2006-11-02 21:18 - 00000000 ____D () C:\Program Files\Common Files\System
2015-03-13 07:27 - 2009-04-06 14:31 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-13 07:26 - 2013-08-16 16:48 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-13 07:20 - 2006-11-02 20:24 - 119837696 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-03-09 13:00 - 2013-08-29 17:40 - 00000000 ____D () C:\ProgramData\MFAData

==================== Files in the root of some directories =======

2014-10-04 16:47 - 2014-10-04 16:47 - 0000000 _____ () C:\Users\Shane\AppData\Roaming\bitlord_log.txt
2010-05-22 12:00 - 2010-05-22 12:00 - 0081920 _____ () C:\Users\Shane\AppData\Roaming\ezpinst.exe
2010-05-22 12:00 - 2010-05-22 12:00 - 0007176 _____ () C:\Users\Shane\AppData\Roaming\pcouffin.cat
2010-05-22 12:00 - 2010-05-22 12:00 - 0001144 _____ () C:\Users\Shane\AppData\Roaming\pcouffin.inf
2010-05-22 12:01 - 2010-05-22 12:01 - 0000034 _____ () C:\Users\Shane\AppData\Roaming\pcouffin.log
2010-05-22 12:00 - 2010-05-22 12:00 - 0047360 _____ (VSO Software) C:\Users\Shane\AppData\Roaming\pcouffin.sys
2009-10-27 20:09 - 2009-10-27 20:09 - 0000552 _____ () C:\Users\Shane\AppData\Local\d3d8caps.dat
2009-05-18 20:08 - 2009-05-18 20:08 - 0000680 _____ () C:\Users\Shane\AppData\Local\d3d9caps.dat
2009-10-06 20:10 - 2011-12-04 17:21 - 0006656 _____ () C:\Users\Shane\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-02-14 14:22 - 2011-02-14 14:22 - 0222142 ____R () C:\ProgramData\DeviceManager.xml.rc4

Some content of TEMP:
====================
C:\Users\Shane\AppData\Local\Temp\_is84E5.exe
C:\Users\Shane\AppData\Local\Temp\_isD4C0.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-03-27 22:33

==================== End Of Log ============================

 

Addition report:

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-03-2015
Ran by Shane at 2015-03-27 22:47:16
Running from C:\FRST
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG AntiVirus Free Edition 2013 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2013 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
3 Mobile Broadband (HKLM\...\{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}) (Version: 1.0.0.1 - )
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
Acrobat.com (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.0.4990 - Adobe Systems Inc.)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM\...\Adobe Shockwave Player) (Version: 10.2.0.22 - Adobe Systems, Inc.)
AVG 2013 (HKLM\...\AVG) (Version: 2013.0.3495 - AVG Technologies)
AVG 2013 (Version: 13.0.3495 - AVG Technologies) Hidden
AVG 2013 (Version: 13.0.4257 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM\...\AVG Web TuneUp) (Version: 4.1.0.411 - AVG Technologies)
BitLord 2.2 (HKLM\...\BitLord) (Version: 2.2.1-167 - House of Life)
Brother MFL-Pro Suite DCP-585CW (HKLM\...\{3A08B59E-A9F0-4F4D-B7E5-6875D7F13327}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
Business Contact Manager for Outlook 2007 SP2 (HKLM\...\Business Contact Manager) (Version: 3.0.8619.1 - Microsoft Corporation)
Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1 - Microsoft Corporation) Hidden
Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden
CompareOffice 2009 (remove only) (HKLM\...\CompareOffice) (Version:  - )
CopyToDVD 4 (HKLM\...\CopyToDVD_is1) (Version:  - )
DivxToDVD 0.5.0 (HKLM\...\VSO DivxToDVD_is1) (Version: 0.5.0 - VSO-Software SARL)
DVD Shrink 3.2 (HKLM\...\DVD Shrink_is1) (Version:  - DVD Shrink)
DVD Suite (HKLM\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.0.1319 - CyberLink Corporation)
EA SPORTS online 2008 (HKLM\...\82A44D22-9452-49FB-00FB-CEC7DCAF7E23) (Version:  - )
e-tax 2009 (HKLM\...\{919F3D91-8374-410F-932B-A126F2C85426}) (Version: 1.0.0.0 - DWS)
e-tax 2010 (HKLM\...\{FBE569CA-BFEB-4E57-A674-F94D938E1AEF}) (Version: 1.0.682 - DWS)
e-tax 2011 (HKLM\...\{C078C299-C2C2-4110-A6EF-8D5E66C228DA}) (Version: 11.1.704 - ATO)
e-tax 2012 (HKLM\...\{B0F1B02F-47A6-411D-A38B-E44CC7F53CCC}) (Version: 6.0.577 - Australian Taxation Office)
e-tax 2013 (HKLM\...\{FFF14233-FE39-4671-A38E-76FD8F24A879}) (Version: 0.8.509 - Australian Taxation Office)
e-tax 2014 (HKLM\...\{42D5C0B2-A309-4F84-9BD7-5DDDFE6C09E1}) (Version: 2.10.788 - Australian Taxation Office)
Everio MediaBrowser 3 (HKLM\...\{548F12A2-BD2E-4B5A-9B62-BBC0AA8EB3DD}) (Version: 3.00.232 - PIXELA)
Hoyle Board Games 2005 (HKLM\...\{FB1CCBED-FA66-4D30-BFD7-EF20AD0A81FE}) (Version: 1.0.0.0 - Sierra Entertainment, Inc.)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version:  - )
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.670 - Oracle)
Java™ 6 Update 7 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160070}) (Version: 1.6.0.70 - Sun Microsystems, Inc.)
Junk Mail filter update (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM\...\{95120000-0120-0409-0000-0000000FF1CE}) (Version: 12.0.6414.1000 - Microsoft Corporation)
Microsoft Office Small Business Connectivity Components (HKLM\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{E7084B89-69E0-46B3-A118-8F99D06988CD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{45B3A3BD-F90D-48FE-A147-D74878A51033}) (Version: 7.03.0920 - Nero AG)
PaperPort Image Printer (HKLM\...\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}) (Version: 1.00.0000 - Nuance Communications, Inc.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.3409.a - CyberLink Corporation)
PowerProducer (HKLM\...\{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version:  - )
Reader for PC (HKLM\...\{38FB32F7-5A2A-40E4-B106-4C35F75725CD}) (Version: 2.4.00.05230 - Sony Corporation)
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
ScanSoft PaperPort 11 (HKLM\...\{7A8FF745-BBC5-482B-88E4-18D3178249A9}) (Version: 11.1.0000 - Nuance Communications, Inc.)
Tiger Woods PGA TOUR 08 (HKLM\...\{2FEA102C-F535-4513-009B-57B165013C18}) (Version:  - Electronic Arts)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vodafone Mobile Broadband Lite (HKLM\...\{6C29152D-3FF9-43B2-84E4-9B35FC0BF5C2}) (Version: 10.2.100.29897 - Vodafone)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM\...\{9422C8EA-B0C6-4197-B8FC-DC797658CA00}) (Version: 5.000.818.6 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points  =========================

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 20:23 - 2006-09-19 07:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {AF50E7A3-93CD-4F68-8423-8E97105B18FE} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation)
Task: {FCA941F9-980E-47BC-ADD0-CF333600930E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-06] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-08 17:34 - 2015-03-08 17:33 - 00620056 ____N () C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
2009-04-06 15:14 - 2007-05-14 12:54 - 00272024 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe
2009-09-26 10:28 - 2009-04-11 16:28 - 00368640 _____ () C:\Windows\system32\msjetoledb40.dll
2014-05-23 19:13 - 2014-05-23 19:13 - 00880640 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\fsk.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00040264 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskMediaPlayers.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00239944 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\Fskin.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00026952 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskinLocalize.dll
2014-04-25 22:27 - 2014-04-25 22:27 - 00798720 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskSecurity.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00125256 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskDocumentViewer.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00016200 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskPower.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00024904 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskNetInterface.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00017224 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskMobileMediaDevice.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00015176 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\FskTimeHardware.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00034632 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ticket.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00018760 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ebookDeviceNotifier.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00092488 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\ebookUsb.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00149832 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\readerAppHelper.dll
2014-05-23 19:15 - 2014-05-23 19:15 - 00178504 _____ () C:\Program Files\Sony\ReaderDesktop\appHelper\USBDetector.dll
2012-01-06 17:13 - 2004-09-09 17:13 - 00364544 ____N () C:\Program Files\PIXELA\Everio MediaBrowser 3\pxl_m17n_tool.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3079339976-73176916-3153912546-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\img16.jpg
DNS Servers: 192.168.1.254

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== Accounts: =============================

Administrator (S-1-5-21-3079339976-73176916-3153912546-500 - Administrator - Disabled)
Guest (S-1-5-21-3079339976-73176916-3153912546-501 - Limited - Disabled)
Shane (S-1-5-21-3079339976-73176916-3153912546-1003 - Administrator - Enabled) => C:\Users\Shane

==================== Faulty Device Manager Devices =============

Name: Microsoft ISATAP Adapter #2
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Microsoft ISATAP Adapter #4
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

==================== Event log errors: =========================

Application errors:
==================
Error: (03/27/2015 10:27:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/27/2015 10:27:14 PM) (Source: VmbService) (EventID: 0) (User: )
Description: conflictManagerTypeValue

Error: (03/27/2015 10:21:25 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Failed to create restore point on volume (Process = C:\Windows\servicing\TrustedInstaller.exe; Descripton = Windows Modules Installer; Hr = 0x80042306).

Error: (03/27/2015 10:21:20 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Volume Shadow Copy Service error: Unexpected error DeviceIoControl(\\?\Volume{265633fe-4295-11de-a38a-806e6f6e6963} - 0000013C,0x0053c008,01080FC8,0,00079D00,4096,[0]).  hr = 0x8007045d.

Operation:
   Processing EndPrepareSnapshots

Context:
   Execution Context: System Provider

Error: (03/27/2015 10:21:12 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Volume Shadow Copy Service error: Unexpected error DeviceIoControl(\\?\Volume{265633fe-4295-11de-a38a-806e6f6e6963} - 0000013C,0x0053c008,01080FC8,0,00079D00,4096,[0]).  hr = 0x8007045d.

Operation:
   Processing EndPrepareSnapshots

Context:
   Execution Context: System Provider

Error: (03/27/2015 10:21:04 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Volume Shadow Copy Service error: Unexpected error DeviceIoControl(\\?\Volume{265633fe-4295-11de-a38a-806e6f6e6963} - 0000013C,0x0053c008,01080FC8,0,00079D00,4096,[0]).  hr = 0x8007045d.

Operation:
   Processing EndPrepareSnapshots

Context:
   Execution Context: System Provider

Error: (03/27/2015 10:20:44 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Volume Shadow Copy Service error: Unexpected error DeviceIoControl(\\?\Volume{265633fe-4295-11de-a38a-806e6f6e6963} - 0000013C,0x0053c008,01080FC8,0,00079D00,4096,[0]).  hr = 0x8007045d.

Operation:
   Processing EndPrepareSnapshots

Context:
   Execution Context: System Provider

Error: (03/27/2015 10:20:32 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Volume Shadow Copy Service error: Unexpected error DeviceIoControl(\\?\Volume{265633fe-4295-11de-a38a-806e6f6e6963} - 0000013C,0x0053c008,01080FC8,0,00079D00,4096,[0]).  hr = 0x8007045d.

Operation:
   Processing EndPrepareSnapshots

Context:
   Execution Context: System Provider

Error: (03/27/2015 10:19:59 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Failed to create restore point on volume (Process = C:\Windows\system32\svchost.exe -k netsvcs; Descripton = Windows Update; Hr = 0x80042306).

Error: (03/27/2015 10:19:54 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Volume Shadow Copy Service error: Unexpected error DeviceIoControl(\\?\Volume{265633fe-4295-11de-a38a-806e6f6e6963} - 00000158,0x0053c008,01080FC8,0,00079D00,4096,[0]).  hr = 0x8007045d.

Operation:
   Processing EndPrepareSnapshots

Context:
   Execution Context: System Provider

System errors:
=============
Error: (03/27/2015 10:27:42 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: i8042prt

Error: (03/27/2015 10:27:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: AVG WatchDog%%1053

Error: (03/27/2015 10:27:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000AVG WatchDog

Error: (03/27/2015 10:27:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: AVGIDSAgent%%1053

Error: (03/27/2015 10:27:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000AVGIDSAgent

Error: (03/27/2015 10:25:43 PM) (Source: disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk0\DR0.

Error: (03/27/2015 10:25:43 PM) (Source: disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk0\DR0.

Error: (03/27/2015 10:25:43 PM) (Source: disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk0\DR0.

Error: (03/27/2015 10:25:43 PM) (Source: disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk0\DR0.

Error: (03/27/2015 10:25:43 PM) (Source: disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk0\DR0.

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2015-03-27 22:46:51.342
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:46:51.248
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:46:51.154
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:46:51.060
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:46:50.935
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:46:50.842
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:46:50.748
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:46:50.638
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:35:04.571
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-27 22:35:04.470
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Pentium® Dual-Core CPU E5200 @ 2.50GHz
Percentage of memory in use: 68%
Total physical RAM: 2037.52 MB
Available physical RAM: 649.94 MB
Total Pagefile: 4312.32 MB
Available Pagefile: 2581.33 MB
Total Virtual: 2047.88 MB
Available Virtual: 1909.72 MB

==================== Drives ================================

Drive c: (OS_Install) (Fixed) (Total:222.35 GB) (Free:176.25 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 7F1FC6E9)
Partition 1: (Active) - (Size=222.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=10.5 GB) - (Type=1C)

==================== End Of Log ============================


  • 0

Advertisements


#2
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi sorry for the delay . What error does AVG give when you try to start or open it ?

Could I have a fresh FRST scan please


THEN

Download aswMBR.exe ( 4.5mb ) to your desktop.
Double click the aswMBR.exe to run it.
You may be offered the option of using virtualisation, accept that
When it offers to download the virus database allow that as well
Click the "Scan" button to start scan

AswMBR%20scan.JPG


On completion of the scan click save log, save it to your desktop and post in your next reply
  • 0

#3
xorn42

xorn42

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts

Hi, very sorry to put you through the trouble. I was attempting to fix a friends PC. He decided he didn't care about his data and requested me to re-format the drive & re-install windows. So that being the case, I won't need to run any further tests etc. Thank you for your reply anyway. I do appreciate that you took the time to reply. Thank you.


  • 0

#4
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Thank you for the update and it is no problem
  • 0

#5
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP