FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-10-2013
Ran by tom (administrator) on TOM-PC on 29-10-2013 20:35:28
Running from C:\Users\tom\.thumbnails\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: English(US)
Internet Explorer Version 7
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer Networking Ltd.) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\avastui.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
(Spigot, Inc.) C:\Users\tom\AppData\Roaming\Search Protection\SearchProtection.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-19] (Microsoft Corporation)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [4423680 2007-03-23] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Windows\SkyTel.exe [1822720 2007-03-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [snp2std] - C:\Windows\vsnp2std.exe [339968 2005-10-20] (Sonix)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\Alwil Software\Avast5\avastui.exe [3567800 2013-10-24] (AVAST Software)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehtray.exe [125952 2008-01-19] (Microsoft Corporation)
HKCU\...\Run: [SpybotSD TeaTimer] - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480 2009-03-05] (Safer-Networking Ltd.)
HKCU\...\Run: [SearchProtection] - C:\Users\tom\AppData\Roaming\Search Protection\SearchProtection.exe [832360 2013-09-03] (Spigot, Inc.)
MountPoints2: F - F:\LaunchU3.exe -a
MountPoints2: {0767abb1-d326-11dc-9831-00030d6cb0d9} - D:\setup.exe
MountPoints2: {16ba0988-3e38-11e3-9cd1-00030d6cb0d9} - F:\LaunchU3.exe -a
MountPoints2: {2795c196-95e2-11dd-8f38-00030d6cb0d9} - D:\boyedt.com
MountPoints2: {315941da-991e-11dc-8982-00030d6cb0d9} - SVICHOSST.exe
MountPoints2: {4592ec47-931a-11dc-b2cf-00030d6cb0d9} - F:\LaunchU3.exe -a
MountPoints2: {671fd4e5-b175-11dd-bb2f-00030d6cb0d9} - D:\setupSNK.exe
MountPoints2: {beb7a8b9-1eb2-11de-838b-00030d6cb0d9} - F:\xih9.cmd
MountPoints2: {f95c27f5-3ecf-11de-bb7b-00030d6cb0d9} - D:\xih9.cmd
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://uk.search.yah...r=spigot-yhp-ie
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://support.thetechguys.com
URLSearchHook: HKCU - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
URLSearchHook: HKCU - (No Name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No File
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
http://search.condui...&ctid=CT2786678
SearchScopes: HKCU - DefaultScope {8F568039-CC7E-47F9-B209-F6915DC187C6} URL =
http://uk.search.yah...p={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
http://www.bing.com/...rc=IE-SearchBox
SearchScopes: HKCU - {8F568039-CC7E-47F9-B209-F6915DC187C6} URL =
http://uk.search.yah...p={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
http://search.condui...&ctid=CT2786678
BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
http://fpdownload.ma...t/ultrashim.cab
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Users\tom\AppData\Roaming\Mozilla\Firefox\Profiles\8mjdsicj.default-1377682916857
FF Homepage: www.google.com
FF Keyword.URL: hxxp://uk.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=714647&p=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Content Upload Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Content Uploader\npUpload.dll No File
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @facebook.com/FBPlugin,version=1.0.3 - C:\Users\tom\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll No File
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: adblockpopups - C:\Users\tom\AppData\Roaming\Mozilla\Firefox\Profiles\8mjdsicj.default-1377682916857\Extensions\
[email protected]
FF Extension: YoutubeDownloader - C:\Users\tom\AppData\Roaming\Mozilla\Firefox\Profiles\8mjdsicj.default-1377682916857\Extensions\
[email protected]
FF Extension: Adblock Plus - C:\Users\tom\AppData\Roaming\Mozilla\Firefox\Profiles\8mjdsicj.default-1377682916857\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\
[email protected]
FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "urls_to_restore_on_startup": [ ]
CHR HKLM\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\tom\AppData\Local\Temp\ccex.crx
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx
========================== Services (Whitelisted) =================
R2 Akamai; c:\program files\common files\akamai/netsession_win_8fa3539.dll [4569856 2013-07-01] (Akamai Technologies, Inc.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2013-10-24] (AVAST Software)
R2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [810320 2008-01-28] (Safer Networking Ltd.)
==================== Drivers (Whitelisted) ====================
S3 alcan5wn; C:\Windows\System32\DRIVERS\alcan5wn.sys [53600 2003-12-08] (THOMSON)
S3 alcaudsl; C:\Windows\System32\DRIVERS\alcaudsl.sys [70688 2003-12-08] (THOMSON)
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [35656 2013-10-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [70384 2013-10-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [54832 2013-10-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2013-10-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [774392 2013-10-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [403440 2013-10-24] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57672 2013-10-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178304 2013-10-24] ()
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2004-04-01] (Padus, Inc.)
S3 SNP2STD; C:\Windows\System32\DRIVERS\snp2sxp.sys [10446720 2006-02-20] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [685816 2008-02-04] ()
S2 adfs; No ImagePath
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-29 20:35 - 2013-10-29 20:35 - 00000000 ____D C:\FRST
2013-10-29 19:41 - 2013-10-29 19:41 - 00146756 _____ C:\Users\tom\Documents\cc_20131029_194057.reg
2013-10-29 19:35 - 2013-10-29 19:35 - 00000809 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-29 19:35 - 2013-10-29 19:35 - 00000000 ____D C:\Program Files\CCleaner
2013-10-29 16:42 - 2013-10-29 16:42 - 00000000 ____D C:\Users\tom\AppData\Roaming\AVG
2013-10-29 16:35 - 2013-10-29 16:46 - 00000000 ____D C:\ProgramData\AVG
2013-10-29 16:34 - 2013-10-29 16:49 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-10-29 11:27 - 2013-10-29 11:27 - 00002539 _____ C:\Users\tom\AppData\Local\recently-used.xbel
2013-10-24 14:31 - 2013-10-24 14:31 - 00000000 ____D C:\Users\tom\AppData\Roaming\AVAST Software
2013-10-24 10:08 - 2013-10-24 10:08 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-20 14:07 - 2013-10-20 14:07 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 14:06 - 2013-10-20 14:05 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-20 14:06 - 2013-10-20 14:05 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-20 14:06 - 2013-10-20 14:05 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-20 14:06 - 2013-10-20 14:05 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 01177600 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00479744 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00380928 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-09 02:50 - 2013-09-24 03:07 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-09 02:50 - 2013-09-24 03:06 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2013-10-09 02:50 - 2013-09-23 20:13 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-09 02:50 - 2013-09-23 20:01 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-09 02:49 - 2013-09-24 03:07 - 06119424 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-09 02:49 - 2013-09-24 03:07 - 03625984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-09 01:09 - 2013-08-27 01:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-09 01:09 - 2013-08-27 01:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-09 01:09 - 2013-08-27 01:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-09 01:08 - 2013-08-29 07:36 - 02050048 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 01:08 - 2013-08-27 02:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-09 01:08 - 2013-08-27 02:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-09 01:08 - 2013-08-27 02:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-09 01:08 - 2013-08-27 02:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-09 01:08 - 2013-08-27 01:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-09 01:08 - 2013-08-27 01:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-09 01:08 - 2013-08-01 03:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 01:08 - 2013-08-01 02:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-09 01:08 - 2013-07-20 10:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 01:08 - 2013-06-29 02:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 01:08 - 2013-06-29 02:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 01:08 - 2013-06-29 02:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 01:08 - 2013-06-29 02:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 01:08 - 2013-06-26 23:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 01:08 - 2013-06-04 04:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 01:08 - 2013-06-04 01:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 01:08 - 2011-05-05 13:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 01:08 - 2011-05-05 13:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-09 01:07 - 2013-07-04 04:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 01:07 - 2013-07-03 02:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-09 01:07 - 2013-07-03 02:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-08 09:20 - 2013-10-08 09:20 - 00000775 _____ C:\Users\tom\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2013-10-08 09:20 - 2013-10-08 09:20 - 00000000 ____D C:\Users\tom\AppData\Roaming\Search Protection
==================== One Month Modified Files and Folders =======
2013-10-29 20:35 - 2013-10-29 20:35 - 00000000 ____D C:\FRST
2013-10-29 20:34 - 2006-11-02 12:47 - 00003168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-29 20:34 - 2006-11-02 12:47 - 00003168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-29 20:10 - 2013-08-31 22:02 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-29 19:41 - 2013-10-29 19:41 - 00146756 _____ C:\Users\tom\Documents\cc_20131029_194057.reg
2013-10-29 19:40 - 2008-01-31 23:59 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-29 19:39 - 2013-07-30 22:34 - 00000000 ____D C:\Users\tom\AppData\Roaming\inkscape
2013-10-29 19:39 - 2012-12-14 11:07 - 00000000 ____D C:\Users\tom\AppData\Roaming\uTorrent
2013-10-29 19:39 - 2009-09-04 14:54 - 00000000 ____D C:\Users\tom\Tracing
2013-10-29 19:39 - 2006-11-13 09:26 - 00000000 ____D C:\Windows\Panther
2013-10-29 19:35 - 2013-10-29 19:35 - 00000809 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-29 19:35 - 2013-10-29 19:35 - 00000000 ____D C:\Program Files\CCleaner
2013-10-29 19:25 - 2007-07-24 09:11 - 01712675 ____N C:\Windows\WindowsUpdate.log
2013-10-29 19:25 - 2006-11-02 10:33 - 00703516 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-29 19:21 - 2010-02-04 16:04 - 00000000 ____D C:\Program Files\Common Files\Akamai
2013-10-29 19:20 - 2006-11-02 13:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-29 17:39 - 2006-11-02 13:01 - 00032626 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-29 17:16 - 2007-11-15 04:05 - 00000000 ____D C:\ProgramData\Apple
2013-10-29 16:49 - 2013-10-29 16:34 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-10-29 16:49 - 2010-04-03 19:42 - 00000000 ____D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2013-10-29 16:49 - 2010-02-27 18:20 - 00000000 ____D C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2013-10-29 16:46 - 2013-10-29 16:35 - 00000000 ____D C:\ProgramData\AVG
2013-10-29 16:42 - 2013-10-29 16:42 - 00000000 ____D C:\Users\tom\AppData\Roaming\AVG
2013-10-29 11:27 - 2013-10-29 11:27 - 00002539 _____ C:\Users\tom\AppData\Local\recently-used.xbel
2013-10-28 23:53 - 2009-08-27 16:04 - 00001356 _____ C:\Users\tom\AppData\Local\d3d9caps.dat
2013-10-28 11:37 - 2007-11-19 12:04 - 00000000 ____D C:\Users\tom\AppData\Roaming\OpenOffice.org2
2013-10-24 14:31 - 2013-10-24 14:31 - 00000000 ____D C:\Users\tom\AppData\Roaming\AVAST Software
2013-10-24 10:12 - 2010-05-17 08:01 - 00001889 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-24 10:11 - 2013-08-01 22:53 - 00178304 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-24 10:11 - 2013-08-01 22:53 - 00049944 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-24 10:11 - 2011-05-06 17:15 - 00774392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-24 10:11 - 2010-06-29 08:08 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-24 10:11 - 2008-04-06 17:31 - 00403440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-24 10:11 - 2008-04-06 17:31 - 00035656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-24 10:11 - 2007-11-13 22:44 - 00269216 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-24 10:11 - 2007-11-13 22:44 - 00070384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-24 10:11 - 2007-11-13 22:44 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-24 10:11 - 2007-11-13 22:44 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2013-10-24 10:08 - 2013-10-24 10:08 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-24 10:07 - 2006-11-02 10:23 - 00002577 _____ C:\Windows\system32\config.nt
2013-10-20 14:07 - 2013-10-20 14:07 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 14:06 - 2007-11-16 19:25 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-20 14:05 - 2013-10-20 14:06 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-20 14:05 - 2013-10-20 14:06 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-20 14:05 - 2013-10-20 14:06 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-20 14:05 - 2013-10-20 14:06 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-15 12:37 - 2012-09-27 09:16 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-15 12:37 - 2011-06-02 02:43 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-15 12:37 - 2007-09-26 17:29 - 00000000 ____D C:\Users\tom\AppData\Local\Adobe
2013-10-15 10:44 - 2010-07-31 20:17 - 00000000 ____D C:\Users\tom\AppData\Roaming\vlc
2013-10-10 09:12 - 2007-09-26 14:45 - 00069088 _____ C:\Users\tom\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-10 09:11 - 2006-11-02 12:47 - 02400632 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 11:02 - 2008-01-30 03:29 - 00000000 ____D C:\Program Files\Sony
2013-10-09 03:28 - 2006-11-02 11:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-09 03:15 - 2010-10-21 16:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-09 02:38 - 2013-07-11 10:37 - 00000000 ____D C:\Windows\system32\MRT
2013-10-09 02:30 - 2006-11-02 10:24 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-10-08 09:20 - 2013-10-08 09:20 - 00000775 _____ C:\Users\tom\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2013-10-08 09:20 - 2013-10-08 09:20 - 00000000 ____D C:\Users\tom\AppData\Roaming\Search Protection
Files to move or delete:
====================
C:\Users\tom\AppData\Roaming\docXConverter (3).ini
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-29 19:27
==================== End Of Log ============================
Addition
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 28-10-2013
Ran by tom at 2013-10-29 20:36:03
Running from C:\Users\tom\.thumbnails\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
µTorrent (HKCU Version: 3.3.2.30180)
32 Bit HP CIO Components Installer (Version: 1.0.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe ExtendScript Toolkit 2 (Version: 2.0.1)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Reader X (10.1.8) (Version: 10.1.8)
Adobe Setup (Version: 1.0)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Akamai NetSession Interface Service
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 9.0.2006)
CamStudio
CCleaner (Version: 4.07)
D3DX10 (Version: 15.4.2368.0902)
DHTML Editing Component (Version: 6.02.0001)
DivX Plus DirectShow Filters
Garmin USB Drivers (Version: 1.0.0.0)
Garmin WebUpdater (Version: 2.4.2)
iCloud (Version: 2.1.2.8)
Inkscape 0.48.4 (Version: 0.48.4)
Intel® Graphics Media Accelerator Driver
iTunes (Version: 11.0.4.4)
IZArc 3.5 beta 3 (Version: 3.5 beta 3)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Java 6 Update 2 (Version: 1.6.0.20)
Java 6 Update 3 (Version: 1.6.0.30)
Java 6 Update 4 (Version: 1.6.0.40)
Java 6 Update 5 (Version: 1.6.0.50)
Java 6 Update 7 (Version: 1.6.0.70)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 24.0 (x86 en-GB) (Version: 24.0)
Mozilla Maintenance Service (Version: 24.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
OpenOffice.org 2.4 (Version: 2.4.9310)
QuickTime (Version: 7.74.80.86)
Realtek 8139 and 8139C+ Ethernet Network Card Driver for Windows Vista (Version: 1.00.0000)
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5391)
Search Protection (HKCU Version: 7.5.0.1)
Segoe UI (Version: 15.4.2271.0615)
Spybot - Search & Destroy (Version: 1.5.2)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
VLC media player 2.0.8 (Version: 2.0.8)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0) (Version: 03/08/2007 2.2.1.0)
Windows Driver Package - Nokia Modem (02/15/2007 3.1) (Version: 02/15/2007 3.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
==================== Restore Points =========================
Could not list Restore Points. Check WMI.
==================== Hosts content: ==========================
2006-11-02 10:23 - 2011-11-24 11:28 - 00441366 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.1001-search.info
127.0.0.1 1001-search.info
127.0.0.1 www.100888290cs.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 www.10sek.com
127.0.0.1 10sek.com
127.0.0.1 www.123topsearch.com
127.0.0.1 123topsearch.com
127.0.0.1 www.132.com
127.0.0.1 132.com
127.0.0.1 www.136136.net
127.0.0.1 136136.net
127.0.0.1 www.139mm.com
127.0.0.1 139mm.com
127.0.0.1 www.163ns.com
127.0.0.1 163ns.com
There are 1000 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {22950356-0A8E-413F-866A-288E9F02E3ED} - System32\Tasks\Adobe online update program => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {372023B7-C4B7-4296-8825-FB6542283DB5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\System32\RacAgent.exe [2008-01-19] (Microsoft Corporation)
Task: {46BA5413-1B8A-4EDE-96BE-7063AC805383} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-402816791-3076325328-2136879946-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {673C0F44-47EB-4496-B79A-27A306C801C0} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {899717C7-AC0F-4485-9B39-24B86FABC4C5} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {89D267A5-CA53-49BC-BCE0-9E1E9C9A5DEB} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-402816791-3076325328-2136879946-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {A109A9CD-75B5-40D8-9F75-465BB016F2A0} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2013-10-24] (AVAST Software)
Task: {D87BC06B-8CA8-4AA3-9B60-7079373D2292} - System32\Tasks\Microsoft\Windows\RestartManager\{098CF4B5-67C1-4367-9E17-26654FD18741} => C:\Windows\System32\RmClient.exe [2006-11-02] (Microsoft Corporation)
Task: {D8A194B4-1CCC-48D7-B2D7-24DB59EA7E5D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E211C072-C45E-4050-B731-2E94DBF8793E} - System32\Tasks\NCH Swift Sound\expressburnShakeIcon => C:\Users\tom\AppData\Local\Temp\n1s.exe
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\System32\gatherWirelessInfo.vbs [2008-01-05] ()
Task: {F850D539-73E0-4A56-916E-DE8AFAFD5FD6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-15] (Adobe Systems Incorporated)
Task: {FFE60D3F-C0F6-4F04-BC00-2D987BB5A2E6} - System32\Tasks\Microsoft\Windows\RestartManager\{3EB9035A-60DB-408a-BD39-60F8D9A21265} => C:\Windows\System32\RmClient.exe [2006-11-02] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2006-11-02 10:25 - 2007-03-30 03:04 - 00249856 _____ () C:\Windows\system32\igfxTMM.dll
2013-10-24 10:10 - 2013-10-24 10:11 - 19336120 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2013-09-19 10:45 - 2013-09-19 10:45 - 03279768 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:4B7BEAFF
AlternateDataStreams: C:\ProgramData\TEMP:888AFB86
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service) (User: )
Description: A document ID cannot be allocated.
Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
System errors:
=============
Error: (10/29/2013 07:21:58 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.12.6 for the Network Card with network address 0019DB0D33B4 has been denied by the DHCP server 192.168.1.254 (The DHCP Server sent a DHCPNACK message).
Error: (10/29/2013 07:21:03 PM) (Source: Service Control Manager) (User: )
Description: adfs%%2
Error: (10/29/2013 07:19:22 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!
Error: (10/29/2013 07:19:17 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!
Error: (10/29/2013 05:07:22 PM) (Source: Service Control Manager) (User: )
Description: adfs%%2
Error: (10/29/2013 05:05:30 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!
Error: (10/29/2013 05:05:25 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!
Error: (10/29/2013 03:50:44 PM) (Source: Service Control Manager) (User: )
Description: Windows Update
Error: (10/29/2013 03:45:14 PM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053
Error: (10/29/2013 03:45:14 PM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search
Microsoft Office Sessions:
=========================
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
Error: (10/29/2013 07:41:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog
Details:
The content index cannot be read. (0xc0041800)
CodeIntegrity Errors:
===================================
Date: 2013-10-28 23:21:33.806
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:21:32.839
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:21:31.872
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:21:30.920
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:21:29.968
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:21:29.017
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:15:23.587
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:15:22.682
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:15:21.762
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-10-28 23:15:20.841
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 57%
Total physical RAM: 2037.45 MB
Available physical RAM: 871.44 MB
Total Pagefile: 4318.15 MB
Available Pagefile: 3050.01 MB
Total Virtual: 2047.88 MB
Available Virtual: 1901.39 MB
==================== Drives ================================
Drive c: (Vista) (Fixed) (Total:86.32 GB) (Free:33.34 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive s: (System) (Fixed) (Total:1.46 GB) (Free:1.41 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 93 GB) (Disk ID: DE7CCFEC)
Partition 1: (Not Active) - (Size=5 GB) - (Type=27)
Partition 2: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=86 GB) - (Type=07 NTFS)
==================== End Of Log ============================