Jump to content
Due to inclement weather in Southwest Florida, our Clearwater support team is offline. Our other offices are available to assist you, however their responses may be delayed. We appreciate your patience and understanding during this time. ×

Search the Community

Showing results for tags 'system error'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 6 results

  1. I had issues with ads opening tabs in my google chrome, so i installed malwarebytes. The first general threat-scan didnt find any issues. Then i did another custom scan on my main c: drive and it found 2 issues that malwarebytes quarantine and removed. I then restarted the computer as instructed and when i restarted, my internet, network system and audio are not working. I tried windows troubleshoot to detect and fix the issues but came upon system error messages like: "The Volume Shadow Copy service used by SystemRestore is not working". my PC setting also wont open I have a windows 8.1 . please help. logs: <?xml version="1.0" encoding="UTF-16" ?> <mbam-log> <header> <date>2016/07/16 12:52:25 +0700</date> <logfile>mbam-log-2016-07-16 (12-48-37).xml</logfile> <isadmin>yes</isadmin> </header> <engine> <version>2.2.1.1043</version> <malware-database>v2016.02.16.06</malware-database> <rootkit-database>v2016.05.27.01</rootkit-database> <license>trial</license> <file-protection>enabled</file-protection> <web-protection>enabled</web-protection> <self-protection>disabled</self-protection> </engine> <system> <hostname>LENOVO-PC</hostname> <ip>192.168.1.157</ip> <osversion>Windows 8.1</osversion> <arch>x64</arch> <username>getty</username> <filesys>NTFS</filesys> </system> <summary> <type>threat</type> <result>completed</result> <objects>473475</objects> <time>20499</time> <processes>0</processes> <modules>0</modules> <keys>0</keys> <values>0</values> <datas>0</datas> <folders>0</folders> <files>0</files> <sectors>0</sectors> </summary> <options> <memory>enabled</memory> <startup>enabled</startup> <filesystem>enabled</filesystem> <archives>enabled</archives> <rootkits>disabled</rootkits> <deeprootkit>disabled</deeprootkit> <heuristics>enabled</heuristics> <pup>enabled</pup> <pum>enabled</pum> </options> <items> </items> </mbam-log> <?xml version="1.0" encoding="UTF-16" ?> <mbam-log> <header> <date>2016/07/16 18:36:07 +0700</date> <logfile>mbam-log-2016-07-16 (18-35-41).xml</logfile> <isadmin>yes</isadmin> </header> <engine> <version>2.2.1.1043</version> <malware-database>v2016.07.16.03</malware-database> <rootkit-database>v2016.05.27.01</rootkit-database> <license>trial</license> <file-protection>enabled</file-protection> <web-protection>enabled</web-protection> <self-protection>disabled</self-protection> </engine> <system> <hostname>LENOVO-PC</hostname> <ip></ip> <osversion>Windows 8.1</osversion> <arch>x64</arch> <username>getty</username> <filesys>NTFS</filesys> </system> <summary> <type>custom</type> <result>completed</result> <objects>656133</objects> <time>63225</time> <processes>0</processes> <modules>0</modules> <keys>0</keys> <values>0</values> <datas>0</datas> <folders>0</folders> <files>2</files> <sectors>0</sectors> </summary> <options> <memory>enabled</memory> <startup>enabled</startup> <filesystem>enabled</filesystem> <archives>enabled</archives> <rootkits>enabled</rootkits> <deeprootkit>disabled</deeprootkit> <heuristics>enabled</heuristics> <pup>enabled</pup> <pum>enabled</pum> </options> <items> <file><path>C:\Masterspec\CD\MasterCollection_CS6_LS16\MasterCollection_CS6_LS16\- Cara 2.Patch All Adobe Product CS 6\Patch.exe</path><vendor>HackTool.Agent</vendor><action>success</action><hash>dad98f959ffb95a178ad0ef8f90716ea</hash></file> <file><path>C:\Users\getty\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\00\00000000</path><vendor>PUP.Optional.OneClickDownloader</vendor><action>success</action><hash>8d269490990125119340e14be41d8e72</hash></file> </items> </mbam-log>
  2. I had issues with ads opening tabs in my google chrome, so i installed malwarebytes. After first, general threat scan didnt find any issues. Then i did another custom scan on my main c: drive and it found 2 issues that malwarebytes quarantine and removed. I then restarted the computer as instructed and when i restarted, my internet, network system and audio are not working. I tried windows troubleshoot to detect and fix the issues but came upon system error messages like: "The Volume Shadow Copy service used by SystemRestore is not working". my PC setting also wont open I have a windows 8.1 . please help.
  3. I just tried to play Guild Wars 2 after some time, but every time I start the launcher, it crashes and the report says that LavasoftTcpService is the cause. I once had a Lavasoft ad-aware (by accident) but deinstalled it completely. But now the file is in my Windows/SysWOW64 folder and wont go out. If Itry to delte it, it says it does work along with open progresses and no matter how many progresses i shut down with the task manager, it won´t delte. If i start in saFe mode and delete it, my intenet doesnt work anymore, so it somehow can be deleted, but it is kind of fishy. I realy don´t know what do do with this .dll and how to remove it. I know that in these forums there was someone who had the same error as I have and they somehow fixed it. I hope you can help me in some way... Attached are the Farbar Recovery Scan Tool reports, maybe the can help, though part of them are in german... I hope someone can help me, I´ve been looking for a solution for days now, but nothing seems to work. Your Speaking Hat Addition.txt FRST.txt
  4. Hi, i need help with this issue im having im having. I have installed Malaware bytes and ran a scan, once it finished it deleted a bunch of files that were infected. Now iam having a pop up system error saying that a miner.dll program is missing and i must install it now to fix the problem. It pops up every 5 minutes. I went through a few different other topics with the same problem and downloaded DDS and ran it, saved the two notepads to my desktop and ill post the DDS.txt in this topic and ill attach the Attach.txt to this as well. DDS.txt contents: DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16660 BrowserJavaVersion: 10.25.2Run by Calum at 18:06:51 on 2013-08-17Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.16375.13889 [GMT 9.5:30].SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\nvvsvc.exeC:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Windows\system32\taskhost.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Windows\SysWOW64\PnkBstrA.exeC:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exeC:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\system32\svchost.exe -k LocalSystemNetworkRestrictedC:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Windows\system32\sppsvc.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\system32\SearchIndexer.exeC:\Program Files (x86)\Steam\Steam.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exeC:\Program Files (x86)\iTunes\iTunesHelper.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files\iPod\bin\iPodService.exeC:\Users\Calum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Usbsupply.exeC:\Users\Calum\AppData\Local\Temp\RarSFX1\Cloudll.exeC:\Windows\System32\svchost.exe -k LocalServicePeerNetC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Windows\System32\svchost.exe -k secsvcsC:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\SearchProtocolHost.exeC:\Windows\system32\SearchFilterHost.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============. mWinlogon: Userinit = userinit.exe,BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllBHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllTB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>uRun: [GameTracker] C:\Program Files (x86)\GameTracker\GTLite.exeuRun: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automountuRun: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silentuRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunuRun: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrunuRun: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStartmRun: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /smRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"StartupFolder: C:\Users\Calum\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Adobe.lnk - C:\Users\Calum\AppData\Roaming\data\Adobe.vbsStartupFolder: C:\Users\Calum\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\CLOUDL~1.LNK - C:\Users\Calum\AppData\Local\Temp\RarSFX1\Cloudll.exeStartupFolder: C:\Users\Calum\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exeStartupFolder: C:\Users\Calum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Usbsupply.exeStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\UPDATE~1.LNK - C:\Program Files (x86)\ESET\MiNODLogin\launcher.exemPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllIE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllTrusted Zone: clonewarsadventures.comTrusted Zone: freerealms.comTrusted Zone: soe.comTrusted Zone: sony.comTCP: NameServer = 10.0.0.138TCP: Interfaces\{B8A342E0-651B-4194-BDA9-3F12AF7F73CF} : DHCPNameServer = 10.0.0.138Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dllHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dllx64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dllx64-TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>x64-Run: [CL2 Launcher] C:\Program Files (x86)\City Life RPG\CL2 Launcher\CL2Launcher.exex64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-SSODL: WebCheck - <orphaned>.============= SERVICES / DRIVERS ===============.R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-8-17 418376]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-8-17 701512]R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-7-12 3289472]R2 StarWindServiceAE;StarWind AE Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-24 370688]R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-3-14 383264]R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-8-11 4308320]R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-8-17 25928]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-6-11 187392]R3 ScreamBAudioSvc;ScreamBee Audio;C:\Windows\System32\drivers\ScreamingBAudio64.sys [2010-7-1 38992]S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-1-6 75624]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-21 162408]S3 BEService;BattlEye Service;C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2013-5-11 49152]S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2013-8-10 57840]S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2013-2-5 1512448]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-5-16 19456]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-5-16 57856]S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-5-16 30208]S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]S3 VaneFltr;Lachesis Mouse Driver;C:\Windows\System32\drivers\Lachesis.sys [2007-8-17 30336]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-5-9 1255736]S3 WinRing0_1_2_0;WinRing0_1_2_0;C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [2013-8-16 14544].=============== Created Last 30 ================.2013-08-17 07:41:42 -------- d-----w- C:\Users\Calum\AppData\Roaming\data2013-08-17 06:12:36 -------- d-----w- C:\Users\Calum\AppData\Roaming\Malwarebytes2013-08-17 06:12:32 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys2013-08-17 06:12:32 -------- d-----w- C:\ProgramData\Malwarebytes2013-08-17 06:12:32 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware2013-08-16 16:54:49 -------- d-----w- C:\Program Files (x86)\ESET2013-08-16 16:51:37 -------- d-----w- C:\Users\Calum\AppData\Local\ESET2013-08-16 16:35:35 -------- d-sh--r- C:\Users\Calum\AppData\Roaming\-4674609872013-08-16 13:44:25 -------- d-----w- C:\Program Files (x86)\RAR Password Unlocker2013-08-16 11:50:15 -------- d-----w- C:\Users\Calum\AppData\Local\Origin2013-08-16 11:34:31 -------- d-----w- C:\ProgramData\Electronic Arts2013-08-16 11:34:30 -------- d-----w- C:\Program Files (x86)\Origin2013-08-16 11:19:59 -------- d-----w- C:\Users\Calum\AppData\Local\Razer2013-08-14 03:25:32 1472512 ----a-w- C:\Windows\System32\crypt32.dll2013-08-11 10:21:09 -------- d-----w- C:\Program Files (x86)\TeamViewer2013-08-11 09:38:03 9460976 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AA71D0FD-1225-4649-A713-5ABD9E7F267B}\mpengine.dll2013-08-10 13:59:38 737072 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll2013-08-10 13:54:57 -------- d-----w- C:\Users\Calum\Tracing2013-08-10 13:53:31 -------- d-----w- C:\Windows\en2013-08-10 13:52:55 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition2013-08-10 13:52:04 57840 ----a-w- C:\Windows\System32\drivers\fssfltr.sys2013-08-10 13:51:36 -------- d-----w- C:\Windows\PCHEALTH2013-08-10 13:49:06 2876528 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll2013-08-10 13:47:58 -------- d-----w- C:\Users\Calum\AppData\Local\Windows Live2013-08-10 13:47:53 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live2013-08-09 15:41:10 298584 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr2013-08-09 15:41:05 -------- d-----w- C:\Users\Calum\AppData\Local\PunkBuster2013-08-09 15:39:46 298584 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe2013-08-09 15:39:46 298584 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex02013-08-09 15:39:42 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe2013-08-09 15:04:40 1837683 ----a-w- C:\Users\Calum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Usbsupply.exe2013-08-09 14:52:32 -------- d-----w- C:\Ubisoft2013-08-09 05:01:56 804384 ----a-w- C:\Windows\SysWow64\fmodex.dll2013-08-09 05:01:56 312864 ----a-w- C:\Windows\SysWow64\fmod_event.dll2013-08-08 14:19:08 -------- d-----w- C:\Users\Calum\AppData\Local\WarThunder2013-08-08 14:19:08 -------- d-----w- C:\ProgramData\WarThunder2013-08-08 14:18:59 -------- d-----w- C:\Program Files (x86)\WarThunder2013-08-05 13:02:09 -------- d-----w- C:\Users\Calum\AppData\Local\PAYDAY 22013-08-04 03:55:25 -------- d-----w- C:\Program Files\Ventrilo2013-08-04 03:54:53 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard2013-08-03 14:32:38 -------- d-----w- C:\Users\Calum\AppData\Local\ArmaAddonSync20092013-08-03 14:32:37 -------- d-----w- C:\Users\Calum\AppData\Local\Yoma_Tools2013-08-03 11:12:56 -------- d-----w- C:\Fraps2013-08-01 16:52:58 -------- d-----w- C:\Users\Calum\AppData\Roaming\SpinTires2013-07-31 07:26:19 -------- d-----w- C:\Users\Calum\AppData\Roaming\.minecraft2013-07-29 08:55:13 -------- d-----w- C:\Program Files (x86)\Call of Juarez Gunslinger2013-07-28 08:29:41 -------- d-----w- C:\Users\Calum\AppData\Roaming\Origin2013-07-28 08:29:15 -------- d-----w- C:\ProgramData\Origin2013-07-25 09:03:30 -------- d-----w- C:\Windows\System32\MRT2013-07-25 07:37:12 -------- d-----w- C:\Program Files\Common Files\EasyInfo2013-07-25 07:31:41 75472 ----a-w- C:\Windows\DSETUP.dll2013-07-25 07:31:41 2245840 ----a-w- C:\Windows\dsetup32.dll2013-07-19 05:47:53 -------- d-----w- C:\Users\Calum\AppData\Local\4A Games2013-07-19 05:29:55 -------- d-----w- C:\Program Files (x86)\Metro Last Light2013-07-18 12:23:49 -------- d-----w- C:\Users\Calum\jagexcache2013-07-18 12:22:50 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll.==================== Find3M ====================.2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll2013-07-26 03:35:08 2706432 ----a-w- C:\Windows\System32\mshtml.tlb2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll2013-07-26 02:49:14 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb2013-07-26 02:39:38 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe2013-07-26 01:59:38 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll2013-07-18 12:22:47 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll2013-07-18 12:22:47 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll2013-07-09 06:03:30 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe2013-07-09 05:54:22 1732032 ----a-w- C:\Windows\System32\ntdll.dll2013-07-09 05:53:12 243712 ----a-w- C:\Windows\System32\wow64.dll2013-07-09 05:52:52 224256 ----a-w- C:\Windows\System32\wintrust.dll2013-07-09 05:51:16 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll2013-07-09 05:46:20 184320 ----a-w- C:\Windows\System32\cryptsvc.dll2013-07-09 05:46:20 139776 ----a-w- C:\Windows\System32\cryptnet.dll2013-07-09 05:03:34 3968960 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe2013-07-09 05:03:34 3913664 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe2013-07-09 04:53:47 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll2013-07-09 04:52:33 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll2013-07-09 04:52:33 5120 ----a-w- C:\Windows\SysWow64\wow32.dll2013-07-09 04:52:10 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll2013-07-09 04:46:31 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll2013-07-09 04:46:31 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll2013-07-09 04:46:31 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll2013-07-09 04:45:07 44032 ----a-w- C:\Windows\apppatch\acwow64.dll2013-07-09 02:49:42 25600 ----a-w- C:\Windows\SysWow64\setup16.exe2013-07-09 02:49:41 7680 ----a-w- C:\Windows\SysWow64\instnm.exe2013-07-09 02:49:39 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll2013-07-09 02:49:38 2048 ----a-w- C:\Windows\SysWow64\user.exe2013-07-06 06:03:53 1910208 ----a-w- C:\Windows\System32\drivers\tcpip.sys2013-06-15 04:32:16 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys2013-06-08 18:36:01 108448 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll2013-06-08 18:36:00 971680 ----a-w- C:\Windows\System32\deployJava1.dll2013-06-08 18:36:00 1092512 ----a-w- C:\Windows\System32\npDeployJava1.dll2013-06-05 03:34:27 3153920 ----a-w- C:\Windows\System32\win32k.sys2013-06-04 17:32:36 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll2013-06-04 06:00:13 624128 ----a-w- C:\Windows\System32\qedit.dll2013-06-04 04:53:07 509440 ----a-w- C:\Windows\SysWow64\qedit.dll2013-05-31 00:45:08 43680 ----a-w- C:\Windows\System32\drivers\lirsgt.sys2013-05-31 00:45:08 314016 ----a-w- C:\Windows\System32\drivers\atksgt.sys2013-05-19 15:34:18 564824 ----a-w- C:\Windows\System32\drivers\sptd.sys.============= FINISH: 18:07:13.03 =============== In addition i downloaded the gmer program, scanned and saved the ark.txt file which i will include the contents of that under this: Ark.txt contents: GMER 2.1.19163 - http://www.gmer.netRootkit scan 2013-08-17 18:20:31Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-3 ST3500413AS rev.JC45 465.76GBRunning: yedzfvjx.exe; Driver: C:\Users\Calum\AppData\Local\Temp\agloqpog.sys ---- Devices - GMER 2.1 ---- Device \Driver\atapi \Device\Ide\IdePort4 fffffa800ca4f2c0Device \Driver\atapi \Device\Ide\IdePort0 fffffa800ca4f2c0Device \Driver\atapi \Device\Ide\IdePort5 fffffa800ca4f2c0Device \Driver\atapi \Device\Ide\IdePort1 fffffa800ca4f2c0Device \Driver\atapi \Device\Ide\IdeDeviceP3T0L0-4 fffffa800ca4f2c0Device \Driver\atapi \Device\Ide\IdePort2 fffffa800ca4f2c0Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-3 fffffa800ca4f2c0Device \Driver\atapi \Device\Ide\IdePort3 fffffa800ca4f2c0Device \Driver\akslu0n3 \Device\Scsi\akslu0n31 fffffa800e3c22c0Device \Driver\akslu0n3 \Device\Scsi\akslu0n31Port7Path0Target0Lun0 fffffa800e3c22c0Device \Driver\VClone \Device\Scsi\VClone1 fffffa800e4442c0Device \Driver\VClone \Device\Scsi\VClone1Port6Path0Target0Lun0 fffffa800e4442c0Device \FileSystem\Ntfs \Ntfs fffffa800d3872c0Device \Driver\NetBT \Device\NetBT_Tcpip_{B8A342E0-651B-4194-BDA9-3F12AF7F73CF} fffffa800e0882c0Device \Driver\USBSTOR \Device\0000007e fffffa800ebe32c0Device \Driver\akslu0n3 \Device\ScsiPort7 fffffa800e3c22c0Device \Driver\usbehci \Device\USBPDO-1 fffffa800e3532c0Device \Driver\cdrom \Device\CdRom0 fffffa800e05b2c0Device \Driver\cdrom \Device\CdRom1 fffffa800e05b2c0Device \Driver\cdrom \Device\CdRom2 fffffa800e05b2c0Device \Driver\usbehci \Device\USBFDO-0 fffffa800e3532c0Device \Driver\USBSTOR \Device\0000007c fffffa800ebe32c0Device \Driver\usbehci \Device\USBFDO-1 fffffa800e3532c0Device \Driver\NetBT \Device\NetBt_Wins_Export fffffa800e0882c0Device \Driver\atapi \Device\ScsiPort0 fffffa800ca4f2c0Device \Driver\usbehci \Device\USBPDO-0 fffffa800e3532c0Device \Driver\atapi \Device\ScsiPort1 fffffa800ca4f2c0Device \Driver\atapi \Device\ScsiPort2 fffffa800ca4f2c0Device \Driver\atapi \Device\ScsiPort3 fffffa800ca4f2c0Device \Driver\atapi \Device\ScsiPort4 fffffa800ca4f2c0Device \Driver\atapi \Device\ScsiPort5 fffffa800ca4f2c0Device \Driver\VClone \Device\ScsiPort6 fffffa800e4442c0 ---- Trace I/O - GMER 2.1 ---- Trace ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa800ca4f2c0]<< sptd.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys fffffa800ca4f2c0Trace 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800dbee060] fffffa800dbee060Trace 3 CLASSPNP.SYS[fffff8800120143f] -> nt!IofCallDriver -> [0xfffffa800d867580] fffffa800d867580Trace 5 ACPI.sys[fffff8800100b7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-3[0xfffffa800d868060] fffffa800d868060Trace \Driver\atapi[0xfffffa800d82dcb0] -> IRP_MJ_CREATE -> 0xfffffa800ca4f2c0 fffffa800ca4f2c0 ---- Modules - GMER 2.1 ---- Module \SystemRoot\System32\Drivers\akslu0n3.SYS fffff8800539c000-fffff880053e8000 (311296 bytes) ---- Threads - GMER 2.1 ---- Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4772:4388] 000007fefbc72a7cThread C:\Windows\System32\svchost.exe [4016:3816] 000007feed399688 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x28 0xB8 0x7C 0xF1 ...Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0xA0 0x02 0x00 0x00 ...Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x6B 0xC1 0x39 0x98 ...Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0x35 0x35 0xEA 0x00 ...Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x28 0xB8 0x7C 0xF1 ...Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0xA0 0x02 0x00 0x00 ...Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x6B 0xC1 0x39 0x98 ...Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0x35 0x35 0xEA 0x00 ... ---- EOF - GMER 2.1 ---- attach.txt
  5. Hi All, I'm hoping someone can help me. I keep getting a svchost.exe Proxy.dll system error message. I've tried running some registry scans and all they want is money. My daughter starts college next week so I need to get this fixed quickly. One thing said clean the boot, but the directions are not clear enough to me. Thank You all for your help. It keeps coming up all the time both in and out of safemode Here is my DDS and Attach File DDS.txt Attach.txt
  6. Hi All, I'm hoping someone can help me. I keep getting a svchost.exe Proxy.dll system error message. I've tried running some registry scans and all they want is money. My daughter starts college next week so I need to get this fixed quickly. One thing said clean the boot, but the directions are not clear enough to me. Thank You all for your help. It keeps coming up all the time both in and out of safemode
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.