Jump to content

Search the Community

Showing results for tags 'viruses'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 18 results

  1. The virustotal.com website tool results in infection in an exe (my) file compiled using C # code to signal false/true if a notepad window is minimized, maximized or the file is not open. In addition to malwarebytes, another detector also pointed to the presence of viruses, was SecureAge APEX. I didn't take 2 minutes to report the same to them, I didn't have to create an account, I didn't have to activate an account, I didn't have to open a forum content, where I understand to be spontaneous and unintentional the result of this scanner. forcing to create an account, to solve it later, is unproductive, is a waste of time in the race against the real viruses... keep looking the error path to find error results... keep looking the error path to find error results... Status.zip
  2. I have these two programs called Idle Buddy and SSO on my computer. I ran a scan with Malwarebytes and cleaned up 18 threats, two of which were Trojan.Roraccoon, and the rest were riskware or PUPs. After rescanning my computer with Malwarebytes, Emsisoft, Norton, and other scanners, only a few things popped up and I cleaned them up. After another rescan everything seemed clean... So I uninstalled the programs and thought I was safe. However, just today malwarebytes came up with two new threats, this time in the admin account in my computer, both riskware. This prompted me to rescan everything (scans came up clean). I then opened the program files and searched through to see if there were any files leftover from the virus. I got rid of several files associated with Idle Buddy and SSO, and I think they’re all gone now (but i’m not sure). Then, I checked the registry for anything weird. I saw three registry entries that had been created by SSO and Idle Buddy, but when I tried to delete them I was given an error that said that these keys could not be deleted. Is there any way I can get rid of these for good? I have a bad feeling that even though most of them were caught and quarantined/deleted, they may still be doing things behind the scenes (like what happened to my admin account)... Here are the registry keys that I’m trying to delete: HKLM\SOFTWARE\IdleBuddy HKLM\SOFTWARE\WOW6432Node\IdleBuddy HKLM\SOFTWARE\WOW6432Node\SSO
  3. Has anyone got a fix for the web protection not coming. I have sent email after email to support and have never got a response. I would like to know why I am paying for a premium account when I am not able to use the web protection. For 4 days now my malwarebtyes has detected over 400 pup, viruses and Trojans because my web protection will not turn on. I have web browsers opening on their own. I have uninstalled the software 5 time and reinstalled it and noting works.
  4. A bunch of weird things is happening: Restarting at random points Also, now I noticed a way to get passed it, by clicking on the icon on macos but now it is not working. Mail seems weird with notifications fading I am on version macos 10.12.6
  5. Hey there, just an short question does Google chrome Themes from the official Chrme Store (For Desktop) can have Viruses inside them? or does Google always scan the themes that People have created and uploaded, is it even possible to get virus from Themes from the Google store :/ bc i want a good Black theme for my Chrome browser but i cant finy any good one, and im scared that i get a virus from themes hope somebody can help me out
  6. Hello, I just ran a scan with malwarebytes and it detected registery keys and values. I don't know much about computers but I know you don't mess with the registery, so I'm wondering what to do? Here's the log: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 6/24/17 Scan Time: 8:11 PM Logfile: Administrator: Yes -Software Information- Version: 3.0.6.1469 Components Version: 1.0.103 Update Package Version: 1.0.2226 License: Expired -System Information- OS: Windows 10 CPU: x64 File System: NTFS User: DESKTOP-3LT1JOD\mikel -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 435038 Time Elapsed: 28 min, 57 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled -Scan Details- Process: 3 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\BYTEFENCE.EXE, Quarantined, [639], [389016],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSLGGR.EXE, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\BYTEFENCESERVICE.EXE, Quarantined, [639], [388717],1.0.2226 Module: 13 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\BYTEFENCE.EXE, Quarantined, [639], [389016],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSLGGR.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSUTILS.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSUTILS.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\X64\LZ4_X64.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\X64\LZ4_X64.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSLGGR.EXE, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\MICROSOFT.WIN32.TASKSCHEDULER.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\MICROSOFT.WIN32.TASKSCHEDULER.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\BYTEFENCESERVICE.EXE, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSENGINE.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSENGINE.DLL, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\BYTEFENCEGUI.DLL, Quarantined, [639], [388717],1.0.2226 Registry Key: 20 PUP.Optional.ByteFence, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ByteFence, Delete-on-Reboot, [639], [389016],1.0.2226 PUP.Optional.ByteFence, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ByteFenceService, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\rtop, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5C92B452-0C12-65D2-BD92-15526D12C6D2}, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.InstallCore, HKU\S-1-5-21-853706437-283977567-1648297670-1001\SOFTWARE\csastats, Delete-on-Reboot, [3], [260986],1.0.2226 PUP.Optional.ProductSetup, HKU\S-1-5-21-853706437-283977567-1648297670-1001\SOFTWARE\PRODUCTSETUP, Delete-on-Reboot, [15019], [242047],1.0.2226 PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ByteFence, Delete-on-Reboot, [639], [389375],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Yahoo! Powered rotar, Delete-on-Reboot, [91], [308968],1.0.2226 PUP.Optional.ByteFence, HKLM\SOFTWARE\WOW6432NODE\ByteFence, Delete-on-Reboot, [639], [388723],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{B9FCC66D-B31D-48EC-B9AC-E5D41EF3C699}, Delete-on-Reboot, [91], [182758],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{B9FCC66D-B31D-48EC-B9AC-E5D41EF3C699}, Delete-on-Reboot, [91], [182758],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{61DD0A97-5378-47EB-AECC-9C17DEBDC1D5}, Delete-on-Reboot, [91], [308967],1.0.2226 PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9212E49E-33CD-4D09-AEEE-1D2BF2DD5324}, Delete-on-Reboot, [639], [389376],1.0.2226 PUP.Optional.ByteFence, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\ByteFenceService, Delete-on-Reboot, [639], [389039],1.0.2226 PUP.Optional.ByteFence, HKLM\SOFTWARE\ByteFence, Delete-on-Reboot, [639], [388723],1.0.2226 PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFence_RASAPI32, Delete-on-Reboot, [639], [389038],1.0.2226 PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFence_RASMANCS, Delete-on-Reboot, [639], [389038],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211D4A5-48D0-47F5-A7CD-81E861470F7F}, Delete-on-Reboot, [91], [182757],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211D4A5-48D0-47F5-A7CD-81E861470F7F}, Delete-on-Reboot, [91], [182757],1.0.2226 PUP.Optional.WinYahoo, HKU\S-1-5-21-853706437-283977567-1648297670-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211d4a5-48d0-47f5-a7cd-81e861470f7f}, Delete-on-Reboot, [91], [182757],1.0.2226 Registry Value: 10 PUP.Optional.ProductSetup, HKU\S-1-5-21-853706437-283977567-1648297670-1001\SOFTWARE\PRODUCTSETUP|TB, Delete-on-Reboot, [15019], [242047],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{B9FCC66D-B31D-48EC-B9AC-E5D41EF3C699}|URL, Delete-on-Reboot, [91], [182758],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{B9FCC66D-B31D-48EC-B9AC-E5D41EF3C699}|URL, Delete-on-Reboot, [91], [182758],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{61DD0A97-5378-47EB-AECC-9C17DEBDC1D5}|PATH, Delete-on-Reboot, [91], [308967],1.0.2226 PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9212E49E-33CD-4D09-AEEE-1D2BF2DD5324}|PATH, Delete-on-Reboot, [639], [389376],1.0.2226 PUP.Optional.ByteFence, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\RTOP|IMAGEPATH, Delete-on-Reboot, [639], [390139],1.0.2226 PUP.Optional.ByteFence, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\RTOP|DISPLAYNAME, Delete-on-Reboot, [639], [388727],1.0.2226 PUP.Optional.WinYahoo, HKU\S-1-5-21-853706437-283977567-1648297670-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2211d4a5-48d0-47f5-a7cd-81e861470f7f}|URL, Delete-on-Reboot, [91], [182757],1.0.2226 PUP.Optional.NotChromeRun, HKU\S-1-5-21-853706437-283977567-1648297670-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|GOOGLECHROMEAUTOLAUNCH_70E264FA4CB3BFC35AAA493DB4CFC546, Delete-on-Reboot, [1400], [241243],1.0.2226 PUP.Optional.NotChromeRun, HKU\S-1-5-21-853706437-283977567-1648297670-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|CHROMIUM, Delete-on-Reboot, [1400], [391151],1.0.2226 Registry Data: 3 PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Replace-on-Reboot, [91], [293461],1.0.2226 PUP.Optional.WinYahoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Replace-on-Reboot, [91], [293461],1.0.2226 PUP.Optional.WinYahoo, HKU\S-1-5-21-853706437-283977567-1648297670-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Replace-on-Reboot, [91], [293459],1.0.2226 Data Stream: 0 (No malicious items detected) Folder: 12 PUP.Optional.WinYahoo.Generic, C:\PROGRAMDATA\{81454426-0B07-CEE0-8DC1-50A21783DB6C}, Quarantined, [1196], [341897],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rtop\bin, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Scans, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Logs, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rtop, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\x64, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\x86, Quarantined, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\ByteFence, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove, Quarantined, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\USERS\MIKEL\APPDATA\LOCAL\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}, Quarantined, [91], [302717],1.0.2226 PUP.Optional.ByteFence, C:\ProgramData\ByteFence\RTOP, Delete-on-Reboot, [639], [388718],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAMDATA\BYTEFENCE, Delete-on-Reboot, [639], [388718],1.0.2226 File: 83 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\BYTEFENCE.EXE, Delete-on-Reboot, [639], [389016],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSLGGR.DLL, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSUTILS.DLL, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\X64\LZ4_X64.DLL, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSLGGR.EXE, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\MICROSOFT.WIN32.TASKSCHEDULER.DLL, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\BYTEFENCESERVICE.EXE, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\RSENGINE.DLL, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\PROGRAM FILES\BYTEFENCE\BYTEFENCEGUI.DLL, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.WinYahoo, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\HOWTOREMOVE.HTML.LNK, Delete-on-Reboot, [91], [254335],1.0.2226 PUP.Optional.WinYahoo.Generic, C:\PROGRAMDATA\{81454426-0B07-CEE0-8DC1-50A21783DB6C}\SODI.TXT, Delete-on-Reboot, [1196], [341897],1.0.2226 PUP.Optional.WinYahoo.Generic, C:\ProgramData\{81454426-0B07-CEE0-8DC1-50A21783DB6C}\hdat1, Delete-on-Reboot, [1196], [341897],1.0.2226 PUP.Optional.WinYahoo.Generic, C:\ProgramData\{81454426-0B07-CEE0-8DC1-50A21783DB6C}\hdat2, Delete-on-Reboot, [1196], [341897],1.0.2226 PUP.Optional.WinYahoo.Generic, C:\ProgramData\{81454426-0B07-CEE0-8DC1-50A21783DB6C}\nisala, Delete-on-Reboot, [1196], [341897],1.0.2226 PUP.Optional.WinYahoo.Generic, C:\ProgramData\{81454426-0B07-CEE0-8DC1-50A21783DB6C}\torole, Delete-on-Reboot, [1196], [341897],1.0.2226 PUP.Optional.WinYahoo, C:\USERS\MIKEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LJ0NGDHK.DEFAULT\PREFS.JS, Removal Failed, [91], [303324],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Logs\000003.log, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Logs\BA.log, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Logs\CURRENT, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Logs\LOCK, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Logs\LOG, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Logs\MANIFEST-000002, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rtop\bin\inject.dll, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rtop\bin\inject_x64.dll, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rtop\uninstall.dat, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rtop\uninstall.exe, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\x64\System.Data.SQLite.dll, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\x86\lz4_x86.dll, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\x86\System.Data.SQLite.dll, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\ByteFence.exe.config, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\ByteFenceScan.exe, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\ByteFenceScan.exe.config, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\ByteFenceService.exe.config, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\ByteFenceService.InstallLog, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\ByteFenceService.InstallState, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\EULA.txt, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\InstallUtil.InstallLog, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rsEngineHelper.exe, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\rsEngineHelper.exe.config, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Signatures.dat, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\SignaturesCEAList.dat, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\SignaturesCEFList.dat, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\SignaturesCEList.dat, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\SignaturesPacks.dat, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\Uninstall.exe, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\Program Files\ByteFence\WhiteList.dat, Delete-on-Reboot, [639], [388717],1.0.2226 PUP.Optional.ByteFence, C:\USERS\MIKEL\APPDATA\LOCAL\TEMP\TMPSEC6356098\BYTEFENCE-INSTALLER_3.10.0.3.EXE, Delete-on-Reboot, [639], [389016],1.0.2226 PUP.Optional.WinYahoo, C:\USERS\MIKEL\APPDATA\LOCAL\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HOWTOREMOVE\HOWTOREMOVE.HTML, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\chromium-min.jpg, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\control panel-min-min.JPG, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\down.png, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\ff menu.JPG, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\ff search engine-min.png, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\hp-min ff.png, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\hp-min ie.png, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\search engine.gif, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\setup pages.gif, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\sp-min.png, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\start-min.jpg, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\HowToRemove\up.png, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\cirecodat, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\dodame.dat, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\install.log, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\mesaficit, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\nedamimi, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\nonator.dat, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\noririsa.dat, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\soreneni, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\sotacirit.dat, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\Sqlite3.dll, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\totesad.cfg, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\trz86E6.tmp, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\uninst.dat, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\uninst.exe, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.WinYahoo, C:\Users\mikel\AppData\Local\{E807DE5B-CCAF-B2E3-A137-970B855F6B93}\uninstp.dat, Delete-on-Reboot, [91], [302717],1.0.2226 PUP.Optional.ByteFence, C:\ProgramData\ByteFence\RTOP\hosts_backup, Delete-on-Reboot, [639], [388718],1.0.2226 PUP.Optional.ByteFence, C:\ProgramData\ByteFence\RTOP\uclogfile.bin, Delete-on-Reboot, [639], [388718],1.0.2226 PUP.Optional.WinYahoo, C:\WINDOWS\TASKS\YAHOO! POWERED ROTAR.JOB, Delete-on-Reboot, [91], [308966],1.0.2226 PUP.Optional.WinYahoo, C:\WINDOWS\SYSTEM32\TASKS\YAHOO! POWERED ROTAR, Delete-on-Reboot, [91], [308969],1.0.2226 PUP.Optional.ByteFence, C:\WINDOWS\SYSTEM32\TASKS\BYTEFENCE, Delete-on-Reboot, [639], [388721],1.0.2226 PUP.Optional.WinYahoo, C:\USERS\MIKEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LJ0NGDHK.DEFAULT\SEARCHPLUGINS\YAHOO! POWERED.XML, Delete-on-Reboot, [91], [302726],1.0.2226 Physical Sector: 0 (No malicious items detected) (end)
  7. Hi, I'm a Malwarebytes registered user. I bought the cd long ago because I love the idea of supporting honest companies that produce quality products such as this with new updates being introduced at a constant rate. I have been using this amazing software for many years now but still don't know how to utilize all of its features. I would like to know how to use Malwarebytes to block ip addresses and websites that are dangerous to my computer's health.
  8. I keep getting popups on google chrome even though I have reset it multiple times, run malware bytes adwcleaner 3 times, and have scanned my computer 5 times with malware bytes premium, and I have even scanned it in safe mode. I am getting popups that malware bytes is blocking, but it can't find the Trojan on my computer. I am rather frustrated at this point because I paid $40 for this very reason, but my problem has not been resolved.
  9. Hello, 1) I am starting to receive website threat notifications from Trend Micro every time I run Malwarebytes application (see attachment). The website it's trying to reach out to is guruaid.com. For example: 11/26/2016 6:06 PM,http://www.guruaid.com/antivirus/support_for_malwarebytes/malwarebytes_antivirus_help_support.php,Dangerous Page (49),Rated Dangerous,Protection Against Web Threats When I Googled guruaid.com, of course they have several bad reviews and Trend Micro considers the site to be dangerous. 2) Yesterday I started noticing that when I clicked Update Database, Malwarebytes would quickly flash "Unable to access the server" then it will say "No updates available" for about 10 seconds and the show the "current" database, which at the time of this post is: v.2016.11.26.11 3) I have run several scans yesterday/today from both Malwarebytes and Trend Micro. Neither one has found any problems. I even tried reinstalling both apps. Same results. How can I find out what is causing Malwarebytes to do this and how can I fix this? I have Malwarebytes Premium btw. I've also attached the log from my Malwarebytes scans. Thanks, Ken Trend Micro Web Threats 11-26-16.txt Malwarebytes Log 11-26-16.txt
  10. Malwarebytes Anti-Malware can not detect these viruses. Links of virustotal: file 1: https://www.virustotal.com/es/file/27cbbb54ff4e1472ac3800b5437ff4a13734326184751875111046daa7f2ee3a/analysis/1432907891/ file 2: https://www.virustotal.com/es/file/67f38cbdd0aeb8294f428f9d83a880d5a0bd2401b07522563b49fe495357afac/analysis/1469758539/ I attached a zip file containing the virus. Add these viruses soon add to the database of anti - malware.
  11. Need help in removing the malware on my computer. I ran malwarebytes but I still get pop ups, redirects, etc….
  12. Hello, Background programs are constantly running in my computer. I stop everything unnecessary but something still runs on and on putting my CPU usage up to 100% most of the time. I ran a complete scan with ESET, then I followed your instructions to the letter and ran Malwarebytes and Farbar Recovery Scan Tools. The scan notes are attached. Fifteen viruses were found with Malwarebytes and 8 with ESET. I am going to restart the computer after I post this message. My goal is to have no viruses and more CPU power and more memory. Thank you, Nancy FRST_scan_file.txt Addition_Scan_File.txt
  13. Hello, I saw that you posted some information in regards to a similar problem that i seem to be having with my Dell Inspiron Laptop that is running Windows Vista. I was trying to run a virus scan with Malwarebytes and then the computer just shut down. I also tried to boot the computer in safe mode and i tried running the scan and the same thing, the computer wanted to shut down randomly. I tried downloading the Combofix program and it would be great if I can send you the log to analyze (if that is ok?). Also i tried running Malwarebytes Scan after doing the Combofix and the Scan worked properly this time however it still keeps finding tons of Malware issues on the computer and I quarantine all the virus files. Then I try running the scan again and the Malwarebytes program continues to find infected issues on the computer. It never seems to completely clean out all the infected issues. Looking forward to your response. Thank you, Jazzfactor
  14. I am having the same problem as another user had http://forums.malwarebytes.org/index.php?showtopic=103712 pretty much the same problem. When i run the scan i see the two Trojans and i remove them but when i have to reboot like it says something happens and my Malware does not get rid of it. I was doing the same things the guy in the other post was asked to do by runing things but on this part "Open MBAM, click More Tools, click run File ASSASSIN by clicking Run Tool. Select only this file from this location: C:\Windows\svchost.exe" It could not find the C:\Windows\svchost.exe. Please help Thanks .
  15. Hi, My HD and modem started to thrash in unison about a week ago. I have a full registered version of AVG and have run full scans twice since and it showed a clean system. I started to smell a rat when my browser (google chrome) started to do weird things ie tabbing ads and weird sites. I have a full registered version of malwarebytes which was mothballed due to clashes at the time with AVG. (I currently have noticed that this is not the case now). I updated malwarebytes and ran a full scan and came up with a affiliates downloader which was subsequently removed. I then did another full scan with AVG and it picked up 16 malware/viruses??? after originally showing a clean system. These were removed and system rebooted I then did another scan with malware bytes with the modem switched off and picked up trojans in my memory and restore files which were removed and system reboot. I did a registery clean with Ccleaner and defragged. I then did another another fullscan with AVG and found yet another 3 Trojans 2 of which I could not remove, they were disabled and quarantined. Then I again rebooted (modem still switched off) I did one more scan with Malwarebytes and finally came up clean (Ironically I am not so sure about that). I then after a reboot switched on my modem and my harddisk started to thrash, the ethernet light and HD light are at this moment having a hernia and I know without going any further my problem is rewriting itself. Dont you hate it!!!! Below are the log pastes of dds and attach your help will be appreciated. Cheers Pete DDS (Ver_2012-10-19.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.9.2 Run by peter smith at 18:22:36 on 2012-11-04 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3068.1985 [GMT 11:00] . AV: AVG Internet Security 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} FW: AVG Internet Security 2012 *Enabled* . ============== Running Processes ================ . C:\windows\system32\nvsvc32.exe C:\windows\system32\spoolsv.exe C:\Program Files\Creative\Shared Files\CTAudSvc.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\AVG\AVG2012\avgfws.exe C:\Program Files\AVG\AVG2012\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\windows\system32\CTsvcCDA.exe C:\Program Files\Motorola Media Link\Lite\NServiceEntry.exe C:\Program Files\Java\jre7\bin\jqs.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe C:\windows\Explorer.EXE C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe C:\Program Files\Microsoft LifeCam\MSCamS32.exe C:\Program Files\Nero\Update\NASvc.exe C:\windows\vVX3000.exe C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe C:\windows\system32\CTXFIHLP.EXE C:\Program Files\AVG\AVG2012\avgtray.exe C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\windows\system32\ctfmon.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\Documents and Settings\peter smith\Start Menu\Programs\Startup\hpqtra08.exe C:\Program Files\MagicDisc\MagicDisc.exe C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\windows\system32\IoctlSvc.exe C:\windows\system32\PnkBstrA.exe C:\windows\system32\PnkBstrB.exe C:\Program Files\UPHClean\uphclean.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\windows\system32\SearchIndexer.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\iPod\bin\iPodService.exe C:\windows\SYSTEM32\CTXFISPI.EXE C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Documents and Settings\peter smith\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\peter smith\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\peter smith\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\peter smith\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\peter smith\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\peter smith\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\windows\System32\svchost.exe -k netsvcs C:\windows\system32\svchost.exe -k WudfServiceGroup C:\windows\system32\svchost.exe -k NetworkService C:\windows\system32\svchost.exe -k LocalService C:\windows\system32\svchost.exe -k LocalService C:\windows\System32\svchost.exe -k HPZ12 C:\windows\System32\svchost.exe -k HPZ12 C:\windows\system32\svchost.exe -k imgsvc C:\windows\system32\svchost.exe -k hpdevmgmt . ============== Pseudo HJT Report =============== . uStart Page = hxxp://go.bigpond.com/home/index.jsp uSearch Bar = hxxp://www.google.com/ie uSearch Page = hxxp://www.google.com uInternet Connection Wizard,ShellNext = iexplore uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s mSearchAssistant = hxxp://www.google.com/ie BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: AVG Do Not Track: {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - c:\program files\avg\avg2012\avgdtiex.dll BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg2012\avgssie.dll BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office14\GROOVEEX.DLL BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: CPrintEnhancer Object: {AE84A6AA-A333-4B92-B276-C11E2212E4FE} - c:\program files\hp\smart web printing\SmartWebPrinting.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.7529.1424\swg.dll BHO: FlashGetBHO: {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - c:\documents and settings\peter smith\application data\flashgetbho\FlashGetBHO3.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll EB: Groove Folder Synchronization: {2A541AE1-5BF6-4665-A8A3-CFA9672E4291} - c:\program files\microsoft office\office14\GROOVEEX.DLL uRun: [TomTomHOME.exe] "c:\program files\tomtom home 2\TomTomHOMERunner.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [Google Update] "c:\documents and settings\peter smith\local settings\application data\google\update\GoogleUpdate.exe" /c uRunOnce: [shockwave Updater] c:\windows\system32\adobe\shockwave 11\SwHelper_1151601.exe -Update -1151601 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; MS-RTC EA 2; InfoPath.3; Creative AutoUpdate v1.40.01)" -"http://www.freeaddictinggames.com/game/knievels-wild-ride/" mRun: [LifeCam] "c:\program files\microsoft lifecam\LifeExp.exe" mRun: [VX3000] c:\windows\vVX3000.exe mRun: [NBKeyScan] "c:\program files\nero\nero8\nero backitup\NBKeyScan.exe" mRun: [NeroFilterCheck] c:\program files\common files\nero\lib\NeroCheck.exe mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe mRun: [CTxfiHlp] CTXFIHLP.EXE mRun: [bCSSync] "c:\program files\microsoft office\office14\BCSSync.exe" /DelayServices mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [NBAgent] "c:\program files\nero\nero 11\nero backitup\NBAgent.exe" /WinStart mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe" mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE StartupFolder: c:\documents and settings\peter smith\start menu\programs\startup\hpqtra08.exe StartupFolder: c:\docume~1\peters~1\startm~1\programs\startup\magicd~1.lnk - c:\program files\magicdisc\MagicDisc.exe StartupFolder: c:\documents and settings\peter smith\start menu\programs\startup\PowerReg Scheduler.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoDriveTypeAutoRun = dword:28 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:145 IE: Download All By FlashGet3 - c:\documents and settings\peter smith\application data\flashgetbho\GetAllUrl.htm IE: Download By FlashGet3 - c:\documents and settings\peter smith\application data\flashgetbho\GetUrl.htm IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105 IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - c:\program files\avg\avg2012\avgdtiex.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe LSP: mswsock.dll DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/2.9.2.0/GarminAxControl.CAB DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/E/3/9/E39C664F-A8E3-4F69-A109-1AE9849204EE/OGAControl.cab DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} - hxxps://support.microsoft.com/OAS/ActiveX/MSDcode.cab DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - file:///C:/Program%20Files/Monopoly/Images/stg_drm.ocx DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} - hxxp://www.srtest.com/srl_bin/sysreqlab_ind.cab DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1243504952390 DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} - hxxp://games.bigfishgames.com/en_big-city-adventure-sydney-australia/online/JBGamePlayer.cab DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} - hxxp://office.microsoft.com/officeupdate/content/opuc4.cab DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/Monopoly/Images/armhelper.ocx DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - hxxp://aolsvc.aol.com/onlinegames/bejeweled2/popcaploader_v10.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15111/CTPID.cab Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office14\GROOVEEX.DLL SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll Hosts: 127.0.0.1 www.spywareinfo.com . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\peter smith\application data\mozilla\firefox\profiles\lhrewx53.default\ FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon) FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/?affID=109217&tt=120812_bandext_3312_8&babsrc=HP_ss&mntrId=08262c03000000000000001cc0a94c4d FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?affID=109217&tt=120812_bandext_3312_8&babsrc=KW_ss&mntrId=08262c03000000000000001cc0a94c4d&q= FF - prefs.js: network.proxy.type - 0 FF - component: c:\program files\mozilla firefox\extensions\linkfilter@kaspersky.ru\components\KavLinkFilter.dll FF - component: c:\program files\nokia\nokia ovi suite\connectors\bookmarks connector\firefoxextension\components\FirefoxExtension.dll FF - plugin: c:\documents and settings\peter smith\application data\mozilla\firefox\profiles\lhrewx53.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}\plugins\np-mswmp.dll FF - plugin: c:\documents and settings\peter smith\local settings\application data\google\update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\progra~1\common~1\nero\browse~1\npBrowserPlugin.dll FF - plugin: c:\progra~1\micros~2\office14\NPAUTHZ.DLL FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\downloader\npdd.dll FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.65\npGoogleUpdate3.dll FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\4.1.10329.0\npctrlui.dll FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll FF - plugin: c:\windows\system32\npdeployJava1.dll FF - plugin: c:\windows\system32\npptools.dll FF - plugin: c:\windows\system32\npwmsdrm.dll FF - ExtSQL: !HIDDEN! 2009-07-11 00:24; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension . ---- FIREFOX POLICIES ---- FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=109217&tt=120812_bandext_3312_8 FF - user.js: extensions.BabylonToolbar_i.babExt - FF - user.js: extensions.BabylonToolbar_i.srcExt - ss FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://www.google.com/search?babsrc=TB_ggl&q= FF - user.js: extensions.BabylonToolbar.id - 08262c03000000000000001cc0a94c4d FF - user.js: extensions.BabylonToolbar.instlDay - 15565 FF - user.js: extensions.BabylonToolbar.vrsn - 1.6.4.6 FF - user.js: extensions.BabylonToolbar.vrsni - 1.6.4.6 FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.6.4.618:05:21 FF - user.js: extensions.BabylonToolbar.prtnrId - babylon FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar FF - user.js: extensions.BabylonToolbar.aflt - babsst FF - user.js: extensions.BabylonToolbar_i.smplGrp - none FF - user.js: extensions.BabylonToolbar.tlbrId - base FF - user.js: extensions.BabylonToolbar.instlRef - sst FF - user.js: extensions.BabylonToolbar.dfltLng - en FF - user.js: extensions.BabylonToolbar.excTlbr - false FF - user.js: extensions.BabylonToolbar.admin - false . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 24896] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-1-31 31952] R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-7-6 64288] R0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\drivers\NBVol.sys [2012-4-18 56496] R0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\drivers\NBVolUp.sys [2012-4-18 12464] R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [2012-2-2 14776] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-2-22 237408] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-12-23 41040] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-2-22 301920] R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [2009-10-28 98392] R2 avgfws;AVG Firewall;c:\program files\avg\avg2012\avgfws.exe [2012-6-13 2321560] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2012-2-14 193288] R2 DeviceMonitorService;DeviceMonitorService;c:\program files\motorola media link\lite\NServiceEntry.exe [2011-9-19 87368] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2011-7-8 54760] R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-11-3 399432] R2 MotoHelper;MotoHelper Service;c:\program files\motorola\motohelper\MotoHelperService.exe [2011-12-7 214896] R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2011-11-25 687400] R2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-6-26 35088] R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia update core\daemonu.exe [2012-3-14 2348352] R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 139856] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [2011-12-23 24144] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 17232] R3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\system32\drivers\CT20XUT.sys [2009-6-4 171032] R3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\system32\drivers\CTEXFIFX.sys [2009-6-4 1324056] R3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\system32\drivers\CTHWIUT.sys [2009-6-4 72728] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-4-4 22856] R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32.sys [2012-5-15 100456] R3 VMHybrid;VMHybrid service;c:\windows\system32\drivers\VMHybrid.sys [2008-9-1 1060224] S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\avgidsagent.exe [2012-8-13 5167736] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-11-25 135664] S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2010-4-4 676936] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944] S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944] S3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\drivers\motfilt.sys --> c:\windows\system32\drivers\motfilt.sys [?] S3 ComproHID;VideoMate Root Enumerated Hid Device;c:\windows\system32\drivers\ComproHID.sys [2009-5-22 7040] S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\common files\creative labs shared\service\CTAELicensing.exe [2009-7-18 79360] S3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.sys [2009-6-4 171032] S3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.sys [2009-6-4 1324056] S3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.sys [2009-6-4 72728] S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872] S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-11-25 135664] S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\lavasoft\ad-aware\kernexplorer.sys --> c:\program files\lavasoft\ad-aware\KernExplorer.sys [?] S3 MatSvc;Microsoft Automated Troubleshooting Service;c:\program files\microsoft fix it center\Matsvc.exe [2011-6-13 267568] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\microsoft office\office14\GROOVE.EXE [2011-6-12 31125880] S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys --> c:\windows\system32\drivers\motccgp.sys [?] S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys --> c:\windows\system32\drivers\motccgpfl.sys [?] S3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\drivers\motousbnet.sys --> c:\windows\system32\drivers\Motousbnet.sys [?] S3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\drivers\motusbdevice.sys --> c:\windows\system32\drivers\motusbdevice.sys [?] S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?] S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000] S3 PsSdk41;PsSdk41;c:\windows\system32\drivers\pssdk41.sys [2009-8-21 36928] S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2008-4-14 14336] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2012-11-03 04:37:05 33280 ----a-w- c:\program files\microsoft games\halo\trainer.exe 2012-11-03 04:18:59 -------- d-----w- C:\Halo 2012-10-31 08:27:55 -------- d-----w- C:\extract 2012-10-29 23:35:11 -------- d-----w- c:\program files\Aveyond - Gates of Night 2012-10-27 00:10:53 -------- d-----w- c:\documents and settings\peter smith\application data\Aveyond 3 2012-10-26 23:46:07 441 ----a-w- c:\program files\2710201210460739.bat 2012-10-26 13:47:37 -------- d-----w- c:\documents and settings\peter smith\local settings\application data\Buried In Time 2012-10-26 12:40:34 -------- d-----w- c:\documents and settings\peter smith\application data\Mud Puddle Games 2012-10-23 12:56:20 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2012-10-20 23:11:47 -------- d-----w- c:\documents and settings\peter smith\application data\Oberon Media 2012-10-20 23:11:38 -------- d-----w- c:\program files\common files\Oberon Media 2012-10-20 23:09:14 -------- d-----w- c:\documents and settings\all users\application data\Oberon Media 2012-10-20 23:09:09 -------- d-----w- c:\program files\Oberon Media 2012-10-20 23:09:09 -------- d-----w- c:\program files\MSN Games 2012-10-06 05:01:48 -------- d-----w- c:\program files\Cheat Engine 6.1 . ==================== Find3M ==================== . 2012-10-23 12:56:08 821736 ----a-w- c:\windows\system32\npdeployJava1.dll 2012-10-23 12:56:08 746984 ----a-w- c:\windows\system32\deployJava1.dll 2012-10-23 12:56:08 143872 ----a-w- c:\windows\system32\javacpl.cpl 2012-09-29 08:54:26 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-08-28 15:14:53 916992 ----a-w- c:\windows\system32\wininet.dll 2012-08-28 15:14:53 43520 ------w- c:\windows\system32\licmgr10.dll 2012-08-28 15:14:52 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-08-28 12:07:15 385024 ------w- c:\windows\system32\html.iec 2012-08-24 13:53:22 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-08-24 05:43:18 301920 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2012-08-21 13:33:26 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-08-21 12:58:09 2027520 ----a-w- c:\windows\system32\ntkrnlpa.exe 2012-08-08 07:21:25 256868 ----a-w- c:\windows\system32\nvdrsdb1.bin 2012-08-08 07:21:25 1 ----a-w- c:\windows\system32\nvdrssel.bin 2012-08-08 07:21:14 256868 ----a-w- c:\windows\system32\nvdrsdb0.bin . ============= FINISH: 18:23:11.00 =============== DDS (Ver_2012-10-19.01) . Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume1 Install Date: 22/05/2009 6:27:43 PM System Uptime: 4/11/2012 5:05:08 PM (1 hours ago) . Motherboard: Intel Corporation | | DG41TY Processor: Intel Pentium III Xeon processor | LGA775 | 2332/333mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 466 GiB total, 87.005 GiB free. D: is FIXED (NTFS) - 466 GiB total, 377.505 GiB free. E: is CDROM () F: is Removable G: is Removable H: is Removable I: is Removable J: is CDROM () K: is Removable . ==== Disabled Device Manager Items ============= . Class GUID: {EEC5AD98-8080-425F-922A-DABF3DE3F69A} Description: Nokia 6120 classic Device ID: ROOT\WPD\0000 Manufacturer: Nokia Name: Nokia 6120 classic PNP Device ID: ROOT\WPD\0000 Service: WUDFRd . ==== System Restore Points =================== . RP736: 8/08/2012 6:17:31 AM - System Checkpoint RP737: 8/08/2012 11:10:01 AM - Installed Trains and Trucks Tycoon RP738: 9/08/2012 2:32:01 PM - System Checkpoint RP739: 12/08/2012 8:00:50 PM - System Checkpoint RP740: 13/08/2012 6:08:24 PM - Restore Operation RP741: 14/08/2012 7:19:50 PM - System Checkpoint RP742: 15/08/2012 12:17:09 PM - Software Distribution Service 3.0 RP743: 16/08/2012 8:51:17 PM - System Checkpoint RP744: 6/10/2012 9:04:56 AM - Installed DirectX RP745: 6/10/2012 9:05:36 AM - Installed Nero Prerequisite Installer 1.0. RP746: 6/10/2012 9:29:09 AM - Software Distribution Service 3.0 RP747: 15/10/2012 4:28:43 PM - Software Distribution Service 3.0 RP748: 17/10/2012 1:18:00 PM - Installed DirectX RP749: 18/10/2012 3:57:19 PM - System Checkpoint RP750: 19/10/2012 4:59:24 PM - System Checkpoint RP751: 21/10/2012 1:26:20 AM - System Checkpoint RP752: 22/10/2012 2:07:08 AM - System Checkpoint RP753: 23/10/2012 2:44:00 PM - System Checkpoint RP754: 23/10/2012 11:55:41 PM - Removed Java 7 Update 5 RP755: 26/10/2012 4:22:41 PM - System Checkpoint RP756: 30/10/2012 1:12:55 AM - System Checkpoint RP757: 31/10/2012 1:02:33 PM - System Checkpoint RP758: 1/11/2012 1:43:31 PM - System Checkpoint RP759: 4/11/2012 4:20:43 AM - System Checkpoint . ==== Installed Programs ====================== . 100% Free Euchre 7.30 100% Free Five Hundred 7.30 32 Bit HP CIO Components Installer 4 Elements 900 Puzzle Games ACDSee Image Decoder Update ACDSee Pro 4 ACDSee RAW Image Decoder Plug-In Update 4.0 Acrobat.com Adobe AIR Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.4) Adobe Shockwave Player 11.6 Age of Empires III Age of Empires III - The Asian Dynasties AIO_Scan All My Gods ANNO 1404 Apple Application Support Apple Mobile Device Support Apple Software Update Australian Pictorial Computer Stamp Catalogue 2012 Edition Australian Pictorial Computer Stamp Organiser 2012 Edition Aveyond - Gates of Night Aveyond Lord of Twilight AVG 2012 AVS Media Player 3.1 AVS Mobile Uploader version 1.9 AVS Update Manager 1.0 AVS Video Converter 6 AVS4YOU Software Navigator 1.3 Be a King (remove only) Be Rich Be Richer Bejeweled Twist 1.0.3 BestHD Blu-ray DVD Ripper 3.58.07 Big Fish Games: Game Manager Blokus World Tour Bonampak Bonjour Boulder Dash®: Pirate's Quest™ Brain Games: Chess BufferChm Build-a-Lot 4: Power Source Build-a-lot: On Vacation C4200 c4200_Help CallerIP Canasta From Special K Capitalism II CCleaner Champion Chef Cheat Engine 6.1 Chocolatier 2 - Secret Ingredients Coconut Queen (remove only) Compatibility Pack for the 2007 Office system ConvertXtoDVD 3.0.0.1 Copy Cradle of Persia 1.00 Creative Audio Control Panel Creative Console Launcher Creative MediaSource 5 Creative Software AutoUpdate Creative System Information Creative WaveStudio 7 Cribbage Critical Update for Windows Media Player 11 (KB959772) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition Destination Component DeviceDiscovery DeviceManagementQFolder Diablo II DocProc DocProcQFolder Downloader Dragon Keeper Drawn: Dark Flight ® DVD Shrink 3.2 East India Company Collection Empire Earth II eSupportQFolder F.E.A.R. 2: Project Origin Fallout 3 Farm Tribe Fate of the Pharaoh FINAL FANTASY XIV Fishdom (remove only) fishsim2 Fishsim2.11h+ FlashGet 3.3 Flower Story - Fairy Quest FREEping Garden Defense Gardenscapes 1.00 Garmin USB Drivers Garmin WebUpdater Gatling Gears gBurner GFI LANguard 9.6 Google Chrome Google Toolbar for Internet Explorer Google Update Helper Governor of Poker Greek Goddesses of Solitaire Guild Wars Honeybee Hospital Tycoon Hot Dish Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB2570791) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB2756822) Hotfix for Windows XP (KB915800-v4) Hotfix for Windows XP (KB942288-v3) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB954708) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB970653-v3) Hotfix for Windows XP (KB976098-v2) Hotfix for Windows XP (KB979306) Hotfix for Windows XP (KB981793) Hoyle Board Games 2003 HP Imaging Device Functions 8.0 HP OCR Software 8.0 HP Photosmart All-In-One Driver Software 9.0.A Corporate Edition HP Photosmart All-In-One Software 8.0 HP Photosmart Essential HP Product Assistant HP Product Detection HP Smart Web Printing 1.0 HP Solution Center 8.0 HP Update HPProductAssistant Hunting Unlimited 2010 Island Tribe 1.00 Island Tribe 2 iTunes Java 7 Update 9 Java Auto Updater Java 6 Update 29 JavaFX 2.1.1 Junk Mail filter update K-Lite Mega Codec Pack 6.5.5 Kingdom Chronicles Collector's Edition Land Grabbers Left 4 Dead 2 Left 4 Dead 2 Add-on Support Left 4 Dead 2 Authoring Tools Legends of Atlantis: Exodus Magic FLAC to MP3 Converter 3.71 MagicDisc 2.7.106 Malwarebytes Anti-Malware version 1.65.1.1000 Marblez Matroska Pack - Lazy Man's MKV 0.9.9 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Security Update (KB2656353) Microsoft .NET Framework 1.1 Security Update (KB2656370) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Extended Microsoft Application Error Reporting Microsoft Base Smart Card Cryptographic Service Provider Package Microsoft Choice Guard Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Easy Assist v2 Microsoft Fix it Center Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Halo Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 Microsoft LifeCam Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office Access MUI (English) 2010 Microsoft Office Access Setup Metadata MUI (English) 2010 Microsoft Office Excel MUI (English) 2010 Microsoft Office Groove MUI (English) 2010 Microsoft Office InfoPath MUI (English) 2010 Microsoft Office OneNote MUI (English) 2010 Microsoft Office Outlook MUI (English) 2010 Microsoft Office PowerPoint MUI (English) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (English) 2007 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (English) 2010 Microsoft Office Publisher MUI (English) 2010 Microsoft Office Shared MUI (English) 2010 Microsoft Office Shared Setup Metadata MUI (English) 2010 Microsoft Office Word MUI (English) 2010 Microsoft Silverlight Microsoft Software Update for Web Folders (English) 14 Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft User-Mode Driver Framework Feature Pack 1.7 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Windows XP Video Decoder Checkup Utility Microsoft Works 6-9 Converter Microsoft WSE 3.0 Runtime Miriel the Magical Merchant (remove only) MobileMe Control Panel Monopoly (remove only) Monument Builders: Eiffel Tower Mortimer Beckett and the Time Paradox MotoHelper 2.1.32 Driver 5.4.0 MotoHelper MergeModules MOTOROLA MEDIA LINK Motorola Mobile Drivers Installation 5.4.0 Mount&Blade With Fire and Sword Mozilla Firefox 8.0.1 (x86 en-GB) MSVC80_x86 MSVC80_x86_v2 MSVC90_x86 MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP2 Parser and SDK My Farm Life 2 My Kingdom For The Princess II My Life Story (remove only) My Tribe Nero 11 Nero 8 Essentials Nero Abstract Themes Nero Audio Pack 1 Nero BackItUp 11 Nero BackItUp 11 Help (CHM) Nero Backup Drivers Nero Blu-ray Player Nero Burning ROM 11 Nero Burning ROM 11 Help (CHM) Nero Cliparts Nero ControlCenter Nero ControlCenter Help (CHM) Nero Core Components Nero CoverDesigner 11 Nero CoverDesigner 11 Help (CHM) Nero Disc Menus 1 Nero Disc Menus 2 Nero Disc Menus 3 Nero Disc Menus Basic Nero Effects Basic Nero Express 11 Nero Express 11 Help (CHM) Nero Family and Events Themes Nero Football (Soccer) Themes Nero Holiday and Sports Themes Nero Image Samples Nero Kwik Media Nero Kwik Media Help (CHM) Nero Kwik Themes Basic Nero PiP Effects 1 Nero PiP Effects Basic Nero Prerequisite Installer 1.0 Nero Recode 11 Nero Recode 11 Help (CHM) Nero RescueAgent 11 Nero RescueAgent 11 Help (CHM) Nero SharedVideoCodecs Nero SoundTrax 11 Nero SoundTrax 11 Help (CHM) Nero Update Nero Video 11 Nero Video 11 Help (CHM) Nero Video Samples Nero Video Transitions 1 Nero WaveEditor 11 Nero WaveEditor 11 Help (CHM) nero.prerequisites.msi neroxml New Yankee in King Arthur's Court Nokia Connectivity Cable Driver Nokia Ovi Suite Nokia Ovi Suite Software Updater Nokia PC Suite Nokia Software Updater NVIDIA Control Panel 267.59 NVIDIA Graphics Driver 267.59 NVIDIA HD Audio Driver 1.1.13.1 NVIDIA Install Application NVIDIA nView 136.18 NVIDIA nView Desktop Manager NVIDIA PhysX NVIDIA PhysX System Software 9.12.0213 NVIDIA Update 1.7.11 NVIDIA Update Components OGA Notifier 2.0.0048.0 Open Sea Fishing OpenAL Opera 11.60 Ovi Desktop Sync Engine OviMPlatform Pakoombo Path To Success PC Connectivity Solution Photo Story 3 for Windows PL-2303 USB-to-Serial Plants vs. Zombies (remove only) ps_aio_corporate PS_AIO_ProductContext PS_AIO_Software PS_AIO_Software_min PunkBuster Services QuickTime Railroad Tycoon 3 Railroad Tycoon 3 1.06 Rapala Pro Fishing RAW - Realms of Ancient War REALTEK GbE & FE Ethernet PCI-E NIC Driver Realtek High Definition Audio Driver Robinson Crusoe and The Cursed Pirates Royal Envoy Collector's Edition Scan Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Extended (KB2416472) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2687417) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2687436) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553091) Security Update for Microsoft Office 2010 (KB2553096) Security Update for Microsoft Office 2010 (KB2553260) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2589322) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2589337) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2597986) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition Security Update for Microsoft SharePoint Workspace 2010 (KB2566445) Security Update for Microsoft Visio Viewer 2010 (KB2598287) 32-Bit Edition Security Update for Microsoft Windows (KB2564958) Security Update for Microsoft Word 2010 (KB2553488) 32-Bit Edition Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2647516) Security Update for Windows Internet Explorer 8 (KB2675157) Security Update for Windows Internet Explorer 8 (KB2699988) Security Update for Windows Internet Explorer 8 (KB2722913) Security Update for Windows Internet Explorer 8 (KB2744842) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Encoder (KB2447961) Security Update for Windows Media Encoder (KB954156) Security Update for Windows Media Encoder (KB979332) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player 11 (KB936782) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows Search 4 - KB963093 Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2160329) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2503658) Security Update for Windows XP (KB2503665) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2506223) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2510581) Security Update for Windows XP (KB2511455) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2536276) Security Update for Windows XP (KB2544521) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2544893) Security Update for Windows XP (KB2555917) Security Update for Windows XP (KB2562937) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2567053) Security Update for Windows XP (KB2567680) Security Update for Windows XP (KB2570222) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618444) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2621440) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2639417) Security Update for Windows XP (KB2641653) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB2647516) Security Update for Windows XP (KB2647518) Security Update for Windows XP (KB2653956) Security Update for Windows XP (KB2655992) Security Update for Windows XP (KB2659262) Security Update for Windows XP (KB2660465) Security Update for Windows XP (KB2661637) Security Update for Windows XP (KB2676562) Security Update for Windows XP (KB2685939) Security Update for Windows XP (KB2686509) Security Update for Windows XP (KB2691442) Security Update for Windows XP (KB2695962) Security Update for Windows XP (KB2698365) Security Update for Windows XP (KB2705219) Security Update for Windows XP (KB2707511) Security Update for Windows XP (KB2712808) Security Update for Windows XP (KB2718523) Security Update for Windows XP (KB2719985) Security Update for Windows XP (KB2723135) Security Update for Windows XP (KB2724197) Security Update for Windows XP (KB2731847) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB938464-v2) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950760) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951066) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB954600) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958690) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960715) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961371) Security Update for Windows XP (KB961373) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB963027) Security Update for Windows XP (KB968537) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969898) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971486) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973346) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973525) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978251) Security Update for Windows XP (KB978262) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982665) Security Update for Windows XP (KB982802) Seeds of Sorcery Segoe UI Shaban Sid Meier's Railroads! Simon3D Skype Toolbars Skype™ 5.10 Smart Defrag 2 SolutionCenter SoundFont Bank Manager SPORE™ SPORE™ Galactic Adventures Star Defender 4 Status Steam swMSM Sylenth1 v2.20 System Requirements Lab The Chronicles of Spellborn The Fall Trilogy 1.00 The Golden Years: Way Out West The Island: Castaway 2 The Sims Carnival - BumperBlast The Sims Medieval The Timebuilders - Caveman's Prophecy TomTom HOME 2.7.3.1894 TomTom HOME Visual Studio Merge Modules Toolbox TrackMania 2 TrayApp Trucks & Trailers 1.00 Turbo Subs Tweak UI Ubisoft Game Launcher Undelete 360 Uniblue DriverScanner 2009 Uniblue System Tweaker UnloadSupport Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Microsoft Office 2010 (KB2553065) Update for Microsoft Office 2010 (KB2553092) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition Update for Microsoft Office 2010 (KB2566458) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition Update for Microsoft Windows (KB971513) Update for Windows Internet Explorer 8 (KB2598845) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2492386) Update for Windows XP (KB2541763) Update for Windows XP (KB2607712) Update for Windows XP (KB2616676) Update for Windows XP (KB2641690) Update for Windows XP (KB2661254-v2) Update for Windows XP (KB2718704) Update for Windows XP (KB2736233) Update for Windows XP (KB2749655) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB955839) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) User Profile Hive Cleanup Service VC80CRTRedist - 8.0.50727.6195 VCRedistSetup Virtual City (remove only) Virtual Villagers - The Secret City Virtual Villagers - The Secret City 1.0 Virtual Villagers 3 - The Secret City Fixed Visual C++ 2008 x86 Runtime - (v9.0.30729) Visual C++ 2008 x86 Runtime - v9.0.30729.01 WebFldrs XP WebReg Welcome App (Start-up experience) Westward IV - All Aboard (remove only) Windows 7 Upgrade Advisor Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) Windows Driver Package - Nokia Modem (06/01/2009 7.01.0.4) Windows Driver Package - Nokia Modem (10/05/2009 4.2) Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Mail Windows Live Photo Gallery Windows Live Sync Windows Live Upload Tool Windows Live Writer Windows Management Framework Core Windows Media Encoder 9 Series Windows Media Format 11 runtime Windows Media Player 11 Windows Media Player Firefox Plugin Windows Search 4.0 WinPcap 4.1.2 WinRAR archiver Wireshark 1.4.1 World Mosaics 4 1.00 World Of Zellians Youda Farmer 3 - Seasons Youda Survivor . ==== Event Viewer Messages From Past Week ======== . 3/11/2012 10:18:16 PM, error: Service Control Manager [7022] - The WebClient service hung on starting. 2/11/2012 8:13:49 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found. 2/11/2012 5:30:26 PM, error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service. 2/11/2012 5:30:13 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service hpqddsvc with arguments "" in order to run the server: {2C82180E-8C3C-4A1B-BEB1-B9140713E701} . ==== End Of File ===========================
  16. MB hit 25,000 comprised mainly with about 6 malware - including: stolen.data, PUP.Funshion, trojan.agent.ua, rougue.agent.sa. The malware names are valid enough. I'm not sure this is an actual malware detection or some sort of false positive. 25,000 hits is very unusual and I'm having adifficulty in finding a hit searching online. TIA Jeremy
  17. For the past two days, I have been battling atleast four viruses, including trojans and keyloggers after I got the Blue Screen of Death and had to restart by turning off my power strip. I think I have finished them off, but now, I want to be absolutley sure. Also, my Firefox searches appear to be wrong if I search with the default Google, but that might not have anything to do with this. . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.4.0 Run by Owner at 20:58:11 on 2012-06-10 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3839.1241 [GMT -4:00] . AV: Webroot SecureAnywhere *Enabled/Updated* {9C0666FC-6C7D-3E97-3C40-0C6B33FC7401} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Webroot SecureAnywhere *Enabled/Updated* {27678718-4A47-3119-06F0-3719487B3EBC} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files\Webroot\WRSA.exe C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe C:\Windows\system32\taskhost.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Webroot\WRSA.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\Explorer.EXE c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\WUDFHost.exe C:\Program Files\Microsoft IntelliPoint\ipoint.exe C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe C:\Windows\system32\conhost.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\taskeng.exe c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe C:\Windows\system32\DllHost.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Windows\System32\svchost.exe -k secsvcs c:\Program Files\Zune\ZuneNss.exe C:\Program Files (x86)\Internet Explorer\IELowutil.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.aol.com/ uInternet Settings,ProxyOverride = *.local mWinlogon: Userinit=userinit.exe, BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll BHO: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll TB: Microsoft Live Search Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File uRun: [Google Update] "C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /c uRun: [LightScribe Control Panel] "C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe mRun: [hpsysdrv] "c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" mRun: [HP Software Update] "c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" mRun: [<NO NAME>] mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun: [WRSVC] "C:\Program Files\Webroot\WRSA.exe" -ul mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray uPolicies-explorer: NoDesktopCleanupWizard = 1 (0x1) mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: DhcpNameServer = 75.75.76.76 75.75.75.75 TCP: Interfaces\{C24CADA4-9C69-41A7-9FD0-AB93644A81F7} : DhcpNameServer = 75.75.76.76 75.75.75.75 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO-X64: AcroIEHelperStub - No File BHO-X64: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll BHO-X64: Search Helper - No File BHO-X64: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO-X64: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll BHO-X64: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll TB-X64: Microsoft Live Search Toolbar: {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll TB-X64: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File mRun-x64: [hpsysdrv] "c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" mRun-x64: [HP Software Update] "c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" mRun-x64: [(Default)] mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun-x64: [WRSVC] "C:\Program Files\Webroot\WRSA.exe" -ul mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\2yhqczok.default\ FF - prefs.js: browser.search.selectedEngine - Bing FF - prefs.js: browser.startup.homepage - hxxp://www.aol.com/ FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll FF - plugin: C:\Program Files (x86)\Sony\Media Go\npmediago.dll FF - plugin: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\7\NP_wtapp.dll FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll FF - plugin: C:\ProgramData\id Software\QuakeLive\npquakezero.dll FF - plugin: C:\Users\Owner\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll FF - plugin: C:\Users\Owner\AppData\Local\HuluDesktop\instances\0.9.14.1\nphdplg.dll FF - plugin: C:\Users\Owner\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll FF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll FF - plugin: C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll FF - plugin: C:\Windows\SysWOW64\npmproxy.dll . ============= SERVICES / DRIVERS =============== . R0 WRkrn;WRkrn;C:\Windows\system32\drivers\WRkrn.sys --> C:\Windows\system32\drivers\WRkrn.sys [?] R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928] R2 BingDesktopUpdate;Bing Desktop Update service;C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2012-3-30 151656] R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-6-9 654408] R2 NTI BackupNowEZSvr;NTI BackupNowEZSvr;C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe [2011-9-23 45592] R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-3-24 1262400] R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776] R2 WRSVC;WRSVC;C:\Program Files\Webroot\WRSA.exe [2011-12-18 684240] R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?] R3 Sftfs;Sftfs;C:\Windows\system32\DRIVERS\Sftfslh.sys --> C:\Windows\system32\DRIVERS\Sftfslh.sys [?] R3 Sftplay;Sftplay;C:\Windows\system32\DRIVERS\Sftplaylh.sys --> C:\Windows\system32\DRIVERS\Sftplaylh.sys [?] R3 Sftredir;Sftredir;C:\Windows\system32\DRIVERS\Sftredirlh.sys --> C:\Windows\system32\DRIVERS\Sftredirlh.sys [?] R3 Sftvol;Sftvol;C:\Windows\system32\DRIVERS\Sftvollh.sys --> C:\Windows\system32\DRIVERS\Sftvollh.sys [?] R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-6-16 136176] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-5-3 158856] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-21 257696] S3 athrusb6;Atheros Wireless LAN USB device driver 6 Series;C:\Windows\system32\DRIVERS\athrxu6.sys --> C:\Windows\system32\DRIVERS\athrxu6.sys [?] S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?] S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-6-2 135584] S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072] S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-6-16 136176] S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-6-10 113120] S3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des -service --> C:\Windows\system32\GameMon.des -service [?] S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184] S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?] S3 WMZuneComm;Zune Windows Mobile Connectivity Service;C:\Program Files\Zune\WMZuneComm.exe [2011-8-5 306400] S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184] . =============== Created Last 30 ================ . 2012-06-10 22:14:37 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8256565-F11A-4FC4-9E51-2391D92B813E}\offreg.dll 2012-06-10 00:18:33 21712 ----a-w- C:\Windows\SysWow64\drivers\DrvAgent64.SYS 2012-06-10 00:18:33 -------- d-----w- C:\Users\Owner\AppData\Local\eSupport.com 2012-06-09 21:33:11 -------- d-----w- C:\Users\Owner\AppData\Roaming\Malwarebytes 2012-06-09 21:32:55 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys 2012-06-09 21:32:55 -------- d-----w- C:\ProgramData\Malwarebytes 2012-06-09 21:32:55 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2012-06-08 14:47:44 8955792 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8256565-F11A-4FC4-9E51-2391D92B813E}\mpengine.dll 2012-06-06 21:16:52 3953632 ----a-w- C:\Windows\SysWow64\GameMon.des 2012-06-06 21:16:45 5265 ----a-w- C:\Windows\SysWow64\nppt9x.vxd 2012-06-06 21:16:45 4774 ----a-w- C:\Windows\SysWow64\npptNT2.sys 2012-06-06 21:16:40 -------- d-----w- C:\Program Files\Common Files\INCA Shared 2012-06-05 21:48:04 -------- d-----w- C:\Users\Owner\AppData\Local\NVIDIA Corporation 2012-06-03 21:22:00 18432 ----a-w- C:\Windows\System32\drivers\NTIDrvr.sys 2012-06-03 21:21:59 16896 ----a-w- C:\Windows\System32\drivers\UBHelper.sys 2012-06-03 21:06:29 -------- d-----w- C:\ProgramData\NTIReg 2012-06-03 21:03:41 -------- d-----w- C:\Windows\SysWow64\drivers\nti\Xp_x86 2012-06-03 21:03:41 -------- d-----w- C:\Windows\SysWow64\drivers\nti\w2k_x86 2012-06-03 21:03:41 -------- d-----w- C:\Windows\SysWow64\drivers\nti\Vista_x86 2012-06-03 21:03:41 -------- d-----w- C:\Windows\SysWow64\drivers\nti\Vista_ia64 2012-06-03 21:03:41 -------- d-----w- C:\Windows\SysWow64\drivers\nti\Vista_amd64 2012-06-03 21:03:41 -------- d-----w- C:\Windows\SysWow64\drivers\nti\2003_x86 2012-06-03 21:03:41 -------- d-----w- C:\Windows\SysWow64\drivers\nti\2003_ia64 2012-06-03 21:03:41 -------- d-----w- C:\Windows\SysWow64\drivers\nti\2003_amd64 2012-06-03 21:03:33 -------- d-----w- C:\Windows\SysWow64\drivers\nti 2012-06-03 21:03:33 -------- d-----w- C:\Program Files (x86)\NTI 2012-06-03 21:02:38 -------- d-----w- C:\Windows\Downloaded Installations 2012-06-02 22:05:21 -------- d-----w- C:\Program Files (x86)\EVGA Precision X 2012-06-02 13:22:41 -------- d-----w- C:\Program Files (x86)\Futuremark 2012-05-29 22:41:59 -------- d-----w- C:\Program Files (x86)\Microsoft Research 2012-05-23 21:46:08 -------- d-----w- C:\Users\Owner\VirtualBox VMs 2012-05-23 21:45:49 -------- d-----w- C:\Users\Owner\.VirtualBox 2012-05-23 21:45:06 224088 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys 2012-05-23 21:44:58 130904 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys 2012-05-22 18:26:10 147288 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys 2012-05-22 02:15:11 -------- d-----w- C:\Users\Owner\AppData\Local\{829DC7E9-3A6E-49E4-B1FC-3781E25E6717} 2012-05-22 02:14:58 -------- d-----w- C:\Users\Owner\AppData\Local\{4BE87E96-5552-46CA-A64C-04E2CAB37DCA} 2012-05-19 19:19:00 -------- d-----w- C:\Program Files\Oracle 2012-05-14 02:30:06 -------- d-----w- C:\Users\Owner\AppData\Roaming\WildTangent 2012-05-13 19:37:25 -------- d-----w- C:\Program Files (x86)\gravitysensation.com 2012-05-12 15:56:36 -------- d-----w- C:\Users\Owner\AppData\Roaming\Cobalt 2012-05-12 15:56:35 -------- d-----w- C:\Cobalt . ==================== Find3M ==================== . 2012-06-08 16:15:18 148664 ----a-w- C:\Windows\SysWow64\WRusr.dll 2012-06-08 16:15:18 112656 ----a-w- C:\Windows\System32\drivers\WRkrn.sys 2012-06-08 16:15:18 101808 ----a-w- C:\Windows\System32\WRusr.dll 2012-05-15 09:29:47 889664 ----a-w- C:\Windows\System32\nvvsvc.exe 2012-05-15 09:29:46 63296 ----a-w- C:\Windows\System32\nvshext.dll 2012-05-15 09:29:46 118080 ----a-w- C:\Windows\System32\nvmctray.dll 2012-05-15 09:29:25 3149632 ----a-w- C:\Windows\System32\nvsvc64.dll 2012-05-15 09:28:42 6151488 ----a-w- C:\Windows\System32\nvcpl.dll 2012-05-14 16:11:38 772552 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll 2012-05-14 16:11:38 687560 ----a-w- C:\Windows\SysWow64\deployJava1.dll 2012-05-04 20:31:13 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-05-04 20:31:13 419488 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2012-05-04 20:31:05 8744608 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe 2012-04-26 12:48:02 71680 ----a-w- C:\Windows\System32\frapsv64.dll 2012-04-26 12:48:00 65536 ----a-w- C:\Windows\SysWow64\frapsvid.dll 2012-04-19 00:56:30 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx 2012-04-19 00:56:30 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts 2012-04-14 02:07:51 466456 ----a-w- C:\Windows\System32\wrap_oal.dll 2012-04-14 02:07:51 444952 ----a-w- C:\Windows\SysWow64\wrap_oal.dll 2012-04-14 02:07:51 122904 ----a-w- C:\Windows\System32\OpenAL32.dll 2012-04-14 02:07:51 109080 ----a-w- C:\Windows\SysWow64\OpenAL32.dll 2012-04-04 22:33:18 955800 ----a-w- C:\Windows\System32\npdeployJava1.dll 2012-04-04 22:33:14 839056 ----a-w- C:\Windows\System32\deployJava1.dll 2012-03-31 06:05:57 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe 2012-03-31 04:39:37 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe 2012-03-31 04:39:37 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe 2012-03-31 03:10:03 3146240 ----a-w- C:\Windows\System32\win32k.sys 2012-03-30 11:35:47 1918320 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2012-03-25 00:39:03 6656 ----a-w- C:\Windows\System32\lpcio.dll 2012-03-17 07:58:57 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys 2012-03-13 20:56:30 0 ----a-w- C:\Windows\System32\SETACD8.tmp 2012-03-13 20:49:30 0 ----a-w- C:\Windows\System32\SET44F1.tmp . ============= FINISH: 20:59:43.50 =============== Attach.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.