Jump to content

Search the Community

Showing results for tags 'chrome.exe'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






Found 5 results

  1. So i just have this weird detection were avast detects different .exe files. I cant open chrome because of this.
  2. As requested on https://forums.malwarebytes.com/topic/9573-im-infected-what-do-i-do-now/ find attached the FRST and Additons logs. I'm not attaching a Malware Threat Scan log since the software says there are no threats, however, every time I open Google Chrome, Malwarebytes detects this "coinhive". Thank you in advance for all your help. Addition.txt FRST.txt
  3. I was infected with a malware that separately installed secure chromium and changing browser settings, default search etc. After I reset browsers and removed secure chromium I noticed that there are multiple chrome.exe*32 processes running in task manager. When I run firefox or internet explorer they are also 32 bit process though my machine is 64 bit and taking large chunk of memory. At the time of infection i was using google chrome browser. I have already run Malwarebites Anti-malware program but no avail. Attaching FRST log file and the screen shot of task manager. FRST_10-09-2015_12-39-51.txt Addition_10-09-2015_12-39-49.txt
  4. So, all the sudden, this computer just starts moving in ultra-slow motion. I do have anti-virus, firewall, etc. So I run ESET online and it finds a Trojan and deletes it. Yuck! But the computer is still acting weird. I hit control-alt-delete which takes forever to open up if at all, and there are like a zillion chrome.exe files even though I only have like a few windows upon. I shut down chrome completely. Still a bunch of these chrome.exe files and they are consuming lots and lots of memory. Not sure what gives and I am now at the limits of this type of computer knowledge. I hand it over to the masters. I tried to copy and paste the logs but was unable to, am attaching as text docs. Thank you, Chas. FRST.txt Addition.txt
  5. Hello!!! I am not the typical computer "geek" (sorry for the generic terminology) but I do have a little bit more than just basic understanding of computer systems and operation/performance. That's generally my husband or best friends department. However, as they sit and continue to scratch their head and convince themselves that it may be this issue or that issue, I thought for the best interest of my time and getting our system back to working performance I would ask the professionals. So, not sure when this first popped up but I guess that it was as far out as 2 weeks ago to maybe just a few days ago (having two young girls can have that effect on time.) But, I noticed that our system was continuous running, running really really slow, and acting funny like when trying to type something in the omnibox it would not react right away and I would have to wait sometimes up to over a minute for it to recognize my typing. . Checking task manager to see the processes and the only thing that look out of the ordinary was that chrome was in multiples. I saw Chrome.exe *32 was repeated in excess. Now, not quite sure if this is normal based on the research I've done...some say yes while others say no....but that is the only thing that jumped out at me as something I hadn't seen before. I'm the primary one that cleans the machines and am very familiar with intruders like conduit but after having a little issue maybe a month prior and thinking I was successful in cleaning it, we haven't had any problems for awhile now. I have ran Malware. spybot, registry cleaner, etc within the last 3 or 4 days a couple handful of times. With each scan coming back with something to report and clean but having no impact on the performance of my computer. My computer still acts the same way. Having the thought that my system should be at least stop running by now with all the scans and reactive steps I have taken but to no avail my computer's fan continues working overtime. I have shut it down periodically over these last few days but I use my computer all day and into the night for my business and research. Please help me with shedding some light on this? Thanks so much for any assistance or suggestions....Please see below the two reports as mentioned in the "Hello and welcome..." forum. DDS (Ver_2012-11-20.01).Microsoft Windows 7 Professional Boot Device: \Device\HarddiskVolume1Install Date: 3/15/2013 3:12:41 AMSystem Uptime: 1/27/2014 11:14:11 AM (47 hours ago).Motherboard: Gateway | | RS780Processor: AMD Phenom 8450 Triple-Core Processor | AM2 | 2100/200mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 78 GiB total, 14.33 GiB free.D: is FIXED (NTFS) - 388 GiB total, 67.352 GiB free.E: is CDROM ()F: is FIXED (NTFS) - 932 GiB total, 600.462 GiB free.G: is RemovableH: is RemovableI: is FIXED (NTFS) - 0 GiB total, 0.096 GiB free.J: is RemovableK: is Removable.==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP223: 1/27/2014 1:01:25 PM - C.==== Installed Programs ======================.µTorrent7-Zip 9.20 (x64 edition)Adobe AIRAdobe Flash Player 11 PluginAdobe Reader XI (11.0.06)Apple Application SupportApple Software UpdateAuslogics Duplicate File FinderCCleanerDropboxGoogle ChromeGoogle DriveGoogle EarthGoogle Talk PluginGoogle Update HelperGoogle VoiceImage ConverterinSSIDer 3Java 7 Update 51Java Auto UpdaterJava 7 (64-bit)Malwarebytes Anti-Malware version DesktopMicrosoft .NET Framework 4 Client ProfileMicrosoft .NET Framework 4 ExtendedMicrosoft CorporationMicrosoft LifeCamMicrosoft Security ClientMicrosoft Security EssentialsMicrosoft SilverlightMicrosoft SkyDriveMicrosoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219MiniTool Partition Wizard Home Edition 8.0MultiBit 0.5.14Music ManagerMyMediaPogoplug BackupPTA Treasurers Accounting Program - Version 4QuickTimeRealDownloaderRealNetworks - Microsoft Visual C++ 2008 RuntimeRealNetworks - Microsoft Visual C++ 2010 RuntimeRealPlayerRealUpgrade 1.1RegAlyzerRevo Uninstaller 1.95Samsung KiesSamsung Kies3Samsung Story Album ViewerSAMSUNG USB Driver for Mobile PhonesSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)Security Update for Microsoft .NET Framework 4 Extended (KB2487367)Security Update for Microsoft .NET Framework 4 Extended (KB2736428)Security Update for Microsoft .NET Framework 4 Extended (KB2742595)Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)Soft Data Fax Modem with SmartCPSpotifySpybot - Search & DestroySynergySystem Explorer 4.5.0Update for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Client Profile (KB2600217)VisiPics V1.31Visual C++ 9.0 ATL (x86) WinSXS MSMVisual C++ 9.0 CRT (x86) WinSXS MSM.==== Event Viewer Messages From Past Week ========.1/29/2014 12:57:39 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk5\DR5.1/27/2014 11:14:23 AM, Error: BTHUSB [5] - The Bluetooth driver expected an HCI event with a certain size but did not receive it.1/27/2014 10:03:49 AM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.165.2664.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.10201.0 Error code: 0x8024402f Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 1/26/2014 7:24:38 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk5\DR8.1/26/2014 11:30:36 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.1/23/2014 7:42:38 AM, Error: Service Control Manager [7031] - The Spybot-S&D 2 Scanner Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.1/23/2014 3:17:18 AM, Error: Service Control Manager [7031] - The Spybot-S&D 2 Scanner Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.1/22/2014 9:24:51 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.1/22/2014 2:14:21 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MediaMall Server service..==== End Of File ===========================DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.51.2Run by Reever1 at 10:46:54 on 2014-01-29Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.5887.2224 [GMT -6:00].AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k RPCSSC:\Program Files\Microsoft Security Client\MsMpEng.exeC:\Windows\system32\atiesrxx.exeC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\system32\atieclxx.exeC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Program Files (x86)\PogoplugBackup\dokanmnt.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\System32\svchost.exe -k LPDServiceC:\Program Files\Microsoft LifeCam\MSCamS64.exeC:\Windows\System32\svchost.exe -k HPZ12C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exeC:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exeC:\Windows\system32\taskhost.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files (x86)\Google\Update\\GoogleCrashHandler.exeC:\Program Files (x86)\Google\Update\\GoogleCrashHandler64.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Program Files\Synergy\synergyd.exeC:\Windows\system32\DRIVERS\xaudio64.exeC:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exeC:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exeC:\Program Files\Microsoft Security Client\NisSrv.exeC:\Windows\system32\svchost.exe -k bthsvcsC:\Windows\System32\WUDFHost.exeC:\Program Files\Microsoft Security Client\msseces.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\SearchIndexer.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Windows\System32\svchost.exe -k LocalServicePeerNetC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\Reever1\AppData\Local\MEDIAF~1\MFUSNM~1.EXEC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\System32\dinotify.exeC:\Windows\system32\svchost.exe -k SDRSVCC:\Program Files (x86)\MediaMall\MediaMallServer.exeC:\Windows\system32\taskeng.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\Reever1\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\explorer.exeC:\Windows\system32\taskhost.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = about:blankuProxyServer = localhost:21320mWinlogon: Userinit = userinit.exe,BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dllBHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dlluRun: [Google Update] "C:\Users\Reever1\AppData\Local\Google\Update\GoogleUpdate.exe" /cuRun: [b77D55C82FC9D91FB09FC645C72D965A28B46DD0._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=serviceuRun: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe RunuRun: [uTorrent] "C:\Users\Reever1\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZEDuRun: [spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autocleanuRun: [MediaFire Tray] C:\Users\Reever1\AppData\Local\MediaFire Desktop\mf_watch.exeuRunOnce: [uninstall C:\Users\Reever1\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Reever1\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64"uRunOnce: [uninstall C:\Users\Reever1\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Reever1\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64"uRunOnce: [uninstall C:\Users\Reever1\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Reever1\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"mRun: [QuickTime Task] "D:\Tools\QTTask.exe" -atboottimemRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [sDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"StartupFolder: C:\Users\Reever1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Reever1\AppData\Roaming\Dropbox\bin\Dropbox.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0.INFO: HKCU has more than 50 listed domains.If you wish to scan all of them, select the 'Force scan all domains' option...INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option..TCP: NameServer = Interfaces\{2FBE7E2B-B564-415F-B97A-2AD95A00EACE} : DHCPNameServer = SDWinLogon - SDWinLogon.dllSSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dllx64-Run: [Logitech Download Assistant] C:\Windows\System32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetchx64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey.INFO: x64-HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option..x64-SSODL: WebCheck - <orphaned>Hosts: www.spywareinfo.com.============= SERVICES / DRIVERS ===============.R0 AppleHFS;AppleHFS;C:\Windows\System32\drivers\AppleHFS.sys [2013-7-26 72024]R0 AppleMNT;AppleMNT;C:\Windows\System32\drivers\AppleMNT.sys [2013-7-26 16216]R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-9-27 248240]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-4-20 203776]R2 DokanCEDriver;DokanCEDriver;C:\Program Files (x86)\PogoplugBackup\dokance.sys [2013-12-2 72480]R2 DokanCEMounter;DokanCEMounter;C:\Program Files (x86)\PogoplugBackup\dokanmnt.exe [2013-12-2 116000]R2 MediaMall Server;MediaMall Server;C:\Program Files (x86)\MediaMall\MediaMallServer.exe [2013-5-14 4038448]R2 MF NTFS Monitor;MediaFire NTFS Monitor;C:\Users\Reever1\AppData\Local\MEDIAF~1\MFUSNM~1.EXE [2014-1-28 457944]R2 mfmonitor;mfmonitor;C:\Windows\System32\drivers\mfmonitor_x64.sys [2014-1-28 20696]R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-1-20 134944]R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-8-14 39056]R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-1-27 3921880]R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-1-27 1042272]R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-1-27 171416]R2 Synergy;Synergy;C:\Program Files\Synergy\synergyd.exe [2013-5-2 423424]R3 CAXHWBS2;CAXHWBS2;C:\Windows\System32\drivers\CAXHWBS2.sys [2007-6-20 409600]R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-9-28 395264]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2014-1-22 108800]S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-12-11 111616]S3 pwdrvio;pwdrvio;C:\Windows\System32\pwdrvio.sys [2013-7-28 19032]S3 pwdspio;pwdspio;C:\Windows\System32\pwdspio.sys [2013-7-28 12384]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-10-22 19456]S3 SrvHsfPCI;SrvHsfPCI;C:\Windows\System32\drivers\VSTBS26.SYS [2009-7-13 411136]S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2014-1-22 206080]S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]S3 SystemExplorerHelpService;System Explorer Service;C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-1-23 821720]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-10-22 57856]S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-10-22 30208]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-3-17 1255736].=============== Created Last 30 ================.2014-01-29 06:35:56 -------- d-----w- C:\Users\Reever1\MediaFire2014-01-29 06:35:39 -------- d--h--w- C:\Users\Reever1\.mediafire2014-01-28 19:52:37 -------- d-----w- C:\Program Files (x86)\MediaFire Desktop2014-01-28 19:52:09 20696 ----a-w- C:\Windows\System32\drivers\mfmonitor_x64.sys2014-01-28 19:51:48 -------- d-----w- C:\Users\Reever1\AppData\Local\MediaFire Desktop2014-01-28 17:25:18 10315576 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6D13A10E-2A91-4502-BEE7-CA9B62C4F7D3}\mpengine.dll2014-01-27 17:26:08 10315576 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll2014-01-27 15:31:18 21040 ----a-w- C:\Windows\System32\sdnclean64.exe2014-01-27 15:29:45 -------- d-----w- C:\Users\Reever1\AppData\Roaming\Safer Networking2014-01-27 15:26:42 -------- d-----w- C:\Program Files (x86)\Safer Networking2014-01-27 15:26:02 1752632 ----a-w- C:\Users\Reever1\regalyz- 14:31:40 -------- d-----w- C:\Users\Reever1\AppData\Local\SearchProtect2014-01-25 05:40:04 -------- d-----w- C:\ProgramData\VTech2014-01-24 18:04:48 -------- d-----w- C:\Users\Reever1\AppData\Local\Apple Computer2014-01-24 02:01:51 -------- d-----w- C:\ProgramData\Auslogics2014-01-24 01:33:15 5251376 ----a-w- C:\Users\Reever1\duplicate-file-finder-setup.exe2014-01-23 15:12:09 -------- d-----w- C:\ProgramData\SystemExplorer2014-01-23 15:12:06 -------- d-----w- C:\Program Files (x86)\System Explorer2014-01-23 08:34:10 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy 22014-01-23 08:31:16 40658208 ----a-w- C:\Users\Reever1\spybot-2.2.exe2014-01-23 04:50:28 965000 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DAA4BEF5-D3B3-49D0-AFE9-6372E0A96DF2}\gapaengine.dll2014-01-22 14:52:10 206080 ----a-w- C:\Windows\System32\drivers\ssudmdm.sys2014-01-22 14:52:10 108800 ----a-w- C:\Windows\System32\drivers\ssudbus.sys2014-01-18 16:42:14 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll2014-01-18 09:41:55 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll2014-01-18 09:41:55 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll2014-01-18 09:41:55 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll2014-01-18 09:41:55 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll2014-01-18 09:41:55 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll2014-01-18 09:40:34 -------- d-----w- C:\Users\Reever1\AppData\Local\Apple2014-01-15 13:51:45 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys2014-01-15 13:51:45 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys2014-01-15 13:51:45 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys2014-01-15 13:51:45 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys2014-01-15 13:51:45 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys2014-01-15 13:51:45 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys2014-01-15 13:51:45 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys2014-01-15 13:51:44 3156480 ----a-w- C:\Windows\System32\win32k.sys2014-01-15 05:49:51 -------- d-----w- C:\Windows\ERUNT2014-01-15 05:41:50 -------- d-----w- C:\AdwCleaner2014-01-14 21:05:16 -------- d-----w- C:\Users\Reever1\AppData\Roaming\ObserVer2014-01-11 08:11:15 -------- d-----w- C:\Users\Reever1\workspace2014-01-11 08:04:29 -------- d-----w- C:\Users\Reever1\Development - android2014-01-09 03:13:18 -------- d-----w- C:\Program Files\Microsoft LifeCam2014-01-09 03:13:18 -------- d-----w- C:\Program Files (x86)\Microsoft LifeCam2014-01-09 03:13:14 1974616 ----a-w- C:\Windows\SysWow64\D3DCompiler_42.dll2014-01-09 03:13:13 1892184 ----a-w- C:\Windows\SysWow64\D3DX9_42.dll2014-01-01 03:46:45 2876528 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll2014-01-01 03:46:29 42168 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll.==================== Find3M ====================.2014-01-19 07:33:29 270496 ------w- C:\Windows\System32\MpSigStub.exe2013-12-11 03:16:31 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2013-12-11 03:16:30 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2013-12-11 03:16:08 9272200 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe2013-11-26 10:19:07 2724864 ----a-w- C:\Windows\System32\mshtml.tlb2013-11-26 10:18:23 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll2013-11-26 09:48:07 66048 ----a-w- C:\Windows\System32\iesetup.dll2013-11-26 09:46:25 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll2013-11-26 09:23:02 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb2013-11-26 09:18:39 139264 ----a-w- C:\Windows\System32\ieUnatt.exe2013-11-26 09:18:09 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe2013-11-26 09:16:57 708608 ----a-w- C:\Windows\System32\jscript9diag.dll2013-11-26 08:35:02 5769216 ----a-w- C:\Windows\System32\jscript9.dll2013-11-26 08:28:16 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll2013-11-26 08:16:12 4243968 ----a-w- C:\Windows\SysWow64\jscript9.dll2013-11-26 08:02:16 1995264 ----a-w- C:\Windows\System32\inetcpl.cpl2013-11-26 07:32:06 1928192 ----a-w- C:\Windows\SysWow64\inetcpl.cpl2013-11-26 07:07:57 2334208 ----a-w- C:\Windows\System32\wininet.dll2013-11-26 06:33:33 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll2013-11-23 09:07:22 6110144 ----a-w- C:\Users\Reever1\HPPSdr.exe2013-11-15 02:04:57 1050512 ----a-w- C:\Users\Reever1\UnityWebPlayer.exe2013-11-12 02:23:09 2048 ----a-w- C:\Windows\System32\tzres.dll2013-11-12 02:07:29 2048 ----a-w- C:\Windows\SysWow64\tzres.dll.============= FINISH: 10:47:31.47 =============== .
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.