Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Can boot only before login screen after AVG Tuneup


  • Please log in to reply

#1
menta

menta

    New Member

  • Member
  • Pip
  • 2 posts
A friend of mine first did AVG virus scan which found no viruses. Next he did an AVG TuneUp Clean which did a register cleanup and format, the computer restarted and this is where the problem begun.

The computer boots untill the login screen (I guess, because I can only see a GUI with a mouse pointer ) and suddenly the computer goes black and reboots. I already did F8 and all modes didn't work.
Not safe mode and even the mode that's says not to reboot after a fault. All modes give the same problem, they suddenly stop loading when seeing the GUI for a few seconds, so I can't give an error message.

Windows vista recovery doesn't work. It finds problems with system files but can't fix them. First I couldn't even access the file structure on the harddisk (but the harddisk booted) so I did a CHKDSK which found errors.
The file structure is back. So maybe there is a physical problem but that would be strange because I can access now without problem the harddisk. And the problem did arise after AVG TuneUp.

Here is already a FRST-log

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-12-2012
Ran by SYSTEM at 05-12-2012 08:57:34
Running from G:\
Windows Vista ™ Home Premium (X86) OS Language: English(US)
The current controlset is ControlSet002

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide [x]
HKLM\...\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START [x]
HKLM\...\Run: [NDSTray.exe] NDSTray.exe [x]
HKLM\...\Run: [cfFncEnabler.exe] cfFncEnabler.exe [x]
HKLM\...\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe IE PA [20480 2008-05-28] ( )
HKLM\...\Run: [Toshiba TEMPO] C:\Program Files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exe [103824 2008-04-24] (Toshiba Europe GmbH)
HKLM\...\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup [581632 2007-07-09] (TOSHIBA)
HKLM\...\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe [184320 2007-12-15] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" /start [417792 2008-04-29] (Chicony)
HKLM\...\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE [x]
HKLM\...\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe [x]
HKLM\...\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe [x]
HKLM\...\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe [x]
HKLM\...\Run: [HDMICtrlMan] C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe [716800 2008-04-26] (TOSHIBA Corporation.)
HKLM\...\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" [2596984 2012-07-30] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [641704 2012-07-03] (Advanced Micro Devices, Inc.)
HKU\ Axel\...\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [430080 2008-04-24] (TOSHIBA)
HKU\ Axel\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\ Axel\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
HKU\ Axel\...\RunOnce: [RegistryDefrag Success Message] "C:\Program Files\AVG\AVG PC TuneUp\TUMessages.exe" /RegDefrag_Success [120184 2012-08-23] (AVG)
HKU\Default\...\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [430080 2008-04-24] (TOSHIBA)
HKU\Default User\...\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [430080 2008-04-24] (TOSHIBA)
HKU\Gast\...\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [430080 2008-04-24] (TOSHIBA)
HKU\Gast\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\Gast\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Tcpip\Parameters: [DhcpNameServer] 195.130.130.1 195.130.131.1
Startup: C:\Users\Default\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)

==================== Services (Whitelisted) ===================

2 AVGIDSAgent; "C:\Program Files\AVG\AVG2012\avgidsagent.exe" [5167736 2012-08-12] (AVG Technologies CZ, s.r.o.)
2 avgwd; "C:\Program Files\AVG\AVG2012\avgwdsvc.exe" [193288 2012-02-13] (AVG Technologies CZ, s.r.o.)
2 ConfigFree Service; "C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe" [40960 2008-04-16] (TOSHIBA CORPORATION)
2 MBAMScheduler; "C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe" [399432 2012-09-29] (Malwarebytes Corporation)
2 MBAMService; "C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe" [676936 2012-09-29] (Malwarebytes Corporation)
2 o2flash; "C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe" [65536 2007-02-12] (O2Micro International)
2 PuranDefrag; "C:\Windows\system32\PuranDefragS.exe" [229376 2011-04-08] (Puran Software)
3 SmartFaceVWatchSrv; "C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe" [73728 2008-04-24] (Toshiba)
2 TempoMonitoringService; "C:\Program Files\Toshiba TEMPRO\TempoSVC.exe" [99720 2008-04-24] (Toshiba Europe GmbH)
2 TosCoSrv; "C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe" [431456 2008-01-17] (TOSHIBA Corporation)
2 TOSHIBA SMART Log Service; "C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe" [126976 2007-12-03] (TOSHIBA Corporation)
2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.)
2 TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [x]

==================== Drivers (Whitelisted) ====================

3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdLH3.sys [83984 2012-02-23] (Advanced Micro Devices)
3 HSFHWAZL; C:\Windows\System32\DRIVERS\HSF_HWAZL.sys [210688 2008-05-08] (Conexant Systems, Inc.)
3 HssDrv; C:\Windows\System32\DRIVERS\HssDrv.sys [37376 2012-03-26] (AnchorFree Inc.)
3 KMWDFILTER; C:\Windows\System32\DRIVERS\KMWDFILTER.sys [17408 2008-10-09] (Windows ® Codename Longhorn DDK provider)
3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [22856 2012-09-29] (Malwarebytes Corporation)
0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF32.sys [102728 2010-11-04] (Matrox Graphics Inc.)
3 NETwNv32; C:\Windows\System32\DRIVERS\NETwNv32.sys [7346176 2011-10-31] (Intel Corporation)
3 QIOMem; C:\Windows\System32\DRIVERS\QIOMem.sys [8192 2007-04-09] (TOSHIBA)
3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
3 udsstub; C:\Windows\System32\DRIVERS\udsstub.sys [16000 2012-06-18] (SysNucleus)
3 UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [18432 2007-12-17] (Chicony Electronics Co., Ltd.)
3 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [x]
3 AVGIDSFilter; C:\Windows\System32\DRIVERS\avgidsfilterx.sys [x]
0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [x]
3 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [x]
1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [x]
1 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [x]
0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [x]
1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [x]
3 cpudrv; \??\C:\Program Files\SystemRequirementsLab\cpudrv.sys [x]
3 igfx; C:\Windows\System32\DRIVERS\igdkmd32.sys [x]
3 IntcHdmiAddService; C:\Windows\System32\drivers\IntcHdmi.sys [x]
3 IpInIp; C:\Windows\System32\DRIVERS\ipinip.sys [x]
3 NwlnkFlt; C:\Windows\System32\DRIVERS\nwlnkflt.sys [x]
3 NwlnkFwd; C:\Windows\System32\DRIVERS\nwlnkfwd.sys [x]
3 Tosrfcom; [x]
3 WinRing0_1_2_0; \??\C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2012-12-05 08:57 - 2012-12-05 08:57 - 00000000 ____D C:\FRST
2012-12-04 05:59 - 2012-12-04 06:14 - 00313968 ____A C:\Windows\System32\FNTCACHE.DAT
2012-11-20 08:26 - 2012-11-20 08:31 - 00000000 ____A C:\Windows\logboot_20.11.2012.tureg.log
2012-11-20 05:54 - 2012-11-20 05:54 - 00000000 ____A C:\Windows\setuperr.log
2012-11-20 05:54 - 2012-11-20 05:54 - 00000000 ____A C:\Windows\setupact.log
2012-11-20 05:52 - 2012-11-20 05:52 - 00001886 ____A C:\Users\Public\Desktop\AVG 1-klik Onderhoud.lnk
2012-11-20 05:52 - 2012-11-20 05:52 - 00001872 ____A C:\Users\Public\Desktop\AVG PC TuneUp.lnk
2012-11-20 05:52 - 2012-08-23 02:31 - 00032120 ____A (AVG) C:\Windows\System32\TURegOpt.exe
2012-11-20 05:52 - 2012-08-23 02:31 - 00021880 ____A (AVG) C:\Windows\System32\authuitu.dll
2012-11-20 05:51 - 2012-11-20 05:51 - 00000000 ____D C:\Users\ Axel\AppData\Roaming\AVG
2012-11-20 05:50 - 2012-11-20 05:52 - 00000000 ____D C:\Users\All Users\AVG
2012-11-20 05:50 - 2012-11-20 05:50 - 00000000 __SHD C:\Users\All Users\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2012-11-20 05:49 - 2012-11-20 05:49 - 58674136 ____A (AVG) C:\Users\ Axel\Downloads\avg_tuh_stf_all_2013_2_24c5.exe
2012-11-18 11:46 - 2012-11-18 11:46 - 00010484 ____A C:\Users\ Axel\Documents\Politie Betekenis.odt
2012-11-17 11:50 - 2012-06-18 04:58 - 00016000 ____A (SysNucleus) C:\Windows\System32\Drivers\udsstub.sys
2012-11-17 11:46 - 2010-11-04 06:18 - 00102728 ____A (Matrox Graphics Inc.) C:\Windows\System32\Drivers\MxEFUF32.sys
2012-11-16 01:44 - 2012-10-08 00:28 - 12320768 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-11-16 01:44 - 2012-10-08 00:02 - 09738240 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-11-16 01:44 - 2012-10-07 23:56 - 01800704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-11-16 01:44 - 2012-10-07 23:48 - 01129472 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-11-16 01:44 - 2012-10-07 23:48 - 01103872 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-11-16 01:44 - 2012-10-07 23:47 - 01427968 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-11-16 01:44 - 2012-10-07 23:46 - 00231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-11-16 01:44 - 2012-10-07 23:45 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-11-16 01:44 - 2012-10-07 23:44 - 00142848 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-11-16 01:44 - 2012-10-07 23:43 - 00717824 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-11-16 01:44 - 2012-10-07 23:43 - 00420864 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-11-16 01:44 - 2012-10-07 23:42 - 00607744 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-11-16 01:44 - 2012-10-07 23:41 - 01793024 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-11-16 01:44 - 2012-10-07 23:41 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-11-16 01:44 - 2012-10-07 23:40 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-11-16 01:44 - 2012-10-07 23:37 - 00176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-11-15 11:45 - 2012-10-12 06:29 - 02047488 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-11-15 11:45 - 2012-09-25 08:19 - 00075776 ____A (Microsoft Corporation) C:\Windows\System32\synceng.dll
2012-11-12 04:16 - 2010-06-02 05:49 - 00738360 ____A (Conexant Systems, Inc.) C:\Windows\System32\Drivers\HSF_CNXT.sys
2012-11-12 04:16 - 2008-05-08 05:53 - 00985472 ____A (Conexant Systems, Inc.) C:\Windows\System32\Drivers\HSF_DP.sys
2012-11-12 04:16 - 2008-05-08 05:52 - 00210688 ____A (Conexant Systems, Inc.) C:\Windows\System32\Drivers\HSF_HWAZL.sys
2012-11-12 04:15 - 2008-03-27 03:33 - 00146146 ____A C:\Windows\System32\Drivers\HSFLProf.cty
2012-11-12 04:15 - 2007-08-03 01:40 - 00143792 ____A C:\Windows\System32\Drivers\HSFProf.cty
2012-11-12 04:15 - 2006-09-18 21:42 - 00141572 ____A C:\Windows\System32\Drivers\HSFSProf.cty
2012-11-12 04:15 - 2006-09-18 21:42 - 00141392 ____A C:\Windows\System32\Drivers\HSFTProf.cty
2012-11-12 04:15 - 2006-09-18 21:42 - 00133972 ____A C:\Windows\System32\Drivers\HSFDProf.cty
2012-11-12 04:15 - 2006-09-18 21:42 - 00133528 ____A C:\Windows\System32\Drivers\HSFEProf.cty
2012-11-11 03:41 - 2007-05-01 01:59 - 00160768 ____A (Conexant Systems Inc.) C:\Windows\System32\Drivers\CHDART.sys
2012-11-11 03:41 - 2007-03-21 10:48 - 00212992 ____A (Conexant Systems, Inc.) C:\Windows\System32\UCI32A19.dll
2012-11-09 13:38 - 2012-11-09 13:38 - 00000000 ____D C:\Users\All Users\ATI
2012-11-09 12:19 - 2012-11-09 12:19 - 00000000 ____D C:\Users\ Axel\AppData\Local\Innovative Solutions
2012-11-09 12:15 - 2012-11-09 13:32 - 00000000 ____D C:\Program Files\AMD APP
2012-11-09 12:14 - 2012-11-09 13:32 - 00000000 ____D C:\Program Files\ATI Technologies
2012-11-09 12:07 - 2012-11-09 12:07 - 00000000 ____D C:\AMD
2012-11-09 12:03 - 2012-11-09 12:03 - 00023456 ____A (Phoenix Technologies) C:\Windows\System32\Drivers\DrvAgent32.sys
2012-11-09 11:54 - 2012-11-09 11:54 - 00000000 ____D C:\Users\ Axel\AppData\Local\Windows Live
2012-11-09 11:54 - 2012-11-09 11:54 - 00000000 ____D C:\Program Files\Common Files\Windows Live
2012-11-09 11:54 - 2009-08-04 00:02 - 00754688 ____A (Microsoft Corporation) C:\Windows\System32\webservices.dll

==================== One Month Modified Files and Folders ========

2012-12-05 08:56 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\System32\nl-NL
2012-12-04 15:00 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\System32\LogFiles
2012-12-04 10:22 - 2006-11-02 04:47 - 00009216 ____A C:\Windows\System32\umstartup.etl
2012-12-04 06:14 - 2012-12-04 05:59 - 00313968 ____A C:\Windows\System32\FNTCACHE.DAT
2012-11-20 08:31 - 2012-11-20 08:26 - 00000000 ____A C:\Windows\logboot_20.11.2012.tureg.log
2012-11-20 08:31 - 2012-07-12 05:21 - 00000000 ____D C:\users\ Axel
2012-11-20 08:31 - 2006-11-02 02:22 - 42205184 ____A C:\Windows\System32\config\COMPONENTS_tureg_old
2012-11-20 08:31 - 2006-11-02 02:22 - 40632320 ____A C:\Windows\System32\config\SOFTWARE_tureg_old
2012-11-20 08:31 - 2006-11-02 02:22 - 20971520 ____A C:\Windows\System32\config\SYSTEM_tureg_old
2012-11-20 08:31 - 2006-11-02 02:22 - 00524288 ____A C:\Windows\System32\config\DEFAULT_tureg_old
2012-11-20 08:31 - 2006-11-02 02:22 - 00262144 ____A C:\Windows\System32\config\SECURITY_tureg_old
2012-11-20 06:17 - 2012-10-09 07:14 - 01384442 ____A C:\Windows\WindowsUpdate.log
2012-11-20 06:17 - 2006-11-02 05:01 - 00032542 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-11-20 06:17 - 2006-11-02 05:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-11-20 06:17 - 2006-11-02 04:47 - 00003344 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2012-11-20 06:17 - 2006-11-02 04:47 - 00003344 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2012-11-20 06:17 - 2006-11-02 02:22 - 00262144 ____A C:\Windows\System32\config\SAM_tureg_old
2012-11-20 06:11 - 2012-08-05 05:17 - 00000940 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-11-20 05:54 - 2012-11-20 05:54 - 00000000 ____A C:\Windows\setuperr.log
2012-11-20 05:54 - 2012-11-20 05:54 - 00000000 ____A C:\Windows\setupact.log
2012-11-20 05:52 - 2012-11-20 05:52 - 00001886 ____A C:\Users\Public\Desktop\AVG 1-klik Onderhoud.lnk
2012-11-20 05:52 - 2012-11-20 05:52 - 00001872 ____A C:\Users\Public\Desktop\AVG PC TuneUp.lnk
2012-11-20 05:52 - 2012-11-20 05:50 - 00000000 ____D C:\Users\All Users\AVG
2012-11-20 05:51 - 2012-11-20 05:51 - 00000000 ____D C:\Users\ Axel\AppData\Roaming\AVG
2012-11-20 05:51 - 2012-07-12 06:06 - 00000000 ____D C:\Program Files\AVG
2012-11-20 05:50 - 2012-11-20 05:50 - 00000000 __SHD C:\Users\All Users\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2012-11-20 05:49 - 2012-11-20 05:49 - 58674136 ____A (AVG) C:\Users\ Axel\Downloads\avg_tuh_stf_all_2013_2_24c5.exe
2012-11-20 01:12 - 2008-01-20 22:47 - 01506918 ____A C:\Windows\System32\PerfStringBackup.INI
2012-11-20 01:12 - 2008-01-20 22:47 - 00677188 ____A C:\Windows\System32\perfh013.dat
2012-11-20 01:12 - 2008-01-20 22:47 - 00130186 ____A C:\Windows\System32\perfc013.dat
2012-11-20 01:11 - 2012-07-12 05:56 - 00000000 ____D C:\Users\All Users\MFAData
2012-11-20 01:10 - 2012-07-12 06:07 - 00000000 ____D C:\Windows\System32\Drivers\AVG
2012-11-18 11:46 - 2012-11-18 11:46 - 00010484 ____A C:\Users\ Axel\Documents\Politie Betekenis.odt
2012-11-17 13:23 - 2012-07-12 10:36 - 00000000 ____D C:\Users\ Axel\AppData\Roaming\vlc
2012-11-17 03:34 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\Microsoft.NET
2012-11-16 13:10 - 2012-07-30 03:25 - 00000000 ____D C:\Users\ Axel\AppData\Roaming\Audacity
2012-11-16 01:48 - 2008-07-04 07:25 - 00000000 ____D C:\Users\All Users\Microsoft Help
2012-11-16 01:48 - 2006-11-02 02:24 - 64010424 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe
2012-11-11 03:44 - 2008-07-04 06:32 - 00000000 ____D C:\Program Files\CONEXANT
2012-11-09 14:16 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\rescache
2012-11-09 13:59 - 2008-07-04 07:13 - 00000000 ____D C:\Users\All Users\Adobe
2012-11-09 13:58 - 2012-08-05 05:17 - 00697272 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-11-09 13:58 - 2012-08-05 05:16 - 00073656 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-11-09 13:38 - 2012-11-09 13:38 - 00000000 ____D C:\Users\All Users\ATI
2012-11-09 13:34 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\System32\Msdtc
2012-11-09 13:32 - 2012-11-09 12:15 - 00000000 ____D C:\Program Files\AMD APP
2012-11-09 13:32 - 2012-11-09 12:14 - 00000000 ____D C:\Program Files\ATI Technologies
2012-11-09 13:32 - 2012-08-06 07:43 - 00000000 ____D C:\users\Gast
2012-11-09 13:32 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\System32\spool
2012-11-09 13:32 - 2006-11-02 02:22 - 42205184 ____A C:\Windows\System32\config\components_previous
2012-11-09 13:32 - 2006-11-02 02:22 - 40632320 ____A C:\Windows\System32\config\software_previous
2012-11-09 13:32 - 2006-11-02 02:22 - 20185088 ____A C:\Windows\System32\config\system_previous
2012-11-09 13:32 - 2006-11-02 02:22 - 00524288 ____A C:\Windows\System32\config\default_previous
2012-11-09 13:32 - 2006-11-02 02:22 - 00262144 ____A C:\Windows\System32\config\security_previous
2012-11-09 13:32 - 2006-11-02 02:22 - 00262144 ____A C:\Windows\System32\config\sam_previous
2012-11-09 13:31 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\registration
2012-11-09 13:14 - 2012-07-31 00:55 - 00001356 ____A C:\Users\ Axel\AppData\Local\d3d9caps.dat
2012-11-09 12:19 - 2012-11-09 12:19 - 00000000 ____D C:\Users\ Axel\AppData\Local\Innovative Solutions
2012-11-09 12:07 - 2012-11-09 12:07 - 00000000 ____D C:\AMD
2012-11-09 12:03 - 2012-11-09 12:03 - 00023456 ____A (Phoenix Technologies) C:\Windows\System32\Drivers\DrvAgent32.sys
2012-11-09 12:03 - 2012-08-02 08:53 - 00000000 ____D C:\Users\ Axel\AppData\Local\eSupport.com
2012-11-09 11:59 - 2012-08-02 09:09 - 00319456 ____A (Microsoft Corporation) C:\Windows\DIFxAPI.dll
2012-11-09 11:54 - 2012-11-09 11:54 - 00000000 ____D C:\Users\ Axel\AppData\Local\Windows Live
2012-11-09 11:54 - 2012-11-09 11:54 - 00000000 ____D C:\Program Files\Common Files\Windows Live
2012-11-08 05:54 - 2012-09-10 12:03 - 00000000 ____D C:\Users\ Axel\AppData\Roaming\SystemRequirementsLab
2012-11-08 05:54 - 2012-09-10 12:03 - 00000000 ____D C:\Program Files\SystemRequirementsLab


==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================


==================== Memory info ===========================

Percentage of memory in use: 11%
Total physical RAM: 4090.07 MB
Available physical RAM: 3621.11 MB
Total Pagefile: 3840.23 MB
Available Pagefile: 3674.21 MB
Total Virtual: 2047.88 MB
Available Virtual: 1975.72 MB

==================== Partitions =============================

1 Drive c: (Vista) (Fixed) (Total:150.66 GB) (Free:115.36 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
2 Drive d: (Data) (Fixed) (Total:145.97 GB) (Free:135.52 GB) NTFS
4 Drive f: (WinRE) (Fixed) (Total:1.46 GB) (Free:1.03 GB) NTFS
5 Drive g: (PENDRIVE) (Removable) (Total:14.91 GB) (Free:14.66 GB) FAT32
6 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 298 GB 993 KB
Disk 1 Online 15 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 1500 MB 1024 KB
Partition 2 Primary 151 GB 1501 MB
Partition 3 Primary 146 GB 152 GB

=========================================================

Disk: 0
Partition 1
Type : 27
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 F WinRE NTFS Partition 1500 MB Healthy Hidden

=========================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 0 C Vista NTFS Partition 151 GB Healthy

=========================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 D Data NTFS Partition 146 GB Healthy

=========================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 15 GB 5208 KB

=========================================================

Disk: 1
Partition 1
Type : 0C
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 0 G PENDRIVE FAT32 Removable 15 GB Healthy

=========================================================

Last Boot: 2012-11-20 01:14

==================== End Of Log ============================



Hope you guys can help me any further.
  • 0

Advertisements


#2
menta

menta

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
Looks like you guys can't fins traces of malware.
After further research I've found that I can replace the corrupt system files with the working system files of another vista system or install CD.
But I have an HP OEM and my friend Toshiba OEM, is that a problem ?
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP