Jump to content

Search the Community

Showing results for tags 'win7'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 20 results

  1. my plan is to do a cleanses out all of my USB flash sticks and to emptied them by moving all file to a safe place and then to formatting all of them .and I almost thinking to make an multi-boot windows into one of USB drive but how to make a multi-boot windows into USB drive ? is there any free tool or utility for it ? and I would like to know exactly how many GB needed to makes one windows 7 -32-bit and one windows 7-64-bit and one windows xp-32-bit and one windows 10-64-bit ! and also I want to make a back-up for the system into a 4 GB flash drive which is for recovery if it needed ! I’ve check for a website which is for an official tool but it look like its down any tutorial or recommendation are highly welcomed !
  2. October 7, 2018 Hello, I am doing some disk clean up and need some help with UNINSTALLING an older version on Malwarebytes. My system is WIN7 PRO, desktop, up to date with all updates. The program has an install date to my computer of September – October 2015 and I believe the program release number is 2_2_0_1024. The program is not listed in Control panel and I get an error when I try to run the mbam.exe or the unins000.exe. Is there an “universal” type of installer available I can use to remove the program and all registery entries? Thanks for any help, krazykat
  3. [reposting from Malwarebytes 3 Support Forum, summary below followed by the info you requested] I had issues with my WIn7 Pro SP1 64-bit laptop (an HP Envy 15 Notebook, i7-4720HQ) suddenly having the network stop working and the entries in DeviceMgr seem corrupt, so ... 1. Booted into Safe Mode (no networking) 2. Tried to run MWB 2.2.0.124 (last version I had on this older laptop), it failed with Couldn't open proc 406:120 3. Tried MWB uninstall, also failed with similar error 4. Copied mbam 3.5 install, and various clean/support/check utils from a USB stick (I downloaded them on another PC that is fine) 5. Ran both mbam-clean-2.3.0.1001 and mb-clean-3.1.0.1035, both completed fine. 6. Checked certmgr.msc, no MWB-related Untrusted Certificates present 6. Tried to install mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.5889 7. Got similar error (attached setup #001 log and error details dialog contents). mbam-35-setup-error.txt Setup Log 2018-07-17 #001.txt ------------------------------------------------------------------------- [Trusted Advisor FIrefox suggested I run Malwarebytes Support Tool] In Win7 Safe Mode (with no networking or command prompt) ... I tried to run mbam-support-1.1.2.471.exe, it crashes with this error: mbstub.exe has stopped working Details: Problem signature: Problem Event Name: APPCRASH Application Name: mbstub.exe Application Version: 1.1.2.471 Application Timestamp: 5b1acb3c Fault Module Name: mbstub.exe Fault Module Version: 1.1.2.471 Fault Module Timestamp: 5b1acb3c Exception Code: 40000015 Exception Offset: 001247b7 OS Version: 6.1.7601.2.1.0.256.48 Locale ID: 1033 Additional Information 1: 6ac4 Additional Information 2: 6ac4267233eb42f9537fb9cbe95bc2b4 Additional Information 3: e5b8 Additional Information 4: e5b8dd6588014878a76d6275082685f0 [Expert exile360 then suggested I run Malwarebytes Anti-Rootkit Tool, and AdwCleaner if issues persist] In Win7 Safe Mode with Networking ... I ran the .zip version of mbar.1.10.3.1001.exe, after running it on another Win7 64-bit computer with network access to update databases to v2018.07.20.1 and copying the whole mbar folder onto USB to get it onto the affected Win7 laptop. Scan Finished: No malware found! Then, in the same Safe Mode with Networking (even though my network access is messed up) ... I ran adw_7.2.2.exe , but got another error: AdwCleaner has stopped working Details: Problem signature: Problem Event Name: APPCRASH Application Name: adwcleaner_7.2.2.exe Application Version: 7.2.2.0 Application Timestamp: 5b4dec42 Fault Module Name: adwcleaner_7.2.2.exe Fault Module Version: 7.2.2.0 Fault Module Timestamp: 5b4dec42 Exception Code: 40000015 Exception Offset: 008f3377 OS Version: 6.1.7601.2.1.0.256.48 Locale ID: 1033 Additional Information 1: a08f Additional Information 2: a08f23b5c2d65e2c49b9eb088389e4b5 Additional Information 3: f84d Additional Information 4: f84d5274b666029d48327d47d6020d72 ----------------------------------------------------------------- [Here is what you requested, after the preceding results from before I posted into the Windows malware removal forum] When I try to run mbam-support-1.1.2.471.exe, it crashes with this error: mbstub.exe has stopped working Details: Problem signature: Problem Event Name: APPCRASH Application Name: mbstub.exe Application Version: 1.1.2.471 Application Timestamp: 5b1acb3c Fault Module Name: mbstub.exe Fault Module Version: 1.1.2.471 Fault Module Timestamp: 5b1acb3c Exception Code: 40000015 Exception Offset: 001247b7 OS Version: 6.1.7601.2.1.0.256.48 Locale ID: 1033 Additional Information 1: 6ac4 Additional Information 2: 6ac4267233eb42f9537fb9cbe95bc2b4 Additional Information 3: e5b8 Additional Information 4: e5b8dd6588014878a76d6275082685f0 I copied FRST64.exe via USB, after running it once on another Win7 64-bit computer just in case it updated itself (which it seemed to). It gets a 'Failed to update(1)' message on startup due to no network I am assuming, but the Scan seems to run to completion. Files attached. Addition.txt FRST.txt
  4. I'm not sure I'm infected. BleepingComputer looked at my MisToolBox logs and moved my post to AM I infected ? I have been waiting for almost 3 days for BleepingComputer To look at my FAR logs with no response. I have the Malawarebytes Premiuim Edition. Below is what I've done please help and direct me if I'm infected or if this is a Win 7 Admin User Prob. Please help Thanks Win7, 32 Bit Days ago my computer booted up and my desktop was rearranged. Then I was booted up as Default User. I reboot w/F8 and was back in my Admin Profile. Again today booted into Default Profile. I reboot trying F8 (It will not work as usual) and the system Boots me up as Default User. I then have to Cntl Alt Delete to go into my normal Admin User/Safe Mode. My DeskTop is gone and I’m booted in as a New User(Old Windows Look) with no Restore points. All my files look to bein the system just none of my Admin User Profile info. I used Minimal Safe Mode in the default Safe Mode option. I ran Malwarebytes, Sophos 2.6.1 , Spybot, Adw Cleaner in Safe mode with nothing found, CC Cleaner Will not run in Safe Mode. https://helpdeskgeek.com/windows-7/safe-mode-f8-doesnt-work/ I ran Malwarebytes, Sophos 2.6.1 , Adw Cleaner, CC Cleaner in Normal boot with nothing found. Sophos 2.6.1 will not run Error 1606 Could not access network location. Info below from Event Viewer - Event Viewer Error 4/11/18 0xc000000d Error - Unable to load registry I believe this is my problem but I need guidance to create a NEW Admin User Profile or how to fix the corrupted Admin Profile ? ??? Error: (04/11/2018 03:37:51 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. FRST.txt Addition.txt
  5. I have a Raspberry Pi set up to act as my DNS server on my network to block advertisements (Pi-Hole). It also tracks all DNS searches and has revealed that two domains are being accessed every 2 minutes by my Win7 PC - primewire.ag and 123netflix.com This happens even when the browsers on my PC are closed. I previously visited these domains using Chrome incognito mode so I thought they infected my PC. Malwarebytes and Avira find nothing. There are no suspicious add-ons to my browsers. I kept track of exactly when the Pi-Hole showed access to the two domains from my PC (every 2 minutes exactly). Ran Process Monitor (to show Network Activity) and Wireshark both as Admin. Opened Windows Powershell as Admin and typed: Then I waited and clicked enter on the command exactly when my PC was accessing those 2 domains. Checked Wireshark for the same time and found the packets being sent to the pi-hole to check the DNS of those two domains. Double clicked the packets and scrolled down to find the Source Port numbers: 57098 and 65208 Switched to Process Monitor and located the processes captured during the same time that was using those same Source Port numbers. Double clicked and now I had: the PID (1576), the Path (C:\Windows\system32), the Command Line parameters (-k NetworkService) and the process name (svchost.exe) Unfortunately, it’s the ubiquitous svchost.exe Switch to Windows Powershell and checked out the results from when I ran the tasklist command. PS C:\Users\MyPC> tasklist /svc /fi “imagename eq svchost.exe” Image Name PID Services ========================= ======== ============================================ svchost.exe 1576 CryptSvc, Dnscache, LanmanWorkstation, NlaSvc Now I have the Services behind svchost.exe. Then I went into the Registry and found the Registry Entries for each of the 4 Services and that gave me the DLL files and the file paths. They’re all under %SystemRoot%\System32: Ran system filechecker with command Scanned each file with MalwareBytes and Avira. Nothing found. Decided to check each service’s Display Name and Description: CryptSvc = Cryptographic Services = Provides four management services: Catalog Database Service, which confirms the signatures of Windows files and allows new programs to be installed; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; Automatic Root Certificate Update Service, which retrieves root certificates from Windows Update and enable scenarios such as SSL; and Key Service, which helps enroll this computer for certificates. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start. Dnscache = DNS Client = The DNS Client service (dnscache) caches Domain Name System (DNS) names and registers the full computer name for this computer. If the service is stopped, DNS names will continue to be resolved. However, the results of DNS name queries will not be cached and the computer’s name will not be registered. If the service is disabled, any services that explicitly depend on it will fail to start. LanmanWorkstation = Server = Supports file, print, and named-pipe sharing over the network for this computer. If this service is stopped, these functions will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. NlaSvc = Network Location Awareness = Collects and stores configuration information for the network and notifies programs when this information is modified. If this service is stopped, configuration information might be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. Now I’m stumped. Other than Blacklisting those sites on the Pi-Hole, any ideas on how to find out why they are being accessed every 2 minutes?
  6. Hello, I am facing a problem similar to some other users from what i have read until now. I have done the steps that i have read in another thread regarding this issue. Downloaded and run farbar recovery scan tool x64 with the following results. Thank you for your time and looking foward to your reply. FRST.txt
  7. Hi, this is the second system (my main Desktop PC) with what seems to be an identical issue, at least from what I can gather from "Who Crashed". It has Malwarebytes 3.2.2.2018 and Microsoft Security Essentials running at the same time, and I've attempted to add the exclusions after I started getting the BSOD's. It seems to have started around the time that I upgraded to Malwarebytes 3.0, but I was never really sure because it was around that time that I did a Security Only windows update. Who Crashed is telling me it's the IRST driver iastora.sys (iaStorA+0x877B8). I have upgraded to all the available IRST drivers for my chipset, and still the BSOD's continued. So I eventually went back to the original IRST drivers that had been fine for years. I have the most current MoBo BIOS installed. SFC scans come up clean. Every few days I get some Event ID 2001 "Microsoft Antimalware has encountered an error trying to update signatures". The system restarts randomly every few days. It almost always happens in the morning between 7:00am - 8:00am, which is around when Malwarebytes is doing it's automatic scan. Please, any help will be much appreciated. I built, and have maintained this systems since the end of 2013 with no BOSD's or issues whatsoever. until this past July. perfmon report Main Desktop PC.zip SysnativeFileCollectionApp.zip
  8. Hi, I've been getting BSOD's on two of my Win7 machines since about July. It seems to have started around the time that I upgraded to Malwarebytes 3.0, but I was never really sure because it was around that time that I did a Security Only windows update. Both systems of mine that are getting these sporadic BSOD's have Malwarebytes 3.+ and Microsoft Security Essentials. The BSOD's almost always happen around 7:30am - 8:00am. Which is the same time Malwarbytes does it's daily scan. The only thing I have been able to find out through "Who Crashed" is that it's a driver that is triggering the BSOD's (probably the IRST driver). "Who Crashed" says this is the case for both of my systems. I have tried every IRST update available, and still after a few days I wake up to one of my systems having been restarted because of a BSOD. I finally just went back to IRST version I had originally. Also, I have the most current BIOS available on both systems. Lastly, every few days (on both systems) I get some Event ID 2001 "Microsoft Antimalware has encountered an error trying to update signatures". Oh, and I already tried adding exclusions in both Malwarebytes & MSE. I will make this thread about the first one which is my HTPC then open another thread for my other main Desktop. I didn't want to mention both systems in the same thread at first, but the problems/symptoms are exactly the same for both, and the BSOD's started happening at the same time. Any help will be much appreciated. Thanks perfmon report HTPC.zip SysnativeFileCollectionApp.zip
  9. exploit protection is making YouTube / bbc Iplayer so choppy it is unwatchable I have an i7 4790 - 3.60Ghz and 8GB of ram 64bit op sys everything was fine until I got your latest version please help
  10. Hello and thanks to answer me. i have a big problem I need help. Malwaytes Anti-Malware deleted these (and also others of similar name) files from temp folder but they came back. i try mani antivirus, trojan remover, combofix, malwarebytes, hiijack but the problem not resolve. file name: g6CD5.tmp.exe c:\windows\temp\g6CD5.tmp.exe thank you very much! chris Addition_11-10-2017 07.09.13.txt combofix.txt FRST_11-10-2017 07.09.13.txt hijackthis.log
  11. This just started today with, what I suspect, was an update for Firefox. All of the Malwarebytes protections turned off. Running Windows 7 - 64bit on a Dell laptop. Also running Windows defender. While Malwarebytes appears to be running in the tray when I click check for updates or open Malwarebytes, nothing happens. Closing Malwarebytes does indeed remove the icon from the tray. When I try to run Malwarebytes, nothing happens. I downloaded and executed ADWCleaner. Nothing happens. I downloaded and executed FRST64. Nothing happens. Everything else on the computer appears to be working fine. I can execute Windows defender and ran a quick scan with no results. I have not executed a full scan yet because that takes hours. I also removed and reinstalled Malwarebytes with no result. Frankly, I am at a loss at this point. Can anyone help here? Thanks
  12. Yo guys I'm in serious trouble but I'm not sure if this is the right place to do a thread but I'm struggling with some kind of BIOS/UEFI rootkit. I have for a while been getting weird entries in the Rootkit/Malware tab in Gmer. I have also noticed some strange executables running among processes. All described as Windows services but you could easily see that those executables didn't belong to a clean Windows 7 install. I have been using DBAN to wipe all disks, formatted them and reinstalled but I keep getting infected. All above mentioned returns. To ensure that I'm infected I have compared processes running in the Task Manager with my neighbour. He has almost the same setup as me but most importantly he has the same motherboard as I. We've compared the DMI information inside the BIOS and we can confirm that mine has been modified. My problem is that if I try to reflash the motherboard through USB it seems like the Virus/Rootkit just will write to the USB and execute its own code cause a USB is writable. With that said I have also been working on making a bootable DOS-CD with a new BIOS version and a DOS Flash Utility with no success either. It's like the DOS can't read the files from the CD, even though I meddle a little with CONFIG.SYS and AUTOEXEC.BAT. It's like the DOS can't find any cd drivers. Another mysterious thing that indicates infection is when I set the clear CMOS jumper or clear CMOS button with no effect, it looks like that the motherboard resets and runs normally for 3-5 seconds, and then it executes some other code. A reason for me believing it runs another code is that I am using a Corsair H100i water cooling kit which you can't change the LED color on, unless you install Corsair Link in Windows and change the LED color. When I reset the CMOS and want to boot, it lights up the cooler LED as white, as it should per default, if you don't change the color in Corsair Link it should show a damn white light! But then after 3-5 seconds the LED lights turns up as red. If I go to my neighbour with exact same motherboard, CPU and cooler the LED light is white all the time. In the BIOS you have two functions, GO2BIOS and boot BIOS from file if I use the first function it just reboots to the screen where I can either enter BIOS or Boot Menu by pressing F2 or F11. If I use the boot BIOS from file I get an error saying "The data mapping running is different from the BIOS you want to boot, if you press enter your system might not start." If I press enter it just reboots to the same screen as mentioned above. Should the two functions act like that? Or is it the Rootkit messing things up? I think my laptop has been infected too. Any feedback would be awesome since I'm becoming quite desperate! Setup: MOB: MSI Z87 G45 Gaming SSD: Samsung 840 evo CPU: i5 4690K
  13. Maybe I'm the only one facing this issue. I keep my PC very clean (IT Manager). I run SAS, CCLEANER, AVG, and MBAM regularly. Haven't been infected in years. (Note: I use the free version of MBAM so I'm not expecting help from tech support. I used to use the reg version at work and think the free version is adequate for my needs). So I run the aforementioned without issue and then MBAM which wants to update to the latest version. Sure no problem in 7 years. Now it does not work. Symptoms: Starts nice new interface. Hit update,,,, nice status bar rolling,,, closes. Try running a scan same thing. What I've tried so far (which is about everything). Note" same exact experience after each idea. 1. Remove MBAM reboot. Re-install, nope. 2. Remove MBAM reboot safe wn re-install. nope 3. Remove MBAM reboot run CCLEANER re-install. nope 4. Run MBAM Anti-Rootkit. nothing 5. Run TDSS-Killer. nothing 6. Windows update maybe a DLL or something, no updates. 7. WIN Firewall add all MBAM .exe. nope 8. Shutoff AVG remove and re-install, reboot. nope 9. Run RKILL. nothing 10. Smash head on KYBD, doesn't help. 11. Run MBAM removal, reboot into safe wn. no dice 12 Read every forum I can find. nothing really applies. 13. Post this message. Help if you can! I recommend my clients buy MBAM and have loved the program for over 8 years, I'm now thinking I've either got something nasty or MBAM is conflicting with something strange. Thanks to anyone who can help!
  14. Hi,my malwarebytes has detected something(s) - which I can't remember; & has sent a report Somewhere onto my computers hdd - But I don't know H-o-w to get to this information - can U help me,please ? I run win7,32 bit. Thanks... - I couldn't see anything in the malwarebytes 'box',afterwards.
  15. Hi Using Win7 IE11 and Chrome Attached are Fabar txt files x 2 Ran MB fast scan and full scan yesterday. One file of interest in Chrome Extensions = UTuobeAdBluock 2.2, but it will not allow to be disable or deleted (no trash can) Have checked program files, seems to be nothing there. Malware for 'OnlineBrowserAdvertising' remains. Your advice appreciated. Regards Charles Harris Addition.txt FRST.txt
  16. Someone using my computer accidentally happened to run an .exe file yesterday and installed a ton of malware software onto the computer. I removed them individually via Program Uninstall ("cleaning software,etc") however, they probably imbedded deeper roots within the system files. While trying to run a complete custom scan with MalwareBytes 2.0 last night, the computer crashed with a BSOD. The same happened when I did a custom scan a while ago so the problem repeated itself. The scan does find malware on the system while the scan is running, but due to the BSOD, it is unable to remove it. I run BitDefender Total Security as the primary AV on my system, and it happened to only locate 1 file worth removing during a full system scan. The two outputs files via dds: DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.9600.16521 Run by JEDI at 14:04:37 on 2014-03-31 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.16349.13063 [GMT -7:00] . AV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D} SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall *Enabled* {A23392FD-84B9-F933-2C71-81E751F6EF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files\Bitdefender\Bitdefender\vsserv.exe C:\Windows\system32\nvvsvc.exe C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe C:\Windows\SysWOW64\ASGT.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exe C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe C:\Windows\system32\taskeng.exe c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Windows\System32\rundll32.exe C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files (x86)\ASUS\GPU Tweak\3D_Enable.exe C:\Program Files (x86)\WizMouse\wizmouse.exe C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe C:\Program Files\Bitdefender\Bitdefender\bdagent.exe C:\Program Files\Logitech\Gaming Software\LWEMon.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe C:\Program Files (x86)\Medialink\MWN-USB150N\UI.exe C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe C:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exe C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Windows\SysWOW64\rundll32.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe C:\Windows\system32\SearchProtocolHost.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe C:\Windows\system32\wuauclt.exe C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\SysWOW64\DllHost.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = about:blank mStart Page = about:blank mWinlogon: Userinit = userinit.exe BHO: Bitdefender Wallet: {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL uRun: [Medialink Utilty] C:\Program Files (x86)\Medialink\MWN-USB150N\UI.exe -s uRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" uRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" uRun: [f.lux] "C:\Users\JEDI\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun uRun: [AdobeBridge] <no file> mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [sE61T-UserTools] C:\Program Files (x86)\Perixx Gaming mouse\SE61T-UserTools.exe /s mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin mRun: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" mRun: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe dRun: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" dRun: [bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard dRun: [bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" dRunOnce: [Application Restart #0] C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe /RestartByRestartManager:D187C21E-DE40-4c3c-962F-256FB24C7B5A StartupFolder: C:\Users\JEDI\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\JEDI\AppData\Roaming\Dropbox\bin\Dropbox.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll TCP: NameServer = 192.168.1.1 TCP: Interfaces\{8915748F-7D56-4967-B75D-FB550EB0A255} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{ED61F2FC-4422-4966-B893-37B1E2BE1B98} : DHCPNameServer = 192.168.1.1 Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll SSODL: WebCheck - <orphaned> SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome x64-mStart Page = about:blank x64-BHO: Bitdefender Wallet : {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s x64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart x64-Run: [bdagent] "C:\Program Files\Bitdefender\Bitdefender\bdagent.exe" x64-Run: [start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui x64-Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" x64-Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-SSODL: WebCheck - <orphaned> x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\JEDI\AppData\Roaming\Mozilla\Firefox\Profiles\jau5928u.default\ FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\myitlab\plugin\npenlite.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll . ============= SERVICES / DRIVERS =============== . R0 avc3;avc3;C:\Windows\System32\drivers\avc3.sys [2013-11-15 893440] R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2014-2-21 116000] R0 gzflt;gzflt;C:\Windows\System32\drivers\gzflt.sys [2013-11-15 150256] R0 tib;Acronis TIB Manager;C:\Windows\System32\drivers\tib.sys [2014-2-21 1120032] R0 tib_mounter;Acronis TIB Mounter;C:\Windows\System32\drivers\tib_mounter.sys [2014-2-21 183224] R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2014-2-21 161568] R0 vidsflt;Acronis Disk Storage Filter;C:\Windows\System32\drivers\vidsflt.sys [2014-2-21 117024] R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [2013-11-15 93600] R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2013-11-15 103504] R1 BDVEDISK;BDVEDISK;C:\Windows\System32\drivers\bdvedisk.sys [2013-11-15 76944] R2 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-2-21 3873784] R2 ASGT;ASGT;C:\Windows\SysWOW64\ASGT.exe [2012-1-17 55296] R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-3-26 1593632] R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-10-30 16939296] R2 SafeBox;SafeBox;C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe [2013-11-15 94624] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-3-26 411936] R2 syncagentsrv;Acronis Sync Agent Service;C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-8-21 9735112] R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848] R2 UPDATESRV;Bitdefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2013-11-15 67320] R3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2014-2-21 367200] R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-11-3 130536] R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-11-3 395752] R3 avchv;avchv Function Driver;C:\Windows\System32\drivers\avchv.sys [2013-11-15 261056] R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-17 283064] R3 IOMap;IOMap;C:\Windows\System32\drivers\IOMap64.sys [2014-3-30 24824] R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-3-26 39200] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-10-30 646248] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088] S3 andnetadb;ADB Interface DriverNet;C:\Windows\System32\drivers\lgandnetadb.sys [2014-3-16 31744] S3 avckf;avckf;C:\Windows\System32\drivers\avckf.sys [2013-11-15 635392] S3 bdfwfpf_pc;bdfwfpf_pc;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-11-15 121928] S3 BDSandBox;BDSandBox;C:\Windows\System32\drivers\bdsandbox.sys [2013-11-15 82824] S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168] S3 ffusb2audio;Focusrite USB 2.0 Audio Driver;C:\Windows\System32\drivers\ffusb2audio.sys [2013-12-25 127280] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2013-11-15 137336] S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-3-11 111616] S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-1-18 351136] S3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-1-18 4865568] S3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-3-24 119512] S3 NVFLASH;NVFLASH;C:\Windows\System32\drivers\nvflash.sys [2013-11-20 15648] S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-11-16 19456] S3 SaiK0BD3;SaiK0BD3;C:\Windows\System32\drivers\SaiK0BD3.sys [2011-7-20 176136] S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960] S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976] S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-11-16 29696] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-12 56832] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-11-16 30208] S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-3-30 1255736] S4 BdDesktopParental;Bitdefender Desktop Parental Control;C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [2013-11-15 77632] . =============== Created Last 30 ================ . 2014-03-31 06:10:38 24824 ----a-w- C:\Windows\System32\drivers\IOMap64.sys 2014-03-31 00:42:08 -------- d-sh--r- C:\acroldr 2014-03-31 00:37:13 -------- d-----w- C:\Windows\System32\appmgmt 2014-03-31 00:11:20 -------- d-----w- C:\Users\JEDI\AppData\Local\MicroPCFix 2014-03-31 00:10:06 -------- d-----w- C:\Program Files (x86)\Bench 2014-03-31 00:07:57 -------- d-----w- C:\Users\JEDI\AppData\Local\VisualBeeExe 2014-03-31 00:07:21 -------- d-----w- C:\ProgramData\VisualBee 2014-03-31 00:07:19 -------- d-----w- C:\Users\JEDI\AppData\Local\emaze 2014-03-31 00:07:13 20312 ----a-w- C:\Windows\System32\roboot64.exe 2014-03-31 00:07:12 -------- d-----w- C:\Users\JEDI\AppData\Roaming\systweak 2014-03-31 00:07:05 -------- d-----w- C:\Program Files\Conduit 2014-03-31 00:07:04 -------- d-----w- C:\Users\JEDI\AppData\Roaming\ValueApps 2014-03-31 00:07:04 -------- d-----w- C:\Users\JEDI\AppData\Local\Conduit 2014-03-31 00:07:04 -------- d-----w- C:\Program Files (x86)\Conduit 2014-03-30 23:07:13 419840 ----a-w- C:\Windows\System32\systemcplx64.dll 2014-03-30 23:07:13 15360 ----a-w- C:\Windows\System32\slwga.dll 2014-03-30 23:07:13 13824 ----a-w- C:\Windows\32slwga.dll 2014-03-30 06:33:03 -------- d-----w- C:\Program Files (x86)\DiskCheckup 2014-03-26 16:20:23 599840 ----a-w- C:\Windows\SysWow64\nvStreaming.exe 2014-03-26 16:10:52 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys 2014-03-26 16:10:52 33056 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll 2014-03-25 06:10:08 119512 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-03-25 06:10:08 119512 ----a-w- C:\Windows\System32\drivers\6IKEBBI1~MBAMSwissArmy.sys~ 2014-03-25 06:09:58 88280 ----a-w- C:\Windows\System32\drivers\NH5PA5H5~mbamchameleon.sys~ 2014-03-25 06:09:58 88280 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-03-25 06:09:57 63192 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-03-25 06:09:57 63192 ----a-w- C:\Windows\System32\drivers\BREBJ28D~mwac.sys~ 2014-03-25 06:09:57 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-03-18 06:43:07 -------- d-----r- C:\Users\JEDI\Google Drive 2014-03-16 07:43:06 -------- d-----w- C:\Users\JEDI\.android 2014-03-16 07:37:54 31744 ----a-w- C:\Windows\System32\drivers\lgandnetadb.sys 2014-03-16 07:37:54 31744 ----a-w- C:\Windows\System32\drivers\4R4J2P8O~lgandnetadb.sys~ 2014-03-16 07:37:54 1919968 ----a-w- C:\Windows\System32\wdfcoinstaller01005.dll 2014-03-16 07:37:54 1919968 ----a-w- C:\Windows\System32\DHDFHIUO~wdfcoinstaller01005.dll~ 2014-03-16 07:37:53 -------- d-----w- C:\Program Files (x86)\LG Electronics 2014-03-16 07:05:48 24824 ----a-w- C:\Windows\System32\drivers\FU5CPV6J~IOMap64.sys~ 2014-03-13 03:53:16 -------- d-----w- C:\Users\JEDI\AppData\Local\bdch 2014-03-13 03:53:14 -------- d-----w- C:\ProgramData\bdch 2014-03-12 00:34:20 624128 ----a-w- C:\Windows\System32\SG2RTO97~qedit.dll~ 2014-03-12 00:34:20 624128 ----a-w- C:\Windows\System32\qedit.dll 2014-03-12 00:34:20 509440 ----a-w- C:\Windows\SysWow64\qedit.dll 2014-03-12 00:34:20 509440 ----a-w- C:\Windows\SysWow64\HK54NTM5~qedit.dll~ 2014-03-12 00:34:20 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll 2014-03-12 00:34:20 1424384 ----a-w- C:\Windows\System32\VI2I3Q73~WindowsCodecs.dll~ 2014-03-12 00:34:20 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll 2014-03-12 00:34:20 1230336 ----a-w- C:\Windows\SysWow64\MHJE0S3M~WindowsCodecs.dll~ 2014-03-04 00:18:27 6574592 ----a-w- C:\Windows\System32\mstscax.dll 2014-03-04 00:18:27 6574592 ----a-w- C:\Windows\System32\EC437VED~mstscax.dll~ 2014-03-04 00:18:27 5694464 ----a-w- C:\Windows\SysWow64\T2FVESLP~mstscax.dll~ 2014-03-04 00:18:27 5694464 ----a-w- C:\Windows\SysWow64\mstscax.dll . ==================== Find3M ==================== . 2014-03-29 02:54:56 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr 2014-03-29 02:54:56 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe 2014-03-29 02:27:21 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0 2014-03-26 00:08:49 290184 ----a-w- C:\Windows\SysWow64\OVD8CCNP~PnkBstrB.xtr~ 2014-03-26 00:08:49 290184 ----a-w- C:\Windows\SysWow64\2AD103VQ~PnkBstrB.exe~ 2014-03-23 06:03:16 290184 ----a-w- C:\Windows\SysWow64\QPLJS4TV~PnkBstrB.ex0~ 2014-03-12 06:12:32 71048 ----a-w- C:\Windows\SysWow64\O6UD5UQV~FlashPlayerCPLApp.cpl~ 2014-03-12 06:12:32 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2014-03-12 06:12:32 692616 ----a-w- C:\Windows\SysWow64\TDLQ6DE1~FlashPlayerApp.exe~ 2014-03-12 06:12:32 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2014-03-05 16:26:04 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-03-04 13:06:00 6714312 ----a-w- C:\Windows\System32\nvcpl.dll 2014-03-04 13:06:00 3497816 ----a-w- C:\Windows\System32\nvsvc64.dll 2014-03-04 13:05:58 922968 ------w- C:\Windows\System32\nvvsvc.exe 2014-03-04 13:05:58 64968 ----a-w- C:\Windows\System32\nvshext.dll 2014-03-04 13:05:57 386336 ----a-w- C:\Windows\System32\nvmctray.dll 2014-03-04 13:05:53 3649185 ----a-w- C:\Windows\System32\nvcoproc.bin 2014-03-01 06:05:15 23133696 ----a-w- C:\Windows\System32\LU2021TO~mshtml.dll~ 2014-03-01 05:17:02 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2014-03-01 05:17:02 2724864 ----a-w- C:\Windows\System32\HAFA1AQQ~mshtml.tlb~ 2014-03-01 05:16:26 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2014-03-01 05:16:26 4096 ----a-w- C:\Windows\System32\A53L17MS~ieetwcollectorres.dll~ 2014-03-01 04:58:28 2765824 ----a-w- C:\Windows\System32\3JRJ0TPL~iertutil.dll~ 2014-03-01 04:52:55 66048 ----a-w- C:\Windows\System32\iesetup.dll 2014-03-01 04:52:55 66048 ----a-w- C:\Windows\System32\C46UF4JU~iesetup.dll~ 2014-03-01 04:51:59 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2014-03-01 04:51:59 48640 ----a-w- C:\Windows\System32\32NLQDPG~ieetwproxystub.dll~ 2014-03-01 04:42:17 53760 ----a-w- C:\Windows\System32\M5DT4NKT~jsproxy.dll~ 2014-03-01 04:40:43 33792 ----a-w- C:\Windows\System32\0NQ84VNF~iernonce.dll~ 2014-03-01 04:37:12 574976 ----a-w- C:\Windows\System32\34MF3I0F~ieui.dll~ 2014-03-01 04:33:52 139264 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-03-01 04:33:52 139264 ----a-w- C:\Windows\System32\GJ9F2C14~ieUnatt.exe~ 2014-03-01 04:33:34 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-03-01 04:33:34 111616 ----a-w- C:\Windows\System32\25KM2L6R~ieetwcollector.exe~ 2014-03-01 04:32:59 708608 ----a-w- C:\Windows\System32\Q3T1TSK3~jscript9diag.dll~ 2014-03-01 04:32:59 708608 ----a-w- C:\Windows\System32\jscript9diag.dll 2014-03-01 04:30:58 17074688 ----a-w- C:\Windows\SysWow64\0LAR88P1~mshtml.dll~ 2014-03-01 04:23:49 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2014-03-01 04:23:49 940032 ----a-w- C:\Windows\System32\MC4VV6IJ~MsSpellCheckingFacility.exe~ 2014-03-01 04:17:43 218624 ----a-w- C:\Windows\System32\48NG5FR2~ie4uinit.exe~ 2014-03-01 04:11:20 2724864 ----a-w- C:\Windows\SysWow64\Q58PKJ8Q~mshtml.tlb~ 2014-03-01 04:11:20 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2014-03-01 04:02:07 195584 ----a-w- C:\Windows\System32\6P6184RA~msrating.dll~ 2014-03-01 03:54:33 5768704 ----a-w- C:\Windows\System32\jscript9.dll 2014-03-01 03:54:33 5768704 ----a-w- C:\Windows\System32\IPJUH9IP~jscript9.dll~ 2014-03-01 03:52:43 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll 2014-03-01 03:52:43 61952 ----a-w- C:\Windows\SysWow64\7I19BO4S~iesetup.dll~ 2014-03-01 03:51:53 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll 2014-03-01 03:51:53 51200 ----a-w- C:\Windows\SysWow64\D19HFQ7T~ieetwproxystub.dll~ 2014-03-01 03:47:28 2168320 ----a-w- C:\Windows\SysWow64\Q0OKS4OC~iertutil.dll~ 2014-03-01 03:43:55 43008 ----a-w- C:\Windows\SysWow64\MCKH1035~jsproxy.dll~ 2014-03-01 03:43:28 32768 ----a-w- C:\Windows\SysWow64\UBLK5F8R~iernonce.dll~ 2014-03-01 03:42:12 627200 ----a-w- C:\Windows\System32\32INSGEF~msfeeds.dll~ 2014-03-01 03:40:17 440832 ----a-w- C:\Windows\SysWow64\87SPFINB~ieui.dll~ 2014-03-01 03:38:26 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe 2014-03-01 03:38:26 112128 ----a-w- C:\Windows\SysWow64\HFPSI54D~ieUnatt.exe~ 2014-03-01 03:37:35 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll 2014-03-01 03:37:35 553472 ----a-w- C:\Windows\SysWow64\1J56GJJD~jscript9diag.dll~ 2014-03-01 03:35:11 2041856 ----a-w- C:\Windows\System32\KMCRAMHR~inetcpl.cpl~ 2014-03-01 03:35:11 2041856 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-03-01 03:18:25 13051904 ----a-w- C:\Windows\System32\8N5V9BO8~ieframe.dll~ 2014-03-01 03:16:09 164864 ----a-w- C:\Windows\SysWow64\2Q5CMH4P~msrating.dll~ 2014-03-01 03:14:15 4244480 ----a-w- C:\Windows\SysWow64\jscript9.dll 2014-03-01 03:14:15 4244480 ----a-w- C:\Windows\SysWow64\AA3KNG8F~jscript9.dll~ 2014-03-01 03:10:28 2334208 ----a-w- C:\Windows\System32\wininet.dll 2014-03-01 03:10:28 2334208 ----a-w- C:\Windows\System32\29S3BADH~wininet.dll~ 2014-03-01 03:03:49 524288 ----a-w- C:\Windows\SysWow64\573LSMJB~msfeeds.dll~ 2014-03-01 03:00:08 1964032 ----a-w- C:\Windows\SysWow64\inetcpl.cpl 2014-03-01 03:00:08 1964032 ----a-w- C:\Windows\SysWow64\0V7LLUMT~inetcpl.cpl~ 2014-03-01 02:57:18 11266048 ----a-w- C:\Windows\SysWow64\B3ADUJC7~ieframe.dll~ 2014-03-01 02:38:44 1393664 ----a-w- C:\Windows\System32\DP373PQ5~urlmon.dll~ 2014-03-01 02:32:16 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll 2014-03-01 02:32:16 1820160 ----a-w- C:\Windows\SysWow64\9K6SIB9S~wininet.dll~ 2014-03-01 02:27:15 1156096 ----a-w- C:\Windows\SysWow64\MVRVVLJK~urlmon.dll~ 2014-03-01 02:25:42 703488 ----a-w- C:\Windows\SysWow64\5UNNT0OQ~ieapfltr.dll~ 2014-03-01 02:25:22 817664 ----a-w- C:\Windows\System32\FT8M1RTD~ieapfltr.dll~ 2014-02-21 09:01:49 367200 ----a-w- C:\Windows\System32\drivers\afcdp.sys 2014-02-21 09:01:46 1464096 ----a-w- C:\Windows\System32\drivers\tdrpman.sys 2014-02-21 09:01:42 183224 ----a-w- C:\Windows\System32\drivers\tib_mounter.sys 2014-02-21 09:01:40 1120032 ----a-w- C:\Windows\System32\drivers\tib.sys 2014-02-21 09:01:37 161568 ----a-w- C:\Windows\System32\drivers\vididr.sys 2014-02-21 09:01:36 117024 ----a-w- C:\Windows\System32\drivers\vidsflt.sys 2014-02-21 09:01:35 269600 ----a-w- C:\Windows\System32\drivers\snapman.sys 2014-02-21 09:01:34 116000 ----a-w- C:\Windows\System32\drivers\fltsrv.sys 2014-02-18 22:09:30 49940480 ----a-w- C:\Program Files (x86)\GUT935A.tmp 2014-02-07 01:23:30 3156480 ----a-w- C:\Windows\System32\win32k.sys 2014-02-07 01:23:30 3156480 ----a-w- C:\Windows\System32\DIQS22T0~win32k.sys~ 2014-02-06 20:52:08 95915 ----a-w- C:\ProgramData\1391719925.bdinstall.bin 2014-02-06 20:51:00 95915 ----a-w- C:\ProgramData\1391719854.bdinstall.bin 2014-01-29 02:32:18 484864 ----a-w- C:\Windows\System32\wer.dll 2014-01-29 02:32:18 484864 ----a-w- C:\Windows\System32\JGD07PJO~wer.dll~ 2014-01-29 02:06:47 381440 ----a-w- C:\Windows\SysWow64\wer.dll 2014-01-29 02:06:47 381440 ----a-w- C:\Windows\SysWow64\9HOR3VEN~wer.dll~ 2014-01-28 02:32:46 228864 ----a-w- C:\Windows\System32\wwansvc.dll 2014-01-28 02:32:46 228864 ----a-w- C:\Windows\System32\DJDUIQK4~wwansvc.dll~ 2014-01-27 14:43:55 893440 ------w- C:\Windows\System32\drivers\avc3.sys 2014-01-27 14:21:36 635392 ----a-w- C:\Windows\System32\drivers\avckf.sys 2014-01-21 02:54:53 1048152 ----a-w- C:\Windows\SysWow64\nvspcap.dll 2014-01-21 02:54:22 1179576 ----a-w- C:\Windows\System32\nvspcap64.dll 2014-01-03 22:59:32 61 --sh--w- C:\Windows\cnerolf.bin . ============= FINISH: 14:05:47.45 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1 Install Date: 10/30/2013 3:21:10 PM System Uptime: 3/31/2014 1:47:00 PM (1 hours ago) . Motherboard: ASUSTeK Computer INC. | | P8Z68-V LE Processor: Intel® Core i7-3770K CPU @ 3.50GHz | LGA1155 | 3501/100mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 931 GiB total, 409.97 GiB free. D: is CDROM () E: is FIXED (exFAT) - 931 GiB total, 438.548 GiB free. . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP108: 3/30/2014 4:03:21 PM - Windows Modules Installer RP109: 3/30/2014 5:20:47 PM - Windows Update RP110: 3/30/2014 9:23:40 PM - Restore Operation . ==== Installed Programs ====================== . Tools for .Net 3.5 µTorrent 3DMark 11 7-Zip 9.20 (x64 edition) Ableton Live 9 Suite Acronis True Image 2014 Adobe Flash Player 12 Plugin Adobe Photoshop Lightroom 5.2 64-bit Adobe Reader XI (11.0.06) aerosoft's - Lukla X - Mount Everest Amazon Kindle Asmedia ASM104x USB 3.0 Host Controller Driver ASUS GPU Tweak Batman: Arkham Asylum GOTY Edition Batman: Arkham City GOTY Battlefield 3™ Battlelog Web Plugins BioShock Infinite Bitdefender Total Security Blend for Visual Studio 2012 Blend for Visual Studio 2012 ENU resources Blend for Visual Studio Add-in for Adobe FXG Import Blend for Visual Studio SDK for .NET 4.5 Blend for Visual Studio SDK for Silverlight 5 C90B King Air HD SERIES FSX CPUID CPU-Z 1.67.1 CPUID HWMonitor 1.24 D3DX10 DAEMON Tools Lite Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition DiskCheckup v3.2 Dotfuscator and Analytics Community Edition Dropbox Entity Framework Designer for Visual Studio 2012 - enu ESN Sonar Euro Truck Simulator 2 f.lux Far Cry® 3 Fraps (remove only) Futuremark SystemInfo Geekbench 3 GeForce Experience NvStream Client Components Google Chrome Google Drive HandBrake 0.9.9.1 Heaven Benchmark version 4.0 IIS 8.0 Express IIS Express Application Compatibility Database for x64 IIS Express Application Compatibility Database for x86 JavaScript Tooling Just Cause 2 LG United Mobile Driver LinuxLive USB Creator LocalESPC LocalESPCui for en-us Logitech Gaming Software 5.10 Malwarebytes Anti-Malware version 2.00.0.1000 Max Payne 3 Medialink MWN-USB150N Metro 2033 Metro: Last Light Microsoft .NET Framework 4 Multi-Targeting Pack Microsoft .NET Framework 4.5 Multi-Targeting Pack Microsoft .NET Framework 4.5 SDK Microsoft .NET Framework 4.5.1 Microsoft Application Error Reporting Microsoft ASP.NET MVC 3 Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools - ENU Microsoft ASP.NET MVC 4 Runtime Microsoft ASP.NET Web Pages Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools - ENU Microsoft ASP.NET Web Pages 2 Runtime Microsoft Expression Blend SDK for .NET 4 Microsoft Expression Blend SDK for Silverlight 4 Microsoft Flight Simulator X Microsoft Flight Simulator X Service Pack 2 Microsoft Help Viewer 2.0 Microsoft LightSwitch for Visual Studio 2012 Core Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU Microsoft LightSwitch for Visual Studio 2012 v3.0 Core Microsoft LightSwitch for Visual Studio 2012 v3.0 CoreRes - ENU Microsoft Mouse and Keyboard Center Microsoft NuGet - Visual Studio 2012 Microsoft Office Access MUI (English) 2010 Microsoft Office Access Setup Metadata MUI (English) 2010 Microsoft Office Excel MUI (English) 2010 Microsoft Office Groove MUI (English) 2010 Microsoft Office InfoPath MUI (English) 2010 Microsoft Office Office 32-bit Components 2010 Microsoft Office OneNote MUI (English) 2010 Microsoft Office Outlook MUI (English) 2010 Microsoft Office PowerPoint MUI (English) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (English) 2010 Microsoft Office Publisher MUI (English) 2010 Microsoft Office Shared 32-bit MUI (English) 2010 Microsoft Office Shared MUI (English) 2010 Microsoft Office Shared Setup Metadata MUI (English) 2010 Microsoft Office Word MUI (English) 2010 Microsoft Portable Library Multi-Targeting Pack Microsoft Portable Library Multi-Targeting Pack Language Pack - enu Microsoft Report Viewer Add-On for Visual Studio 2012 Microsoft Silverlight Microsoft Silverlight 4 SDK Microsoft Silverlight 5 SDK Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft SQL Server 2012 Command Line Utilities Microsoft SQL Server 2012 Data-Tier App Framework Microsoft SQL Server 2012 Express LocalDB Microsoft SQL Server 2012 Management Objects Microsoft SQL Server 2012 Management Objects (x64) Microsoft SQL Server 2012 Native Client Microsoft SQL Server 2012 T-SQL Language Service Microsoft SQL Server 2012 Transact-SQL Compiler Service Microsoft SQL Server 2012 Transact-SQL ScriptDom Microsoft SQL Server Compact 4.0 SP1 x64 ENU Microsoft SQL Server Data Tools - enu (11.1.20627.00) Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00) Microsoft SQL Server System CLR Types Microsoft SQL Server System CLR Types (x64) Microsoft System CLR Types for SQL Server 2012 Microsoft System CLR Types for SQL Server 2012 (x64) Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 x64 Designtime - 11.0.50727 Microsoft Visual C++ 2012 32bit Compilers - ENU Resources Microsoft Visual C++ 2012 Compilers Microsoft Visual C++ 2012 Compilers - ENU Resources Microsoft Visual C++ 2012 Core Libraries Microsoft Visual C++ 2012 Extended Libraries Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.51106 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 Microsoft Visual C++ 2012 x86-x64 Compilers Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.51106 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 Microsoft Visual Studio 2010 Office Developer Tools (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2012 Devenv Microsoft Visual Studio 2012 Devenv Resources Microsoft Visual Studio 2012 Performance Collection Tools Microsoft Visual Studio 2012 Performance Collection Tools - ENU Microsoft Visual Studio 2012 Preparation Microsoft Visual Studio 2012 SharePoint Developer Tools Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack Microsoft Visual Studio 2012 Shell (Minimum) Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies Microsoft Visual Studio 2012 Shell (Minimum) Resources Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU Microsoft Visual Studio Professional 2012 Microsoft Visual Studio Professional 2012 - ENU Microsoft Visual Studio Team Foundation Server 2012 Object Model Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources Microsoft Web Deploy 3.0 Microsoft Web Deploy dbSqlPackage Provider - enu Microsoft Web Developer Tools 2012.2 - Visual Studio 2012 Microsoft Web Platform Installer 4.0 Microsoft_VC80_CRT_x86 Microsoft_VC90_CRT_x86 Movie Maker Mozilla Firefox 28.0 (x86 en-US) Mozilla Maintenance Service MSVCRT MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP2 Parser and SDK myitlab Plug-in/ActiveX Installer NVIDIA 3D Vision Controller Driver 335.21 NVIDIA 3D Vision Driver 335.23 NVIDIA Control Panel 335.23 NVIDIA GeForce Experience 1.8.2 NVIDIA Graphics Driver 335.23 NVIDIA HD Audio Driver 1.3.30.1 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA PhysX NVIDIA PhysX System Software 9.13.1220 NVIDIA ShadowPlay 11.10.11 NVIDIA Stereoscopic 3D Driver NVIDIA Update 11.10.11 NVIDIA Update Core NVIDIA Virtual Audio 1.2.20 Origin PDF Settings CS6 Perixx Gaming mouse version 1.0.7 Photo Common Photo Gallery PMDG 737 8900 NGX PMDG BAe JS4100 PreEmptive Analytics Visual Studio Components Prerequisites for SSDT PRO-ATC/X version 1.2.2.6 PS3 Media Server PunkBuster Services Realtek Ethernet Controller Driver Realtek High Definition Audio Driver REX 4 - Texture Direct Rockstar Games Social Club Secure Download Manager Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft Excel 2010 (KB2826033) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2826023) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2826035) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition SHIELD Streaming Steam Tom Clancy's Splinter Cell® Blacklist™ Tomb Raider Unigine Valley Benchmark version 1.0 Update for (KB2504637) Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2837594) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition Update for Microsoft Office 2010 (KB2863818) 64-Bit Edition Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition Update for Microsoft PowerPoint 2010 (KB2775360) 64-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition Update for Microsoft Visio 2010 (KB2878227) 64-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition Update for Microsoft Visual Studio 2012 (KB2781514) Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition Uplay Visual Studio 2012 Prerequisites Visual Studio 2012 Prerequisites - ENU Language Pack Visual Studio 2012 Update 2 (KB2707250) Visual Studio Extensions for Windows Library for JavaScript VLC media player 2.1.4 WCF Data Services 5.0 (for OData v3) Primary Components WCF Data Services Tools for Microsoft Visual Studio 2012 WCF RIA Services V1.0 SP2 Windows App Certification Kit Native Components Windows App Certification Kit x64 Windows Azure Tools for LightSwitch HTML Client for Visual Studio 2012 Windows Driver Package - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1) Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Runtime Intellisense Content - en-us Windows Software Development Kit Windows Software Development Kit DirectX x64 Remote Windows Software Development Kit DirectX x86 Remote Windows Software Development Kit for Windows Store Apps Windows Software Development Kit for Windows Store Apps DirectX x64 Remote Windows Software Development Kit for Windows Store Apps DirectX x86 Remote Windows XP Targeting with C++ WizMouse v1.7.0.3 . ==== Event Viewer Messages From Past Week ======== . 3/30/2014 9:03:46 PM, Error: Service Control Manager [7023] - The SPP Notification Service service terminated with the following error: Access is denied. 3/30/2014 5:18:08 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1. 3/30/2014 3:39:27 PM, Error: Microsoft-Windows-DistributedCOM [10001] - Unable to start a DCOM Server: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} as /. The error: "5" Happened while starting this command: C:\Windows\System32\slui.exe -Embedding 3/30/2014 11:01:23 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR2. 3/29/2014 5:49:49 PM, Error: Microsoft-Windows-BitLocker-Driver [24620] - Encrypted volume check: Volume information on cannot be read. 3/28/2014 3:41:55 PM, Error: VDS Basic Provider [1] - Unexpected failure. Error code: D@01010004 3/25/2014 5:58:08 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR5. 3/24/2014 10:43:15 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR2. . ==== End Of File ===========================
  17. We're using Win7 64x and cannot get the icon to show in the system tray. Is this possible or is the desktop icon the only choice? Thanks, Cory
  18. rogue ads playing on win7 laptop - have run malware bytes, spybot s&d, kaspersky tdsskill, zone alarm scans, ad aware, superantispyware.... can't run windows updates. slow. ads do not need an internet connection to play. scans came up fairly clean but did detect some items that were cleaned or quarantined.
  19. Hello, thanks for having such a forum available. Recently, my antivirus caught a trojan virus labeled Trojan.Genome!iDuy3k4rqEY and 4 suspicious sequences along with it and quarantined all 5 files. All seemed fine and dandy. However, my boot-up sequence has gotten terribly out of whack, so to speak. My computer first hangs or completely freezes. Next, Firefox attempts to open, but fails and I get dialogue boxes indicating that it cannot find any directory leading to Firefox.exe and asks if I'd like to delete it. I push "No". Lastly, it hangs once again and a dialogue box indicating that IAStorIcon.exe has failed to initiate. There is a lot of text in the box, but I haven't copied it down yet, but can do so if you require. I don't know if any remnants of the trojan are affecting my system or if it's something entirely different. Any and ALL help will be appreciated. I know the rules state not to run any applications unless a forum assistant advises you so I won't post any logs until told to do so. Windows version: Genuine Windows 7 Home Premium Antivirus version: Outpost Security Suite Pro 8.1 (lifetime subscription)
  20. I've managed to pick up some new Malware which isint being picked up by any of the scanners. I have some experience with malware removal in a sandbox; but as this is on my core system, and seems relatively new, I decided not to fiddle. I'll be awaiting instructions... Sorry about all the junk programs.... maybe its about time I re-install lol. I have the both DDS.txt and Attach.txt scans (in safe more), should I upload these?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.