Jump to content

Search the Community

Showing results for tags 'Blue Screen of Death'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 13 results

  1. MBAM 3.5.1 Premium for Windows 7 on a 32-bit Dell laptop worked fine. Tried to install MBAM 3.6.1 days ago first without clean install and BSOD upon reboot. Did a clean install today using the MBAM Support Tool and after rebooting and almost at the end of the reinstalling, a blue screen of death again. I have attached logs. I also have the MEMORY.DMP file zipped, but its 139 MB, so if you need, please let know how to send. I also ran a full drive security scan with MBAM v3.5.1 just prior to the 3.6.1 clean install and no malware found. Other security software on this machine Zone Alarm Firewall and Anti-Virus Pro v15.3.060.17669 and SpyShelter Premium v11.2, both latest versions. I have reverted back to MBAM v3.5.1 until this issue is resolved. mbst-grab-results.zip mbst-clean-results.txt
  2. For about a month, I have been getting messages that Malwarebytes web protection is turned off. When I try to turn it on, it will not turn on. The computer has to be restarted. I have also been getting Blue Screens of Death. I have scanned the computer with Malwarebytes, AdwCleaner, Kaspersky, Windows Defender, and Sophos. Of these, only Sophos detected anything at all; a PUP called Softonic. First, Malwarebytes is, according to Malwarebytes, supposed to detect Softonic. So it's really disturbing to find that it isn't. Second, any suggestions as to what to do? Thanks.
  3. I saw a couple other people mention this a few threads ago in response to the azurewebsites,com situation. I ran AdwareCleaner on my laptop (new Dell Inspiron 13 7000 Starlord) and when it was finished scanning, it said there were 6 items detected (yet only 3 on the list below that notification, and so, like any normal person, I clicked to remove them. This prompted a "do you want to exit out of your things" message, so I agreed, and BAM! Blue Screen of : ( popped up on my screen. Restarted the computer, and the items were still not removed after a second scan. How am I to remove these pesky adware things (If they are not false positives?)
  4. On four different Dell laptops, I amintermittently getting a 9f blue screen of death. In each case, the blue screen was reported when the computer was coming out of sleep. I sent the minidumps to Dell for analysis, and their final analysis (after some initial misdiagnosis about the WLAN card), was that malwarebytes was running a scan while the computer was sleeping and locking up the computer. Indeed, on my computer (I'm the sysadmin), the mbam scan was set to run at about 2 am. My computer was one of the computers having the problem. Are there any known issues of mbam causing blue screens of death while trying to run a scan while the computer is asleep? I'm attaching the blue screens of death from three of the machines to this entry. Thanks, Dave minidump1.zip minidump2.zip minidump3.zip
  5. Hi all I downloaded Filezilla the other day from Sourceforge and didn't think anything of it until I started getting those annoying popup ads. I tried uninstalling OkayFreedom from the Control Panel but kept getting this error: "Uninstal Window has stopped working" Problem signature: Problem Event Name: APPCRASH Application Name: UninstallWindow.exe Application Version: 1.5.2.11260 Application Timestamp: 55377ac3 Fault Module Name: UninstallWindow.exe Fault Module Version: 1.5.2.11260 Fault Module Timestamp: 55377ac3 Exception Code: c0000005 Exception Offset: 0001fd61 OS Version: 6.1.7601.2.1.0.768.3 Locale ID: 2057 Additional Information 1: 0a9e Additional Information 2: 0a9e372d3b4ad19135b953a78882e789 Additional Information 3: 0a9e Additional Information 4: 0a9e372d3b4ad19135b953a78882e789 Read our privacy statement online: http://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0409 If the online privacy statement is not available, please read our privacy statement offline: C:\windows\system32\en-US\erofflps.txt I downloaded Malwarebytes and ran this and quarantined some of the threats (scan log 1) that I knew weren't false positives. I restarted and thought everything was ok. The next day, I got a blue screen of death with the Bad Pool Header error. I restarted and then ran MalwareBytes (scan log 3) and decided to quarantine everything. I restarted the PC and immediately got an "OkayFreedom has stopped responding" error and it's still showing in Control Panel Programs. I ran Malwarebytes for a third time but it's no longer detecting any threats. Any idea how I get the remaining traces off? First Malwarebytes scan log: Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 29/04/2015 Scan Time: 18:49:10 Logfile: Administrator: Yes Version: 2.01.6.1022 Malware Database: v2015.04.29.04 Rootkit Database: v2015.04.21.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: Shinobi Scan Type: Threat Scan Result: Completed Objects Scanned: 369585 Time Elapsed: 12 min, 21 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Warn PUM: Warn Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 3 PUP.Optional.InstallCore.A, HKU\S-1-5-21-2429687510-3656637215-4010497816-1000\SOFTWARE\INSTALLCORE\1I1T1Q1S, No Action By User, [25333a38b7d3ed49ff2cdc3bfa0ab947], PUP.Optional.InstallCore.A, HKU\S-1-5-21-2429687510-3656637215-4010497816-1000\SOFTWARE\INSTALLCORE, No Action By User, [82d6630f593193a3b244bc7015f0fd03], PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\mystartsearchSoftware, Quarantined, [05530d65ddad9c9a4e47419ec43f6f91], Registry Values: 2 PUP.Optional.InstallCore.A, HKU\S-1-5-21-2429687510-3656637215-4010497816-1000\SOFTWARE\INSTALLCORE|tb, 0B1R1B0D2P1N, No Action By User, [82d6630f593193a3b244bc7015f0fd03] PUP.Optional.Spigot.A, HKU\S-1-5-21-2429687510-3656637215-4010497816-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AF804AC2-32DD-4093-81F5-6E64DE90CF21}|URL, https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=599486&p={searchTerms},No Action By User, [68f0acc6ccbead89955cc7029172926e] Registry Data: 4 PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type=ds&ts=1430251241&from=cor&uid=ST1000DM003-1CH162_Z1DA63SQXXXXZ1DA63SQ&q={searchTerms},Good: (www.google.com), Bad: (http://www.mystartsearch.com/web/?type=ds&ts=1430251241&from=cor&uid=ST1000DM003-1CH162_Z1DA63SQXXXXZ1DA63SQ&q={searchTerms}),Replaced,[9ebae191c1c96dc95fd1758ca3637090] PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type=ds&ts=1430251241&from=cor&uid=ST1000DM003-1CH162_Z1DA63SQXXXXZ1DA63SQ&q={searchTerms},Good: (www.google.com), Bad: (http://www.mystartsearch.com/web/?type=ds&ts=1430251241&from=cor&uid=ST1000DM003-1CH162_Z1DA63SQXXXXZ1DA63SQ&q={searchTerms}),Replaced,[3820c4aebccec076260aff02b452d52b] PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type=ds&ts=1430251241&from=cor&uid=ST1000DM003-1CH162_Z1DA63SQXXXXZ1DA63SQ&q={searchTerms},Good: (www.google.com), Bad: (http://www.mystartsearch.com/web/?type=ds&ts=1430251241&from=cor&uid=ST1000DM003-1CH162_Z1DA63SQXXXXZ1DA63SQ&q={searchTerms}),Replaced,[580078fa305a49ed939dfe036d994eb2] PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type=ds&ts=1430251241&from=cor&uid=ST1000DM003-1CH162_Z1DA63SQXXXXZ1DA63SQ&q={searchTerms},Good: (www.google.com), Bad: (http://www.mystartsearch.com/web/?type=ds&ts=1430251241&from=cor&uid=ST1000DM003-1CH162_Z1DA63SQXXXXZ1DA63SQ&q={searchTerms}),Replaced,[b2a6a9c9e2a8e74f4ee22bd6967050b0] Folders: 0 (No malicious items detected) Files: 2 PUP.Optional.OpenCandy, C:\Users\Shinobi\Downloads\DTLite4491-0356.exe, No Action By User, [ca8ec8aa88022e0887619e95d92dd52b], PUP.Optional.InstallCore.SID.A, C:\Users\Shinobi\Downloads\FileZilla_3.10.3_win64-setup.exe, No Action By User, [69eff0826228231378b5c187a66012ee], Physical Sectors: 0 (No malicious items detected) (end) Second Malwarebytes scan log: Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 30/04/2015 Scan Time: 21:45:01 Logfile: Malware scan log.txt Administrator: Yes Version: 2.01.6.1022 Malware Database: v2015.04.30.05 Rootkit Database: v2015.04.21.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: Shinobi Scan Type: Threat Scan Result: Completed Objects Scanned: 369561 Time Elapsed: 9 min, 39 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Warn PUM: Warn Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 2 PUP.Optional.InstallCore.A, HKU\S-1-5-21-2429687510-3656637215-4010497816-1000\SOFTWARE\INSTALLCORE\1I1T1Q1S, Quarantined, [13aa640ed1b9999dbe5b6badd0340bf5], PUP.Optional.InstallCore.A, HKU\S-1-5-21-2429687510-3656637215-4010497816-1000\SOFTWARE\INSTALLCORE, Quarantined, [338a383a6e1c5dd95d872c0143c2f50b], Registry Values: 2 PUP.Optional.InstallCore.A, HKU\S-1-5-21-2429687510-3656637215-4010497816-1000\SOFTWARE\INSTALLCORE|tb, 0B1R1B0D2P1N, Quarantined, [338a383a6e1c5dd95d872c0143c2f50b] PUP.Optional.Spigot.A, HKU\S-1-5-21-2429687510-3656637215-4010497816-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AF804AC2-32DD-4093-81F5-6E64DE90CF21}|URL, https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=599486&p={searchTerms},Quarantined, [3588135fccbe2511736c3a90778c1ce4] Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 2 PUP.Optional.OpenCandy, C:\Users\Shinobi\Downloads\DTLite4491-0356.exe, Quarantined, [407d6c0695f57abc6aacfa3be91d7b85], PUP.Optional.InstallCore.SID.A, C:\Users\Shinobi\Downloads\FileZilla_3.10.3_win64-setup.exe, Quarantined, [f9c40d65d2b890a6ec6f90b952b452ae], Physical Sectors: 0 (No malicious items detected) (end) Any help would be much appreciated. Thank you
  6. Hello and thanks in advance for any assistance . I've been using Malwarebytes for quite some time now as part of my toolkit of antivirus/antimalware software. I have never had a problem with it until I got to one of the latest releases, when the layout changed dramatically to the new layout. Since then, I cannot complete a scan without getting a BSoD. I have tried disabling my firewall when scanning, to no avail. Sometimes the BSoD occurs when scanning Filesystem Objects and sometimes during Heuristic Analysis. The First BSoD occurs generally when it happens during scanning Filesystem Objects and the second when performing Heuristic Analysis (the one with the SwissArmy file in the image). Both of these happen even with just a basic Threat Scan. I have tried scanning in safe mode and this works perfectly, finding no malware. Hope you can help as this is really annoying, I would like to go back to having no problems with this great piece of kit. Thanks in advance, Adam
  7. Greetings, experts. I'm dealing with a real pain right now. System frequently blue screens with igdpmg64 error, Blue Coat K9 seizes everything up when I try to fix other issues, no known admin password for it and cannot uninstall without it. FRST Log and Addition Logs will not paste here no matter how hard I try....help! Thanks in advance. FRST.txt Addition.txt
  8. Hello gents, I'm completely new here so if I do any forum fopa's I apologize in advance. It seems that I have somehow become victim to this lovely http://search.yahoo.com/?type=198484&fr=spigot-yhp-ch virus/malware/adware or whatever it is. I read a previous post where Gringo helped someone get there computer straightened out. I hope he, or someone, can help me also. I have some of noticeable issues, may be related or not. I'm not sure. My clock is stuck between 4-5 pm. After 5pm it resets to 4pm. My date is stuck on 3/10/2014. I'm assuming these correlate to the time I was infected. I have also noticed a big issue with my graphics stuttering and overall performing subpar in the last few days. I do not know where to start so I will wait instructions. I noticed Gringo said it is very important to run things in an appropriate order. I have also gotten the blue screen of death 5 times today. Thanks for any help guys. David
  9. Please excuse my bad English. I hope you understand the most. I was browsing the web when everything seemed to freeze, the taskbar had frozen, the start button had frozen etc, a messaged that said something similar to "Microsoft Windows has stopped responding" popped up. After able of doing nothing to make it work again I rebooted the computer. It worked fine for what I believe was 30-60 minutes until the same thing happened again. As before I rebooted the computer, and this time I got a message saying "Reboot and select proper boot device or insert boot media in selected boot device and press a key" I rebooted the computer and selected the boot device. Soon I launched Windows into safe mode, and scanned w/ malwarebytes for some reason. However IT FROZE AGAIN and I had to reboot the computer. This time I launched it into normal mode and is currently typing this. I'd like to know what caused this, and how I can prevent it in the future. ty
  10. Hey there y'all. I could really use some help if anyone is up to the task. I'll try to explain in as much detail as possible. Also, I have minimal experience with virus removal in general so please ignore my ignorance. My computer runs fine most of the time. It may be a little slower because of wear, but speed is not the issue here. What concerns me is when I'm in the middle of research, a paper, or what seems to be anything of any significance, my computer drops the BSOD on me which is then always shortly followed by a 10 minute start-up repair. Every time I run a scan I get the same two files, and they seem unaffected by Malwarebytes removal tool. They are: Vendor/ Category/ Item/ Other Trojan.Agent File C:\\Windows\svchost.exe Trojan.Agent Memory Process C:\\Windows\svchost.exe 1624 What do you think? Thanks
  11. I don't know for sure that I have a virus other than I cannot get Malwarebytes to complete a scan - I get the blue screen of death, and all my restore points have disappeared Sometimes it's 30 seconds into the scan, sometimes it's after 50,000 files have been scanned, or somewhere in between. attach.txt is attached Here is the text in dds.txt: . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.19088 BrowserJavaVersion: 10.5.1 Run by Darren at 20:27:12 on 2012-08-26 Microsoft® Windows Vista™ Home Basic 6.0.6001.1.1252.1.1033.18.3032.1454 [GMT -5:00] . AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\PROGRA~1\AVG\AVG2012\avgrsx.exe C:\Program Files\AVG\AVG2012\avgcsrvx.exe C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\WLANExt.exe C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\AVG\AVG2012\avgwdsvc.exe C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\LENOVO\HOTKEY\FNF5SVC.exe C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe C:\Program Files\Nero\Update\NASvc.exe C:\Program Files\Lenovo\PMDriver\PMSveH.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\Program Files\AVG\AVG2012\avgnsx.exe C:\Windows\system32\svchost.exe -k imgsvc c:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\taskeng.exe C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe C:\Program Files\Lenovo\System Update\SUService.exe C:\Windows\system32\WUDFHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Lenovo\PMDriver\PMHandler.exe C:\Program Files\Apoint2K\Apoint.exe C:\Program Files\Lenovo\HOTKEY\TpWAudAp.exe C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe C:\Program Files\Lenovo\LenovoCare\LPMGR.EXE C:\Program Files\ThinkVantage\AMSG\Amsg.exe C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe C:\Program Files\AVG\AVG2012\avgtray.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe C:\Program Files\Common Files\ArcSoft\CONNECTION SERVICE\BIN\ACDaemon.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Logitech\Logitech Vid\Vid.exe C:\Program Files\Software Informer\softinfo.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\TiVo\Desktop\TiVoTransfer.exe C:\Program Files\TiVo\Desktop\TiVoNotify.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Common Files\Apple\Internet Services\ubd.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\McAfee Security Scan\2.1.121\SSScheduler.exe C:\Users\Darren\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files\Common Files\ArcSoft\CONNECTION SERVICE\BIN\ArcCon.ac C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Apoint2K\ApMsgFwd.exe C:\Program Files\Apoint2K\Apntex.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\wuauclt.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe . ============== Pseudo HJT Report =============== . uSearch Page = hxxp://www.google.com uStart Page = https://www.paypal.com/ uDefault_Page_URL = hxxp://lenovo.live.com uSearch Bar = hxxp://www.google.com/ie uDefault_Search_URL = hxxp://www.google.com/ie mDefault_Page_URL = hxxp://lenovo.live.com uInternet Settings,ProxyOverride = *.local;<local> uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s uURLSearchHooks: H - No File uURLSearchHooks: H - No File mURLSearchHooks: H - No File BHO: AC-Pro: {0fb6a909-6086-458f-bd92-1f8ee10042a0} - c:\program files\autocompletepro\AutocompletePro.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - c:\program files\avg\avg2012\avgdtiex.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\11.1.0.12\AVG Secure Search_toolbar.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\11.1.0.12\AVG Secure Search_toolbar.dll TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File TB: {472734EA-242A-422B-ADF8-83D1E48CC825} - No File TB: {71AAABE5-1F0F-11D7-BD6F-004854603DCE} - No File {e7df6bff-55a5-4eb7-a673-4ed3e9456d39} uRun: [Logitech Vid] "c:\program files\logitech\logitech vid\Vid.exe" -bootmode uRun: [Logitech Vid HD] "c:\program files\logitech\logitech vid\vid.exe" -bootmode uRun: [software Informer] "c:\program files\software informer\softinfo.exe" -autorun uRun: [fsm] uRun: [TivoServer] c:\program files\tivo\desktop\TiVoServer.exe /service /registry uRun: [TivoTransfer] c:\program files\tivo\desktop\TiVoTransfer.exe uRun: [TivoNotify] c:\program files\tivo\desktop\TiVoNotify.exe /service /registry /auto:TivoNotify uRun: [TranscodingService] c:\program files\tivo\desktop\plus\\TranscodingService.exe uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe uRun: [MobileDocuments] c:\program files\common files\apple\internet services\ubd.exe uRun: [skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide mRun: [PMHandler] c:\progra~1\lenovo\pmdriver\PMHandler.exe mRun: [Apoint] c:\program files\apoint2k\Apoint.exe mRun: [TPWAUDAP] c:\program files\lenovo\hotkey\TpWAudAp.exe mRun: [TVT Scheduler Proxy] c:\program files\common files\lenovo\scheduler\scheduler_proxy.exe mRun: [LPManager] c:\progra~1\lenovo\lenovo~2\LPMGR.exe mRun: [AMSG] c:\program files\thinkvantage\amsg\Amsg.exe /startup mRun: [VeriFaceManager] c:\program files\lenovo\verifaceiii\PManage.exe mRun: [ACTray] c:\program files\thinkpad\connectutilities\ACTray.exe mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe" mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [Monitor] "c:\program files\leapfrog\leapfrog connect\Monitor.exe" mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [vProt] "c:\program files\avg secure search\vprot.exe" mRun: [ROC_roc_dec12] "c:\program files\avg secure search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12 mRun: [brStsMon00] c:\program files\browny02\brother\BrStMonW.exe /AUTORUN mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [HF_G_Jul] "c:\program files\avg secure search\HF_G_Jul.exe" /DoAction mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" StartupFolder: c:\users\darren\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\darren\appdata\roaming\dropbox\bin\Dropbox.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\2.1.121\SSScheduler.exe mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - c:\program files\avg\avg2012\avgdtiex.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12 TCP: Interfaces\{29656A43-55F3-40F6-92D3-17ED404CC178} : DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12 TCP: Interfaces\{B6B51E4E-AAFD-46D9-8B19-050612BAFB47} : DhcpNameServer = 192.168.0.5 Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\11.2.0\ViProtocol.dll Notify: igfxcui - igfxdev.dll LSA: Notification Packages = scecli ACGina . ================= FIREFOX =================== . FF - ProfilePath - c:\users\darren\appdata\roaming\mozilla\firefox\profiles\70bzqjey.default\ FF - prefs.js: browser.search.selectedEngine - Swagbucks.com FF - prefs.js: browser.startup.homepage - hxxp://my.yahoo.com/ FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7Bda08b25a-5a73-4d0b-8634-e145b0e268c3%7D&mid=0236673dd72cc8ec6a5e7fac0a604884-6ae972be8bf95a26720bafee866129c8cf23fd1c&ds=AVG&v=9.0.0.18.1〈=en&pr=fr&d=2011-10-06%2010%3A06%3A06&sap=ku&q= FF - plugin: c:\progra~1\common~1\nero\browse~1\npBrowserPlugin.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll FF - plugin: c:\program files\amazon\mp3 downloader\npAmazonMP3DownloaderPlugin.dll FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\11.2.0\npsitesafety.dll FF - plugin: c:\program files\google\picasa3\npPicasa3.dll FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPcol400.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPcol500.dll FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll FF - plugin: c:\program files\mozilla firefox\plugins\nphssb.dll FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll FF - plugin: c:\program files\nos\bin\np_gp.dll FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_2_202_228.dll FF - plugin: c:\windows\system32\npDeployJava1.dll FF - plugin: c:\windows\system32\npmproxy.dll . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 24896] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-1-31 31952] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-2-22 235216] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-12-23 41040] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-3-19 301248] R1 funfrm;funfrm;c:\windows\system32\drivers\funfrm.sys [2009-3-26 44544] R1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\drivers\smiif32.sys [2008-5-19 13480] R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files\adobe\elements organizer 8.0\PhotoshopElementsFileAgent.exe [2009-9-6 169312] R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-4-4 63928] R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\avgidsagent.exe [2012-7-4 5160568] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2012-2-14 193288] R2 FNF5SVC;Fn+F5 Service;c:\program files\lenovo\hotkey\FnF5svc.exe [2008-9-11 54560] R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2011-11-25 687400] R2 TPHKSVC;On Screen Display;c:\program files\lenovo\hotkey\TPHKSVC.exe [2008-9-11 53325] R2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\lenovo\rescue and recovery\rrpservice.exe [2008-5-24 520192] R2 vToolbarUpdater11.2.0;vToolbarUpdater11.2.0;c:\program files\common files\avg secure search\vtoolbarupdater\11.2.0\ToolbarUpdater.exe [2012-7-9 935008] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 139856] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [2011-12-23 24144] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 17232] R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2008-1-24 183808] R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2009-3-26 112128] R3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [2009-3-26 97536] R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [2008-2-22 37312] S1 tvtumon;tvtumon;c:\windows\system32\drivers\tvtumon.sys [2009-3-26 48192] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 gupdate1ca7b3cc622411a;Google Update Service (gupdate1ca7b3cc622411a);c:\program files\google\update\GoogleUpdate.exe [2009-12-12 133104] S2 lxdw_device;lxdw_device;c:\windows\system32\lxdwcoms.exe -service --> c:\windows\system32\lxdwcoms.exe -service [?] S2 RoxLiveShare10;LiveShare P2P Server 10;"c:\program files\common files\roxio shared\10.0\sharedcom\roxliveshare10.exe" --> c:\program files\common files\roxio shared\10.0\sharedcom\RoxLiveShare10.exe [?] S2 SessionLauncher;SessionLauncher;c:\users\admini~1\appdata\local\temp\dx9\sessionlauncher.exe --> c:\users\admini~1\appdata\local\temp\dx9\SessionLauncher.exe [?] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944] S2 TVT_UpdateMonitor;TVT Windows Update Monitor;c:\program files\lenovo\rescue and recovery\UpdateMonitor.exe [2008-5-24 360448] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-3-31 253600] S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-4-28 947528] S3 BrYNSvc;BrYNSvc;c:\program files\browny02\BrYNSvc.exe [2012-4-1 245760] S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [2007-6-18 19456] S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2009-12-12 133104] S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-8-26 40776] S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.1.121\McCHSvc.exe [2010-9-3 227232] S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-5-24 113120] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] S3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\drivers\WSDPrint.sys [2008-1-20 16896] S4 TivoBeacon2;TiVo Beacon Service;c:\program files\tivo\desktop\TiVoBeacon.exe [2010-8-24 1104656] . =============== Created Last 30 ================ . 2012-08-26 20:55:33 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2012-08-13 16:20:57 -------- d-----r- c:\program files\Skype . ==================== Find3M ==================== . 2012-07-03 18:46:44 22344 ----a-w- c:\windows\system32\drivers\mbam.sys . ============= FINISH: 20:27:53.43 =============== Attach.txt
  12. Hello. I'm new to the Malwarebytes forum and I just recently bought the PRO version of Malwarebytes Anti-Malware. This incident has occured: whenever I do a quick scan in my administrator account and when Malwarebytes found a threat, in the middle of the scan, I would get the Blue Screen of Death. It said it had to do with some sort of kernel problem. This has happened 2 times. However, when I ran a quick scan in my limited account, no threats were detected and the Blue Screen of Death didn't show up. I have provided the 2 requested logs. DDS.txt contents: . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 9.0.8112.16421 Run by Nimda at 12:26:14 on 2012-04-03 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.2046.1078 [GMT -7:00] . AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202} FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Users\Mom\AppData\Local\CrossLoop\CrossLoopService.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k hpdevmgmt c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe C:\Program Files\Norton 360\Engine\5.2.0.13\ccSvcHst.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Program Files\Nuance\PDF Professional 7\PDFProFiltSrv.exe C:\Windows\System32\svchost.exe -k HPZ12 c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k HPService C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\WUDFHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Norton 360\Engine\5.2.0.13\ccSvcHst.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Elantech\ETDCtrl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Windows Media Player\wmpnetwk.exe \\?\C:\Windows\system32\wbem\WMIADAP.EXE C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\conhost.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ mWinlogon: Userinit=c:\windows\system32\userinit.exe BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: PlusIEEventHelper Class: {551a852f-39a6-44a7-9c13-afbec9185a9d} - c:\program files\nuance\pdf professional 7\bin\PlusIEContextMenu.dll BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton 360\engine\5.2.0.13\coIEPlg.dll BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton 360\engine\5.2.0.13\ips\IPSBHO.DLL BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~2\office14\URLREDIR.DLL BHO: ZeonIEEventHelper Class: {da986d7d-ccaf-47b2-84fe-bfa1549bebf9} - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: Microsoft Web Test Recorder 10.0 Helper: {dda57003-0068-4ed2-9d32-4d1ec707d94d} - c:\program files\microsoft visual studio 10.0\common7\ide\privateassemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton 360\engine\5.2.0.13\coIEPlg.dll TB: DocuCom PDF: {e3286bf1-e654-42ff-b4a6-5e111731df6b} - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll EB: Web Test Recorder 10.0: {5802d092-1784-4908-8cdb-99b6842d353d} - mscoree.dll uRun: [iSUSPM] "c:\programdata\flexnet\connect\11\ISUSPM.exe" -scheduler mRun: [ETDWare] %ProgramFiles%\Elantech\ETDCtrl.exe mRun: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [switchBoard] c:\program files\common files\adobe\switchboard\SwitchBoard.exe mRun: [AdobeCS6ServiceManager] "c:\program files\common files\adobe\cs6servicemanager\CS6ServiceManager.exe" -launchedbylogin mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000 IE: Open with Nuance PDF Converter 7 - c:\program files\nuance\pdf professional 7\cnvres_eng.dll /100 IE: Open with PDF Professional 7 - c:\program files\nuance\pdf professional 7\bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab TCP: DhcpNameServer = 192.168.1.254 TCP: Interfaces\{096B7C05-3AB6-4981-BFDF-2F2ECC6AF8DE} : DhcpNameServer = 192.168.1.254 TCP: Interfaces\{C3A24C77-1FA4-40C5-B947-A9E672F3AB04} : DhcpNameServer = 192.168.1.254 Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL . ================= FIREFOX =================== . FF - ProfilePath - c:\users\nimda\appdata\roaming\mozilla\firefox\profiles\cktzc9uw.default\ FF - plugin: c:\progra~1\micros~2\office14\NPAUTHZ.DLL FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll FF - plugin: c:\program files\microsoft silverlight\4.1.10111.0\npctrlui.dll . ============= SERVICES / DRIVERS =============== . R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\n360\0502000.00d\symds.sys [2012-3-1 340088] R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\n360\0502000.00d\symefa.sys [2012-3-1 744568] R1 BHDrvx86;BHDrvx86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.2.1\definitions\bashdefs\20120317.002\BHDrvx86.sys [2012-3-19 820856] R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.2.1\definitions\ipsdefs\20120401.001\IDSvix86.sys [2012-4-2 368248] R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\n360\0502000.00d\ironx86.sys [2012-3-1 136312] R1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\n360\0502000.00d\symnets.sys [2012-3-1 299640] R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-1-3 63928] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] R2 CrossLoopService;CrossLoop Service;c:\users\mom\appdata\local\crossloop\CrossLoopService.exe [2012-3-27 569072] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-3-1 652360] R2 N360;Norton 360;c:\program files\norton 360\engine\5.2.0.13\ccsvchst.exe [2012-3-1 130008] R2 PDFProFiltSrv;PDFProFiltSrv;c:\program files\nuance\pdf professional 7\PDFProFiltSrv.exe [2011-9-9 135016] R2 UMVPFSrv;UMVPFSrv;c:\program files\common files\logishrd\lvmvfm\UMVPFSrv.exe [2012-1-18 450848] R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2011-5-16 350248] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2012-3-1 106104] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-3-1 20464] R3 rt61x86;Linksys Wireless-G PCI Adapter Driver;c:\windows\system32\drivers\WMP54Gv41x86.sys [2010-4-7 376160] R3 usbfilter;AMD USB Filter Driver;c:\windows\system32\drivers\usbfilter.sys [2011-5-16 37504] R3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992] R3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-2 253600] S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\drivers\asmthub3.sys [2011-5-16 100328] S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\drivers\asmtxhci.sys [2011-5-16 309224] S3 b06diag;Broadcom NetXtreme II Diag Driver;c:\windows\system32\drivers\bxdiagx.sys [2011-5-16 76840] S3 BFN7x86;Bigfoot Networks Killer Gaming Service;c:\windows\system32\drivers\Xeno7x86.sys [2011-5-16 129640] S3 BFNVis32;Bigfoot Networks Killer Gaming Service;c:\windows\system32\drivers\XenoVx86.sys [2011-5-16 129640] S3 BXOIS;BXOIS;c:\windows\system32\drivers\bxois.sys [2011-5-16 431144] S3 cbaf;UWB Cable Based Association Framework Driver;c:\windows\system32\drivers\cbaf.sys [2011-5-16 11008] S3 dfuuwb;Intel Wireless UWB Link 1480M Device Firmware Utility;c:\windows\system32\drivers\DfuUWB.sys [2011-5-16 500736] S3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464] S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\drivers\ETD.sys [2011-5-16 109448] S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\drivers\EtronHub3.sys [2011-5-16 33152] S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\drivers\EtronXHCI.sys [2011-5-16 52992] S3 HWA;Intel® Wireless USB Host Adapter;c:\windows\system32\drivers\HWA.sys [2011-5-16 53376] S3 IFCoEMP;IFCoEMP;c:\windows\system32\drivers\ifM60x32.sys [2011-5-16 269584] S3 IFCoEVB;IFCoEVB;c:\windows\system32\drivers\ifP60x32.sys [2011-5-16 61712] S3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2011-5-16 132480] S3 ioatdma1;ioatdma1;c:\windows\system32\drivers\qd16032.sys [2011-5-16 36552] S3 ioatdma2;Intel® QuickData Technology device ver.2;c:\windows\system32\drivers\qd26032.sys [2011-5-16 37576] S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-4-2 40776] S3 MEI;Intel® Management Engine Interface;c:\windows\system32\drivers\HECI.sys [2011-5-16 40832] S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-3-27 129976] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2011-5-16 63872] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2011-5-16 141952] S3 nvamacpi;nvamacpi;c:\windows\system32\drivers\nvamacpi.sys [2011-5-16 24608] S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872] S3 SwitchBoard;Adobe SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096] S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver;c:\windows\system32\drivers\Synth3dVsc.sys [2011-6-17 77184] S3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600] S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2010-11-20 52224] S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] S3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640] S3 tvnserver;TightVNC Server;c:\users\mom\appdata\local\crossloop\tvnserver.exe [2012-3-27 814080] S3 UsbFltr;Razer Copperhead Driver;c:\windows\system32\drivers\copperhd.sys [2011-5-18 11596] S3 uwbusb;UWB Bus Control USB-Miniport Driver;c:\windows\system32\drivers\usbuwbmini.sys [2011-5-16 9600] S3 VSPerfDrv100;Performance Tools Driver 10.0;c:\program files\microsoft visual studio 10.0\team tools\performance tools\VSPerfDrv100.sys [2011-1-18 54144] S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2012-3-3 1343400] S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2009-7-22 47128] S4 RsFx0105;RsFx0105 Driver;c:\windows\system32\drivers\RsFx0105.sys [2011-9-22 238696] S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [2011-9-22 370024] . =============== Created Last 30 ================ . 2012-04-03 18:59:02 -------- d-----w- C:\f1bf0072615ea8aa8e90 2012-04-03 05:47:26 418464 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-04-03 05:35:38 -------- d-----w- c:\programdata\PreEmptive Solutions 2012-04-03 04:39:08 -------- d-----w- C:\a3e13c58a3d203d2982d2978 2012-04-03 04:30:31 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2012-04-03 04:26:34 -------- d-----w- C:\a45fcc22a60094f3c0d0e3e688 2012-04-03 04:22:56 73064 ----a-w- c:\windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.3.5500.0.dll 2012-04-03 04:22:55 89960 ----a-w- c:\windows\system32\SQSRVRES.DLL 2012-04-02 04:38:20 -------- d-----w- c:\program files\Advanced Port Scanner 2012-04-02 01:17:21 -------- d-----w- c:\programdata\regid.1986-12.com.adobe 2012-03-31 21:35:40 -------- d-----w- c:\users\nimda\appdata\local\Adobe 2012-03-27 23:07:20 -------- d-----w- c:\program files\Mozilla Maintenance Service 2012-03-27 23:07:16 145960 ----a-w- c:\program files\mozilla firefox\maintenanceservice_installer.exe 2012-03-27 23:07:16 129976 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe 2012-03-26 01:28:47 -------- d-----w- c:\users\nimda\appdata\roaming\IconChanger 2012-03-26 01:21:14 -------- d-----w- c:\program files\IconChanger 2012-03-26 01:06:08 -------- d-----w- c:\users\nimda\appdata\local\Deployment 2012-03-26 01:06:08 -------- d-----w- c:\users\nimda\appdata\local\Apps 2012-03-26 00:18:31 -------- d-----w- c:\programdata\Microsoft Visual Studio 2012-03-26 00:14:39 -------- d-----w- c:\users\nimda\appdata\roaming\Microsoft Corporation 2012-03-25 18:34:10 -------- d-----w- c:\program files\FBP - Facebook Blaster Pro 2012-03-19 03:26:24 -------- d-----w- c:\users\nimda\appdata\roaming\Dev-Cpp 2012-03-18 22:27:45 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll 2012-03-18 22:27:45 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll 2012-03-18 22:27:45 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll 2012-03-18 22:27:45 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll 2012-03-18 22:27:45 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll 2012-03-18 22:27:45 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll 2012-03-18 22:27:45 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll 2012-03-18 22:25:47 -------- d-----w- c:\users\nimda\appdata\local\Apple 2012-03-17 04:01:21 -------- d-----w- c:\users\nimda\appdata\local\ElevatedDiagnostics 2012-03-15 00:43:22 -------- d-----w- c:\programdata\VS 2012-03-15 00:40:13 -------- d-----w- c:\program files\Microsoft Windows Performance Toolkit 2012-03-15 00:38:39 -------- d-----w- C:\484bfc10b1ea60baa5 2012-03-15 00:38:35 -------- d-----w- c:\program files\Debugging Tools for Windows (x86) 2012-03-15 00:38:13 -------- d-----w- c:\program files\Application Verifier 2012-03-15 00:25:55 -------- d-----w- c:\windows\system32\appmgmt 2012-03-14 22:56:56 -------- d-----w- C:\TDSSKiller_Quarantine 2012-03-14 05:28:41 3971440 ----a-w- c:\windows\system32\ntkrnlpa.exe 2012-03-14 05:28:41 3916656 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-03-14 04:32:58 2343424 ----a-w- c:\windows\system32\win32k.sys 2012-03-14 04:32:56 1077248 ----a-w- c:\windows\system32\DWrite.dll 2012-03-14 04:07:19 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe 2012-03-14 04:07:19 58880 ----a-w- c:\windows\system32\rdpwsx.dll 2012-03-14 04:07:19 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll 2012-03-14 04:07:17 919040 ----a-w- c:\windows\system32\rdpcorets.dll 2012-03-14 04:07:17 826880 ----a-w- c:\windows\system32\rdpcore.dll 2012-03-14 04:07:16 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys 2012-03-14 04:07:16 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2012-03-13 03:36:39 50200 ----a-w- c:\windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll 2012-03-13 03:35:20 -------- d-----w- c:\windows\system32\RsFx 2012-03-13 03:29:56 -------- d-----w- c:\program files\Microsoft SQL Server 2012-03-13 03:29:13 -------- d-----w- c:\program files\Microsoft Synchronization Services 2012-03-13 03:29:13 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition 2012-03-13 03:22:47 -------- d-----w- c:\program files\Microsoft ASP.NET 2012-03-13 03:22:42 -------- d-----w- c:\program files\IIS 2012-03-13 03:21:29 2480064 ----a-w- c:\programdata\microsoft\visualstudio\10.0\1033\ResourceCache.dll 2012-03-13 03:11:36 -------- d-----w- c:\windows\system32\1033 2012-03-13 03:11:11 -------- d-----w- c:\program files\Microsoft F# 2012-03-13 03:11:11 -------- d-----w- c:\program files\HTML Help Workshop 2012-03-13 03:11:10 -------- d-----w- c:\program files\Microsoft Visual Studio 10.0 2012-03-13 03:11:10 -------- d-----w- c:\program files\Microsoft Help Viewer 2012-03-13 03:11:10 -------- d-----w- c:\program files\common files\Merge Modules 2012-03-12 22:22:02 473656 ----a-w- c:\windows\system32\drivers\sptd.sys 2012-03-12 22:20:59 -------- d-----w- c:\users\nimda\appdata\roaming\DAEMON Tools Lite 2012-03-12 22:20:56 -------- d-----w- c:\programdata\DAEMON Tools Lite 2012-03-12 17:08:32 -------- d-----w- c:\users\nimda\appdata\roaming\Image-Line 2012-03-12 15:24:20 -------- d-----w- c:\users\nimda\appdata\roaming\NoNameScript 2012-03-12 15:23:35 -------- d-----w- c:\windows\MSAgent 2012-03-12 15:15:25 -------- d-----w- c:\users\nimda\appdata\roaming\mIRC 2012-03-12 01:39:51 -------- d-----w- c:\users\nimda\appdata\local\Diagnostics 2012-03-12 00:43:37 -------- d-----w- c:\users\nimda\appdata\local\Mozilla 2012-03-10 16:44:26 -------- d-----w- c:\windows\PIXTRAN 2012-03-10 16:44:08 -------- d-----w- c:\program files\common files\ScanSoft Shared 2012-03-10 16:44:05 -------- d-----w- c:\program files\Nuance 2012-03-10 16:40:43 -------- d-----w- C:\Pro_11459.1 2012-03-10 15:54:17 -------- d-----w- c:\users\nimda\appdata\roaming\FLEXnet 2012-03-10 15:54:15 -------- d-----w- c:\users\nimda\appdata\roaming\Nuance 2012-03-10 15:51:14 -------- d-----w- c:\users\nimda\appdata\roaming\Zeon 2012-03-10 15:51:05 -------- d-----w- c:\programdata\Nuance 2012-03-10 15:50:21 -------- d-----w- c:\programdata\zeon 2012-03-10 06:14:07 348160 ----a-w- c:\windows\system32\msvcr71.dll 2012-03-10 06:14:07 1060864 ----a-w- c:\windows\system32\mfc71.dll 2012-03-10 06:13:28 -------- d-----w- c:\program files\ASIO4ALL v2 2012-03-10 06:13:01 225280 ----a-w- c:\windows\system32\rewire.dll 2012-03-10 06:13:01 -------- d-----w- c:\program files\VstPlugins 2012-03-10 06:12:43 1554944 ----a-w- c:\windows\system32\vorbis.acm 2012-03-10 06:12:31 -------- d-----w- c:\program files\Outsim 2012-03-10 06:08:44 -------- d-----w- c:\program files\Image-Line 2012-03-09 02:03:03 -------- d-----w- c:\windows\pss 2012-03-07 22:05:07 -------- d-----w- c:\program files\MSXML 4.0 2012-03-07 04:33:39 -------- d-----w- c:\users\nimda\appdata\local\HP 2012-03-07 04:17:58 -------- d-----w- c:\program files\common files\Hewlett-Packard 2012-03-07 04:17:40 -------- d-----w- c:\program files\common files\HP 2012-03-07 04:12:53 452408 ----a-w- c:\windows\system32\hpzids01.dll 2012-03-07 02:36:39 -------- d-----w- c:\program files\HP 2012-03-05 01:22:18 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-03-05 00:00:58 -------- d-----w- c:\windows\system32\Adobe . ==================== Find3M ==================== . 2012-03-11 17:41:34 13824 ----a-w- c:\windows\system32\slwga.dll 2012-03-11 17:41:33 409088 ----a-w- c:\windows\system32\systemcpl.dll 2012-03-11 17:41:32 811520 ----a-w- c:\windows\system32\user32.dll 2012-03-03 22:28:45 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-03-02 00:28:00 126584 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS 2012-03-01 23:28:22 0 ----a-w- c:\windows\ativpsrm.bin 2012-01-29 13:10:42 237072 ------w- c:\windows\system32\MpSigStub.exe 2012-01-18 14:44:52 540960 ----a-w- c:\windows\system32\LVUI2RC.dll 2012-01-18 14:44:52 4332960 ----a-w- c:\windows\system32\drivers\lvuvc.sys 2012-01-18 14:44:40 545056 ----a-w- c:\windows\system32\LVUI2.dll 2012-01-18 14:44:28 312096 ----a-w- c:\windows\system32\drivers\lvrs.sys 2012-01-18 14:44:26 307488 ----a-w- c:\windows\system32\lvcodec2.dll 2012-01-18 14:44:26 196896 ----a-w- c:\windows\system32\lvci13311044.dll 2012-01-18 14:44:00 336408 ----a-w- c:\windows\system32\DevManagerCore.dll 2012-01-18 14:44:00 10920984 ----a-w- c:\windows\system32\LogiDPP.dll 2012-01-18 14:44:00 104472 ----a-w- c:\windows\system32\LogiDPPApp.exe 2012-01-18 14:23:12 38958 ----a-w- c:\windows\system32\Repository.reg . ============= FINISH: 12:27:19.69 =============== Attach.zip
  13. Hello again, I was finally able to run a quick scan without my computer shutting down prematurely... here are the results, Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 912020103 Windows 6.0.6002 Service Pack 2 Internet Explorer 9.0.8112.16421 2/25/2012 9:44:13 PM mbam-log-2012-02-25 (21-43-46).txt Scan type: Quick scan Objects scanned: 189662 Time elapsed: 14 minute(s), 35 second(s) Memory Processes Infected: 0 Memory Modules Infected: 1 Registry Keys Infected: 4 Registry Values Infected: 3 Registry Data Items Infected: 1 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: c:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\sp.DLL (TrojanProxy.Agent) -> No action taken. Registry Keys Infected: HKEY_CLASSES_ROOT\CLSID\{96AFBE69-C3B0-4b00-8578-D933D2896EE2} (TrojanProxy.Agent) -> No action taken. HKEY_CLASSES_ROOT\sp (TrojanProxy.Agent) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\sp (TrojanProxy.Agent) -> No action taken. HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SPService (TrojanProxy.Agent) -> No action taken. Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{96AFBE69-C3B0-4B00-8578-D933D2896EE2} (TrojanProxy.Agent) -> Value: {96AFBE69-C3B0-4B00-8578-D933D2896EE2} -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{96AFBE69-C3B0-4b00-8578-D933D2896EE2} (TrojanProxy.Agent) -> Value: {96AFBE69-C3B0-4b00-8578-D933D2896EE2} -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\netsvc (TrojanProxy.Agent) -> Value: netsvc -> No action taken. Registry Data Items Infected: HKEY_CLASSES_ROOT\.exe\(default) (PUM.HijackExefiles) -> Bad: (uy) Good: (exefile) -> No action taken. Folders Infected: (No malicious items detected) Files Infected: c:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\sp.DLL (TrojanProxy.Agent) -> No action taken........next DDS:. DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_24 Run by Owner at 22:31:31 on 2012-02-25 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.1918.832 [GMT -5:00] . AV: ESET NOD32 Antivirus 5.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1} SP: ESET NOD32 Antivirus 5.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\PROGRA~1\AVG\AVG2012\avgrsx.exe C:\Program Files\AVG\AVG2012\avgcsrvx.exe C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\rundll32.exe C:\Windows\system32\WLANExt.exe C:\Windows\System32\spoolsv.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\CAPM5RSK.EXE C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\AVG\AVG2012\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\HPSIsvc.exe C:\Program Files\Nero 7\InCD\InCDsrv.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Program Files\AVG\AVG2012\avgnsx.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\spool\DRIVERS\W32X86\3\HP1006MC.EXE C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe C:\Windows\system32\spool\drivers\w32x86\3\CAPM5SWK.EXE C:\Program Files\CyberLink\Shared Files\RichVideo.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Windows\system32\svchost.exe -k netsvc C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\DRIVERS\xaudio.exe C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k WindowsMobile C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\vssvc.exe C:\Windows\System32\svchost.exe -k swprv \\?\C:\Windows\system32\wbem\WMIADAP.EXE C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ mStart Page = hxxp://www.google.com uInternet Settings,ProxyOverride = *.local BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe mRun: [Apoint] c:\program files\apoint2k\Apoint.exe mRun: [OnScreenDisplay] c:\program files\hewlett-packard\hp quicktouch\HPKBDAPP.exe mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [HP CP1020 System Tray] "c:\program files\hp\hp laserjet professional cp1020 series\HPCP1020STRAY.EXE" mRun: [inCD] c:\program files\nero 7\incd\InCD.exe mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe" uPolicies-explorer: HideSCAHealth = 1 (0x1) mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) dPolicies-explorer: HideSCAHealth = 1 (0x1) IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll LSP: mswsock.dll DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab TCP: DhcpNameServer = 192.168.42.129 TCP: Interfaces\{1B0EB495-034A-4B74-AA50-B2A5754FD25B} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{1E48C00F-C9FA-4418-9AA0-C60DED99145E} : DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12 TCP: Interfaces\{22D381DF-A7C2-4F0D-BC3E-CEA0A26AEFFC} : DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12 TCP: Interfaces\{26BB1B3C-DC0F-43AA-AF85-6B4A66FF4406} : DhcpNameServer = 192.168.42.129 Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe" . ================= FIREFOX =================== . FF - ProfilePath - c:\users\owner\appdata\roaming\mozilla\firefox\profiles\cb370nv0.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?pc=Z016&form=ZGAADF&q= FF - prefs.js: network.proxy.type - 0 FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll FF - plugin: c:\program files\microsoft\office live\npOLW.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPTURNMED.dll FF - plugin: c:\program files\nos\bin\np_gp.dll FF - plugin: c:\program files\research in motion limited\blackberry app world browser plugin\npappworld.dll FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll FF - plugin: c:\program files\wildtangent games\app\browserintegration\registered\0\NP_wtapp.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll FF - plugin: c:\users\owner\appdata\local\google\update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\users\owner\appdata\roaming\mozilla\firefox\profiles\cb370nv0.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npAclmPlugin.dll FF - plugin: c:\users\owner\appdata\roaming\mozilla\firefox\profiles\cb370nv0.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}\plugins\npProductDetectPlugin.dll FF - plugin: c:\users\owner\appdata\roaming\mozilla\plugins\npgoogletalk.dll FF - plugin: c:\users\owner\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll . ============= SERVICES / DRIVERS =============== . R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-7-11 23120] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 32592] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-10-7 230608] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-8-8 40016] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 295248] R1 NEOFLTR_700_17289;Juniper Networks TDI Filter Driver (NEOFLTR_700_17289);c:\windows\system32\drivers\NEOFLTR_700_17289.SYS [2011-3-17 84336] R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2011-6-6 64952] R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\AVGIDSAgent.exe [2011-10-12 4433248] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776] R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-4-28 21504] R2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2011-11-28 94208] R2 SPService;SPService;c:\windows\system32\svchost.exe -k netsvc [2008-4-28 21504] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-7-11 134736] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-7-11 24272] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-10-4 16720] S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-8-14 136176] S2 RapidPortM5;RapidPortM5;c:\windows\system32\drivers\CAPM5LP.SYS [2011-2-18 23232] S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2009-10-21 54632] S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864] S3 GamesAppService;GamesAppService;c:\program files\wildtangent games\app\GamesAppService.exe [2010-10-12 206072] S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-8-14 136176] S3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [2008-6-27 335872] S3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\drivers\WSDPrint.sys [2008-4-28 16896] . =============== File Associations =============== . .exe=uy . =============== Created Last 30 ================ . 2012-02-26 01:48:41 0 --sha-w- c:\windows\system32\dds_trash_log.cmd 2012-02-26 01:40:50 -------- d-----w- c:\programdata\Faronics 2012-02-01 13:37:38 -------- d-----w- c:\users\owner\appdata\roaming\AVG2012 2012-02-01 13:28:02 -------- d-----w- c:\programdata\AVG2012 2012-02-01 13:09:27 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2012-02-01 13:09:22 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-02-01 13:09:22 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware . ==================== Find3M ==================== . 2011-12-09 01:41:53 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl . ============= FINISH: 22:32:02.00 ===============...... ...next Attach:. UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft® Windows Vista™ Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 12/13/2007 4:15:15 AM System Uptime: 2/25/2012 9:21:10 PM (1 hours ago) . Motherboard: Wistron | | 30D6 Processor: AMD Turion 64 X2 TL-58 | Socket A | 1900/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 137 GiB total, 19.557 GiB free. D: is FIXED (NTFS) - 12 GiB total, 1.845 GiB free. F: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: {36fc9e60-c465-11cf-8056-444553540000} Description: USB Mass Storage Device Device ID: USB\VID_0BB4&PID_0C91&MI_00\6&1625CEA6&0&0000 Manufacturer: Compatible USB storage device Name: USB Mass Storage Device PNP Device ID: USB\VID_0BB4&PID_0C91&MI_00\6&1625CEA6&0&0000 Service: USBSTOR . Class GUID: Description: Android Phone Device ID: USB\VID_0BB4&PID_0C91&MI_01\6&1625CEA6&0&0001 Manufacturer: Name: Android Phone PNP Device ID: USB\VID_0BB4&PID_0C91&MI_01\6&1625CEA6&0&0001 Service: . ==== System Restore Points =================== . RP643: 11/17/2011 9:29:48 PM - Scheduled Checkpoint RP644: 11/21/2011 9:26:18 PM - Scheduled Checkpoint RP645: 11/28/2011 9:19:16 PM - Device Driver Package Install: Hewlett-Packard Printers RP646: 11/28/2011 9:22:07 PM - Device Driver Package Install: Hewlett-Packard Printers RP647: 11/28/2011 9:23:09 PM - Device Driver Package Install: Hewlett-Packard Printers RP648: 11/28/2011 9:24:47 PM - Device Driver Package Install: Hewlett-Packard Printers RP649: 11/28/2011 9:25:35 PM - Device Driver Package Install: Hewlett-Packard Universal Serial Bus controllers RP650: 11/28/2011 9:26:12 PM - Device Driver Package Install: Hewlett-Packard Universal Serial Bus controllers RP651: 12/14/2011 9:41:47 AM - Scheduled Checkpoint RP652: 12/15/2011 10:41:26 AM - Scheduled Checkpoint RP653: 12/26/2011 1:56:28 PM - Installed LG United Mobile Driver RP654: 1/24/2012 11:03:39 AM - Installed HiJackThis RP655: 1/24/2012 2:28:14 PM - Installed Driver Manager. RP656: 1/24/2012 2:54:06 PM - Removed Driver Manager. RP657: 1/25/2012 8:11:00 AM - Windows Update RP658: 1/25/2012 10:18:35 AM - Installed HP Product Detection RP659: 1/25/2012 10:19:01 AM - Installed Hewlett-Packard ACLM.NET v1.1.0.0. RP660: 1/25/2012 11:01:01 AM - Installed GEAR driver installer 4.019 RP661: 1/25/2012 2:06:02 PM - before running eset scan . ==== Installed Programs ====================== . 32 Bit HP CIO Components Installer 7-Zip 4.62 Adobe AIR Adobe Anchor Service CS4 Adobe Bridge CS4 Adobe CMaps CS4 Adobe Color - Photoshop Specific CS4 Adobe Color EU Extra Settings CS4 Adobe Color JA Extra Settings CS4 Adobe Color NA Recommended Settings CS4 Adobe Color Video Profiles CS CS4 Adobe CSI CS4 Adobe Default Language CS4 Adobe ExtendScript Toolkit CS4 Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Fonts All Adobe Linguistics CS4 Adobe Output Module Adobe PDF Library Files CS4 Adobe Photoshop CS4 Adobe Photoshop CS4 Support Adobe Reader X (10.1.0) Adobe Search for Help Adobe Service Manager Extension Adobe Setup Adobe Shockwave Player Adobe Shockwave Player 11.5 Adobe Type Support CS4 Adobe Update Manager CS4 Adobe WinSoft Linguistics Plugin Adobe XMP Panels CS4 AdobeColorCommonSetCMYK AdobeColorCommonSetRGB AIM 6 Apple Application Support Apple Mobile Device Support Apple Software Update Ares 2.1.1 AVG 2012 BlackBerry App World Browser Plugin BlackBerry Desktop Software 6.0.1 Bonjour Broadcom 802.11 Wireless LAN Adapter Brother MFL-Pro Suite MFC-5890CN Canon iC D800 CCleaner Compatibility Pack for the 2007 Office system Conexant HD Audio Connect CyberLink YouCam DivX Setup doPDF 6.1 printer DVD Shrink 3.2 DVD Suite ESU for Microsoft Vista FileZilla Client 3.1.6 Free Burning Studio 1.0.9.9 Free MP3 WMA OGG Converter 8.2.5 GEAR driver installer 4.019 GIMP 2.4.5 Google Earth Plug-in Google Talk Plugin Google Update Helper HamsterFreeVideoConverter HDAUDIO Soft Data Fax Modem with SmartCP Hewlett-Packard ACLM.NET v1.1.0.0 Hewlett-Packard Active Check Hewlett-Packard Asset Agent for Health Check HiJackThis HijackThis 2.0.2 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) HP Active Support Library HP Customer Experience Enhancements HP Deskjet 1050 J410 series Basic Device Software HP Deskjet 1050 J410 series Help HP Doc Viewer HP Easy Setup - Frontend HP Help and Support HP Product Detection HP Quick Launch Buttons 6.40 B2 HP QuickPlay 3.6 HP QuickTouch 1.00 C4 HP Smart Web Printing HP Total Care Advisor HP Update HP User Guides 0090 HP Wireless Assistant HPNetworkAssistant iTunes J2SE Runtime Environment 5.0 Update 6 Java Auto Updater Java 6 Update 2 Java 6 Update 24 Java 6 Update 3 Java 6 Update 5 Java 6 Update 7 Juniper Networks Host Checker Juniper Networks Secure Application Manager Juniper Networks Setup Client Juniper Networks Setup Client Activex Control Junk Mail filter update kuler LabelPrint LG United Mobile Driver LightScribe System Software 1.10.19.1 Magic ISO Maker v5.5 (build 0273) MagicDisc 2.7.105 Malwarebytes' Anti-Malware Microsoft .NET Framework 3.5 SP1 Microsoft Application Error Reporting Microsoft Choice Guard Microsoft Expression Web Microsoft Expression Web MUI (English) Microsoft Expression Web Service Pack 1 (SP1) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Excel MUI (English) 2007 Microsoft Office Home and Student 2007 Microsoft Office Live Add-in 1.4 Microsoft Office OneNote MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office PowerPoint Viewer 2007 (English) Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) Microsoft Office Word MUI (English) 2007 Microsoft Search Enhancement Pack Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Sync Framework Runtime Native v1.0 (x86) Microsoft Sync Framework Services Native v1.0 (x86) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Works Mozilla Firefox 4.0 (x86 en-US) Mozilla Thunderbird (2.0.0.9) MP3 To Ringtone Gold 3.50 MSCU for Microsoft Vista MSVCRT MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB941833) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) muvee autoProducer 6.1 My HP Games Nero 7 Ultra Edition neroxml NetWaiting NVIDIA Drivers OGA Notifier 2.0.0048.0 PDF Settings CS4 Photoshop Camera Raw Power2Go PowerDirector QuickPlay SlingPlayer 0.4.6 QuickTime RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02 Security Update for 2007 Microsoft Office System (KB2288931) Security Update for 2007 Microsoft Office System (KB2289158) Security Update for 2007 Microsoft Office System (KB951550) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB978380) Security Update for Microsoft Office Excel 2007 (KB978382) Security Update for Microsoft Office PowerPoint 2007 (KB957789) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB969613) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB2344993) Skype™ 3.6 Spotify Suite Shared Configuration CS4 Super Mario Forever TBS WMP Plug-in Touch Pad Driver Uninstall Digital Binoculars Driver Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office InfoPath 2007 (KB976416) Update for Microsoft Office OneNote 2007 (KB980729) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Update Installer for WildTangent Games App VC 9.0 Runtime VC80CRTRedist - 8.0.50727.4053 Viewpoint Media Player VLC media player 1.0.1 WeatherBug Gadget WildTangent Games App (HP Games) Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Mail Windows Live Messenger Windows Live Movie Maker Windows Live OneCare safety scanner Windows Live Photo Gallery Windows Live Sync Windows Live Toolbar Windows Live Upload Tool Windows Live Writer Windows Mobile Device Center . ==== End Of File ===========================.... I know i havent explained much in this post, but i am happy in the least bit that i was able to even get and post these logs... if you could search for my last topic you could see what i was going through just to get this far, i believe it was back in january that i began trying to clean this laptop of mine :-(... ... anyone that can help me please i'd greatly appreciate it, as i am sad that i am not able to use my laptop how and when i want to
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.