Author Topic: After updating Avast engine and definitions, windows crashed and won't re-start  (Read 15472 times)

0 Members and 1 Guest are viewing this topic.

Offline avastuniverse

  • Newbie
  • *
  • Posts: 9
OK!!  Now we're good.  Thanks again.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40631
  • Dragons by Sasha
    • Malware fixes
My pleasure :)

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
I have the same problem. I have the log file so what do I do with it to fix the problem?

Offline thekochs

  • Speak Your Mind, Who minds don't matter, Who matters won't mind
  • Advanced Poster
  • **
  • Posts: 1115
  • Hapkido Blackbelt
I have the same problem. I have the log file so what do I do with it to fix the problem?

....look at reply #4........
•Press Scan button.
•It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.


Post (attach) the log file.
I PMed Essexboy.
« Last Edit: January 29, 2014, 01:28:12 AM by thekochs »
OpenDNS + Avast Free + MBAM Premium + MBAE Free Anti-Exploit + CryptoPrevent + Windows Firewall
Avast FAQ Videos
Avast 2016 Videos
Avast Clean Un/Re-Install How-To

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
Below is log.
thanks

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-01-2014
Ran by SYSTEM on REATOGO on 29-01-2014 11:44:25
Running from D:\
Windows 7 Ultimate (X86) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.


ATTENTION!:=====> THE OPERATING SYSTEM IS A X64 SYSTEM BUT THE BOOT DISK THAT IS USED TO BOOT TO RECOVERY ENVIRONMENT IS A X86 SYSTEM DISK.

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [342528 2009-06-18] (Alps Electric Co., Ltd.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [AutoKMS] - C:\Windows\AutoKMS.exe [615936 2013-07-15] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-19] (Adobe Systems Incorporated)
HKLM\...\Run: [tvncontrol] - C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-18] (GlavSoft LLC.)
HKLM\...\Run: [IntelliPoint] - c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-07-31] (Microsoft Corporation)
HKLM\...\Run: [NVHotkey] - C:\Windows\system32\nvHotkey.dll [91240 2010-03-16] (NVIDIA Corporation)
HKU\Bob\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [ 2013-11-14] (Skype Technologies S.A.)
HKU\Bob\...\Run: [uTorrent] - C:\Users\Bob\AppData\Roaming\uTorrent\uTorrent.exe [ 2013-11-15] (BitTorrent Inc.)
HKU\Bob\...\Run: [DellSystemDetect] - C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
HKU\Bob\...\Run: [OfficeSyncProcess] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [ 2013-04-21] (Microsoft Corporation)
HKU\Bob\...\Run: [AdobeBridge] -

HKU\Bob\...\Run: [GarminExpressTrayApp] - C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [ 2013-12-29] (Garmin Ltd or its subsidiaries)
HKU\Bob\...\RunOnce: [Application Restart #0] - C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE [ 2013-12-02] (Microsoft Corporation)
HKU\Bob\...\RunOnce: [Application Restart #1] - C:\Users\Bob\AppData\Roaming\uTorrent\uTorrent.exe [ 2013-11-15] (BitTorrent Inc.)
HKU\Bob\...\RunOnce: [Application Restart #2] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [ 2013-04-21] (Microsoft Corporation)
AppInit_DLLs: acaptuser64.dll => C:\Windows\system32\acaptuser64.dll [119160 2008-06-11] (Adobe Systems, Inc.)

========================== Services (Whitelisted) =================

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65432 2013-12-21] (Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257416 2013-12-11] (Adobe Systems Incorporated)
S2 Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [43336 2014-01-06] (Apple Inc.)
S3 aspnet_state; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [51808 2013-09-11] (Microsoft Corporation)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-27] ()
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
S3 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [89920 2009-06-10] (Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [124088 2013-09-11] (Microsoft Corporation)
S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-20] (Microsoft Corporation)
S2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [250712 2013-12-29] (Garmin Ltd or its subsidiaries)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2013-07-16] (Google Inc.)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2013-07-16] (Google Inc.)
S3 idsvc; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [856400 2010-11-20] (Microsoft Corporation)
S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [119408 2013-12-23] (Mozilla Foundation)
S4 NetMsmqActivator; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-09-11] (Microsoft Corporation)
S4 NetPipeActivator; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-09-11] (Microsoft Corporation)
S4 NetTcpActivator; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-09-11] (Microsoft Corporation)
S4 NetTcpPortSharing; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-09-11] (Microsoft Corporation)
S3 ose64; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [178824 2012-10-01] (Microsoft Corporation)
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [20992 2009-07-13] (Microsoft Corporation)
S2 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [1141360 2013-11-07] (Paramount Software UK Ltd)
S2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-08] (Skype Technologies S.A.)
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [171680 2013-09-04] (Skype Technologies)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-18] (Adobe Systems Incorporated)
S2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-18] (GlavSoft LLC.)
S2 vncserver; C:\Program Files\RealVNC\VNC Server\vncserver.exe [4774208 2013-03-03] (RealVNC Ltd)

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
Next page

==================== Drivers (Whitelisted) ====================

S3 ampa; C:\Windows\system32\ampa.sys [17008 2013-11-28] ()
S3 asmthub3; C:\Windows\system32\drivers\asmthub3.sys [139592 2012-11-08] (ASMedia Technology Inc)
S3 asmtxhci; C:\Windows\system32\drivers\asmtxhci.sys [418632 2012-11-08] (ASMedia Technology Inc)
S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-27] (AVAST Software)
S1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-01-27] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-27] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-27] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-27] ()
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-27] ()
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-27] ()
S3 b06bdrv; C:\Windows\system32\drivers\bxvbda.sys [529448 2012-01-24] (Broadcom Corporation)
S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2012-03-08] (Broadcom Corporation)
S3 b57nd60a; C:\Windows\System32\DRIVERS\b57nd60a.sys [270848 2009-06-10] (Broadcom Corporation)
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
S3 bcm44amd64; C:\Windows\System32\DRIVERS\b44amd64.sys [87552 2009-06-10] (Broadcom Corporation)
S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.)
S3 btwampfl; C:\Windows\System32\DRIVERS\btwampfl.sys [166104 2013-10-28] (Broadcom Corporation.)
S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [178216 2012-02-22] (Broadcom Corporation)
S3 bxois; C:\Windows\system32\drivers\bxois.sys [539176 2012-02-22] (Broadcom Corporation)
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [15288 2011-06-15] ()
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3341904 2012-03-25] (Broadcom Corporation)
S3 EtronHub3; C:\Windows\System32\Drivers\EtronHub3.sys [65152 2012-07-24] (Etron Technology Inc)
S3 EtronSTOR; C:\Windows\System32\Drivers\EtronSTOR.sys [32512 2012-07-24] (Etron Technology Inc)
S3 EtronXHCI; C:\Windows\System32\Drivers\EtronXHCI.sys [88832 2012-07-24] (Etron Technology Inc)
S3 ioatdma1; C:\Windows\System32\Drivers\qd162x64.sys [40144 2009-11-16] (Intel Corporation)
S3 ioatdma2; C:\Windows\System32\Drivers\qd262x64.sys [42192 2009-11-16] (Intel Corporation)
S3 iusb3hub; C:\Windows\system32\drivers\iusb3hub.sys [366216 2012-12-21] (Intel Corporation)
S3 iusb3xhc; C:\Windows\system32\drivers\iusb3xhc.sys [786056 2012-12-21] (Intel Corporation)
S3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [20992 2009-07-13] (Microsoft Corporation)
S3 NETwLv64; C:\Windows\System32\DRIVERS\NETwLv64.sys [7533568 2010-10-07] (Intel Corporation)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [96768 2011-10-25] (Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [213504 2011-10-25] (Renesas Electronics Corporation)
S3 Point64; C:\Windows\System32\DRIVERS\point64.sys [45416 2011-07-31] (Microsoft Corporation)
S0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56208 2011-11-02] (Rovi Corporation)
S2 rimmptsk; C:\Windows\System32\DRIVERS\rimmpx64.sys [55808 2007-03-18] (REDC)
S2 rimsptsk; C:\Windows\System32\DRIVERS\rimspx64.sys [54784 2009-09-03] (REDC)
S2 rismxdp; C:\Windows\System32\DRIVERS\rixdpx64.sys [57856 2009-09-03] (REDC)
S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL6.SYS [292864 2009-06-10] (Conexant Systems, Inc.)
S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Conexant Systems, Inc.)
S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Conexant Systems, Inc.)
S3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2013-03-03] (RealVNC Ltd.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [14464 2008-05-06] (Western Digital Technologies)
S4 kl1; system32\DRIVERS\kl1.sys

S4 KLIF; system32\DRIVERS\klif.sys

S4 kltdi; system32\DRIVERS\kltdi.sys

S4 kneps; system32\DRIVERS\kneps.sys

S3 VGPU; System32\drivers\rdvgkmd.sys

S5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
next

==================== One Month Created Files and Folders ========

2014-01-29 10:00 - 2014-01-29 10:00 - 00000000 ____D C:\FRST
2014-01-27 22:58 - 2014-01-27 22:58 - 00353208 _____ C:\Windows\Minidump\012814-17347-01.dmp
2014-01-27 22:57 - 2014-01-27 22:57 - 01038072 _____ (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00421704 _____ C:\Windows\System32\Drivers\aswSP.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00334136 _____ C:\Windows\System32\aswBoot.exe
2014-01-27 22:57 - 2014-01-27 22:57 - 00207904 _____ C:\Windows\System32\Drivers\aswVmm.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00092544 _____ (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00080184 _____ C:\Windows\System32\Drivers\aswStm.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00078648 _____ (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00065776 _____ C:\Windows\System32\Drivers\aswRvrt.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00043152 _____ C:\Windows\avastSS.scr
2014-01-27 22:57 - 2014-01-27 22:57 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-27 22:52 - 2014-01-27 22:55 - 90578216 _____ (AVAST Software) C:\Users\Bob\Downloads\avast_free_antivirus_setup.exe
2014-01-27 15:24 - 2014-01-27 15:24 - 08126774 _____ C:\Users\Bob\Downloads\2014_01_27_Mon.avi
2014-01-26 23:03 - 2014-01-26 23:03 - 11538030 _____ C:\Users\Bob\Downloads\2014_01_25_Sat.avi
2014-01-26 23:02 - 2014-01-26 23:02 - 03866398 _____ C:\Users\Bob\Downloads\2014_01_27_Sun.avi
2014-01-26 22:14 - 2014-01-27 17:49 - 05016596 _____ C:\Users\Bob\Downloads\Hourly.mpg
2014-01-26 16:55 - 2014-01-26 16:55 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2014-01-26 16:54 - 2014-01-26 16:55 - 00000000 ____D C:\Program Files\iTunes
2014-01-26 16:54 - 2014-01-26 16:54 - 00000000 ____D C:\Program Files\iPod
2014-01-22 16:56 - 2014-01-22 16:56 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-22 16:56 - 2013-12-18 05:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-22 01:18 - 2014-01-22 01:18 - 00000301 _____ C:\Windows\SynInst.log
2014-01-22 00:30 - 2014-01-22 00:30 - 00000000 ____H C:\Windows\System32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-01-22 00:30 - 2014-01-22 00:30 - 00000000 ____D C:\Program Files\Synaptics
2014-01-22 00:24 - 2014-01-22 00:27 - 30754096 _____ C:\Users\Bob\Downloads\R230390.exe
2014-01-20 18:22 - 2014-01-20 18:22 - 00000000 ____D C:\Users\Bob\Downloads\PC World USA - January 2014
2014-01-20 18:17 - 2014-01-20 18:25 - 00000000 ____D C:\Users\Bob\Downloads\Scientific American - Full Year 2013 Issues Collection
2014-01-20 18:15 - 2014-01-20 18:15 - 00000000 ____D C:\Users\Bob\Downloads\Hacking - Firewalls And Networks How To Hack Into Remote Computers
2014-01-20 17:41 - 2014-01-20 17:41 - 00000000 ____D C:\Users\Bob\Downloads\Ключи к антивирусам Касперского 21.11.2013
2014-01-20 17:29 - 2014-01-20 18:40 - 00000000 ____D C:\Users\Bob\Downloads\Blood.Type.Unknown.2013.UNRATED.HDRiP.XViD.AC3-FiRE
2014-01-20 17:27 - 2014-01-20 17:51 - 00000000 ____D C:\Users\Bob\Downloads\The Hunger Games Catching Fire (2013) DVDRip XviD-MAXSPEED
2014-01-20 17:27 - 2014-01-20 17:28 - 00000000 ____D C:\Users\Bob\Downloads\Reasonable Doubt (2014) HDRiP XViD NODOUBT
2014-01-19 01:30 - 2014-01-19 01:30 - 00000000 ____D C:\Users\Bob\Downloads\Kaspersky Daily Activation Keys 04 January 2014 For Pure & Intenet Sequirity-T.R
2014-01-16 21:52 - 2014-01-16 22:19 - 00071452 _____ C:\Users\Bob\Documents\WARNING PLACARD WEIGHT 472.5.ai
2014-01-16 03:38 - 2014-01-16 04:03 - 00000000 ____D C:\Users\Bob\Downloads\Cloudy with a Chance of Meatballs 2 (2013) [3D] [HSBS]
2014-01-16 01:29 - 2014-01-16 01:44 - 00000000 ____D C:\Users\Bob\Documents\Garmin Aera 500
2014-01-16 01:27 - 2014-01-16 01:27 - 03749888 _____ C:\Users\Bob\Downloads\jaera-pac-1401.exe
2014-01-16 01:10 - 2014-01-16 01:10 - 00000000 ____D C:\Program Files\Garmin GPS Plugin
2014-01-16 01:08 - 2014-01-16 01:08 - 18864072 _____ C:\Users\Bob\Downloads\CommunicatorPlugin_410.exe
2014-01-16 01:04 - 2014-01-16 01:11 - 00000000 ____D C:\Users\Bob\AppData\Roaming\Garmin
2014-01-16 00:55 - 2014-01-16 00:55 - 00000000 ____D C:\Users\Bob\Documents\Garmin
2014-01-16 00:53 - 2014-01-16 00:53 - 00001888 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2014-01-16 00:53 - 2014-01-16 00:53 - 00000000 ____D C:\Users\Bob\AppData\Local\Garmin
2014-01-16 00:50 - 2014-01-16 00:52 - 12160392 _____ (Garmin Ltd or its subsidiaries) C:\Users\Bob\Downloads\GarminExpress.exe
2014-01-15 19:57 - 2014-01-15 19:57 - 00000000 ____D C:\Users\Bob\Downloads\Video
2014-01-15 19:57 - 2014-01-15 19:57 - 00000000 ____D C:\Users\Bob\Downloads\Compressed
2014-01-15 05:41 - 2014-01-15 05:41 - 11758214 _____ C:\Users\Bob\Downloads\2014_01_15_Wed.avi
2014-01-14 18:01 - 2013-11-26 20:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2014-01-14 18:01 - 2013-11-26 20:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2014-01-14 18:01 - 2013-11-26 20:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2014-01-14 18:01 - 2013-11-26 20:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2014-01-14 18:01 - 2013-11-26 20:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2014-01-14 18:01 - 2013-11-26 20:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2014-01-14 18:01 - 2013-11-26 20:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2014-01-14 18:01 - 2013-11-26 06:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2014-01-14 18:01 - 2013-11-26 05:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2014-01-14 05:34 - 2014-01-14 05:34 - 11774850 _____ C:\Users\Bob\Downloads\2014_01_14_Tue.avi
2014-01-13 22:32 - 2014-01-13 22:32 - 00000000 ____D C:\Users\Bob\AppData\Roaming\OpenCandy
2014-01-13 22:32 - 2014-01-13 22:32 - 00000000 ____D C:\Program Files\DriverPack Solution Installer 13
2014-01-13 22:30 - 2009-09-03 02:14 - 00057856 _____ (REDC) C:\Windows\System32\Drivers\rixdpx64.sys
2014-01-13 22:30 - 2009-09-03 01:59 - 00054784 _____ (REDC) C:\Windows\System32\Drivers\rimspx64.sys
2014-01-13 22:30 - 2007-07-24 22:48 - 00172032 _____ (Ricoh Company,Ltd) C:\Windows\System32\rixdicon.dll
2014-01-13 22:26 - 2014-01-13 22:29 - 06029935 _____ (Kuzyakov Artur) C:\Users\Bob\Downloads\Ricoh-WinAll-8xx_6.10.01.05-drp.exe
2014-01-12 16:22 - 2014-01-12 16:22 - 04812567 _____ (Tim Kosse) C:\Users\Bob\Downloads\FileZilla_3.7.3_win32-setup.exe
2014-01-12 00:10 - 2014-01-12 00:10 - 00000017 _____ C:\Users\Bob\AppData\Local\resmon.resmoncfg
2014-01-12 00:04 - 2014-01-12 00:05 - 09812520 _____ C:\Users\Bob\Downloads\R244796.exe
2014-01-11 23:54 - 2014-01-11 23:55 - 00001366 _____ C:\Windows\Synaptics.log
2014-01-11 23:50 - 2014-01-11 23:53 - 123787854 _____ C:\Users\Bob\Downloads\Synaptics_v17_0_19_C_XP32_Vista32_Win7-32_XP64_Vista64_Win7-64_Acme_Inc.zip
2014-01-10 05:53 - 2014-01-10 05:53 - 00000000 ____D C:\Users\Bob\AppData\Local\LogMeIn
2014-01-10 05:11 - 2014-01-10 05:11 - 00000000 ____D C:\Users\Bob\AppData\Local\LogMeIn Client
2014-01-09 19:36 - 2014-01-09 19:36 - 00000238 _____ C:\Users\Bob\Desktop\Filesiding spring url.txt.URL
2014-01-07 20:44 - 2014-01-07 20:44 - 00543992 _____ C:\Windows\Minidump\010814-13525-01.dmp
2014-01-07 01:25 - 2014-01-07 01:25 - 00506384 _____ C:\Windows\Minidump\010714-13197-01.dmp
2014-01-06 22:59 - 2014-01-06 23:22 - 00000000 ____D C:\Users\Bob\Downloads\Vikingdom (2013) [3D] [HSBS]
2014-01-06 22:00 - 2014-01-06 22:01 - 00000000 ____D C:\Users\Bob\Downloads\Carrie (2013) DVDRip XviD-MAXSPEED
2014-01-06 17:21 - 2014-01-08 04:56 - 00001024 ____H C:\AMTAG.BIN
2014-01-06 17:19 - 2014-01-06 17:19 - 00001305 _____ C:\Users\Public\Desktop\AOMEI Partition Assistant Pro Edition 5.5 (DEMO).lnk
2014-01-06 17:19 - 2013-11-29 04:42 - 01806960 _____ C:\Windows\ampa.exe
2014-01-06 17:19 - 2013-11-28 18:31 - 00017008 _____ C:\Windows\SysWOW64\ampa.sys
2014-01-06 17:19 - 2013-11-28 18:31 - 00017008 _____ C:\Windows\System32\ampa.sys
2014-01-06 17:17 - 2014-01-06 17:17 - 00000000 ____D C:\Users\Bob\AppData\Roaming\Mael
2014-01-06 17:16 - 2014-01-06 17:16 - 00001071 _____ C:\Users\Public\Desktop\AOMEI Dynamic Disk Manager Pro Edition.lnk
2014-01-06 17:16 - 2012-07-25 23:39 - 01293240 _____ C:\Windows\ddmmain.exe
2014-01-06 17:16 - 2011-06-15 05:10 - 00015288 _____ C:\Windows\System32\ddmdrv.sys
2014-01-06 17:16 - 2011-06-15 05:09 - 00012728 _____ C:\Windows\SysWOW64\ddmdrv.sys
2014-01-06 17:15 - 2014-01-06 17:16 - 19319584 _____ C:\Users\Bob\Downloads\DM_ProDemo.zip
2014-01-06 17:10 - 2014-01-06 17:10 - 00000885 _____ C:\Users\Public\Desktop\HxD.lnk
2014-01-06 17:09 - 2014-01-06 17:09 - 00872029 _____ C:\Users\Bob\Downloads\HxDSetupEN.zip
2014-01-06 15:31 - 2014-01-06 15:31 - 03846322 _____ C:\Users\Bob\Downloads\PCRange7800NV6_1.06h(2).afw
2014-01-04 20:52 - 2014-01-04 20:52 - 00000127 _____ C:\Users\Bob\Documents\PingScan.bat
2014-01-03 06:04 - 2014-01-03 06:04 - 00000000 ____D C:\Users\Bob\Documents\birth certificates
2014-01-03 04:39 - 2014-01-03 04:39 - 00000000 ____D C:\Users\Bob\Documents\Paragliding

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
Next

==================== One Month Modified Files and Folders =======

2014-01-29 10:00 - 2014-01-29 10:00 - 00000000 ____D C:\FRST
2014-01-29 10:00 - 2013-07-15 04:54 - 00000000 ____D C:\users\Bob
2014-01-29 10:00 - 2009-07-13 22:20 - 00000000 ___RD C:\users\Public
2014-01-28 18:15 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\System32\LogFiles
2014-01-27 23:04 - 2013-07-16 05:57 - 00000000 ____D C:\Users\Bob\AppData\Roaming\uTorrent
2014-01-27 23:04 - 2013-07-15 16:54 - 00000000 ____D C:\Users\Bob\Documents\Outlook Files
2014-01-27 23:04 - 2013-07-15 04:39 - 01767519 _____ C:\Windows\WindowsUpdate.log
2014-01-27 23:04 - 2009-07-13 22:20 - 00000000 ___RD C:\Program Files (x86)
2014-01-27 23:03 - 2009-07-13 23:45 - 00026576 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-27 23:03 - 2009-07-13 23:45 - 00026576 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-27 23:02 - 2009-07-14 00:13 - 00782470 _____ C:\Windows\System32\PerfStringBackup.INI
2014-01-27 22:59 - 2013-07-16 05:50 - 00000000 ____D C:\Users\Bob\AppData\Roaming\Skype
2014-01-27 22:58 - 2014-01-27 22:58 - 00353208 _____ C:\Windows\Minidump\012814-17347-01.dmp
2014-01-27 22:58 - 2013-09-16 17:58 - 00000000 ____D C:\Users\Bob\AppData\Local\Deployment
2014-01-27 22:58 - 2013-07-16 19:47 - 00000000 ____D C:\Windows\Minidump
2014-01-27 22:58 - 2013-07-16 19:46 - 591515955 _____ C:\Windows\MEMORY.DMP
2014-01-27 22:58 - 2010-11-20 22:47 - 00376822 _____ C:\Windows\PFRO.log
2014-01-27 22:58 - 2009-07-13 23:51 - 00011824 _____ C:\Windows\setupact.log
2014-01-27 22:57 - 2014-01-27 22:57 - 01038072 _____ (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00421704 _____ C:\Windows\System32\Drivers\aswSP.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00334136 _____ C:\Windows\System32\aswBoot.exe
2014-01-27 22:57 - 2014-01-27 22:57 - 00207904 _____ C:\Windows\System32\Drivers\aswVmm.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00092544 _____ (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00080184 _____ C:\Windows\System32\Drivers\aswStm.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00078648 _____ (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00065776 _____ C:\Windows\System32\Drivers\aswRvrt.sys
2014-01-27 22:57 - 2014-01-27 22:57 - 00043152 _____ C:\Windows\avastSS.scr
2014-01-27 22:57 - 2014-01-27 22:57 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-27 22:55 - 2014-01-27 22:52 - 90578216 _____ (AVAST Software) C:\Users\Bob\Downloads\avast_free_antivirus_setup.exe
2014-01-27 17:49 - 2014-01-26 22:14 - 05016596 _____ C:\Users\Bob\Downloads\Hourly.mpg
2014-01-27 15:24 - 2014-01-27 15:24 - 08126774 _____ C:\Users\Bob\Downloads\2014_01_27_Mon.avi
2014-01-27 15:23 - 2013-07-16 17:44 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-26 23:03 - 2014-01-26 23:03 - 11538030 _____ C:\Users\Bob\Downloads\2014_01_25_Sat.avi
2014-01-26 23:02 - 2014-01-26 23:02 - 03866398 _____ C:\Users\Bob\Downloads\2014_01_27_Sun.avi
2014-01-26 23:02 - 2013-07-16 20:52 - 00000000 ____D C:\Users\Bob\AppData\Roaming\FileZilla
2014-01-26 16:55 - 2014-01-26 16:55 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2014-01-26 16:55 - 2014-01-26 16:54 - 00000000 ____D C:\Program Files\iTunes
2014-01-26 16:55 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64
2014-01-26 16:54 - 2014-01-26 16:54 - 00000000 ____D C:\Program Files\iPod
2014-01-22 16:56 - 2014-01-22 16:56 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-22 01:30 - 2013-07-15 04:58 - 00040784 _____ C:\Windows\DPINST.LOG
2014-01-22 01:30 - 2013-07-15 04:58 - 00000000 ____D C:\Program Files\DellTPad
2014-01-22 01:18 - 2014-01-22 01:18 - 00000301 _____ C:\Windows\SynInst.log
2014-01-22 01:18 - 2013-07-15 04:54 - 00000000 ____D C:\Users\Bob\AppData\Local\VirtualStore
2014-01-22 00:30 - 2014-01-22 00:30 - 00000000 ____H C:\Windows\System32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-01-22 00:30 - 2014-01-22 00:30 - 00000000 ____D C:\Program Files\Synaptics
2014-01-22 00:27 - 2014-01-22 00:24 - 30754096 _____ C:\Users\Bob\Downloads\R230390.exe
2014-01-21 22:20 - 2013-07-16 06:50 - 00000000 ____D C:\Users\Bob\AppData\Roaming\vlc
2014-01-20 18:49 - 2013-07-18 18:42 - 00002140 _____ C:\Users\Public\Desktop\Adobe FormsCentral.lnk
2014-01-20 18:49 - 2013-07-18 18:42 - 00002026 _____ C:\Users\Public\Desktop\Adobe Acrobat XI Pro.lnk
2014-01-20 18:40 - 2014-01-20 17:29 - 00000000 ____D C:\Users\Bob\Downloads\Blood.Type.Unknown.2013.UNRATED.HDRiP.XViD.AC3-FiRE
2014-01-20 18:25 - 2014-01-20 18:17 - 00000000 ____D C:\Users\Bob\Downloads\Scientific American - Full Year 2013 Issues Collection
2014-01-20 18:22 - 2014-01-20 18:22 - 00000000 ____D C:\Users\Bob\Downloads\PC World USA - January 2014
2014-01-20 18:15 - 2014-01-20 18:15 - 00000000 ____D C:\Users\Bob\Downloads\Hacking - Firewalls And Networks How To Hack Into Remote Computers
2014-01-20 17:51 - 2014-01-20 17:27 - 00000000 ____D C:\Users\Bob\Downloads\The Hunger Games Catching Fire (2013) DVDRip XviD-MAXSPEED
2014-01-20 17:41 - 2014-01-20 17:41 - 00000000 ____D C:\Users\Bob\Downloads\Ключи к антивирусам Касперского 21.11.2013
2014-01-20 17:28 - 2014-01-20 17:27 - 00000000 ____D C:\Users\Bob\Downloads\Reasonable Doubt (2014) HDRiP XViD NODOUBT
2014-01-19 05:51 - 2013-12-28 18:07 - 00000000 ____D C:\Users\Bob\AppData\Roaming\newnext.me
2014-01-19 04:53 - 2013-12-28 18:07 - 00000000 ____D C:\Users\Bob\AppData\Local\genienext
2014-01-19 03:31 - 2013-11-25 17:50 - 00008779 _____ C:\Users\Bob\Documents\Flight Log.xlsx
2014-01-19 01:30 - 2014-01-19 01:30 - 00000000 ____D C:\Users\Bob\Downloads\Kaspersky Daily Activation Keys 04 January 2014 For Pure & Intenet Sequirity-T.R
2014-01-16 22:19 - 2014-01-16 21:52 - 00071452 _____ C:\Users\Bob\Documents\WARNING PLACARD WEIGHT 472.5.ai
2014-01-16 13:06 - 2009-07-13 23:45 - 05060552 _____ C:\Windows\System32\FNTCACHE.DAT
2014-01-16 12:49 - 2013-07-18 00:19 - 00000000 ____D C:\Windows\System32\MRT
2014-01-16 12:49 - 2009-07-13 21:34 - 00000478 _____ C:\Windows\win.ini

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
2014-01-16 12:47 - 2013-07-15 04:50 - 86054176 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2014-01-16 04:03 - 2014-01-16 03:38 - 00000000 ____D C:\Users\Bob\Downloads\Cloudy with a Chance of Meatballs 2 (2013) [3D] [HSBS]
2014-01-16 01:44 - 2014-01-16 01:29 - 00000000 ____D C:\Users\Bob\Documents\Garmin Aera 500
2014-01-16 01:27 - 2014-01-16 01:27 - 03749888 _____ C:\Users\Bob\Downloads\jaera-pac-1401.exe
2014-01-16 01:11 - 2014-01-16 01:04 - 00000000 ____D C:\Users\Bob\AppData\Roaming\Garmin
2014-01-16 01:10 - 2014-01-16 01:10 - 00000000 ____D C:\Program Files\Garmin GPS Plugin
2014-01-16 01:08 - 2014-01-16 01:08 - 18864072 _____ C:\Users\Bob\Downloads\CommunicatorPlugin_410.exe
2014-01-16 00:55 - 2014-01-16 00:55 - 00000000 ____D C:\Users\Bob\Documents\Garmin
2014-01-16 00:53 - 2014-01-16 00:53 - 00001888 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2014-01-16 00:53 - 2014-01-16 00:53 - 00000000 ____D C:\Users\Bob\AppData\Local\Garmin
2014-01-16 00:52 - 2014-01-16 00:50 - 12160392 _____ (Garmin Ltd or its subsidiaries) C:\Users\Bob\Downloads\GarminExpress.exe
2014-01-15 19:57 - 2014-01-15 19:57 - 00000000 ____D C:\Users\Bob\Downloads\Video
2014-01-15 19:57 - 2014-01-15 19:57 - 00000000 ____D C:\Users\Bob\Downloads\Compressed
2014-01-15 15:23 - 2013-09-05 02:06 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-15 05:41 - 2014-01-15 05:41 - 11758214 _____ C:\Users\Bob\Downloads\2014_01_15_Wed.avi
2014-01-14 05:34 - 2014-01-14 05:34 - 11774850 _____ C:\Users\Bob\Downloads\2014_01_14_Tue.avi
2014-01-14 00:02 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Microsoft.NET
2014-01-13 22:32 - 2014-01-13 22:32 - 00000000 ____D C:\Users\Bob\AppData\Roaming\OpenCandy
2014-01-13 22:32 - 2014-01-13 22:32 - 00000000 ____D C:\Program Files\DriverPack Solution Installer 13
2014-01-13 22:32 - 2013-09-28 02:46 - 00000000 ____D C:\Program Files\DIFX
2014-01-13 22:29 - 2014-01-13 22:26 - 06029935 _____ (Kuzyakov Artur) C:\Users\Bob\Downloads\Ricoh-WinAll-8xx_6.10.01.05-drp.exe
2014-01-13 22:02 - 2013-09-16 17:59 - 00766780 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-13 20:06 - 2013-09-17 18:27 - 00000000 ____D C:\Users\Bob\AppData\Local\Apple Computer
2014-01-13 18:04 - 2011-04-12 03:28 - 00000000 ___RD C:\Users\Public\Recorded TV
2014-01-12 16:22 - 2014-01-12 16:22 - 04812567 _____ (Tim Kosse) C:\Users\Bob\Downloads\FileZilla_3.7.3_win32-setup.exe
2014-01-12 00:10 - 2014-01-12 00:10 - 00000017 _____ C:\Users\Bob\AppData\Local\resmon.resmoncfg
2014-01-12 00:05 - 2014-01-12 00:04 - 09812520 _____ C:\Users\Bob\Downloads\R244796.exe
2014-01-11 23:55 - 2014-01-11 23:54 - 00001366 _____ C:\Windows\Synaptics.log
2014-01-11 23:53 - 2014-01-11 23:50 - 123787854 _____ C:\Users\Bob\Downloads\Synaptics_v17_0_19_C_XP32_Vista32_Win7-32_XP64_Vista64_Win7-64_Acme_Inc.zip
2014-01-10 05:53 - 2014-01-10 05:53 - 00000000 ____D C:\Users\Bob\AppData\Local\LogMeIn
2014-01-10 05:11 - 2014-01-10 05:11 - 00000000 ____D C:\Users\Bob\AppData\Local\LogMeIn Client
2014-01-09 19:36 - 2014-01-09 19:36 - 00000238 _____ C:\Users\Bob\Desktop\Filesiding spring url.txt.URL
2014-01-08 04:56 - 2014-01-06 17:21 - 00001024 ____H C:\AMTAG.BIN
2014-01-07 20:44 - 2014-01-07 20:44 - 00543992 _____ C:\Windows\Minidump\010814-13525-01.dmp
2014-01-07 01:25 - 2014-01-07 01:25 - 00506384 _____ C:\Windows\Minidump\010714-13197-01.dmp
2014-01-06 23:22 - 2014-01-06 22:59 - 00000000 ____D C:\Users\Bob\Downloads\Vikingdom (2013) [3D] [HSBS]
2014-01-06 22:01 - 2014-01-06 22:00 - 00000000 ____D C:\Users\Bob\Downloads\Carrie (2013) DVDRip XviD-MAXSPEED
2014-01-06 17:19 - 2014-01-06 17:19 - 00001305 _____ C:\Users\Public\Desktop\AOMEI Partition Assistant Pro Edition 5.5 (DEMO).lnk
2014-01-06 17:17 - 2014-01-06 17:17 - 00000000 ____D C:\Users\Bob\AppData\Roaming\Mael
2014-01-06 17:16 - 2014-01-06 17:16 - 00001071 _____ C:\Users\Public\Desktop\AOMEI Dynamic Disk Manager Pro Edition.lnk
2014-01-06 17:16 - 2014-01-06 17:15 - 19319584 _____ C:\Users\Bob\Downloads\DM_ProDemo.zip
2014-01-06 17:10 - 2014-01-06 17:10 - 00000885 _____ C:\Users\Public\Desktop\HxD.lnk
2014-01-06 17:09 - 2014-01-06 17:09 - 00872029 _____ C:\Users\Bob\Downloads\HxDSetupEN.zip
2014-01-06 15:31 - 2014-01-06 15:31 - 03846322 _____ C:\Users\Bob\Downloads\PCRange7800NV6_1.06h(2).afw
2014-01-04 20:52 - 2014-01-04 20:52 - 00000127 _____ C:\Users\Bob\Documents\PingScan.bat
2014-01-03 06:04 - 2014-01-03 06:04 - 00000000 ____D C:\Users\Bob\Documents\birth certificates
2014-01-03 04:39 - 2014-01-03 04:39 - 00000000 ____D C:\Users\Bob\Documents\Paragliding

Some content of TEMP:
====================
C:\Users\Bob\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe


==================== Known DLLs (Whitelisted) ============


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2013-06-16 21:24] - [2013-06-16 21:24] - 2871808 ____A (Microsoft Corporation) 332FEAB1435662FC6C672E25BEB37BE3

C:\Windows\System32\winlogon.exe
[2010-11-20 22:24] - [2010-11-20 22:24] - 0390656 ____A (Microsoft Corporation) 1151B1BAA6F350B1DB6598E0FEA7C457

C:\Windows\System32\wininit.exe
[2009-07-13 18:52] - [2009-07-13 20:39] - 0129024 ____A (Microsoft Corporation) 94355C28C1970635A31B3FE52EB7CEBA

C:\Windows\System32\svchost.exe
[2009-07-13 18:31] - [2009-07-13 20:39] - 0027136 ____A (Microsoft Corporation) C78655BC80301D76ED4FEF1C1EA40A7D

C:\Windows\System32\services.exe
[2009-07-13 18:19] - [2009-07-13 20:39] - 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB

C:\Windows\System32\User32.dll
[2010-11-20 22:24] - [2010-11-20 22:24] - 1008128 ____A (Microsoft Corporation) FE70103391A64039A921DBFFF9C7AB1B

C:\Windows\System32\userinit.exe
[2010-11-20 22:24] - [2010-11-20 22:24] - 0030720 ____A (Microsoft Corporation) BAFE84E637BF7388C96EF48D4D3FDD53

C:\Windows\System32\rpcss.dll
[2010-11-20 22:24] - [2010-11-20 22:24] - 0512000 ____A (Microsoft Corporation) 5C627D1B1138676C0A7AB2C2C190D123

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2010-11-20 22:23] - [2010-11-20 22:23] - 0295808 ____A (Microsoft Corporation) 0D08D2F3B3FF84E433346669B5E0F639

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================


==================== Memory info ===========================

Percentage of memory in use: 9%
Total physical RAM: 3581.97 MB
Available physical RAM: 3233.9 MB
Total Pagefile: 3403.63 MB
Available Pagefile: 3326.03 MB
Total Virtual: 2047.88 MB
Available Virtual: 1992.71 MB

==================== Drives ================================

Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
Drive c: () (Fixed) (Total:465.76 GB) (Free:161.39 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Win7.SP1.x64.en-US.Oct2013) (Removable) (Total:7.56 GB) (Free:3.14 GB) NTFS
Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 8 GB) (Disk ID: 0FC00F9C)
Partition 1: (Active) - (Size=8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 466 GB) (Disk ID: 861F6468)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)


LastRegBack: 2014-01-19 02:56

==================== End Of Log ===========================

Offline thekochs

  • Speak Your Mind, Who minds don't matter, Who matters won't mind
  • Advanced Poster
  • **
  • Posts: 1115
  • Hapkido Blackbelt
OK...thx...but you can just upload the .txt file instead of having to paste all of it. :)
Essexboy is UK so he will not see until tomorrow his time.
OpenDNS + Avast Free + MBAM Premium + MBAE Free Anti-Exploit + CryptoPrevent + Windows Firewall
Avast FAQ Videos
Avast 2016 Videos
Avast Clean Un/Re-Install How-To

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40631
  • Dragons by Sasha
    • Malware fixes
You also appear to have Kaspersky on the system

Download the attached fixlist.txt to the same location as FRST
Run FRST and press FIX

Now try a reboot

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
I have run the fix and I now get to the logon screen but the mouse will not work and I cant type the password in.
I have run FRST again and attached the FRST.txt file.
Thanks for the help

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40631
  • Dragons by Sasha
    • Malware fixes
Is it a USB mouse ?   

Offline bobskisan

  • Newbie
  • *
  • Posts: 13
It's the touchpad on a Dell Inspiron 1720. Also the keyboard doesn't work at all at the logon screen. Both work properly when I boot from the DVD.
thanks
Bob