Jump to content

Possible malware preventing booting


Recommended Posts

Hi

 

I've just fixed a problem on my other PC with the help of MrCharlie and now I appear to have picked up something on this PC!

 

It hung after it had booted into Windows whilst it was still loading apps and I couldn't even Ctrl-Alt-Del so had to reset and boot into Safe Mode. From the Eventlog I can see

 

DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server:{D3DCB472-7261-43CE-924B-0704BD730D5F}

and

 

DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server:{1BE1F766-5536-11D1-B726-00C04FB926AF}
but that's in Safe Mode and I don't see that error from the "normal" boot that locked up. Googling those errors led me to various posts about malware though, which is why I'm here. I'm not certain it's infected but it was working fine when it was last on a couple of days ago.
 
I did a quick scan with MBAM and it showed a few things (I didn't remove them yet and will wait for instructions):
 
Malwarebytes Anti-Malware 1.75.0.1300www.malwarebytes.orgDatabase version: v2013.09.02.05Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)Internet Explorer 10.0.9200.16660Steve :: STE-PC [administrator]02/09/2013 17:14:11MBAM-log-2013-09-02 (17-17-14).txtScan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 221418Time elapsed: 2 minute(s), 36 second(s)Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected)Registry Keys Detected: 5HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> No action taken.HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr) -> No action taken.HKCU\Software\DataMngr (PUP.Optional.DataMngr) -> No action taken.HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> No action taken.HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> No action taken.Registry Values Detected: 1HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0O1O1FtGtCtH1T1M1R1XtGtB -> No action taken.Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 1C:\Users\Steve\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> No action taken.Files Detected: 1C:\Users\Steve\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> No action taken.(end)

I'm doing a full scan now to see if that shows anything that might have caused any infection.

 

It seems I can't download anything in Safe Mode, so if I can't boot into Normal Mode I'll have to download any programs on my other PC and copy them over.

 
 
 
 
 
Link to post
Share on other sites

OK, the full scan only found the following additional items:

 

Files Detected: 4
C:\Program Files (x86)\XYLIO\FutureDecksDJpro\futuredecks.exe (Trojan.Banker) -> No action taken.
D:\$RECYCLE.BIN\S-1-5-21-4142153632-2294863933-3660688552-1000\$RZ22QZG.exe (PUP.Optional.OpenCandy) -> No action taken.
D:\Portable Apps\FreeFileSync\$PLUGINSDIR\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Steve\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> No action taken.
 
I'll go and see if I can reboot in normal mode with HwInfo disabled from Autostarting, as that's what was loading at the time it locked up but that could of course just have been a result of something else and not the cause.
Link to post
Share on other sites

OK, it's booted OK into normal mode this time. HwInfo did get stuck and I had to kill it, which it doesn't normally do (it takes a long while to finish loading though and seems to wait for everything else to load before continuing) but I did have a scheduled backup that ran on boot, so maybe that was interfering with it.

Link to post
Share on other sites

Hello doveman! My name is Borislav and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  • Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.
Please follow the instructions here and then post the log files in your next reply.

http://forums.malwarebytes.org/index.php?showtopic=9573

Link to post
Share on other sites

Hi Borislav

 

Thanks for offering to help me. Here's the DDS logs as requested.

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16660  BrowserJavaVersion: 10.25.2
Run by Steve at 21:33:02 on 2013-09-03
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.44.1033.18.7676.4218 [GMT 1:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Program Files\Sandboxie\SbieSvc.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe
C:\Program Files\PhenomMsrTweaker\PhenomMsrTweakerService.exe
C:\Program Files\nfsd\pmapd.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Windows\system32\vssvc.exe
C:\Program Files\nfsd\nfsd.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\DVDFab Passkey\DVDFabPasskey.exe
C:\Program Files\PeerBlock\peerblock.exe
C:\Program Files\Jitsi\Jitsi.exe
C:\Program Files\HWiNFO64\HWiNFO64.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Users\Steve\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HWiNFOMonitor.gadget\HWiNFOMonitor.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
C:\Windows\System32\vds.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
C:\Program Files\MCEBuddy2x\MCEBuddy.Service.exe
C:\Program Files (x86)\MPExtended\Service\MPExtended.ServiceHosts.CoreService.exe
C:\Program Files (x86)\MPExtended\WebMediaPortal\MPExtended.ServiceHosts.WebMediaPortal.exe
C:\Program Files (x86)\IIS Express\iisexpress.exe
C:\Program Files (x86)\No-IP\ducservice.exe
C:\Windows\system32\sppsvc.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\Program Files\Sandboxie\SandboxieRpcSs.exe
C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
C:\Program Files\Sandboxie\SandboxieCrypto.exe
C:\Program Files\Sandboxie\32\SbieSvc.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
D:\Portable Apps\IronPortable\Iron\iron.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe,
BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: LastPass Vault: {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
TB: LastPass Toolbar: {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll
uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [DVDFab Passkey] "C:\Program Files (x86)\DVDFab Passkey\DVDFabPasskey.exe"
uRun: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe
uRun: [Jitsi] C:\Program Files\Jitsi\Jitsi.exe
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
StartupFolder: C:\Users\Steve\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\HWiNFO64.lnk - C:\Program Files\HWiNFO64\HWiNFO64.EXE
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:149
IE: LastPass - C:\Users\Steve\AppData\LocalLow\LastPass\context.html?cmd=lastpass
IE: LastPass Fill Forms - C:\Users\Steve\AppData\LocalLow\LastPass\context.html?cmd=fillforms
IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll
IE: {64964764-1101-4bbd-8891-B56B1A53B9B3} - {553891B7-A0D5-4526-BE18-D3CE461D6310}
TCP: Interfaces\{0FCE7B46-F992-46B3-8A95-131C19CB514C} : NameServer = 178.21.23.150,205.204.88.60
SSODL: WebCheck - <orphaned>
SEH: DVDIdleShell Class - {93994DE8-8239-4655-B1D1-5F4E91300429} - D:\Portable Apps\DVDFree\DVDShell.dll
x64-BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
x64-BHO: LastPass Vault: {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll
x64-TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
x64-TB: LastPass Toolbar: {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
x64-Run: [Classic Start Menu] C:\Program Files\Classic Shell\ClassicStartMenu.exe
x64-IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll
x64-IE: {64964764-1101-4bbd-8891-B56B1A53B9B3} - {553891B7-A0D5-4526-BE18-D3CE461D6310}
x64-SSODL: WebCheck - <orphaned>
Hosts: 46.246.119.139 status.block.aid
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2012-10-11 82600]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2012-10-11 42664]
R0 asahci64;asahci64;C:\Windows\System32\drivers\asahci64.sys [2012-12-26 52440]
R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-8-7 65336]
R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-8-7 189936]
R0 EUBAKUP;EUBAKUP;C:\Windows\System32\drivers\eubakup.sys [2013-5-31 59976]
R0 EUBKMON;EUBKMON;C:\Windows\System32\drivers\EUBKMON.sys [2013-5-31 48200]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-8-7 1030952]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-8-7 378944]
R1 cmderd;COMODO Internet Security Eradication Driver;C:\Windows\System32\drivers\cmderd.sys [2013-6-18 23168]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\System32\drivers\cmdguard.sys [2013-6-18 708632]
R1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\System32\drivers\cmdhlp.sys [2013-6-18 48360]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-8-31 283064]
R1 EUDSKACS;EUDSKACS;C:\Windows\System32\drivers\eudskacs.sys [2013-5-31 18504]
R1 EUFDDISK;EUFDDISK;C:\Windows\System32\drivers\EuFdDisk.sys [2013-5-31 189000]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;C:\Windows\System32\drivers\HWiNFO64A.SYS [2013-9-2 31136]
R1 RAMDiskVE;RAMDiskVE;C:\Windows\System32\drivers\RAMDiskVE.sys [2013-8-8 86768]
R2 AODDriver4.1;AODDriver4.1;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-3-5 53888]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-8-7 33400]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-8-7 80816]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-8-7 46808]
R2 EaseUS Agent;EaseUS Agent Service;C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2013-5-31 68168]
R2 Fabs;FABS - Helping agent for MAGIX media database;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-1-23 1858048]
R2 MCEBuddy2x;MCEBuddy2x;C:\Program Files\MCEBuddy2x\MCEBuddy.Service.exe [2013-4-7 30208]
R2 MPExtended Service;MPExtended Service;C:\Program Files (x86)\MPExtended\Service\MPExtended.ServiceHosts.CoreService.exe [2013-7-14 6144]
R2 MPExtended WebMediaPortal;MPExtended WebMediaPortal;C:\Program Files (x86)\MPExtended\WebMediaPortal\MPExtended.ServiceHosts.WebMediaPortal.exe [2013-7-14 16384]
R2 NFSserver;NFS Server;C:\Program Files\nfsd\nfsd.exe [2013-6-12 224256]
R2 NoIPDUCService4;NO-IP DUC v4;C:\Program Files (x86)\No-IP\ducservice.exe [2013-1-24 11264]
R2 PhenomMsrTweaker;PhenomMsrTweaker service;C:\Program Files\PhenomMsrTweaker\PhenomMsrTweakerService.exe [2010-6-3 188416]
R2 PMAPDaemon;SunRPC Portmap Daemon;C:\Program Files\nfsd\pmapd.exe [2013-6-12 124416]
R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-8-22 4308320]
R3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2013-5-31 46136]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2012-11-8 139592]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2012-11-8 418632]
R3 dvdfab;dvdfab;C:\Windows\System32\drivers\dvdfab.sys [2013-6-29 79232]
R3 HCW99BDA;Hauppauge Nova-DT Dual DVB-T Tuner;C:\Windows\System32\drivers\hcw99bda.sys [2009-9-2 147968]
R3 hcw99rc;Hauppauge Nova-DT IR Driver;C:\Windows\System32\drivers\hcw99rc.sys [2009-9-2 12800]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2013-4-26 128200]
R3 pbfilter;pbfilter;C:\Program Files\PeerBlock\pbfilter.sys [2013-6-12 24176]
R3 SbieDrv;SbieDrv;C:\Program Files\Sandboxie\SbieDrv.sys [2013-8-19 200432]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2013-7-11 58536]
R3 WinRing0_1_2_0;WinRing0_1_2_0;C:\Program Files\PhenomMsrTweaker\WinRing0x64.sys [2010-6-3 14544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 cmdvirth;COMODO Virtual Service Manager;C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2013-6-18 158936]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-4-26 2702848]
S3 Guard Agent;Guard Agent Service;C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe [2013-5-31 23624]
S3 MonitorFunction;Driver for Monitor;C:\Windows\System32\drivers\TVMonitor.sys [2013-6-28 16376]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-5-31 19456]
S3 rspLLL;rspLLL;C:\Windows\System32\drivers\rspLLL64.sys [2013-6-26 23968]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2011-4-12 88960]
S3 teamviewervpn;TeamViewer VPN Adapter;C:\Windows\System32\drivers\teamviewervpn.sys [2013-6-10 35112]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-5-31 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-5-31 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-5-31 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-4-12 117248]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-5-31 1255736]
S4 AcrylicController;Acrylic DNS Proxy Service;C:\Program Files (x86)\Acrylic DNS Proxy\AcrylicService.exe [2013-8-20 508928]
S4 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-11-16 238080]
S4 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-11-16 361984]
S4 dnscrypt-proxy;dnscrypt-proxy;C:\DNSCrypt\dnscrypt-proxy.exe [2013-6-26 401920]
S4 MPstandbyHandlerService;MPstandbyHandlerService;C:\Tools\MPStandbyHandler\MPstandbyHandlerService.exe [2013-8-8 29696]
S4 Power Triggers;Power Triggers Service;C:\Program Files (x86)\Derek Smith\Power Triggers\PowerTriggersService.exe [2013-2-5 10240]
S4 TVService;TVService;C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TvService.exe [2013-8-6 241664]
.
=============== File Associations ===============
.
FileExt: .txt: Notepad++_file="C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
FileExt: .ini: Notepad++_file="C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
.
=============== Created Last 30 ================
.
2013-09-02 17:29:46 31136 ----a-w- C:\Windows\System32\drivers\HWiNFO64A.SYS
2013-09-02 17:29:01 -------- d-----w- C:\Program Files\HWiNFO64
2013-09-01 11:15:45 -------- d-----w- C:\Users\Steve\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
2013-08-31 20:03:12 283064 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2013-08-31 20:03:09 -------- d-----w- C:\Users\Steve\AppData\Roaming\DAEMON Tools Lite
2013-08-31 20:03:07 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2013-08-31 20:02:33 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2013-08-30 18:39:49 2128 ----a-w- C:\880GMH_U3S3_Default 1.bin
2013-08-30 18:39:44 2128 ----a-w- C:\880GMH_U3S3_Overclock 3_36G.bin
2013-08-30 14:24:27 -------- d-----w- C:\Users\Steve\Heaven
2013-08-29 22:37:46 -------- d-----w- C:\Program Files\PhenomMsrTweaker
2013-08-29 14:38:11 -------- d-----w- C:\Program Files (x86)\7-Zipa
2013-08-27 19:09:14 -------- d-----w- C:\ProgramData\Genie9
2013-08-27 17:59:31 -------- d-----w- C:\Program Files (x86)\Derek Smith
2013-08-26 15:30:45 -------- d-----w- C:\Program Files (x86)\dumps
2013-08-26 15:30:22 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2013-08-26 15:30:21 -------- d-----w- C:\Program Files (x86)\Steam
2013-08-26 15:27:14 -------- d-----w- C:\Windows\SysWow64\directx
2013-08-25 18:04:41 -------- d-----w- C:\Users\Steve\AppData\Local\ElevatedDiagnostics
2013-08-25 16:39:36 -------- d-----w- C:\Program Files (x86)\Acrylic DNS Proxy
2013-08-21 12:48:35 -------- d-----w- C:\ProgramData\backup
2013-08-21 12:39:49 -------- d-----w- C:\ProgramData\explauncher
2013-08-21 12:39:47 -------- d-----w- C:\ProgramData\launcher
2013-08-21 12:24:32 -------- d-----w- C:\Program Files (x86)\Paragon Software
2013-08-21 11:11:05 -------- d-----w- C:\Users\Steve\AppData\Roaming\PDAppFlex
2013-08-21 11:01:16 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2013-08-21 04:57:14 -------- d-----w- C:\Users\Steve\AppData\Roaming\Dropbox
2013-08-21 03:21:10 -------- d-----w- C:\Users\Steve\AppData\Roaming\HandBrake
2013-08-21 03:19:03 -------- d-----w- C:\Program Files\Handbrake
2013-08-21 03:03:06 -------- d-----w- C:\Program Files (x86)\AviSynth 2.5
2013-08-21 03:02:38 -------- d-----w- C:\Program Files (x86)\Haali
2013-08-21 02:54:48 92672 ----a-w- C:\Windows\SysWow64\MagUIInter.dll
2013-08-21 02:54:48 55808 ----a-w- C:\Windows\SysWow64\MagPCMac.dll
2013-08-21 02:54:48 536652 ----a-w- C:\Windows\SysWow64\ASAudioHD.ax
2013-08-21 02:54:48 35328 ----a-w- C:\Windows\SysWow64\MagCore.dll
2013-08-21 02:54:48 285184 ----a-w- C:\Windows\SysWow64\MagUIEngine.dll
2013-08-21 02:54:47 490496 ----a-w- C:\Windows\SysWow64\madFlac.ax
2013-08-21 02:54:47 258048 ----a-w- C:\Windows\SysWow64\libFLAC.dll
2013-08-21 02:54:47 106496 ----a-w- C:\Windows\SysWow64\checkactivate.dll
2013-08-21 02:54:46 70656 ----a-w- C:\Windows\SysWow64\yv12vfw.dll
2013-08-21 02:54:46 417792 ----a-w- C:\Windows\SysWow64\FLVSplitter.ax
2013-08-21 02:45:06 498176 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-08-21 02:45:00 81920 ----a-w- C:\Program Files (x86)\Common Files\System\msadc\msadcs.dll
2013-08-21 01:12:31 -------- d-----w- C:\Users\Steve\AppData\Local\EMU
2013-08-21 00:59:13 -------- d--h--w- C:\Windows\PIF
2013-08-20 19:32:28 1700352 ----a-w- C:\Windows\SysWow64\gdiplus.dll
2013-08-20 19:32:28 1060864 ----a-w- C:\Windows\SysWow64\mfc71.dll
2013-08-20 19:14:29 -------- d-----w- C:\Program Files (x86)\SpeedFan
2013-08-20 00:33:33 -------- d-----w- C:\Program Files (x86)\Geeks3D
2013-08-18 14:58:33 -------- d-----w- C:\Users\Steve\AppData\Local\Adobe
2013-08-15 15:08:08 -------- d-----w- C:\Program Files (x86)\MPC-HC
2013-08-15 12:09:23 -------- d-----w- C:\Users\Steve\AppData\Roaming\Mp3tag
2013-08-15 12:09:15 -------- d-----w- C:\Program Files (x86)\Mp3tag
2013-08-15 01:56:10 -------- d-----w- C:\Users\Steve\AppData\Roaming\WinBatch
2013-08-15 01:12:41 -------- d-----w- C:\Windows\64467D47FFE44FBCABBAA0DB829A17EB.TMP
2013-08-15 00:53:16 -------- d-----w- C:\Windows\SysWow64\AGEIA
2013-08-14 23:49:28 -------- d-----w- C:\Windows\45235788142C44BE8A4DDDE9A84492E5.TMP
2013-08-14 23:49:24 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2013-08-14 23:49:21 310728 ----a-w- C:\Windows\System32\drivers\atksgt.sys
2013-08-14 23:48:11 81920 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
2013-08-14 23:48:11 73728 ----a-w- C:\Windows\SysWow64\ISUSPM.cpl
2013-08-14 23:48:11 512000 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe
2013-08-14 23:48:11 385024 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\_ispmres.dll
2013-08-14 23:48:11 368640 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\_isusres.dll
2013-08-14 23:48:11 221184 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
2013-08-14 23:48:11 217088 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISDM.exe
2013-08-14 23:47:39 749568 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2013-08-14 23:47:39 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2013-08-14 23:47:39 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2013-08-14 23:47:39 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2013-08-14 23:47:39 192644 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2013-08-14 23:47:39 180224 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2013-08-14 23:47:38 323716 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
2013-08-14 23:35:38 -------- d-----w- C:\Windows\SysWow64\Extensions
2013-08-14 23:35:37 -------- d-----w- C:\Windows\SysWow64\searchplugins
2013-08-14 19:24:39 -------- d-----w- C:\ProgramData\PreSonus
2013-08-14 19:24:38 -------- d-----w- C:\Users\Steve\AppData\Roaming\PreSonus
2013-08-14 19:24:13 33240 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
2013-08-14 19:23:59 -------- d-----w- C:\Program Files\PreSonus
2013-08-14 17:18:05 -------- d-----w- C:\Program Files\CryptSync
2013-08-14 15:35:00 -------- d-----w- C:\Program Files\Jitsi
2013-08-14 14:50:07 -------- d-----w- C:\Symbols
2013-08-14 12:59:44 -------- d-----w- C:\Program Files\MediaInfo
2013-08-13 18:09:03 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-08-13 18:09:03 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-08-13 17:26:33 -------- d-----w- C:\Users\Steve\AppData\Local\Chromium
2013-08-13 16:30:17 -------- d-----w- C:\Program Files (x86)\SRWare Iron
2013-08-12 13:00:57 -------- d-----w- C:\Users\Steve\AppData\Roaming\Genie9
2013-08-12 12:50:37 -------- d-----w- C:\tc
2013-08-12 12:48:14 -------- d-----w- C:\Users\Steve\AppData\Local\realtech_VR
2013-08-12 12:43:59 -------- d-----w- C:\Program Files (x86)\realtech VR
2013-08-10 16:04:50 -------- d-----w- C:\Users\Steve\AppData\Roaming\Ableton
2013-08-10 15:58:02 -------- d-----w- C:\Program Files\Common Files\Propellerhead Software
2013-08-10 15:57:14 -------- d-----w- C:\ProgramData\Ableton
2013-08-10 15:41:21 -------- d-----w- C:\Users\Steve\AppData\Roaming\MAGIX
2013-08-10 15:36:04 -------- d-----w- C:\Users\Steve\AppData\Local\Magix
2013-08-10 15:36:02 -------- d-----w- C:\Users\Steve\AppData\Local\Xara
2013-08-10 15:35:25 -------- d-----w- C:\Program Files (x86)\Common Files\MAGIX Shared
2013-08-10 15:33:58 -------- d-----w- C:\ProgramData\MAGIX
2013-08-10 15:33:56 -------- d-----w- C:\Program Files (x86)\Common Files\MAGIX Services
2013-08-10 15:33:48 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2013-08-10 15:24:11 -------- d-----w- C:\Users\Steve\AppData\Local\WM Recorder
2013-08-10 15:22:59 -------- d-----w- C:\Users\Steve\AppData\Roaming\WM Recorder
2013-08-10 15:22:58 -------- d-----w- C:\Program Files (x86)\WMR14
2013-08-10 15:11:08 -------- d-----w- C:\Users\Steve\AppData\Roaming\Digiarty
2013-08-10 15:11:08 -------- d-----w- C:\Program Files (x86)\Digiarty
2013-08-09 10:30:21 -------- d-----w- C:\Users\Steve\AppData\Roaming\DigitalDJ17
2013-08-09 10:30:12 -------- d-----w- C:\Users\Steve\AppData\Roaming\SongManager
2013-08-09 10:30:07 -------- d-----w- C:\Program Files (x86)\ASIO4ALL v2
2013-08-09 10:28:29 -------- d-----w- C:\Program Files (x86)\MAGIX
2013-08-09 10:19:57 773968 ----a-w- C:\Windows\SysWow64\msvcr100.dll
2013-08-09 10:19:53 421200 ----a-w- C:\Windows\SysWow64\msvcp100.dll
2013-08-09 10:19:52 -------- d-----w- C:\Program Files (x86)\XYLIO
2013-08-09 10:14:32 -------- d-----w- C:\Users\Steve\AppData\Local\SKIDROW
2013-08-09 10:09:03 -------- d-----w- C:\Program Files (x86)\VirtualDJ
2013-08-08 22:09:28 -------- d-----w- C:\Users\Steve\AppData\Local\GOOGLE
2013-08-08 21:56:43 -------- d-----w- C:\Program Files (x86)\ASRock Utility
2013-08-08 21:52:58 216064 ----a-w- C:\Windows\SysWow64\gcapi_dll.dll
2013-08-08 21:15:14 -------- d-----w- C:\ProgramData\Acon Digital
2013-08-08 21:15:12 -------- d-----w- C:\Program Files (x86)\Acon Digital
2013-08-08 21:13:37 -------- d-----w- C:\Program Files\VstPlugIns
2013-08-08 20:19:06 -------- d-----w- C:\Program Files (x86)\ALCATech
2013-08-08 14:31:47 -------- d-----w- C:\Users\Steve\AppData\Local\MPstandbyHandlerGui
2013-08-08 14:30:16 -------- d-----w- C:\ProgramData\MPstandbyHandler
2013-08-08 12:03:12 86768 ----a-w- C:\Windows\System32\drivers\RAMDiskVE.sys
2013-08-08 12:03:05 -------- d-----w- C:\Users\Steve\AppData\Local\Dataram_Corporation
2013-08-08 12:03:00 -------- d-----w- C:\Program Files (x86)\Radeon RAMDisk
2013-08-07 14:20:44 72016 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2013-08-07 14:20:43 1030952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2013-08-07 14:20:42 189936 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2013-08-07 14:20:41 80816 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2013-08-07 14:20:41 65336 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2013-08-07 14:20:30 41664 ----a-w- C:\Windows\avastSS.scr
2013-08-07 12:15:54 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2013-08-06 16:09:54 -------- d-----w- C:\Users\Steve\AppData\Roaming\FileBot
2013-08-05 15:24:17 -------- d-----w- C:\Users\Steve\AppData\Local\MPUrlSourceSplitter
2013-08-05 14:54:33 -------- d-----w- C:\Users\Steve\AppData\Roaming\WinFF
2013-08-05 14:54:31 -------- d-----w- C:\Program Files\WinFF
2013-08-05 14:33:08 -------- d-----w- C:\Users\Steve\AppData\Roaming\mkvtoolnix
2013-08-05 14:13:38 -------- d-----w- C:\Users\Steve\AppData\Local\Mozilla
.
==================== Find3M  ====================
.
2013-09-02 21:20:27 409600 --sha-w- C:\EUMONBMP.SYS
2013-08-18 15:01:08 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-08-18 15:01:08 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-08-12 12:49:48 15251968 ----a-w- C:\Program Files (x86)\Common Files\lpuninstall.exe
2013-08-10 15:50:55 120200 ----a-w- C:\Windows\SysWow64\DLLDEV32i.dll
2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-07-26 03:35:08 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:49:14 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-07-26 02:39:38 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-26 01:59:38 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-16 18:54:02 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-16 18:54:02 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-07-16 18:54:02 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-07-09 05:54:22 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-07-09 05:53:12 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-07-09 05:52:52 224256 ----a-w- C:\Windows\System32\wintrust.dll
2013-07-09 05:51:16 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll
2013-07-09 05:46:20 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-07-09 05:46:20 1472512 ----a-w- C:\Windows\System32\crypt32.dll
2013-07-09 05:46:20 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2013-07-09 04:53:47 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-07-09 04:52:33 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2013-07-09 04:52:33 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-07-09 04:52:10 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-07-09 04:46:31 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2013-07-09 04:46:31 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-07-09 04:46:31 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-07-09 04:45:07 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-07-09 02:49:42 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-07-09 02:49:41 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-07-09 02:49:39 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-07-09 02:49:38 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-07-08 20:59:52 708632 ----a-w- C:\Windows\System32\drivers\cmdguard.sys
2013-07-08 05:22:06 5554624 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-07-08 05:12:34 43520 ----a-w- C:\Windows\System32\csrsrv.dll
2013-07-08 05:11:21 34304 ----a-w- C:\Windows\System32\appidsvc.dll
2013-07-08 05:11:20 6656 ----a-w- C:\Windows\System32\apisetschema.dll
2013-07-08 05:11:20 58368 ----a-w- C:\Windows\System32\appidapi.dll
2013-07-08 05:08:20 3973056 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-07-08 05:08:20 3918272 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-07-08 04:59:25 6656 ----a-w- C:\Windows\SysWow64\apisetschema.dll
2013-07-08 04:59:25 50688 ----a-w- C:\Windows\SysWow64\appidapi.dll
2013-07-08 03:31:13 148480 ----a-w- C:\Windows\System32\appidpolicyconverter.exe
2013-07-08 03:31:10 61440 ----a-w- C:\Windows\System32\drivers\appid.sys
2013-07-08 03:31:06 17920 ----a-w- C:\Windows\System32\appidcertstorecheck.exe
2013-07-08 02:50:41 112640 ----a-w- C:\Windows\System32\smss.exe
2013-07-06 05:20:38 1900992 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-07-06 05:20:34 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2013-07-06 05:20:30 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2013-07-03 16:04:23 1002728 ----a-w- C:\Windows\System32\WinUSBCoInstaller2.dll
2013-06-18 15:16:10 48360 ----a-w- C:\Windows\System32\drivers\cmdhlp.sys
2013-06-18 15:16:08 23168 ----a-w- C:\Windows\System32\drivers\cmderd.sys
2013-06-18 15:15:50 43216 ----a-w- C:\Windows\System32\cmdcsr.dll
2013-06-18 15:15:48 437688 ----a-w- C:\Windows\System32\guard64.dll
2013-06-18 15:15:48 348584 ----a-w- C:\Windows\SysWow64\guard32.dll
2013-06-18 15:15:40 45784 ----a-w- C:\Windows\System32\cmdkbd64.dll
2013-06-18 15:15:40 344792 ----a-w- C:\Windows\System32\cmdvrt64.dll
2013-06-18 15:15:36 40664 ----a-w- C:\Windows\SysWow64\cmdkbd32.dll
2013-06-18 15:15:36 278232 ----a-w- C:\Windows\SysWow64\cmdvrt32.dll
2013-06-15 04:32:16 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys
2013-06-10 19:29:46 147968 ----a-w- C:\Windows\System32\drivers\hcw99bda.sys
2013-06-10 19:29:46 12800 ----a-w- C:\Windows\System32\drivers\hcw99rc.sys
2013-06-10 19:12:43 28192 ----a-w- C:\Windows\System32\drivers\nebvideo-amd64.sys
2013-06-10 19:12:43 18592 ----a-w- C:\Windows\System32\drivers\nebaudio-amd64.sys
2013-06-06 06:24:07 16376 ----a-w- C:\Windows\System32\drivers\TVMonitor.sys
2013-06-06 06:24:06 35112 ----a-w- C:\Windows\System32\drivers\teamviewervpn.sys
.
============= FINISH: 21:34:22.72 ===============
 
 
 
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate 
Boot Device: \Device\HarddiskVolume1
Install Date: 31/05/2013 16:18:49
System Uptime: 03/09/2013 21:26:28 (0 hours ago)
.
Motherboard: ASRock |  | 880GMH/U3S3
Processor: AMD Athlon II X4 630 Processor | CPUSocket | 2800/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 50 GiB total, 20.75 GiB free.
D: is FIXED (NTFS) - 882 GiB total, 384.445 GiB free.
E: is CDROM ()
F: is FIXED (NTFS) - 75 GiB total, 74.31 GiB free.
R: is FIXED (FAT32) - 1 GiB total, 0.941 GiB free.
V: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e96c-e325-11ce-bfc1-08002be10318}
Description: ATI HDMI Audio
Device ID: HDAUDIO\FUNC_01&VEN_1002&DEV_791A&SUBSYS_00791A00&REV_1000\5&1E531151&0&0001
Manufacturer: Realtek
Name: ATI HDMI Audio
PNP Device ID: HDAUDIO\FUNC_01&VEN_1002&DEV_791A&SUBSYS_00791A00&REV_1000\5&1E531151&0&0001
Service: RTHDMIAzAudService
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
7-Zip 9.20 (x64 edition)
Ableton Live 9 Suite
Acon Digital Restoration Suite (64 bit) version 1.0.1
Acoustica Premium Edition 6.0
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Photoshop CC
Agent Ransack 2010 (64-bit)
Alcatech BPM Studio Professional v4.9.1
AMD Catalyst Install Manager
AMD Fuel
AMD Media Foundation Decoders
AMD VISION Engine Control Center
Amnesia - The Dark Descent 
Ant Movie Catalog
Ashampoo Burning Studio 2013 v.11.0.6
ASIO4ALL
Asmedia ASM104x USB 3.0 Host Controller Driver
Asmedia ASM106x SATA Host Controller Driver
ASRock eXtreme Tuner v0.1.351
µTorrent
avast! Free Antivirus
AviSynth 2.5
Black Mirror 3
Blade Runner
Bonjour
BurnAware Free 6.4
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
CDBurnerXP
Classic Shell
COMODO Firewall
Compatibility Pack for the 2007 Office system
CPUID CPU-Z 1.65.0
CryptSync
CutePDF Writer 3.0
DAEMON Tools Lite
Dracula Origin
Dropbox
DVD Flick 1.3.0.7
DVD Shrink 3.2
DVDFab Passkey 8.1.0.3 (03/09/2013)
DVDStyler v2.3
EaseUS Todo Backup Free 6.0
eMule
Eraser 6.0.9.2343
Exact Audio Copy 1.0beta3
FileBot
Firebird SQL Server - MAGIX Edition
foobar2000 v1.2.6
Foxit Reader
Free Videos To DVD V 4.0.0
FutureDecks DJ pro 3.6.0.0
Geeks3D FurMark 1.11.0
Genie Timeline
get_iplayer 4.6
Ghost Pirates
GIMP 2.8.6
Google Earth
Google Update Helper
Haali Media Splitter
HandBrake 0.9.9.1
haneWIN NFS Server 1.2.9
HWiNFO64 Version 4.22
IIS 7.5 Express
ImgBurn
InfraRecorder 0.53 (x64 edition)
Java 7 Update 25
Java Auto Updater
Jitsi
Kits Configuration Installer
LastPass(uninstall only)
LatencyMon 5.00
Link Shell Extension
MAGIX Content and Soundpools
MAGIX Music Maker 2013 Premium
MAGIX Music Maker 2013 Trial Soundpools
MAGIX Speed burnR (MSI)
MAGIX Video Pro X5
Malwarebytes Anti-Malware version 1.75.0.1300
MCEBuddy 2.3
MediaInfo 0.7.64
MediaMonkey 4.0
MediaPortal
MediaPortal TV Server / Client
Microsoft .NET Framework 4.5
Microsoft Office Excel Viewer
Microsoft Office Word Viewer 2003
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Mp3tag v2.57
MPC-HC 1.6.8
MPExtended Service
MPExtended WebMediaPortal
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2758694)
MySQL Server 5.1
No-IP DUC
Notepad++
NVIDIA GAME System Software 2.8.1
NVIDIA PhysX
PDF Settings CC
PeerBlock 1.1 (r518)
PhenomMsrTweaker
Pinball FX2
Plex Media Server
Power Triggers
PreSonus Studio One 2 x64
Qualcomm Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
Radeon RAMDisk
Realtek HDMI Audio Driver for ATI
Realtek High Definition Audio Driver
Robin Hood - The Legend of Sherwood
Sandboxie 4.05.06 (64-bit)
Security Update for Microsoft .NET Framework 4.5 (KB2737083)
Security Update for Microsoft .NET Framework 4.5 (KB2742613)
Security Update for Microsoft .NET Framework 4.5 (KB2789648)
Security Update for Microsoft .NET Framework 4.5 (KB2804582)
Security Update for Microsoft .NET Framework 4.5 (KB2833957)
Security Update for Microsoft .NET Framework 4.5 (KB2840642v2)
Sherlock Holmes versus Jack the Ripper
SketchUp 8
Steam
Tales of Monkey Island
TeamViewer 8
Text-To-Speech-Runtime
The 11th Hour
The 7th Guest
The Testament of Sherlock Holmes
TreeSize Professional 3.21
Unlocker 1.9.2
Update for Microsoft .NET Framework 4.5 (KB2750147)
Update for Microsoft .NET Framework 4.5 (KB2805221)
Update for Microsoft .NET Framework 4.5 (KB2805226)
VideoReDo TVSuite Version 4.20.7.629
VirtualDJ Home FREE
VLC media player 2.0.8
Wallace and Gromit Grand Adventures
Windows Driver Package - EventGhost Emprex MCE USB (01/25/2010 1.0.2.0)
Windows Software Development Kit
Windows Software Development Kit EULA
WinFF 1.5 (Codename EMMA)
WinX DVD Ripper Platinum 7.2.0
WM Recorder
Worms Crazy Golf
WPT Redistributables
WPTx64
X64 Debuggers And Tools
XBMC
xrecode II 1.0.0.202
.
==== End Of File ===========================
 
Link to post
Share on other sites

P2P/Piracy Warning:

If you're using Peer 2 Peer software such as uTorrent, eMule or similar you must either fully uninstall them or completely disable them from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

Please generate a new fresh DDS log files when you are ready and post them in your next reply.

Link to post
Share on other sites

Yes, as I said uTorrent and emule aren't running, so they are disabled as per your policy.

 

Without any indication from you as to what illegal software you believe is installed, I can't really investigate.

 

I need to pack this PC up and send it off anyway, so I'll have to leave it for now anyway.

Link to post
Share on other sites

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.