problem with posting
-
problem with posting
Hi, i am trying to post my logs after my scan but my explorer can not open the page. Is there any other way that i acan send you my log files?
thank you...
-
I think that my logs are too big to post...is there any other way to send them?
-
I will send 2 parts...this is my first part...
Malwarebytes' Anti-Malware 1.46
Malwarebytes
Database version: 4938
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
10/24/2010 11:19:58 PM
mbam-log-2010-10-24 (23-19-58).txt
Scan type: Quick scan
Objects scanned: 154576
Time elapsed: 5 minute(s), 48 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
-
GMER 1.0.15.15477 - GMER - Rootkit Detector and Remover
Rootkit scan 2010-10-24 23
54
Windows 6.1.7600
Running: gmer.exe; Driver: C:\Users\Kon\AppData\Local\Temp\uwldqpow.sys
---- Kernel code sections - GMER 1.0.15 ----
.text ntkrnlpa.exe!ZwSaveKeyEx + 13AD 83058579 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 8307CF52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text C:\Windows\system32\DRIVERS\tos_sps32.sys section is writeable [0x8C01A000, 0x3C849, 0xE8000020]
.dsrt C:\Windows\system32\DRIVERS\tos_sps32.sys unknown last section [0x8C05F000, 0x3DC, 0x48000040]
PAGE peauth.sys 9F6A6BEC 77 Bytes CALL BC76AD11
---- User code sections - GMER 1.0.15 ----
.text C:\Windows\Explorer.EXE[496] ntdll.dll!NtProtectVirtualMemory 77345360 5 Bytes JMP 004C000A
.text C:\Windows\Explorer.EXE[496] ntdll.dll!NtWriteVirtualMemory 77345EE0 5 Bytes JMP 004D000A
.text C:\Windows\Explorer.EXE[496] ntdll.dll!KiUserExceptionDispatcher 77346448 5 Bytes JMP 004B000A
.text C:\Windows\system32\svchost.exe[1140] ntdll.dll!NtProtectVirtualMemory 77345360 5 Bytes JMP 0020000A
.text C:\Windows\system32\svchost.exe[1140] ntdll.dll!NtWriteVirtualMemory 77345EE0 5 Bytes JMP 0021000A
.text C:\Windows\system32\svchost.exe[1140] ntdll.dll!KiUserExceptionDispatcher 77346448 5 Bytes JMP 000C000A
.text C:\Windows\system32\svchost.exe[1140] ole32.dll!CoCreateInstance 76CE57FC 5 Bytes JMP 0026000A
.text C:\Windows\system32\svchost.exe[1140] USER32.dll!GetCursorPos 75ADC198 5 Bytes JMP 0052000A
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] ntdll.dll!NtProtectVirtualMemory 77345360 5 Bytes JMP 0155000A
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] ntdll.dll!NtWriteVirtualMemory 77345EE0 5 Bytes JMP 0156000A
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] ntdll.dll!KiUserExceptionDispatcher 77346448 5 Bytes JMP 0085000A
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!UnhookWindowsHookEx 75ADCC7B 5 Bytes JMP 6BB77E18 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!CallNextHookEx 75ADCC8F 5 Bytes JMP 6BB594EC C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!CreateWindowExW 75AE0E51 5 Bytes JMP 6BB67AA7 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!SetWindowsHookExW 75AE210A 5 Bytes JMP 6BB14243 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!DialogBoxIndirectParamW 75B04AA7 1 Byte [E9]
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!DialogBoxIndirectParamW 75B04AA7 5 Bytes JMP 6BCB58AB C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!DialogBoxParamW 75B0564A 5 Bytes JMP 6BA8490B C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!DialogBoxParamA 75B1CF6A 5 Bytes JMP 6BCB5848 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!DialogBoxIndirectParamA 75B1D29C 5 Bytes JMP 6BCB590E C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!MessageBoxIndirectA 75B2E8C9 5 Bytes JMP 6BCB57DD C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!MessageBoxIndirectW 75B2E9C3 5 Bytes JMP 6BCB5772 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!MessageBoxExA 75B2EA29 5 Bytes JMP 6BCB5710 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] USER32.dll!MessageBoxExW 75B2EA4D 5 Bytes JMP 6BCB56AE C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] ole32.dll!OleLoadFromStream 76C95B88 5 Bytes JMP 6BCB5B74 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4128] ole32.dll!CoCreateInstance 76CE57FC 5 Bytes JMP 6BB68595 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] ntdll.dll!NtProtectVirtualMemory 77345360 5 Bytes JMP 012B000A
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] ntdll.dll!NtWriteVirtualMemory 77345EE0 5 Bytes JMP 012C000A
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] ntdll.dll!KiUserExceptionDispatcher 77346448 5 Bytes JMP 0057000A
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!CreateWindowExW 75AE0E51 5 Bytes JMP 6BB67AA7 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!DialogBoxIndirectParamW 75B04AA7 1 Byte [E9]
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!DialogBoxIndirectParamW 75B04AA7 5 Bytes JMP 6BCB58AB C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!DialogBoxParamW 75B0564A 5 Bytes JMP 6BA8490B C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!DialogBoxParamA 75B1CF6A 5 Bytes JMP 6BCB5848 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!DialogBoxIndirectParamA 75B1D29C 5 Bytes JMP 6BCB590E C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!MessageBoxIndirectA 75B2E8C9 5 Bytes JMP 6BCB57DD C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!MessageBoxIndirectW 75B2E9C3 5 Bytes JMP 6BCB5772 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!MessageBoxExA 75B2EA29 5 Bytes JMP 6BCB5710 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] USER32.dll!MessageBoxExW 75B2EA4D 5 Bytes JMP 6BCB56AE C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4340] ole32.dll!OleLoadFromStream 76C95B88 5 Bytes JMP 6BCB5B74 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!UnhookWindowsHookEx 75ADCC7B 5 Bytes JMP 6BB77E18 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!CallNextHookEx 75ADCC8F 5 Bytes JMP 6BB594EC C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!CreateWindowExW 75AE0E51 5 Bytes JMP 6BB67AA7 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!SetWindowsHookExW 75AE210A 5 Bytes JMP 6BB14243 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!DialogBoxIndirectParamW 75B04AA7 1 Byte [E9]
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!DialogBoxIndirectParamW 75B04AA7 5 Bytes JMP 6BCB58AB C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!DialogBoxParamW 75B0564A 5 Bytes JMP 6BA8490B C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!DialogBoxParamA 75B1CF6A 5 Bytes JMP 6BCB5848 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!DialogBoxIndirectParamA 75B1D29C 5 Bytes JMP 6BCB590E C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!MessageBoxIndirectA 75B2E8C9 5 Bytes JMP 6BCB57DD C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!MessageBoxIndirectW 75B2E9C3 5 Bytes JMP 6BCB5772 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!MessageBoxExA 75B2EA29 5 Bytes JMP 6BCB5710 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] USER32.dll!MessageBoxExW 75B2EA4D 5 Bytes JMP 6BCB56AE C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] ole32.dll!OleLoadFromStream 76C95B88 5 Bytes JMP 6BCB5B74 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4844] ole32.dll!CoCreateInstance 76CE57FC 5 Bytes JMP 6BB68595 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation)
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Par ameters\Keys\002258d839c4
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Paramet ers\Keys\002258d839c4 (not active ControlSet)
---- EOF - GMER 1.0.15 ----
-
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows 7 Ultimate Edition
Windows Information: (build 7600), 32-bit
Base Board Manufacturer: TOSHIBA
BIOS Manufacturer: TOSHIBA
System Manufacturer: TOSHIBA
System Product Name: Qosmio F60
Logical Drives Mask: 0x0000000c
Kernel Drivers (total 205):
0x83015000 \SystemRoot\system32\ntkrnlpa.exe
0x83425000 \SystemRoot\system32\halmacpi.dll
0x88CAE000 \SystemRoot\system32\kdcom.dll
0x83630000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x836A8000 \SystemRoot\system32\PSHED.dll
0x836B9000 \SystemRoot\system32\BOOTVID.dll
0x836C1000 \SystemRoot\system32\CLFS.SYS
0x83703000 \SystemRoot\system32\CI.dll
0x8383F000 \SystemRoot\system32\drivers\Wdf01000.sys
0x838B0000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x839A6000 \SystemRoot\System32\Drivers\WMILIB.SYS
0x839AF000 \SystemRoot\System32\Drivers\SCSIPORT.SYS
0x837AE000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x839D5000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x839DD000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x83800000 \SystemRoot\system32\DRIVERS\pci.sys
0x8382A000 \SystemRoot\System32\drivers\partmgr.sys
0x839E8000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x839F0000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x83600000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x83A06000 \SystemRoot\System32\drivers\volmgrx.sys
0x83A51000 \SystemRoot\System32\drivers\mountmgr.sys
0x8BA30000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x8BBE3000 \SystemRoot\system32\DRIVERS\atapi.sys
0x8BA00000 \SystemRoot\system32\DRIVERS\ataport.SYS
0x8BA23000 \SystemRoot\system32\DRIVERS\msahci.sys
0x8BBEC000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
0x83A67000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x83A70000 \SystemRoot\system32\drivers\fltmgr.sys
0x83AA4000 \SystemRoot\system32\drivers\fileinfo.sys
0x83AB5000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8BC38000 \SystemRoot\System32\Drivers\msrpc.sys
0x8BC63000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8BC76000 \SystemRoot\System32\Drivers\cng.sys
0x8BCD3000 \SystemRoot\System32\drivers\pcw.sys
0x8BCE1000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x8BCEA000 \SystemRoot\system32\drivers\ndis.sys
0x8BDA1000 \SystemRoot\system32\drivers\NETIO.SYS
0x8BC00000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x8BE26000 \SystemRoot\System32\drivers\tcpip.sys
0x8BF6F000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8BFA0000 \SystemRoot\system32\DRIVERS\vmstorfl.sys
0x8BFA9000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x8BFE8000 \SystemRoot\system32\DRIVERS\TVALZ.SYS
0x8C019000 \SystemRoot\system32\DRIVERS\tos_sps32.sys
0x8C060000 \SystemRoot\System32\Drivers\spldr.sys
0x8C068000 \SystemRoot\System32\drivers\rdyboost.sys
0x8C095000 \SystemRoot\System32\Drivers\mup.sys
0x8C0A5000 \SystemRoot\System32\drivers\hwpolicy.sys
0x8C0AD000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x8C0DF000 \SystemRoot\system32\DRIVERS\disk.sys
0x8C0F0000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x90400000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x9041F000 \SystemRoot\System32\Drivers\Null.SYS
0x905EE000 \SystemRoot\System32\Drivers\Beep.SYS
0x8C122000 \SystemRoot\System32\drivers\vga.sys
0x8C12E000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8C14F000 \SystemRoot\System32\drivers\watchdog.sys
0x905F5000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8C15C000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8C164000 \SystemRoot\system32\drivers\rdprefmp.sys
0x8C16C000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8C177000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8C185000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8C19C000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x838BE000 \SystemRoot\system32\drivers\afd.sys
0x8C1A7000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8C1D9000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x8C1E0000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8C000000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x8BFED000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8BE00000 \SystemRoot\System32\Drivers\tosrfcom.sys
0x8BE10000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8BC25000 \SystemRoot\system32\DRIVERS\termdd.sys
0x83918000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8BDDF000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8BDE9000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8BDF3000 \SystemRoot\System32\drivers\discache.sys
0x91431000 \SystemRoot\system32\drivers\csc.sys
0x91495000 \SystemRoot\System32\Drivers\dfsc.sys
0x914AD000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x914BB000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x914DC000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x94A34000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x954B2000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
0x954B4000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x9556B000 \SystemRoot\System32\drivers\dxgmms1.sys
0x955A4000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x955C3000 \SystemRoot\system32\DRIVERS\HECI.sys
0x955CE000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x914EE000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x955DD000 \SystemRoot\system32\DRIVERS\risdpe86.sys
0x94A00000 \SystemRoot\system32\DRIVERS\rimspe86.sys
0x91539000 \SystemRoot\system32\DRIVERS\rixdpe86.sys
0x91C3D000 \SystemRoot\system32\DRIVERS\rtl8192se.sys
0x91D2D000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x91D37000 \SystemRoot\system32\DRIVERS\Rt86win7.sys
0x91D5C000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x91D74000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x91D81000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x91DB8000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x91DBA000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x91DC7000 \SystemRoot\system32\DRIVERS\Impcd.sys
0x91DE6000 \SystemRoot\system32\DRIVERS\TVALZFL.sys
0x91DED000 \SystemRoot\system32\DRIVERS\tosrfec.sys
0x91DF0000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x91C00000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x91C0D000 \SystemRoot\System32\Drivers\RootMdm.sys
0x91C15000 \SystemRoot\system32\drivers\modem.sys
0x91C22000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x94A15000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x91DF4000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x9158B000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x915AD000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x915C5000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x915DC000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x955EE000 \SystemRoot\system32\DRIVERS\rdpbus.sys
0x91C34000 \SystemRoot\system32\DRIVERS\swenum.sys
0x83959000 \SystemRoot\system32\DRIVERS\ks.sys
0x91400000 \SystemRoot\system32\DRIVERS\umbus.sys
0x9620F000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x96253000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x96264000 \SystemRoot\system32\drivers\nvhda32v.sys
0x96281000 \SystemRoot\system32\drivers\portcls.sys
0x962B0000 \SystemRoot\system32\drivers\drmk.sys
0x96C15000 \SystemRoot\system32\drivers\RTKVHDA.sys
0x96EBD000 \SystemRoot\system32\DRIVERS\tosporte.sys
0x99FA0000 \SystemRoot\System32\win32k.sys
0x96EC8000 \SystemRoot\System32\drivers\Dxapi.sys
0x96ED2000 \SystemRoot\System32\Drivers\crashdmp.sys
0x90426000 \SystemRoot\System32\Drivers\dump_iaStor.sys
0x96EDF000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x96EF0000 \SystemRoot\system32\DRIVERS\monitor.sys
0x99E00000 \SystemRoot\System32\TSDDD.dll
0x96EFB000 \SystemRoot\system32\DRIVERS\tosrfusb.sys
0x96F07000 \SystemRoot\system32\DRIVERS\tosrfbd.sys
0x96F30000 \SystemRoot\system32\DRIVERS\Tosrfhid.sys
0x96F43000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x99E30000 \SystemRoot\System32\cdd.dll
0x96F5A000 \SystemRoot\System32\Drivers\usbvideo.sys
0x96F7E000 \SystemRoot\system32\DRIVERS\pgeffect.sys
0x96F84000 \SystemRoot\system32\drivers\Toshidpt.sys
0x96F85000 \SystemRoot\system32\drivers\HIDCLASS.SYS
0x96F98000 \SystemRoot\system32\drivers\HIDPARSE.SYS
0x96F9F000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x99E50000 \SystemRoot\System32\ATMFD.DLL
0x96FAA000 \SystemRoot\system32\drivers\luafv.sys
0x96FC5000 \SystemRoot\system32\drivers\WudfPf.sys
0x96FDF000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x962C9000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x96FEF000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x96C00000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x9630F000 \SystemRoot\system32\drivers\HTTP.sys
0x96394000 \SystemRoot\system32\DRIVERS\bowser.sys
0x963AD000 \SystemRoot\System32\drivers\mpsdrv.sys
0x963BF000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x9F61C000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x9F657000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x9F68A000 \SystemRoot\System32\Drivers\adfs.SYS
0x9F69B000 \SystemRoot\system32\drivers\peauth.sys
0x9F732000 \SystemRoot\System32\Drivers\secdrv.SYS
0x9F73C000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x9F75D000 \SystemRoot\System32\drivers\tcpipreg.sys
0x9C401000 \SystemRoot\System32\DRIVERS\srv2.sys
0x9C450000 \SystemRoot\System32\DRIVERS\srv.sys
0x9C4A1000 \??\C:\Users\Kon\AppData\Local\Temp\uwldqpow.sys
0x77300000 \Windows\System32\ntdll.dll
0x47BD0000 \Windows\System32\smss.exe
0x77540000 \Windows\System32\apisetschema.dll
0x00EA0000 \Windows\System32\autochk.exe
0x77520000 \Windows\System32\lpk.dll
0x774D0000 \Windows\System32\gdi32.dll
0x77440000 \Windows\System32\clbcatq.dll
0x77100000 \Windows\System32\iertutil.dll
0x770D0000 \Windows\System32\imagehlp.dll
0x770B0000 \Windows\System32\sechost.dll
0x770A0000 \Windows\System32\psapi.dll
0x76FA0000 \Windows\System32\wininet.dll
0x76F40000 \Windows\System32\shlwapi.dll
0x76F30000 \Windows\System32\nsi.dll
0x76E90000 \Windows\System32\advapi32.dll
0x76DF0000 \Windows\System32\usp10.dll
0x76C90000 \Windows\System32\ole32.dll
0x76C70000 \Windows\System32\imm32.dll
0x76C20000 \Windows\System32\Wldap32.dll
0x75FD0000 \Windows\System32\shell32.dll
0x75FC0000 \Windows\System32\normaliz.dll
0x75EF0000 \Windows\System32\msctf.dll
0x75E70000 \Windows\System32\comdlg32.dll
0x75D90000 \Windows\System32\kernel32.dll
0x75CE0000 \Windows\System32\rpcrt4.dll
0x75BA0000 \Windows\System32\urlmon.dll
0x75AD0000 \Windows\System32\user32.dll
0x75A90000 \Windows\System32\ws2_32.dll
0x759E0000 \Windows\System32\msvcrt.dll
0x75840000 \Windows\System32\setupapi.dll
0x757B0000 \Windows\System32\oleaut32.dll
0x75750000 \Windows\System32\difxapi.dll
0x75720000 \Windows\System32\cfgmgr32.dll
0x756F0000 \Windows\System32\wintrust.dll
0x756A0000 \Windows\System32\KernelBase.dll
0x75580000 \Windows\System32\crypt32.dll
0x75560000 \Windows\System32\devobj.dll
0x754D0000 \Windows\System32\comctl32.dll
0x754C0000 \Windows\System32\msasn1.dll
Processes (total 71):
0 System Idle Process
4 System
308 C:\Windows\System32\smss.exe
480 csrss.exe
552 C:\Windows\System32\wininit.exe
560 csrss.exe
712 C:\Windows\System32\services.exe
744 C:\Windows\System32\lsass.exe
752 C:\Windows\System32\lsm.exe
864 C:\Windows\System32\svchost.exe
924 C:\Windows\System32\nvvsvc.exe
964 C:\Windows\System32\svchost.exe
1024 C:\Windows\System32\svchost.exe
1056 C:\Windows\System32\svchost.exe
1104 C:\Windows\System32\winlogon.exe
1140 C:\Windows\System32\svchost.exe
1364 C:\Windows\System32\svchost.exe
1460 C:\Windows\System32\nvvsvc.exe
1492 C:\Windows\System32\svchost.exe
1712 C:\Windows\System32\spoolsv.exe
1780 C:\Windows\System32\taskhost.exe
1788 C:\Windows\System32\dwm.exe
1844 C:\Windows\System32\svchost.exe
1972 C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
2024 C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
124 C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe
496 C:\Windows\explorer.exe
1416 C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
1528 C:\Program Files\TOSHIBA\TECO\TecoService.exe
2052 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
2340 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
2360 C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
2372 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
2380 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
2396 C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
2740 C:\Program Files\Windows Sidebar\sidebar.exe
2824 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe
2832 C:\Program Files\TOSHIBA\Bluetooth Monitor\BtMon2.exe
3248 C:\Windows\System32\svchost.exe
3276 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe
3600 C:\Program Files\TOSHIBA\HDMICtrlMan\HCMSoundChanger.exe
3688 C:\Windows\System32\SearchIndexer.exe
4068 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosA2dp.exe
1736 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtHid.exe
2116 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtHSP.exe
1280 C:\Windows\System32\taskeng.exe
2712 C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
2312 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosAVRC.exe
3428 C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
3468 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosOBEX.exe
3700 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtBty.exe
2408 C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe
4340 C:\Program Files\Internet Explorer\iexplore.exe
4844 C:\Program Files\Internet Explorer\iexplore.exe
5208 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
5248 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
5348 C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe
5376 C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
5404 C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
5472 C:\Windows\System32\svchost.exe
5512 C:\Program Files\Windows Media Player\wmpnetwk.exe
5592 C:\Windows\System32\svchost.exe
4648 C:\Program Files\WinRAR\WinRAR.exe
4796 C:\Program Files\Internet Explorer\iexplore.exe
5196 C:\Windows\System32\SearchProtocolHost.exe
2888 C:\Windows\System32\SearchFilterHost.exe
828 C:\Windows\System32\audiodg.exe
4992 C:\Program Files\Internet Explorer\iexplore.exe
4924 C:\Windows\System32\dllhost.exe
4964 C:\Users\Kon\Desktop\MBRCheck.exe
248 C:\Windows\System32\conhost.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`5dd00000 (NTFS)
PhysicalDrive0 Model Number: TOSHIBAMK5055GSX, Rev: FG001M
Size Device Name MBR Status
--------------------------------------------
465 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79
Done!
-
OTL Extras logfile created on: 10/25/2010 12:01:36 AM - Run 1
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Users\Kon\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 63.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 440.86 Gb Total Space | 391.54 Gb Free Space | 88.81% Space Free | Partition Type: NTFS
Computer Name: KON-PC | User Name: Kon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\DomainPr ofile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\Standard Profile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\PublicPr ofile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\Standard Profile\AuthorizedApplications\List]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{022CBB38-CEF0-42BA-906A-A49BEFAE0BEE}" = RICOH R5U230 Media Driver ver.2.07.03.02
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 14
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3D347E6D-5A03-4342-B5BA-6A771885F379}" = Backburner
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{53536479-DFB0-47ED-9D10-43F3708C222D}" = TOSHIBA eco Utility
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{5783F2D7-5001-0409-0002-0060B0CE6BBA}" = AutoCAD 2007 - English
"{5E6F6CF3-BACC-4144-868C-E14622C658F3}" = TOSHIBA Web Camera Application
"{61539202-097E-487E-9237-B291AB56D54C}" = Bluetooth Monitor 4
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7C8B5E63-821A-4DFB-BDFA-19854D88EC5C}" = 3dsmax ancillary install
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{8A809006-C25A-4A3A-9DAB-94659BCDB107}" = NVIDIA PhysX
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90024193-9F13-4877-89D5-A1CDF0CBBF28}" = Feedback Tool
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0408-0000-0000000FF1CE}" = Microsoft Office Proof (Greek) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{9A346205-EA92-4406-B1AB-50379DA3F057}" = Autodesk DWF Viewer 7
"{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D27AB79F-B1B3-49E1-97E7-94E30882F01F}" = Windchill ProductPoint Client Manager
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert
"{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}" = Intel(R) Turbo Boost Technology Driver
"{E21F683E-AFAD-4932-91BB-21B355087FB5}" = ProductView Express 9.1
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E487EE7D-EAAA-4E2A-9116-E3B477D8A74F}" = TOSHIBA USB Sleep and Charge Utility
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E96D4088-AAC5-437F-9E39-EC0E387897B4}" = Autodesk 3ds Max 9 32-bit
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3529665-D75E-4D6D-98F0-745C78C68E9B}" = TOSHIBA ConfigFree
"{F81AB80B-5BB7-4E36-8BA5-E07541CE1BFC}" = HDMI Control Manager
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
"{FF93F941-2D1C-4E18-8198-81847F42B7EC}" = Pro/ENGINEER Thumbnail Viewer 1.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"CCleaner" = CCleaner
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485 DF8CE.1" = Adobe Media Player
"ENTERPRISE" = Microsoft Office Enterprise 2007
"InstallShield_{53536479-DFB0-47ED-9D10-43F3708C222D}" = TOSHIBA eco Utility
"InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert
"InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.9.0 Full
"Magic ISO Maker v5.5 (build 0276)" = Magic ISO Maker v5.5 (build 0276)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.11)" = Mozilla Firefox (3.6.11)
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"Pro/ENGINEER Release Wildfire 5.0 Datecode M010" = Pro/ENGINEER Release Wildfire 5.0 Datecode M010
"ShockwaveFlash" = Macromedia Flash Player 8
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.0.2
"V-Ray for 3dsmax R9 for x86" = V-Ray for 3dsmax R9 for x86
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 10/24/2010 11:32:28 AM | Computer Name = Kon-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Program Files\Autodesk\3ds
Max 2010\3dsmax.exe". Dependent Assembly Microsoft.VC90.OpenMP,processorArchitecture="x86", publicKeyToken="1fc8b3b9a1e18e3b",type="win32",ver sion="9.0.21022.8"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 10/24/2010 11:32:47 AM | Computer Name = Kon-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Program Files\Autodesk\3ds
Max 2010\3dsmax.exe". Dependent Assembly Microsoft.VC90.OpenMP,processorArchitecture="x86", publicKeyToken="1fc8b3b9a1e18e3b",type="win32",ver sion="9.0.21022.8"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 10/24/2010 11:32:49 AM | Computer Name = Kon-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Program Files\Autodesk\3ds
Max 2010\3dsmax.exe". Dependent Assembly Microsoft.VC90.OpenMP,processorArchitecture="x86", publicKeyToken="1fc8b3b9a1e18e3b",type="win32",ver sion="9.0.21022.8"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 10/24/2010 11:51:30 AM | Computer Name = Kon-PC | Source = VSS | ID = 8193
Description =
Error - 10/24/2010 11:52:17 AM | Computer Name = Kon-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Program Files\Autodesk\3ds
Max 2010\3dsmax.exe". Dependent Assembly Microsoft.VC90.OpenMP,processorArchitecture="x86", publicKeyToken="1fc8b3b9a1e18e3b",type="win32",ver sion="9.0.21022.8"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 10/24/2010 11:52:17 AM | Computer Name = Kon-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Program Files\Autodesk\3ds
Max 2010\3dsmax.exe". Dependent Assembly Microsoft.VC90.OpenMP,processorArchitecture="x86", publicKeyToken="1fc8b3b9a1e18e3b",type="win32",ver sion="9.0.21022.8"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 10/24/2010 2:00:26 PM | Computer Name = Kon-PC | Source = Application Error | ID = 1000
Description = Faulting application name: svchost.exe, version: 6.1.7600.16385, time
stamp: 0x4a5bc100 Faulting module name: ntdll.dll, version: 6.1.7600.16385, time
stamp: 0x4a5bdadb Exception code: 0xc0000005 Fault offset: 0x0006aee7 Faulting process
id: 0x47c Faulting application start time: 0x01cb737e9b67bf31 Faulting application
path: C:\Windows\system32\svchost.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 93cb3a2a-df98-11df-bdc6-0023180b2757
Error - 10/24/2010 3:16:41 PM | Computer Name = Kon-PC | Source = Application Error | ID = 1000
Description = Faulting application name: svchost.exe, version: 6.1.7600.16385, time
stamp: 0x4a5bc100 Faulting module name: ntdll.dll, version: 6.1.7600.16385, time
stamp: 0x4a5bdadb Exception code: 0xc0000005 Fault offset: 0x0006aee7 Faulting process
id: 0x1730 Faulting application start time: 0x01cb73a55bb20327 Faulting application
path: C:\Windows\system32\svchost.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 3a9cf8df-dfa3-11df-bdc6-0023180b2757
Error - 10/24/2010 4:30:20 PM | Computer Name = Kon-PC | Source = Application Error | ID = 1000
Description = Faulting application name: gmer.exe, version: 1.0.15.15477, time stamp:
0x4cbda469 Faulting module name: gmer.exe, version: 1.0.15.15477, time stamp: 0x4cbda469
Exception
code: 0xc0000005 Fault offset: 0x0000c551 Faulting process id: 0x1cc Faulting application
start time: 0x01cb73b9ee6dc29d Faulting application path: C:\Users\Kon\AppData\Local\Temp\Rar$EX06.218\gmer. exe
Faulting
module path: C:\Users\Kon\AppData\Local\Temp\Rar$EX06.218\gmer. exe Report Id: 84fc4755-dfad-11df-85ad-0023180b2757
Error - 10/24/2010 4:32:46 PM | Computer Name = Kon-PC | Source = Application Error | ID = 1000
Description = Faulting application name: gmer.exe, version: 1.0.15.15477, time stamp:
0x4cbda469 Faulting module name: gmer.exe, version: 1.0.15.15477, time stamp: 0x4cbda469
Exception
code: 0xc0000005 Fault offset: 0x0000c551 Faulting process id: 0x704 Faulting application
start time: 0x01cb73ba560a4027 Faulting application path: C:\Users\Kon\AppData\Local\Temp\Rar$EX24.987\gmer. exe
Faulting
module path: C:\Users\Kon\AppData\Local\Temp\Rar$EX24.987\gmer. exe Report Id: dbc45232-dfad-11df-85ad-0023180b2757
[ System Events ]
Error - 10/24/2010 4:11:51 PM | Computer Name = Kon-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.
Error - 10/24/2010 4:11:55 PM | Computer Name = Kon-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.
Error - 10/24/2010 4:11:55 PM | Computer Name = Kon-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.
Error - 10/24/2010 4:11:55 PM | Computer Name = Kon-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.
Error - 10/24/2010 4:22:24 PM | Computer Name = Kon-PC | Source = sptd | ID = 262148
Description = Driver detected an internal error in its data structures for .
Error - 10/24/2010 4:22:54 PM | Computer Name = Kon-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.
Error - 10/24/2010 4:23:04 PM | Computer Name = Kon-PC | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
sptd
Error - 10/24/2010 4:23:25 PM | Computer Name = Kon-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.
Error - 10/24/2010 4:23:28 PM | Computer Name = Kon-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.
Error - 10/24/2010 4:23:28 PM | Computer Name = Kon-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.
< End of report >
-
I can not post the OTL log file 
-
Attach it and I'll try to post it for you.
What are computer's issues?
Welcome aboard 
-
The problem is that I canot attach it cause is 144kb and if I rar it I canot find it.
The problem with my pc is that the explorer crashes. I had some issues this month but i believed that i had cleaned my pc with hijackthis and with spybot and malware. every 4-5 days i couldn 't start up my pc and i had to start from a restore point under safe mode.
-
Newbie
