Jump to content
GPK1

Random 'Water Dripping' or 'Tik Tok' sound

Recommended Posts

I'm afraid you'll have to eliminate my ability to record the sound. I don't have external speakers or headphones. I tried again with my cell phone, but the static is too loud. I'm somewhat surprised because the sound is loud and clear, even over the fan.

Share this post


Link to post
Share on other sites

OK then. You see if the NB speakers are truly off or muted and sound emanates from it and we can't also hear the sound nor can you isolate the physical sound to the audio system then it is hard to remotely diagnose the problem.

While rare, it is not outside the realm of possibility where the electronics can setup a sympathetic vibration and sound generation.

Go ahead, go through the software and log analysis process. It can't hurt.

Share this post


Link to post
Share on other sites

Hi guys,

In the absence of my ability to record the sound problem I'm experiencing. CWB pointed to concerns with my host programs. Any guidance would be most welcome:

µTorrent (Version: 3.3.0.29609)

7 Wonders II (Version: 2.2.0.98)

Adobe Flash Player 11 Plugin (Version: 11.7.700.202)

Adobe Shockwave Player 11.6 (Version: 11.6.5.635)

Aloha TriPeaks (Version: 2.2.0.98)

AMD APP SDK Runtime (Version: 10.0.938.2)

AMD Catalyst Install Manager (Version: 8.0.881.0)

AuthenTec TrueAPI 64-bit (Version: 1.6.0.86)

avast! Free Antivirus (Version: 8.0.1489.0)

Bejeweled 3 (Version: 2.2.0.98)

Build-a-lot 4 - Power Source (Version: 2.2.0.98)

Catalyst Control Center - Branding (Version: 1.00.0000)

Catalyst Control Center (Version: 2012.0806.1156.19437)

Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1156.19437)

Catalyst Control Center InstallProxy (Version: 2012.0806.1156.19437)

Catalyst Control Center Localization All (Version: 2012.0806.1156.19437)

Catalyst Control Center Profiles Mobile (Version: 2012.0806.1156.19437)

CCC Help Chinese Standard (Version: 2012.0806.1155.19437)

CCC Help Chinese Traditional (Version: 2012.0806.1155.19437)

CCC Help Czech (Version: 2012.0806.1155.19437)

CCC Help Danish (Version: 2012.0806.1155.19437)

CCC Help Dutch (Version: 2012.0806.1155.19437)

CCC Help English (Version: 2012.0806.1155.19437)

CCC Help Finnish (Version: 2012.0806.1155.19437)

CCC Help French (Version: 2012.0806.1155.19437)

CCC Help German (Version: 2012.0806.1155.19437)

CCC Help Greek (Version: 2012.0806.1155.19437)

CCC Help Hungarian (Version: 2012.0806.1155.19437)

CCC Help Italian (Version: 2012.0806.1155.19437)

CCC Help Japanese (Version: 2012.0806.1155.19437)

CCC Help Korean (Version: 2012.0806.1155.19437)

CCC Help Norwegian (Version: 2012.0806.1155.19437)

CCC Help Polish (Version: 2012.0806.1155.19437)

CCC Help Portuguese (Version: 2012.0806.1155.19437)

CCC Help Russian (Version: 2012.0806.1155.19437)

CCC Help Spanish (Version: 2012.0806.1155.19437)

CCC Help Swedish (Version: 2012.0806.1155.19437)

CCC Help Thai (Version: 2012.0806.1155.19437)

CCC Help Turkish (Version: 2012.0806.1155.19437)

ccc-utility64 (Version: 2012.0806.1156.19437)

Chuzzle Deluxe (Version: 2.2.0.95)

Cradle of Rome 2 (Version: 2.2.0.98)

Crazy Chicken Soccer (Version: 2.2.0.98)

CyberLink LabelPrint (Version: 2.5.3.5901)

CyberLink Media Suite 10 (Version: 10.0.1.1916)

CyberLink PhotoDirector (Version: 2.0.1.3119)

CyberLink PowerDirector 10 (Version: 10.0.1.1925)

CyberLink YouCam (Version: 3.5.4.5527)

D3DX10 (Version: 15.4.2368.0902)

Energy Star (Version: 1.0.8)

Farm Frenzy (Version: 2.2.0.98)

Final Drive Fury (Version: 2.2.0.95)

Free Stopwatch 2.7.0 (Version: 2.7)

Governor of Poker 2 Premium Edition (Version: 2.2.0.95)

Hewlett-Packard ACLM.NET v1.2.0.0 (Version: 1.00.0000)

HP 3D DriveGuard (Version: 4.2.5.1)

HP Connected Music (Meridian - installer) (Version: v1.0)

HP CoolSense (Version: 2.10.3)

HP Customer Experience Enhancements (Version: 6.0.1.7)

HP Documentation (Version: 1.1.0.0)

HP Games (Version: 1.0.3.0)

HP Postscript Converter (Version: 3.1.3554)

HP Quick Launch (Version: 3.0.4)

HP Recovery Manager (Version: 7.00)

HP Registration Service (Version: 1.0.5976.4186)

HP SimplePass (Version: 6.0.100.244)

HP Software Framework (Version: 4.6.8.1)

HP Support Assistant (Version: 7.0.32.44)

HP Utility Center (Version: 1.0.7)

HP Wireless Button Driver (Version: 1.0.6.1)

Intel PROSet Wireless

Intel® Display Audio Driver (Version: 6.14.00.3097)

Intel® Management Engine Components (Version: 8.1.0.1252)

Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.5.0.0344)

Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 2.5.0.0248)

Intel® Smart Connect Technology 3.0 x64 (Version: 3.0.30.1526)

Intel® WiDi (Version: 3.5.34.0)

Intel® PROSet/Wireless WiFi Software (Version: 15.05.1000.1411)

Intel® Trusted Connect Service Client (Version: 1.24.388.1)

Jewel Match 3 (Version: 2.2.0.98)

Jewel Quest II (Version: 2.2.0.97)

Jewel Quest Solitaire 2 (Version: 2.2.0.98)

Mahjongg Artifacts (Version: 2.2.0.110)

Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Games for Windows - LIVE Redistributable (Version: 2.0.672.0)

Microsoft Office (Version: 14.0.6120.5004)

Microsoft Silverlight (Version: 5.1.20125.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)

Mozilla Maintenance Service (Version: 21.0)

MSVCRT (Version: 15.4.2862.0708)

Mystery of Mortlake Mansion (Version: 2.2.0.98)

PokerStars

Polar Bowler (Version: 2.2.0.97)

PX Profile Update (Version: 1.00.1.)

Ranch Rush 2 - Premium Edition (Version: 2.2.0.98)

RealDownloader (Version: 1.3.2)

RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)

RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)

RealPlayer (Version: 16.0.2)

Realtek Ethernet Controller Driver (Version: 8.3.730.2012)

Realtek PCIE Card Reader (Version: 6.2.8400.27025)

RealUpgrade 1.1 (Version: 1.1.0)

Spybot - Search & Destroy (Version: 1.6.2)

swMSM (Version: 12.0.0.1)

Synaptics Pointing Device Driver (Version: 16.2.10.12)

Trinklit Supreme (Version: 2.2.0.98)

Update Installer for WildTangent Games App

Virtual Families (Version: 2.2.0.98)

Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)

Wedding Dash (Version: 2.2.0.95)

WildTangent Games (Version: 1.0.3.0)

WildTangent Games App (Version: 4.0.9.6)

Windows Live Communications Platform (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3555.0308)

Windows Live Installer (Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3555.0308)

Windows Live Movie Maker (Version: 15.4.3502.0922)

Windows Live Photo Common (Version: 15.4.3502.0922)

Windows Live Photo Gallery (Version: 15.4.3502.0922)

Windows Live PIMT Platform (Version: 15.4.3508.1109)

Windows Live SOXE (Version: 15.4.3502.0922)

Windows Live SOXE Definitions (Version: 15.4.3502.0922)

Windows Live UX Platform (Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)

Windows Live Writer (Version: 15.4.3502.0922)

Windows Live Writer Resources (Version: 15.4.3502.0922)

WinRAR 4.20 (64-bit) (Version: 4.20.0)

ZoneAlarm LTD Toolbar

Zuma's Revenge (Version: 2.2.0.98)

Share this post


Link to post
Share on other sites

More than likely he was talking about the number of entries in your hosts file, you can restore your hosts file back to default using the Microsoft Fix It Tool => HERE <=

========================= Hosts content: =================================

127.0.0.1 www.007guard.com

127.0.0.1 007guard.com

127.0.0.1 008i.com

127.0.0.1 www.008k.com

127.0.0.1 008k.com

127.0.0.1 www.00hq.com

127.0.0.1 00hq.com

127.0.0.1 010402.com

127.0.0.1 www.032439.com

127.0.0.1 032439.com

127.0.0.1 www.0scan.com

127.0.0.1 0scan.com

127.0.0.1 1000gratisproben.com

127.0.0.1 www.1000gratisproben.com

127.0.0.1 1001namen.com

127.0.0.1 www.1001namen.com

127.0.0.1 100888290cs.com

127.0.0.1 www.100888290cs.com

127.0.0.1 www.100sexlinks.com

There are 15360 more lines starting with "127.0.0.1"

Share this post


Link to post
Share on other sites

is there a program i can use to restore host files in win 8?

Share this post


Link to post
Share on other sites

You can use NOTEPAD that comes with Windows. You may need to disable or tell Windows Defender to not protect the hosts file possibly.

Find notepad and right click and choose "Run as administrator"

When Notepad is open click on the menu for File>Open and type in the following.

%WINDIR%\SYSTEM32\DRIVERS\ETC\hosts

Remove everything except the top part with the notes and the 127.0.0.1

Then click File>Save and close notepad.

Share this post


Link to post
Share on other sites

I removed all the host file entries in notepad as per the previous message. I didn't have any problems yesterday afternoon and evening. The sound started up again at random this morning. Any further suggestions would be very welcome.

Share this post


Link to post
Share on other sites

DDS Logs:

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 10.0.9200.16537

Run by gary at 8:23:20 on 2013-06-14

Microsoft Windows 8 6.2.9200.0.1252.44.2057.18.8075.6211 [GMT 1:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\dwm.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Program Files\IDT\WDM\STacSV64.exe

C:\Windows\system32\Hpservice.exe

C:\Windows\System32\WUDFHost.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\system32\WLANExt.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k WbioSvcGroup

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k apphost

C:\Program Files\Intel\WiFi\bin\EvtEng.exe

C:\Windows\system32\dashost.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

C:\Program Files\Intel\iCLS Client\HeciServer.exe

C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Windows\system32\atieclxx.exe

C:\Windows\system32\taskhostex.exe

C:\Windows\Explorer.EXE

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe

C:\Program Files\Common Files\AuthenTec\TrueService.exe

C:\Program Files\Common Files\AuthenTec\TrueService.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\IDT\WDM\sttray64.exe

C:\Users\gary\AppData\Roaming\uTorrent\uTorrent.exe

C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe

C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe

C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE

C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe

C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

C:\Windows\System32\RuntimeBroker.exe

C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\HP SimplePass\TouchControl.exe

C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

mWinlogon: Userinit = userinit.exe,

BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll

BHO: ZoneAlarm Security Engine Registrar: {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} -

BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

TB: ZoneAlarm Security Engine: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} -

TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

uRun: [uTorrent] "C:\Users\gary\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

uRun: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey

mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot

mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ISCTSY~1.LNK - C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray.exe

mPolicies-System: EnableSecureUIAPath = dword:1

IE: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

.

INFO: HKCU has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

.

INFO: HKLM has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

TCP: NameServer = 192.168.0.1

TCP: Interfaces\{11B2500D-0EDA-41C0-8154-A5D0512BF4E3} : DHCPNameServer = 192.168.0.1

TCP: Interfaces\{ADA4012E-DD59-4E3C-B823-B53527DFB77F} : DHCPNameServer = 100.100.10.24

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-BHO: ZoneAlarm Security Engine Registrar: {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} -

x64-TB: ZoneAlarm Security Engine: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} -

x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe

x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe

x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe

x64-Run: [bTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp

x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe

x64-Run: [iSW] "C:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"

x64-Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe

x64-mPolicies-System: EnableSecureUIAPath = dword:1

.

INFO: x64-HKLM has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-Notify: igfxcui - igfxdev.dll

x64-SSODL: WebCheck - <orphaned>

Hosts: 127.0.0.1 www.spywareinfo.com

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\8ni317tu.default\

FF - plugin: C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

FF - plugin: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

FF - plugin: C:\windows\SysWOW64\Adobe\Director\np32dsw.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll

FF - ExtSQL: 2013-04-30 17:24; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\8ni317tu.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}

FF - ExtSQL: 2013-04-30 19:12; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\gary\AppData\Roaming\Mozilla\Firefox\Profiles\8ni317tu.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF - ExtSQL: 2013-06-08 08:44; wrc@avast.com; C:\Program Files\AVAST Software\Avast\WebRep\FF

.

---- FIREFOX POLICIES ----

FF - user.js: extensions.zonealarm.autoRvrt - false

FF - user.js: extensions.zonealarm_i.newTab - false

FF - user.js: extensions.zonealarm.tlbrSrchUrl - hxxp://search.zonealarm.com/search?src=tb&tbid=base2013&Lan={dfltLng}&gu=406749abb23547189786d457b266517e&tu=11JL0008R2B000s&sku=&tstsId=&ver=&&q=

FF - user.js: extensions.zonealarm.id - 5c382ac20000000000006036dd75897f

FF - user.js: extensions.zonealarm.appId - {C56C48A0-DA4E-46F6-9859-1553DC865F84}

FF - user.js: extensions.zonealarm.instlDay - 15863

FF - user.js: extensions.zonealarm.vrsn - 1.8.3.16

FF - user.js: extensions.zonealarm.vrsni - 1.8.3.16

FF - user.js: extensions.zonealarm_i.vrsnTs - 1.8.3.1617:03:37

FF - user.js: extensions.zonealarm.prtnrId - checkpoint

FF - user.js: extensions.zonealarm.prdct - zonealarm

FF - user.js: extensions.zonealarm.aflt - 5043

FF - user.js: extensions.zonealarm_i.smplGrp - none

FF - user.js: extensions.zonealarm.tlbrId - base2013

FF - user.js: extensions.zonealarm.instlRef - ZLN118383973293322-5043

FF - user.js: extensions.zonealarm.dfltLng - en

FF - user.js: extensions.zonealarm.excTlbr - false

FF - user.js: extensions.zonealarm.admin - false

.

============= SERVICES / DRIVERS ===============

.

R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\Drivers\amdkmpfd.sys [2012-7-9 35496]

R0 aswRvrt;aswRvrt;C:\Windows\System32\Drivers\aswRvrt.sys [2013-6-8 65336]

R0 aswVmm;aswVmm;C:\Windows\System32\Drivers\aswVmm.sys [2013-6-8 189936]

R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-7-31 645952]

R1 aswSnx;aswSnx;C:\Windows\System32\Drivers\aswSnx.sys [2013-6-8 1025808]

R1 aswSP;aswSP;C:\Windows\System32\Drivers\aswSP.sys [2013-6-8 378432]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-8-1 239616]

R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-7-17 731688]

R2 aswFsBlk;aswFsBlk;C:\Windows\System32\Drivers\aswFsBlk.sys [2013-6-8 33400]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\Drivers\aswMonFlt.sys [2013-6-8 80816]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-6-8 46808]

R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-12-25 1091520]

R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-12-25 1112000]

R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-5-2 135952]

R2 FPLService;TrueSuiteService;C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [2012-8-10 1641320]

R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-8-10 85504]

R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2012-8-10 29600]

R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-7-31 35232]

R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]

R2 ISCTAgent;ISCT Always Updated Agent;C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [2012-7-24 146984]

R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2012-12-25 165760]

R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-4-16 39056]

R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-12-25 364416]

R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-7-18 2699568]

R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\Windows\System32\Drivers\AmpPal.sys [2012-7-17 162344]

R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\Windows\System32\Drivers\ikbevent.sys [2012-7-24 20968]

R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\Windows\System32\Drivers\imsevent.sys [2012-7-24 19944]

R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2012-6-19 342528]

R3 intelkmd;intelkmd;C:\Windows\System32\Drivers\igdpmd64.sys [2012-7-25 8982208]

R3 ISCT;Intel® Smart Connect Technology Device Driver;C:\Windows\System32\Drivers\ISCTD64.sys [2012-7-24 46016]

R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\Drivers\iwdbus.sys [2012-8-9 25568]

R3 NETwNe64;@oem15.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\Windows\System32\Drivers\NETwew00.sys [2012-8-7 4273192]

R3 RSBASTOR;Realtek PCIE CardReader Driver - BA;C:\Windows\System32\Drivers\RtsBaStor.sys [2012-12-25 294544]

R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2012-12-25 690832]

R3 SmbDrvI;SmbDrvI;C:\Windows\System32\Drivers\Smb_driver_Intel.sys [2012-12-25 43832]

R3 TrueService;TrueAPI Service component;C:\Program Files\Common Files\AuthenTec\TrueService.exe [2012-7-16 401256]

R3 WirelessButtonDriver;HP Wireless Button Driver Service;C:\Windows\System32\Drivers\WirelessButtonDriver64.sys [2012-8-31 20800]

R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\Windows\System32\Drivers\WPRO_41_2001.sys [2013-6-8 34752]

S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\Windows\System32\Drivers\AmpPal.sys [2012-7-17 162344]

S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\Windows\System32\Drivers\ssadadb.sys [2011-5-13 36328]

S3 BthLEEnum;Bluetooth Low Energy Driver;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-26 202752]

S3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\Drivers\btmaux.sys [2012-12-25 110592]

S3 btmhsf;btmhsf;C:\Windows\System32\Drivers\btmhsf.sys [2012-12-25 825344]

S3 iBtFltCoex;iBtFltCoex;C:\Windows\System32\Drivers\iBtFltCoex.sys [2012-12-25 55848]

S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\Drivers\intelaud.sys [2012-8-9 35296]

S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-7-18 272176]

S3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\Drivers\netr28x.sys [2012-6-2 1737760]

S3 SmbDrv;SmbDrv;C:\Windows\System32\Drivers\Smb_driver_AMDASF.sys [2012-12-25 41272]

S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\System32\Drivers\ssadbus.sys [2011-5-13 157672]

S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\System32\Drivers\ssadmdfl.sys [2011-5-13 16872]

S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\System32\Drivers\ssadmdm.sys [2011-5-13 177640]

S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\System32\Drivers\ssadserd.sys [2011-5-13 146920]

S3 usb3Hub;USB-IF USB 3.0 Hub;C:\Windows\System32\Drivers\usb3Hub.sys [2012-8-9 48096]

S3 XHCIPort;USB-IF xHCI USB Host Controller;C:\Windows\System32\Drivers\xHCIPort.sys [2012-8-9 188384]

.

=============== Created Last 30 ================

.

2013-06-13 07:04:48 -------- d-----w- C:\Program Files (x86)\SpywareBlaster

2013-06-13 06:57:32 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2013-06-13 06:57:32 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-06-13 06:46:17 94656 ----a-w- C:\Windows\System32\WPRO_41_2001woem.tmp

2013-06-11 11:45:00 264880 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10206.bin

2013-06-09 15:27:44 -------- d-----w- C:\Users\gary\AppData\Local\{7DFDBD68-3F66-4162-A81B-50D7193E8770}

2013-06-09 15:27:43 -------- d-----w- C:\Users\gary\AppData\Local\{54E52EA5-BF1D-4B7F-94F8-A2248779B585}

2013-06-09 13:37:04 -------- d-----w- C:\Program Files (x86)\Wondershare

2013-06-08 07:59:18 34752 ----a-w- C:\Windows\System32\drivers\WPRO_41_2001.sys

2013-06-08 07:45:13 72016 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2013-06-08 07:44:59 65336 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2013-06-08 07:44:59 189936 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2013-06-08 07:44:59 1025808 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2013-06-08 07:44:57 80816 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2013-06-08 07:44:37 41664 ----a-w- C:\Windows\avastSS.scr

2013-06-08 07:44:27 -------- d-----w- C:\Program Files\AVAST Software

2013-06-08 07:43:30 -------- d-----w- C:\ProgramData\AVAST Software

2013-06-07 16:19:59 224256 ----a-w- C:\Windows\System32\HPToneCtrls64.dll

2013-06-07 16:19:58 7986176 ----a-w- C:\Windows\System32\IDTNGUI.exe

2013-06-07 16:19:58 7683584 ----a-w- C:\Windows\System32\IDTNHP.dll

2013-06-07 16:19:58 6085632 ----a-w- C:\Windows\System32\stlang64.dll

2013-06-07 16:19:58 464384 ----a-w- C:\Windows\System32\slapoi64.dll

2013-06-07 16:19:58 252928 ----a-w- C:\Windows\System32\IDTNJ.exe

2013-06-07 16:19:58 2211840 ----a-w- C:\Windows\System32\IDTNX.dll

2013-06-07 16:19:58 1821184 ----a-w- C:\Windows\System32\IDTNC64.cpl

2013-06-07 16:19:58 1425408 ----a-w- C:\Windows\sttray64.exe

2013-06-07 16:19:52 -------- d-----w- C:\Program Files\IDT

2013-06-07 16:06:14 -------- d-----w- C:\Users\gary\AppData\Roaming\RealNetworks

2013-06-07 16:06:00 -------- d-----w- C:\Program Files (x86)\RealNetworks

2013-06-07 16:05:59 -------- d-----w- C:\ProgramData\RealNetworks

2013-06-07 16:05:56 -------- d-----w- C:\Program Files (x86)\Common Files\xing shared

2013-06-07 16:04:52 -------- d-----w- C:\Users\gary\AppData\Roaming\CheckPoint

2013-06-07 16:03:28 -------- d-----w- C:\ProgramData\CheckPoint

2013-06-07 15:58:56 97280 ----a-w- C:\Users\gary\AppData\Local\UrlManager.exe

2013-06-07 15:55:56 -------- d-----w- C:\Users\gary\AppData\Roaming\DemoCreator

2013-06-07 08:39:55 -------- d-----w- C:\Windows\ERUNT

2013-06-06 08:39:37 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable)

2013-06-06 03:04:11 -------- d-----w- C:\Users\gary\AppData\Local\ElevatedDiagnostics

2013-06-03 05:25:52 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin

2013-06-03 05:25:51 -------- d-----w- C:\Program Files (x86)\Reason

2013-05-20 15:49:36 -------- d-----w- C:\Users\gary\AppData\Roaming\IDT

2013-05-19 08:04:02 68104 ----a-w- C:\Windows\System32\XAPOFX1_0.dll

2013-05-19 08:04:02 65032 ----a-w- C:\Windows\SysWow64\XAPOFX1_0.dll

2013-05-19 08:04:02 511496 ----a-w- C:\Windows\System32\XAudio2_1.dll

2013-05-19 08:04:02 507400 ----a-w- C:\Windows\SysWow64\XAudio2_1.dll

2013-05-19 08:04:02 28168 ----a-w- C:\Windows\System32\X3DAudio1_4.dll

2013-05-19 08:04:02 25608 ----a-w- C:\Windows\SysWow64\X3DAudio1_4.dll

2013-05-19 08:04:02 238088 ----a-w- C:\Windows\SysWow64\xactengine3_1.dll

2013-05-19 08:04:02 177672 ----a-w- C:\Windows\System32\xactengine3_1.dll

2013-05-19 08:04:01 540688 ----a-w- C:\Windows\System32\d3dx10_38.dll

2013-05-19 08:04:01 467984 ----a-w- C:\Windows\SysWow64\d3dx10_38.dll

2013-05-19 08:04:01 1941528 ----a-w- C:\Windows\System32\D3DCompiler_38.dll

2013-05-19 08:04:01 1491992 ----a-w- C:\Windows\SysWow64\D3DCompiler_38.dll

2013-05-19 08:02:54 462864 ----a-w- C:\Windows\SysWow64\d3dx10_37.dll

2013-05-19 08:02:54 1420824 ----a-w- C:\Windows\SysWow64\D3DCompiler_37.dll

2013-05-19 08:02:52 3786760 ----a-w- C:\Windows\SysWow64\D3DX9_37.dll

2013-05-19 08:02:50 81768 ----a-w- C:\Windows\SysWow64\xinput1_3.dll

2013-05-19 08:02:37 -------- d-----w- C:\Windows\SysWow64\xlive

2013-05-19 08:02:37 -------- d-----w- C:\Program Files (x86)\Microsoft Games for Windows - LIVE

2013-05-19 07:31:53 78200 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2013-05-19 07:31:52 693112 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2013-05-19 07:26:44 -------- d-----w- C:\Users\gary\AppData\Roaming\PowerISO

2013-05-18 15:34:43 -------- d-----w- C:\Users\gary\AppData\Local\CyberLink

2013-05-18 11:02:07 13648384 ----a-w- C:\Windows\System32\Windows.UI.Xaml.dll

2013-05-18 11:02:05 3552768 ----a-w- C:\Windows\System32\tquery.dll

2013-05-18 11:02:02 2107904 ----a-w- C:\Windows\System32\mssrch.dll

2013-05-18 11:02:02 10789888 ----a-w- C:\Windows\SysWow64\Windows.UI.Xaml.dll

2013-05-18 11:02:01 2767360 ----a-w- C:\Windows\SysWow64\tquery.dll

2013-05-18 11:02:01 1593344 ----a-w- C:\Windows\SysWow64\mssrch.dll

2013-05-18 11:02:00 1829408 ----a-w- C:\Windows\System32\ntdll.dll

2013-05-18 11:02:00 1444864 ----a-w- C:\Windows\System32\MSAudDecMFT.dll

2013-05-18 06:39:57 262552 ----a-w- C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll

2013-05-15 16:44:35 1455368 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-05-15 11:28:16 70144 ----a-w- C:\Windows\System32\appinfo.dll

2013-05-15 11:28:16 112872 ----a-w- C:\Windows\System32\consent.exe

2013-05-15 08:22:30 861184 ----a-w- C:\Windows\System32\drivers\http.sys

.

==================== Find3M ====================

.

2013-06-07 16:05:50 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll

2013-06-07 16:05:50 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll

2013-05-15 22:37:03 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll

2013-05-15 22:35:49 53760 ----a-w- C:\Windows\System32\UXInit.dll

2013-05-14 13:14:01 2706432 ----a-w- C:\Windows\System32\mshtml.tlb

2013-05-14 09:23:31 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2013-05-04 07:45:29 2233600 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-04-28 22:30:55 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll

2013-04-28 22:30:12 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll

2013-04-28 22:28:33 2241024 ----a-w- C:\Windows\System32\wininet.dll

2013-04-28 22:28:29 915968 ----a-w- C:\Windows\System32\uxtheme.dll

2013-04-28 22:28:00 3958784 ----a-w- C:\Windows\System32\jscript9.dll

2013-04-27 05:20:12 733184 ----a-w- C:\Windows\System32\win32spl.dll

2013-04-23 23:13:53 1013248 ----a-w- C:\Windows\SysWow64\certutil.exe

2013-04-23 23:12:44 1569792 ----a-w- C:\Windows\SysWow64\crypt32.dll

2013-04-23 23:12:44 109056 ----a-w- C:\Windows\SysWow64\cryptnet.dll

2013-04-23 22:56:35 1255936 ----a-w- C:\Windows\System32\certutil.exe

2013-04-23 22:55:48 68096 ----a-w- C:\Windows\System32\cryptsvc.dll

2013-04-23 22:55:48 1889280 ----a-w- C:\Windows\System32\crypt32.dll

2013-04-23 22:55:48 141312 ----a-w- C:\Windows\System32\cryptnet.dll

2013-04-13 05:56:35 444416 ----a-w- C:\Windows\apppatch\AcSpecfc.dll

2013-04-11 06:40:48 6987528 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-04-09 05:33:02 489576 ----a-w- C:\Windows\System32\AudioEng.dll

2013-04-09 05:33:02 446792 ----a-w- C:\Windows\System32\AudioSes.dll

2013-04-09 05:33:02 253544 ----a-w- C:\Windows\System32\audiodg.exe

2013-04-09 05:27:43 284424 ----a-w- C:\Windows\System32\drivers\spaceport.sys

2013-04-09 05:20:02 86280 ----a-w- C:\Windows\System32\kdnet.dll

2013-04-09 05:20:02 306952 ----a-w- C:\Windows\System32\kd_02_10ec.dll

2013-04-09 05:18:05 77960 ----a-w- C:\Windows\System32\kdvm.dll

2013-04-09 04:52:07 816128 ----a-w- C:\Windows\System32\SearchIndexer.exe

2013-04-09 04:52:07 373760 ----a-w- C:\Windows\System32\SearchProtocolHost.exe

2013-04-09 04:52:07 197120 ----a-w- C:\Windows\System32\SearchFilterHost.exe

2013-04-09 04:52:07 126464 ----a-w- C:\Windows\System32\Robocopy.exe

2013-04-09 04:52:06 804352 ----a-w- C:\Windows\System32\RecoveryDrive.exe

2013-04-09 04:51:51 367616 ----a-w- C:\Windows\System32\conhost.exe

2013-04-09 04:51:45 523264 ----a-w- C:\Windows\System32\XpsGdiConverter.dll

2013-04-09 04:51:41 99840 ----a-w- C:\Windows\System32\wscsvc.dll

2013-04-09 04:51:41 456704 ----a-w- C:\Windows\System32\wpncore.dll

2013-04-09 04:51:17 595456 ----a-w- C:\Windows\System32\Windows.Networking.dll

2013-04-09 04:51:17 391168 ----a-w- C:\Windows\System32\Windows.Networking.BackgroundTransfer.dll

2013-04-09 04:51:05 10116096 ----a-w- C:\Windows\System32\twinui.dll

2013-04-09 04:50:53 414720 ----a-w- C:\Windows\System32\GenuineCenter.dll

2013-04-09 04:50:39 422400 ----a-w- C:\Windows\System32\schannel.dll

2013-04-09 04:50:39 1285632 ----a-w- C:\Windows\System32\schedsvc.dll

2013-04-09 04:50:03 96256 ----a-w- C:\Windows\System32\mssprxy.dll

2013-04-09 04:50:03 745984 ----a-w- C:\Windows\System32\mssvp.dll

2013-04-09 04:50:02 65024 ----a-w- C:\Windows\System32\msscntrs.dll

2013-04-09 04:50:02 435200 ----a-w- C:\Windows\System32\mssph.dll

2013-04-09 04:50:02 13824 ----a-w- C:\Windows\System32\msshooks.dll

2013-04-09 04:49:45 468992 ----a-w- C:\Windows\System32\MFMediaEngine.dll

2013-04-09 04:49:45 281088 ----a-w- C:\Windows\System32\mfreadwrite.dll

2013-04-09 04:49:36 817152 ----a-w- C:\Windows\System32\kerberos.dll

2013-04-09 04:49:33 210432 ----a-w- C:\Windows\System32\iuilp.dll

2013-04-09 04:49:16 50176 ----a-w- C:\Windows\System32\fmifs.dll

2013-04-09 04:49:16 231936 ----a-w- C:\Windows\System32\fhengine.dll

2013-04-09 04:49:09 172544 ----a-w- C:\Windows\System32\dwmredir.dll

2013-04-09 04:49:06 196096 ----a-w- C:\Windows\System32\dmvdsitf.dll

2013-04-09 04:48:43 2303488 ----a-w- C:\Windows\System32\authui.dll

2013-04-09 04:48:42 785408 ----a-w- C:\Windows\System32\audiosrv.dll

2013-04-09 04:48:42 169472 ----a-w- C:\Windows\System32\AudioEndpointBuilder.dll

2013-04-09 04:48:34 419840 ----a-w- C:\Windows\System32\intl.cpl

2013-04-09 02:35:13 4038144 ----a-w- C:\Windows\System32\win32k.sys

2013-04-09 02:34:49 83968 ----a-w- C:\Windows\System32\drivers\hidclass.sys

2013-04-09 02:34:42 27648 ----a-w- C:\Windows\System32\drivers\hidusb.sys

2013-04-09 02:34:30 95744 ----a-w- C:\Windows\System32\drivers\hidbth.sys

2013-04-09 02:33:41 60416 ----a-w- C:\Windows\System32\drivers\ndproxy.sys

2013-04-09 02:33:05 623104 ----a-w- C:\Windows\System32\drivers\srv2.sys

2013-04-09 02:32:02 805376 ----a-w- C:\Windows\System32\drivers\PEAuth.sys

2013-04-09 02:31:14 247808 ----a-w- C:\Windows\System32\drivers\srvnet.sys

2013-04-09 02:31:01 83456 ----a-w- C:\Windows\System32\drivers\wanarp.sys

2013-04-08 23:44:25 123880 ----a-w- C:\Windows\SysWow64\wscapi.dll

2013-04-08 23:39:14 1408896 ----a-w- C:\Windows\SysWow64\ntdll.dll

2013-04-08 23:37:29 426024 ----a-w- C:\Windows\SysWow64\AudioEng.dll

2013-04-08 23:37:29 324368 ----a-w- C:\Windows\SysWow64\AudioSes.dll

2013-04-08 21:52:16 670208 ----a-w- C:\Windows\SysWow64\SearchIndexer.exe

2013-04-08 21:52:16 302592 ----a-w- C:\Windows\SysWow64\SearchProtocolHost.exe

2013-04-08 21:52:16 171008 ----a-w- C:\Windows\SysWow64\SearchFilterHost.exe

2013-04-08 21:52:16 106496 ----a-w- C:\Windows\SysWow64\Robocopy.exe

2013-04-08 21:52:06 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll

2013-04-04 23:30:17 503080 ----a-w- C:\Windows\System32\ci.dll

2013-04-02 23:37:46 25088 ----a-w- C:\Windows\SysWow64\cryptdlg.dll

2013-04-02 23:12:32 30720 ----a-w- C:\Windows\System32\cryptdlg.dll

2013-03-30 18:16:05 1403784 ----a-w- C:\Windows\System32\winload.efi

2013-03-30 18:16:05 1267424 ----a-w- C:\Windows\System32\winload.exe

2013-03-28 22:09:09 1093880 ----a-w- C:\Windows\System32\winresume.exe

2013-03-28 22:09:04 1217328 ----a-w- C:\Windows\System32\winresume.efi

2013-03-22 03:49:55 2382336 ----a-w- C:\Windows\SysWow64\esent.dll

2013-03-21 22:47:13 2851840 ----a-w- C:\Windows\System32\esent.dll

.

============= FINISH: 8:24:07.48 ===============.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 8

Boot Device: \Device\HarddiskVolume2

Install Date: 30/04/2013 16:24:48

System Uptime: 13/06/2013 07:45:20 (25 hours ago)

.

Motherboard: Hewlett-Packard | | 18A5

Processor: Intel® Core i5-3210M CPU @ 2.50GHz | U3E1 | 2500/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 910 GiB total, 790.927 GiB free.

D: is FIXED (NTFS) - 21 GiB total, 2.547 GiB free.

E: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {8a2edc79-c759-46f2-88af-9d4efe3b5eee}

Description: USB-IF xHCI USB Host Controller

Device ID: ROOT\UOIP_BUS_DRIVER\0000

Manufacturer: Intel Corporation

Name: USB-IF xHCI USB Host Controller

PNP Device ID: ROOT\UOIP_BUS_DRIVER\0000

Service: XHCIPort

.

Class GUID: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}

Description: Intel® Centrino® Wireless Bluetooth® 4.0 + High Speed Adapter

Device ID: USB\VID_8087&PID_07DA\6&24DAA714&0&3

Manufacturer: Intel Corporation

Name: Intel® Centrino® Wireless Bluetooth® 4.0 + High Speed Adapter

PNP Device ID: USB\VID_8087&PID_07DA\6&24DAA714&0&3

Service: BTHUSB

.

==== System Restore Points ===================

.

RP17: 07/06/2013 09:40:02 - End of disinfection

RP18: 08/06/2013 14:22:47 - Removed Skype™ 6.3

RP19: 13/06/2013 07:06:37 - Windows Update

.

==== Installed Programs ======================

.

Adobe Flash Player 11 Plugin

Adobe Shockwave Player 11.6

AMD APP SDK Runtime

AMD Catalyst Install Manager

µTorrent

AuthenTec TrueAPI 64-bit

avast! Free Antivirus

Catalyst Control Center

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

Catalyst Control Center Profiles Mobile

ccc-utility64

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

CyberLink LabelPrint

CyberLink Media Suite 10

CyberLink PhotoDirector

CyberLink PowerDirector 10

CyberLink YouCam

D3DX10

Energy Star

Free Stopwatch 2.7.0

Hewlett-Packard ACLM.NET v1.2.0.0

HP 3D DriveGuard

HP Connected Music (Meridian - installer)

HP CoolSense

HP Customer Experience Enhancements

HP Documentation

HP Games

HP Postscript Converter

HP Quick Launch

HP Recovery Manager

HP Registration Service

HP SimplePass

HP Software Framework

HP Support Assistant

HP Utility Center

HP Wireless Button Driver

Intel PROSet Wireless

Intel® Display Audio Driver

Intel® Management Engine Components

Intel® PROSet/Wireless for Bluetooth® + High Speed

Intel® PROSet/Wireless Software for Bluetooth® Technology

Intel® Smart Connect Technology 3.0 x64

Intel® WiDi

Intel® PROSet/Wireless WiFi Software

Intel® Trusted Connect Service Client

Malwarebytes Anti-Malware version 1.75.0.1300

Microsoft Application Error Reporting

Microsoft Games for Windows - LIVE Redistributable

Microsoft Office

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Mozilla Firefox 21.0 (x86 en-US)

Mozilla Maintenance Service

MSVCRT

PokerStars

PX Profile Update

RealDownloader

RealNetworks - Microsoft Visual C++ 2008 Runtime

RealNetworks - Microsoft Visual C++ 2010 Runtime

RealPlayer

Realtek Ethernet Controller Driver

Realtek PCIE Card Reader

RealUpgrade 1.1

Spybot - Search & Destroy

SpywareBlaster 5.0

swMSM

Synaptics Pointing Device Driver

Visual Studio 2010 x64 Redistributables

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Language Selector

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

ZoneAlarm LTD Toolbar

.

==== Event Viewer Messages From Past Week ========

.

13/06/2013 07:45:24, Error: Microsoft-Windows-Kernel-General [6] - An I/O operation initiated by the Registry failed unrecoverably.The Registry could not flush hive (file): ''.

13/06/2013 04:11:12, Error: Service Control Manager [7031] - The avast! Antivirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

10/06/2013 17:20:13, Error: Service Control Manager [7023] -

09/06/2013 16:46:11, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800F020B: SAMSUNG Electronics Co., Ltd. - Other hardware - SAMSUNG Android USB Composite Device.

09/06/2013 12:24:19, Error: Service Control Manager [7043] - The Group Policy Client service did not shut down properly after receiving a pre-shutdown control.

08/06/2013 08:58:04, Error: Service Control Manager [7038] - The SSDPSRV service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

08/06/2013 08:58:04, Error: Service Control Manager [7038] - The NcdAutoSetup service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

08/06/2013 08:58:04, Error: Service Control Manager [7038] - The HomeGroupProvider service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

08/06/2013 08:58:04, Error: Service Control Manager [7000] - The SSDP Discovery service failed to start due to the following error: The service did not start due to a log-on failure.

08/06/2013 08:58:04, Error: Service Control Manager [7000] - The Network Connected Devices Auto-Setup service failed to start due to the following error: The service did not start due to a log-on failure.

08/06/2013 08:58:04, Error: Service Control Manager [7000] - The HomeGroup Provider service failed to start due to the following error: The service did not start due to a log-on failure.

08/06/2013 08:56:44, Error: Service Control Manager [7022] - The Function Discovery Resource Publication service hung on starting.

07/06/2013 17:19:01, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

.

==== End Of File ===========================

Share this post


Link to post
Share on other sites

MiniToolBox logs

MiniToolBox by Farbar Version:21-04-2013

Ran by gary (administrator) on 14-06-2013 at 08:20:33

Running from "C:\Users\gary\Downloads"

Windows 8 (X64)

Boot Mode: Normal

***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.

No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 www.007guard.com

127.0.0.1 007guard.com

127.0.0.1 008i.com

127.0.0.1 www.008k.com

127.0.0.1 008k.com

127.0.0.1 www.00hq.com

127.0.0.1 00hq.com

127.0.0.1 010402.com

127.0.0.1 www.032439.com

127.0.0.1 032439.com

127.0.0.1 www.0scan.com

127.0.0.1 0scan.com

127.0.0.1 1000gratisproben.com

127.0.0.1 www.1000gratisproben.com

127.0.0.1 1001namen.com

127.0.0.1 www.1001namen.com

127.0.0.1 100888290cs.com

127.0.0.1 www.100888290cs.com

127.0.0.1 www.100sexlinks.com

There are 15360 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 2230 = WiFi (Connected)

Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)

# ----------------------------------

# IPv4 Configuration

# ----------------------------------

pushd interface ipv4

reset

set global icmpredirects=enabled

set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="WiFi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

popd

# End of IPv4 configuration

Windows IP Configuration

Host Name . . . . . . . . . . . . : redmen

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter

Physical Address. . . . . . . . . : 60-36-DD-75-89-7F

DHCP Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter WiFi:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 2230

Physical Address. . . . . . . . . : 60-36-DD-75-89-7E

DHCP Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

Link-local IPv6 Address . . . . . : fe80::17e:d31:4a72:b725%13(Preferred)

IPv4 Address. . . . . . . . . . . : 192.168.0.101(Preferred)

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Lease Obtained. . . . . . . . . . : 13 June 2013 07:46:08

Lease Expires . . . . . . . . . . : 21 June 2013 00:42:45

Default Gateway . . . . . . . . . : 192.168.0.1

DHCP Server . . . . . . . . . . . : 192.168.0.1

DHCPv6 IAID . . . . . . . . . . . : 207632093

DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-6A-FC-BA-6C-3B-E5-82-E2-1C

DNS Servers . . . . . . . . . . . : 192.168.0.1

NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

Media State . . . . . . . . . . . : Media disconnected

Connection-specific DNS Suffix . : BRP1.COM

Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller

Physical Address. . . . . . . . . : 6C-3B-E5-82-E2-1C

DHCP Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{11B2500D-0EDA-41C0-8154-A5D0512BF4E3}:

Media State . . . . . . . . . . . : Media disconnected

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Microsoft ISATAP Adapter

Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

DHCP Enabled. . . . . . . . . . . : No

Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Microsoft 6to4 Adapter

Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

DHCP Enabled. . . . . . . . . . . : No

Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

DHCP Enabled. . . . . . . . . . . : No

Autoconfiguration Enabled . . . . : Yes

IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:3c46:a8:add8:3c16(Preferred)

Link-local IPv6 Address . . . . . : fe80::3c46:a8:add8:3c16%20(Preferred)

Default Gateway . . . . . . . . . : ::

NetBIOS over Tcpip. . . . . . . . : Disabled

Server: dir-615

Address: 192.168.0.1

Name: google.com

Addresses: 2a00:1450:4009:803::1002

173.194.34.100

173.194.34.103

173.194.34.102

173.194.34.105

173.194.34.110

173.194.34.98

173.194.34.99

173.194.34.96

173.194.34.104

173.194.34.101

173.194.34.97

Pinging google.com [173.194.34.103] with 32 bytes of data:

Reply from 173.194.34.103: bytes=32 time=17ms TTL=57

Reply from 173.194.34.103: bytes=32 time=34ms TTL=57

Ping statistics for 173.194.34.103:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 17ms, Maximum = 34ms, Average = 25ms

Server: dir-615

Address: 192.168.0.1

Name: yahoo.com

Addresses: 98.139.183.24

206.190.36.45

98.138.253.109

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=212ms TTL=51

Reply from 206.190.36.45: bytes=32 time=207ms TTL=51

Ping statistics for 206.190.36.45:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 207ms, Maximum = 212ms, Average = 209ms

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================

Interface List

17...60 36 dd 75 89 7f ......Microsoft Wi-Fi Direct Virtual Adapter

13...60 36 dd 75 89 7e ......Intel® Centrino® Wireless-N 2230

12...6c 3b e5 82 e2 1c ......Realtek PCIe GBE Family Controller

1...........................Software Loopback Interface 1

18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

16...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter

20...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface

===========================================================================

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination Netmask Gateway Interface Metric

0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.101 25

127.0.0.0 255.0.0.0 On-link 127.0.0.1 306

127.0.0.1 255.255.255.255 On-link 127.0.0.1 306

127.255.255.255 255.255.255.255 On-link 127.0.0.1 306

192.168.0.0 255.255.255.0 On-link 192.168.0.101 281

192.168.0.101 255.255.255.255 On-link 192.168.0.101 281

192.168.0.255 255.255.255.255 On-link 192.168.0.101 281

224.0.0.0 240.0.0.0 On-link 127.0.0.1 306

224.0.0.0 240.0.0.0 On-link 192.168.0.101 281

255.255.255.255 255.255.255.255 On-link 127.0.0.1 306

255.255.255.255 255.255.255.255 On-link 192.168.0.101 281

===========================================================================

Persistent Routes:

None

IPv6 Route Table

===========================================================================

Active Routes:

If Metric Network Destination Gateway

20 306 ::/0 On-link

1 306 ::1/128 On-link

20 306 2001::/32 On-link

20 306 2001:0:5ef5:79fd:3c46:a8:add8:3c16/128

On-link

13 281 fe80::/64 On-link

20 306 fe80::/64 On-link

13 281 fe80::17e:d31:4a72:b725/128

On-link

20 306 fe80::3c46:a8:add8:3c16/128

On-link

1 306 ff00::/8 On-link

20 306 ff00::/8 On-link

13 281 ff00::/8 On-link

===========================================================================

Persistent Routes:

None

========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)

Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)

Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)

Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)

Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)

Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)

Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)

x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)

x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)

x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)

x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)

x64-Catalog5 07 C:\Windows\System32\wshbth.dll [64000] (Microsoft Corporation)

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

x64-Catalog9 11 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:

==================

Error: (06/13/2013 09:07:18 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (06/13/2013 09:07:13 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".

Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.

Please use sxstrace.exe for detailed diagnosis.

Error: (06/13/2013 09:03:29 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (06/13/2013 09:02:08 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".

Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.

Please use sxstrace.exe for detailed diagnosis.

Error: (06/13/2013 07:06:03 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".

Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.

Please use sxstrace.exe for detailed diagnosis.

Error: (06/13/2013 04:24:04 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".

Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.

Please use sxstrace.exe for detailed diagnosis.

Error: (06/13/2013 03:55:00 AM) (Source: Customer Experience Improvement Program) (User: )

Description: 80070005

Error: (06/12/2013 03:59:32 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (06/12/2013 03:59:24 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".

Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.

Please use sxstrace.exe for detailed diagnosis.

Error: (06/12/2013 03:29:27 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

System errors:

=============

Error: (06/13/2013 07:45:24 AM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)

Description: 0xc000014d0

Error: (06/13/2013 04:11:12 AM) (Source: Service Control Manager) (User: )

Description: The avast! Antivirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (06/12/2013 01:41:21 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)

Description: 0xc000014d0

Error: (06/12/2013 01:12:13 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)

Description: 0xc000014d0

Error: (06/10/2013 05:20:13 PM) (Source: Service Control Manager) (User: )

Description: The Intel® PROSet/Wireless Zero Configuration Service service terminated with the following error:

%%2147770990

Error: (06/10/2013 05:19:19 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)

Description: 0xc000014d0

Error: (06/10/2013 05:19:39 PM) (Source: EventLog) (User: )

Description: The previous system shutdown at 17:18:11 on ?10/?06/?2013 was unexpected.

Error: (06/09/2013 07:32:53 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)

Description: 0xc000014d0

Error: (06/09/2013 04:46:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)

Description: Installation Failure: Windows failed to install the following update with error 0x800f020b: SAMSUNG Electronics Co., Ltd. - Other hardware - SAMSUNG Android USB Composite Device.

Error: (06/09/2013 02:42:49 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)

Description: 0xc000014d0

Microsoft Office Sessions:

=========================

Error: (06/13/2013 09:07:18 AM) (Source: SideBySide)(User: )

Description: assemblyIdentitylanguage*C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dllC:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll8

Error: (06/13/2013 09:07:13 AM) (Source: SideBySide)(User: )

Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}\recordingmanager.exe

Error: (06/13/2013 09:03:29 AM) (Source: SideBySide)(User: )

Description: assemblyIdentitylanguage*C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dllC:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll8

Error: (06/13/2013 09:02:08 AM) (Source: SideBySide)(User: )

Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}\recordingmanager.exe

Error: (06/13/2013 07:06:03 AM) (Source: SideBySide)(User: )

Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}\recordingmanager.exe

Error: (06/13/2013 04:24:04 AM) (Source: SideBySide)(User: )

Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}\recordingmanager.exe

Error: (06/13/2013 03:55:00 AM) (Source: Customer Experience Improvement Program)(User: )

Description: 80070005

Error: (06/12/2013 03:59:32 AM) (Source: SideBySide)(User: )

Description: assemblyIdentitylanguage*C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dllC:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll8

Error: (06/12/2013 03:59:24 AM) (Source: SideBySide)(User: )

Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}\recordingmanager.exe

Error: (06/12/2013 03:29:27 AM) (Source: SideBySide)(User: )

Description: assemblyIdentitylanguage*C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dllC:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll8

=========================== Installed Programs ============================

µTorrent (Version: 3.3.0.29609)

Adobe Flash Player 11 Plugin (Version: 11.7.700.224)

Adobe Shockwave Player 11.6 (Version: 11.6.5.635)

AMD APP SDK Runtime (Version: 10.0.938.2)

AMD Catalyst Install Manager (Version: 8.0.881.0)

AuthenTec TrueAPI 64-bit (Version: 1.6.0.86)

avast! Free Antivirus (Version: 8.0.1489.0)

Catalyst Control Center - Branding (Version: 1.00.0000)

Catalyst Control Center (Version: 2012.0806.1156.19437)

Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1156.19437)

Catalyst Control Center InstallProxy (Version: 2012.0806.1156.19437)

Catalyst Control Center Localization All (Version: 2012.0806.1156.19437)

Catalyst Control Center Profiles Mobile (Version: 2012.0806.1156.19437)

CCC Help Chinese Standard (Version: 2012.0806.1155.19437)

CCC Help Chinese Traditional (Version: 2012.0806.1155.19437)

CCC Help Czech (Version: 2012.0806.1155.19437)

CCC Help Danish (Version: 2012.0806.1155.19437)

CCC Help Dutch (Version: 2012.0806.1155.19437)

CCC Help English (Version: 2012.0806.1155.19437)

CCC Help Finnish (Version: 2012.0806.1155.19437)

CCC Help French (Version: 2012.0806.1155.19437)

CCC Help German (Version: 2012.0806.1155.19437)

CCC Help Greek (Version: 2012.0806.1155.19437)

CCC Help Hungarian (Version: 2012.0806.1155.19437)

CCC Help Italian (Version: 2012.0806.1155.19437)

CCC Help Japanese (Version: 2012.0806.1155.19437)

CCC Help Korean (Version: 2012.0806.1155.19437)

CCC Help Norwegian (Version: 2012.0806.1155.19437)

CCC Help Polish (Version: 2012.0806.1155.19437)

CCC Help Portuguese (Version: 2012.0806.1155.19437)

CCC Help Russian (Version: 2012.0806.1155.19437)

CCC Help Spanish (Version: 2012.0806.1155.19437)

CCC Help Swedish (Version: 2012.0806.1155.19437)

CCC Help Thai (Version: 2012.0806.1155.19437)

CCC Help Turkish (Version: 2012.0806.1155.19437)

ccc-utility64 (Version: 2012.0806.1156.19437)

CyberLink LabelPrint (Version: 2.5.3.5901)

CyberLink Media Suite 10 (Version: 10.0.1.1916)

CyberLink PhotoDirector (Version: 2.0.1.3119)

CyberLink PowerDirector 10 (Version: 10.0.1.1925)

CyberLink YouCam (Version: 3.5.4.5527)

D3DX10 (Version: 15.4.2368.0902)

Energy Star (Version: 1.0.8)

Free Stopwatch 2.7.0 (Version: 2.7)

Hewlett-Packard ACLM.NET v1.2.0.0 (Version: 1.00.0000)

HP 3D DriveGuard (Version: 4.2.5.1)

HP Connected Music (Meridian - installer) (Version: v1.0)

HP CoolSense (Version: 2.10.3)

HP Customer Experience Enhancements (Version: 6.0.1.7)

HP Documentation (Version: 1.1.0.0)

HP Games (Version: 1.0.3.0)

HP Postscript Converter (Version: 3.1.3554)

HP Quick Launch (Version: 3.0.4)

HP Recovery Manager (Version: 7.00)

HP Registration Service (Version: 1.0.5976.4186)

HP SimplePass (Version: 6.0.100.244)

HP Software Framework (Version: 4.6.8.1)

HP Support Assistant (Version: 7.0.32.44)

HP Utility Center (Version: 1.0.7)

HP Wireless Button Driver (Version: 1.0.6.1)

Intel PROSet Wireless

Intel® Display Audio Driver (Version: 6.14.00.3097)

Intel® Management Engine Components (Version: 8.1.0.1252)

Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.5.0.0344)

Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 2.5.0.0248)

Intel® Smart Connect Technology 3.0 x64 (Version: 3.0.30.1526)

Intel® WiDi (Version: 3.5.34.0)

Intel® PROSet/Wireless WiFi Software (Version: 15.05.1000.1411)

Intel® Trusted Connect Service Client (Version: 1.24.388.1)

Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Games for Windows - LIVE Redistributable (Version: 2.0.672.0)

Microsoft Office (Version: 14.0.6120.5004)

Microsoft Silverlight (Version: 5.1.20125.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)

Mozilla Maintenance Service (Version: 21.0)

MSVCRT (Version: 15.4.2862.0708)

PokerStars

PX Profile Update (Version: 1.00.1.)

RealDownloader (Version: 1.3.2)

RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)

RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)

RealPlayer (Version: 16.0.2)

Realtek Ethernet Controller Driver (Version: 8.3.730.2012)

Realtek PCIE Card Reader (Version: 6.2.8400.27025)

RealUpgrade 1.1 (Version: 1.1.0)

Spybot - Search & Destroy (Version: 1.6.2)

SpywareBlaster 5.0 (Version: 5.0.0)

swMSM (Version: 12.0.0.1)

Synaptics Pointing Device Driver (Version: 16.2.10.12)

Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)

Windows Live Communications Platform (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3555.0308)

Windows Live Installer (Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3555.0308)

Windows Live Movie Maker (Version: 15.4.3502.0922)

Windows Live Photo Common (Version: 15.4.3502.0922)

Windows Live Photo Gallery (Version: 15.4.3502.0922)

Windows Live PIMT Platform (Version: 15.4.3508.1109)

Windows Live SOXE (Version: 15.4.3502.0922)

Windows Live SOXE Definitions (Version: 15.4.3502.0922)

Windows Live UX Platform (Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)

Windows Live Writer (Version: 15.4.3502.0922)

Windows Live Writer Resources (Version: 15.4.3502.0922)

ZoneAlarm LTD Toolbar

========================= Devices: ================================

Name: USB-IF xHCI USB Host Controller

Description: USB-IF xHCI USB Host Controller

Class Guid: {8a2edc79-c759-46f2-88af-9d4efe3b5eee}

Manufacturer: Intel Corporation

Service: XHCIPort

Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)

Resolution: Update the driver

Name: Intel® Centrino® Wireless Bluetooth® 4.0 + High Speed Adapter

Description: Intel® Centrino® Wireless Bluetooth® 4.0 + High Speed Adapter

Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}

Manufacturer: Intel Corporation

Service: BTHUSB

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

========================= Memory info: ===================================

Percentage of memory in use: 22%

Total physical RAM: 8074.77 MB

Available physical RAM: 6263.4 MB

Total Pagefile: 9290.77 MB

Available Pagefile: 6908.27 MB

Total Virtual: 4095.88 MB

Available Virtual: 3960.73 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:910.08 GB) (Free:790.93 GB) NTFS

2 Drive d: (RECOVERY) (Fixed) (Total:20.66 GB) (Free:2.55 GB) NTFS

========================= Users: ========================================

User accounts for \\REDMEN

Administrator gary Guest

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

Share this post


Link to post
Share on other sites

Hi Guys,

 

It's been 4 days since I posted my latest logs. Can I assume these logs do not provide the information required to assist with my sound problem?

Share this post


Link to post
Share on other sites

@ advancedsetup and a couple of other memebers ...

a look at the hosts file of "minitool box" shows some interesting things ... as does the list of installed "stuff" , etc .

maybe the OP should head over to the HJT section ?

Share this post


Link to post
Share on other sites

Well the Event Logs alone are not necessarily due to an infection but certainly could be a "sign" of an underlying infection.  You said that you cleaned the hosts file yet it now shows that it's full again with entries probably due to some type of hosts management software

There are 15360 more lines starting with "127.0.0.1"

These entries though are certainly a big issue and if not addressed then the computer simply will continue to have problems of various types.

13/06/2013 07:45:24, Error: Microsoft-Windows-Kernel-General [6] - An I/O operation initiated by the Registry failed unrecoverably.The Registry could not flush hive (file):13/06/2013 04:11:12, Error: Service Control Manager [7031] - The avast! Antivirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Then running software like this is an open invitation and asking to get  your computer infected sooner or later.  Yes there are clean valid files to be had but a ton of infected ones as well and you have an open door for them to come into your system.  Like a cat and mouse game sooner or later your security software will miss it.

 

µTorrent
 

 

Probably best to go ahead and have someone review your system for some type of infection again.

 

I would suggest following the advice from the topic here Available Assistance for Possibly Infected Computers and having one of the Experts assist you with looking into your issue.

 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.