Jump to content

cheesekraft

Members
  • Posts

    14
  • Joined

  • Last visited

Reputation

0 Neutral
  1. I would like t have this enabled, but it *constantly* pops up "website has been blocked" especially when torrenting. Is there a way to turn off these annoying popups? Thank you!
  2. I did an install over the top when I installed the last (beta) version. I will do a clean install now
  3. I haven't changed anything AFAIK besides my ISP, but here is the new log, hopefully that helps.. been having a few other programs with the 'not responding' problem as well as long shutdown times. Hope its not a serious issue. Thanks again! CheckResults.txt
  4. hello, I am having the same issue again. This time, I am getting a "Your databses are out of date" Fix now mesage (not displaying build version), when I check for updates it says I am up to date. It again crashes on heuristic analysis during the scan.
  5. Hello, It was not working after updating/rebooting, but everything is working fine now after upgrading to 2.1.6, I see that on the list of fixes on 2.1.6 they had a resolution to the bug of it crashing on heuristic analysis scanning, and it worked perfectly. I can still attach those logs if they would be useful, but I just had a successful scan run now.
  6. I posted this above, it freezes on heuristics during scan and the error is the "not responding" one from MS (program stops working/responding/grays out). I will update/reboot and follow the thread, thank you.
  7. Thanks for the reply; I did make this change, but it is not working still with the same problem. Anything else I can try?
  8. Thank you for the response I will provide detailed answers to the questions as best I can. What is the program version that is installed? Version 2.0x, 2.1.4 , or 2.1.6 ? - v 2015.04.20.03 What phase is the Scan in when it "crashes" ? Heuristic Analysis this time at least What is the "error message" ? "Malware bytes anti-malware has stopped working A problem caused the program to stop working correctly. Windows will close the program and notify you if a solution is available. The more detail your provide, the better your helper can guide you. There is not always a generic single answer to these types of situations. I am going to ask you to send reports. Please only just "attach" and not copy / paste into the main body of the reply on this forum. This tool will collect some information on the installation of Malwarebytes and create a report I need to review: NOTE: You may need to temporarily turn off your antivirus if it interferes with this tool. Download mbam-check.exe and save it to your desktop from http://downloads.mal...file/mbam_check On Vista/Windows 7, 8, Right-click on *mbam-check-2.1.1.1001.exe* & select Run as Administrator & allow to Run when prompted by User Account Control. On XP,Double-click on *mbam-check-2.1.1.1001.exe* to run it. Do have patience while the tool runs. It may take a while, and will flash a command prompt window. And then it will start your text editor ( default is typically NOTEPAD). It should then open a log file CheckResults.txt. Just do a File >> Exit in NOTEPAD. You should attach the CheckResults.txt file located on _your desktop_ so that I can review. Later on, we may need other reports. CheckResults.txt
  9. I have uninstalled and reinstalled MBAM; it can't complete a scan any longer. It stops responding and crashes every time.
  10. oops haha thank you very much.. here it is ComboFix 13-04-04.01 - mfark 04/05/2013 11:36:38.1.8 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.16076.12690 [GMT 7:00] Running from: c:\users\Mark\Desktop\ComboFix.exe AV: Emsisoft Anti-Malware *Disabled/Updated* {8504DEEF-CC04-1F76-2137-F1A5F4A659DA} SP: Emsisoft Anti-Malware *Disabled/Updated* {3E653F0B-EA3E-10F8-1B87-CAD78F211367} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\1364638366.bdinstall.bin c:\programdata\1364934302.bdinstall.bin c:\users\mfark\AppData\Roaming\Roaming . . ((((((((((((((((((((((((( Files Created from 2013-03-05 to 2013-04-05 ))))))))))))))))))))))))))))))) . . 2013-04-05 04:40 . 2013-04-05 04:40 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-04-05 03:20 . 2013-04-05 03:20 -------- d-----w- c:\program files\CCleaner 2013-04-04 20:46 . 2013-04-04 20:46 -------- d-----w- c:\program files (x86)\OpenOffice.org 3 2013-04-03 16:03 . 2013-04-03 16:03 -------- d-----w- c:\programdata\TrueCrypt 2013-04-03 15:55 . 2013-04-05 15:57 -------- d-----w- c:\program files\TrueCrypt 2013-04-03 00:50 . 2013-04-05 02:50 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{700241E5-ECB2-41DC-BED7-A0FE1F5D99EA}\offreg.dll 2013-04-03 00:48 . 2013-03-18 22:50 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{700241E5-ECB2-41DC-BED7-A0FE1F5D99EA}\mpengine.dll 2013-04-03 00:01 . 2011-09-05 15:12 27968 ----a-w- c:\windows\system32\cpmnat.exe 2013-04-02 22:23 . 2013-04-02 22:23 14823424 ----a-w- c:\program files (x86)\Common Files\lpuninstall.exe 2013-04-02 22:06 . 2013-04-02 22:23 -------- d-----w- c:\program files (x86)\LastPass 2013-04-02 21:31 . 2013-04-02 22:43 -------- d-----w- c:\program files (x86)\Holdem Manager 2 2013-04-02 21:31 . 2013-04-02 21:31 -------- d-----w- C:\postgreSQL 2013-04-02 21:25 . 2013-04-02 21:25 -------- d-----w- c:\program files\HitmanPro 2013-04-02 19:26 . 2013-04-05 04:35 -------- d-----w- c:\program files (x86)\Emsisoft Anti-Malware 2013-04-02 04:51 . 2013-04-02 04:51 -------- d-----w- c:\programdata\AMD 2013-04-02 04:51 . 2013-04-02 04:51 -------- d-----w- c:\program files (x86)\AMD AVT 2013-04-02 04:40 . 2013-04-02 04:40 -------- d-----w- C:\AMD 2013-04-01 22:06 . 2013-04-01 22:06 -------- d-----w- c:\program files (x86)\Microsoft XNA 2013-04-01 19:20 . 2013-04-01 21:14 -------- d-----w- c:\program files (x86)\Common Files\Steam 2013-04-01 17:45 . 2013-04-01 17:45 -------- d-----w- C:\HM2Archive 2013-04-01 17:44 . 2013-04-01 17:44 -------- d-----w- C:\New folder 2013-04-01 17:42 . 2013-04-01 17:42 -------- d-----w- c:\programdata\XHEO INC 2013-04-01 17:40 . 2013-04-05 15:57 -------- d-----w- c:\users\postgres 2013-04-01 17:34 . 2013-04-02 21:39 -------- d-----w- c:\program files (x86)\PSQLINSTALL 2013-04-01 17:15 . 2013-04-01 17:15 -------- d-----w- c:\program files\7-Zip 2013-04-01 15:20 . 2013-04-01 15:20 -------- d-----w- c:\programdata\Blue Ridge Networks 2013-04-01 15:20 . 2013-04-01 15:20 -------- d-----w- c:\program files (x86)\Blue Ridge Networks 2013-04-01 15:20 . 2013-04-01 15:20 -------- d-----w- c:\windows\Downloaded Installations 2013-04-01 14:58 . 2013-04-05 15:57 -------- d-----w- c:\program files\BitComet 2013-04-01 03:12 . 2011-09-05 15:14 205512 ----a-w- c:\windows\system32\drivers\cumon.sys 2013-04-01 03:12 . 2011-09-05 15:14 19568 ----a-w- c:\windows\system32\drivers\evdd.sys 2013-03-31 21:54 . 2013-03-31 22:05 -------- d-----w- c:\programdata\HitmanPro 2013-03-31 17:56 . 2013-04-01 22:06 -------- d-----w- c:\program files\Full Tilt Poker 2013-03-31 17:26 . 2013-03-31 17:26 -------- d-----w- c:\program files\COMODO 2013-03-31 17:26 . 2013-03-31 17:26 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll 2013-03-31 17:26 . 2013-03-31 17:26 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll 2013-03-31 17:26 . 2013-03-31 17:26 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll 2013-03-31 11:47 . 2013-04-01 18:07 -------- d-----w- c:\program files (x86)\Mamutu 2013-03-31 03:49 . 2013-03-31 11:42 -------- d-----w- c:\program files (x86)\Emsisoft HiJackFree 2013-03-31 00:43 . 2013-03-31 00:43 -------- d-----w- C:\TDSSKiller_Quarantine 2013-03-31 00:25 . 2013-03-31 00:25 -------- d-----w- c:\programdata\Panda Security 2013-03-31 00:25 . 2013-03-31 00:25 -------- d-----w- c:\program files (x86)\Panda USB Vaccine 2013-03-31 00:11 . 2013-03-31 00:11 -------- d-----w- c:\program files (x86)\EMET 2013-03-30 23:21 . 2013-03-30 23:21 -------- d-----w- c:\programdata\Licenses 2013-03-30 23:21 . 2013-03-30 23:21 -------- d-----w- c:\program files (x86)\SpywareBlaster 2013-03-30 23:21 . 2011-11-03 22:13 1070352 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX 2013-03-30 23:21 . 2009-03-24 05:52 129872 ----a-w- c:\windows\SysWow64\MSSTDFMT.DLL 2013-03-30 22:19 . 2013-03-30 22:19 -------- d-----w- c:\program files (x86)\Common Files\Skype 2013-03-30 22:19 . 2013-03-30 22:19 -------- d-----r- c:\program files (x86)\Skype 2013-03-30 22:19 . 2013-03-30 22:19 -------- d-----w- c:\programdata\Skype 2013-03-30 15:50 . 2013-03-31 18:05 -------- d-----w- C:\HHin 2013-03-30 15:44 . 2013-03-30 15:44 -------- d-----w- c:\program files (x86)\KeePass Password Safe 2 2013-03-30 13:23 . 2013-03-31 17:50 -------- d-----w- c:\program files (x86)\LuckyAcePoker.com 2013-03-30 13:16 . 2013-03-30 13:16 -------- d-----w- C:\Programs 2013-03-30 13:16 . 2013-04-02 23:05 -------- d-----w- c:\program files (x86)\PokerStars 2013-03-30 13:08 . 2013-04-05 15:57 -------- d-----w- c:\program files\Shadow Defender 2013-03-30 10:30 . 2012-08-23 15:09 3072 ----a-w- c:\windows\system32\drivers\en-US\tsusbflt.sys.mui 2013-03-30 10:29 . 2012-08-24 18:13 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2013-03-30 10:26 . 2012-11-23 03:13 68608 ----a-w- c:\windows\system32\taskhost.exe 2013-03-30 10:19 . 2013-03-30 10:19 -------- d-----w- c:\windows\system32\SPReview 2013-03-30 10:13 . 2013-04-02 20:48 -------- d-----w- c:\program files\Bitdefender 2013-03-30 10:12 . 2013-04-02 20:25 -------- d-----w- c:\program files\Common Files\Bitdefender 2013-03-30 10:08 . 2013-03-30 10:08 -------- d-s---w- c:\windows\SysWow64\Microsoft 2013-03-30 07:14 . 2013-03-30 07:14 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-03-30 07:14 . 2013-03-30 07:14 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-03-30 07:14 . 2013-03-30 07:14 -------- d-----w- c:\windows\SysWow64\Macromed 2013-03-30 07:14 . 2013-03-30 07:14 -------- d-----w- c:\windows\system32\Macromed 2013-03-30 06:54 . 2013-04-04 03:30 -------- d-----w- c:\windows\Panther 2013-03-29 19:40 . 2013-03-04 07:53 72013344 ----a-w- c:\windows\system32\MRT.exe 2013-03-29 19:40 . 2013-03-29 19:40 -------- d-----w- c:\windows\system32\EventProviders 2013-03-29 19:38 . 2011-03-11 06:41 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys 2013-03-29 19:38 . 2011-03-11 06:33 2565632 ----a-w- c:\windows\system32\esent.dll 2013-03-29 19:38 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\SysWow64\esent.dll 2013-03-29 19:38 . 2011-03-11 06:41 189824 ----a-w- c:\windows\system32\drivers\storport.sys 2013-03-29 19:38 . 2011-03-11 06:41 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys 2013-03-29 19:38 . 2011-03-11 06:41 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys 2013-03-29 19:38 . 2011-03-11 06:41 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys 2013-03-29 19:38 . 2011-03-11 06:41 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys 2013-03-29 19:38 . 2011-03-11 06:30 96768 ----a-w- c:\windows\system32\fsutil.exe 2013-03-29 19:38 . 2011-03-11 05:31 74240 ----a-w- c:\windows\SysWow64\fsutil.exe 2013-03-29 19:38 . 2011-03-11 04:37 91648 ----a-w- c:\windows\system32\drivers\USBSTOR.SYS 2013-03-29 19:33 . 2013-04-05 02:05 94656 ----a-w- c:\windows\system32\WPRO_41_2001woem.tmp 2013-03-29 19:30 . 2013-04-01 17:22 -------- d-----w- C:\bd5ffbb2319eff166075992a298d 2013-03-29 19:25 . 2013-03-30 11:13 -------- d-----r- C:\Sandbox 2013-03-29 19:23 . 2013-03-30 10:40 -------- d-----w- c:\program files\Sandboxie 2013-03-29 19:20 . 2013-03-29 19:20 -------- d-----w- c:\windows\CheckSur 2013-03-29 19:16 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui 2013-03-29 19:16 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2013-03-29 19:16 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2013-03-29 19:16 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll 2013-03-29 19:09 . 2011-03-25 03:29 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys 2013-03-29 19:09 . 2011-03-25 03:29 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2013-03-29 19:09 . 2011-03-25 03:29 325120 ----a-w- c:\windows\system32\drivers\usbport.sys 2013-03-29 19:09 . 2011-03-25 03:29 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys 2013-03-29 19:09 . 2011-03-25 03:29 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys 2013-03-29 19:09 . 2011-03-25 03:29 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys 2013-03-29 19:09 . 2011-03-25 03:28 7936 ----a-w- c:\windows\system32\drivers\usbd.sys 2013-03-29 19:06 . 2008-07-12 01:18 540688 ----a-w- c:\windows\system32\d3dx10_39.dll 2013-03-29 19:06 . 2008-07-12 01:18 1942552 ----a-w- c:\windows\system32\D3DCompiler_39.dll 2013-03-29 19:06 . 2008-07-12 01:18 4992520 ----a-w- c:\windows\system32\D3DX9_39.dll 2013-03-29 19:06 . 2006-09-28 09:05 3977496 ----a-w- c:\windows\system32\d3dx9_31.dll 2013-03-29 19:06 . 2013-03-29 19:06 -------- d-----w- c:\programdata\Passmark 2013-03-29 18:36 . 2013-03-29 18:36 -------- d-----w- c:\program files (x86)\Microsoft.NET 2013-03-29 18:31 . 2013-03-29 18:31 -------- d-----w- c:\windows\SysWow64\Wat 2013-03-29 18:31 . 2013-03-29 18:31 -------- d-----w- c:\windows\system32\Wat 2013-03-29 17:54 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll 2013-03-29 17:54 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll 2013-03-29 17:54 . 2010-09-30 10:41 100864 ----a-w- c:\windows\system32\fontsub.dll 2013-03-29 17:54 . 2010-09-30 06:47 70656 ----a-w- c:\windows\SysWow64\fontsub.dll 2013-03-29 17:54 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll 2013-03-29 17:54 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll 2013-03-29 17:53 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys 2013-03-29 17:53 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys 2013-03-29 17:53 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll 2013-03-29 17:53 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll 2013-03-29 17:53 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll 2013-03-29 17:53 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe 2013-03-29 17:53 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll 2013-03-29 17:52 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys 2013-03-29 17:52 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll 2013-03-29 17:52 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll 2013-03-29 17:52 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll 2013-03-29 17:52 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll 2013-03-29 17:46 . 2011-05-03 05:29 976896 ----a-w- c:\windows\system32\inetcomm.dll 2013-03-29 17:46 . 2011-05-03 04:30 741376 ----a-w- c:\windows\SysWow64\inetcomm.dll . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-03-30 10:21 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll 2013-03-30 10:21 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll 2013-02-12 05:45 . 2013-03-30 10:29 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll 2013-02-12 05:45 . 2013-03-30 10:29 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll 2013-02-12 05:45 . 2013-03-30 10:29 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll 2013-02-12 05:45 . 2013-03-30 10:29 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll 2013-02-12 04:48 . 2013-03-30 10:29 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2013-02-12 04:48 . 2013-03-30 10:29 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll 2013-02-07 12:15 . 2013-02-07 12:15 18456 ----a-w- c:\windows\system32\drivers\psi_mf_amd64.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2012-12-16 765200] "F.lux"="c:\users\mfark\Local Settings\Apps\F.lux\flux.exe" [2009-08-29 966656] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe" [2012-09-12 56128] "USB3MON"="c:\program files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-02-26 291608] "KeePass 2 PreLoad"="c:\program files (x86)\KeePass Password Safe 2\KeePass.exe" [2013-02-03 1937920] "emsisoft anti-malware"="c:\program files (x86)\emsisoft anti-malware\a2guard.exe" [2013-03-28 3363752] . c:\users\mfark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Folding@home.lnk - c:\program files (x86)\FAHClient\HideConsole.exe [N/A] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Install LastPass FF RunOnce.lnk - c:\program files (x86)\Common Files\lpuninstall.exe [2013-4-3 14823424] Install LastPass IE RunOnce.lnk - c:\program files (x86)\Common Files\lpuninstall.exe [2013-4-3 14823424] Secunia PSI Tray.lnk - c:\program files (x86)\Secunia\PSI\psi_tray.exe [2013-2-7 575000] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] @="" . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-] "UpdReg"=c:\windows\UpdReg.EXE . R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-07-28 239616] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe [2013-02-07 660504] R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-01-31 3289208] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384] R3 a2acc;a2acc;c:\program files (x86)\MAMUTU\a2accx64.sys [x] R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2011-05-09 425000] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-03-29 1255736] S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys [2011-09-21 49760] S0 AsrRamDisk;AsrRamDisk;c:\windows\system32\DRIVERS\AsrRamDisk.sys [2012-01-13 31016] S0 cumon;cumon;c:\windows\system32\drivers\cumon.sys [2011-09-05 205512] S0 Evdd;Evdd;c:\windows\system32\drivers\evdd.sys [2011-09-05 19568] S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys [2012-09-01 647736] S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys [2012-09-01 28216] S0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-02-26 16152] S1 A2DDA;A2 Direct Disk Access Support Driver;c:\program files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [2013-03-28 26176] S1 a2injectiondriver;a2injectiondriver;c:\program files (x86)\Emsisoft Anti-Malware\a2dix64.sys [2012-04-30 44688] S1 a2util;a-squared Malware-IDS utility driver;c:\program files (x86)\Emsisoft Anti-Malware\a2util64.sys [2013-03-28 17384] S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys [2011-05-10 17192] S2 a2AntiMalware;Emsisoft Anti-Malware 7.0 - Service;c:\program files (x86)\Emsisoft Anti-Malware\a2service.exe [2013-03-28 3089856] S2 CPMService;COMODO Programs Manager Service;c:\program files\COMODO\COMODO Programs Manager\CPMService.exe [2011-09-05 116032] S2 HitmanProScheduler;HitmanPro Scheduler;c:\program files\HitmanPro\hmpsched.exe [2013-04-02 109352] S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-09-01 14904] S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632] S2 Intel® ME Service;Intel® ME Service;c:\program files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2012-07-05 129856] S2 ISCTAgent;ISCT Always Updated Agent;c:\program files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [2012-02-09 133632] S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2012-08-20 166720] S2 postgresql-8.4;postgresql-8.4 - PostgreSQL Server 8.4;c:/postgreSQL/bin/pg_ctl.exe runservice -N postgresql-8.4 -D c:/postgreSQL/data -w [x] S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe [2013-02-07 1223704] S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-09-11 365344] S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-03-04 126952] S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-03-04 390632] S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files\BitComet\tools\BitCometService.exe [2010-12-28 1296728] S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys [2012-02-09 25536] S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys [2012-02-09 25536] S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2012-06-18 342528] S3 ISCT;Intel® Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys [2012-02-09 44992] S3 iusb3hub;Intel® USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-02-26 356120] S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-02-26 788760] S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-11-17 32344] S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf_amd64.sys [2013-02-07 18456] S3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);c:\windows\system32\drivers\WPRO_41_2001.sys [2013-04-05 34752] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-03-29 17:59 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.43\Installer\chrmstp.exe . Contents of the 'Scheduled Tasks' folder . 2013-04-05 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-30 07:14] . 2013-04-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-29 16:45] . 2013-04-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-03-29 16:45] . 2013-04-05 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job - c:\program files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16 04:54] . 2013-04-05 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job - c:\program files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16 04:54] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}] 2013-03-07 09:31 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}] 2013-03-07 09:31 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}] 2013-03-07 09:31 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}] 2013-03-07 09:31 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "THXCfg64"="c:\windows\system32\THXCfg64.dll" [2011-05-13 26624] "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-31 12446824] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-12-13 172144] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-12-13 399984] "Persistence"="c:\windows\system32\igfxpers.exe" [2012-12-13 441968] "Shadow Defender Daemon"="c:\program files\Shadow Defender\DefenderDaemon.exe" [2013-02-17 323512] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService FontCache . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.com/ mLocal Page = c:\windows\SysWOW64\blank.htm IE: LastPass - file://c:\users\Mark\AppData\LocalLow\LastPass\context.html?cmd=lastpass IE: LastPass Fill Forms - file://c:\users\Mark\AppData\LocalLow\LastPass\context.html?cmd=fillforms TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\ FF - ExtSQL: 2013-02-25 16:09; adblocker@avast.com; c:\program files (x86)\Mozilla Firefox\extensions\adblocker@avast.com.xpi FF - ExtSQL: 2013-03-30 16:21; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF - ExtSQL: 2013-03-30 17:39; {73a6fe31-595d-460b-a920-fcc0f8843232}; c:\users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi FF - ExtSQL: 2013-03-30 17:39; firefox@ghostery.com; c:\users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\firefox@ghostery.com FF - ExtSQL: 2013-03-31 08:51; trafficlight@bitdefender.com; c:\users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\trafficlight@bitdefender.com.xpi FF - ExtSQL: 2013-04-01 00:28; https-everywhere@eff.org; c:\users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\https-everywhere@eff.org . - - - - ORPHANS REMOVED - - - - . Wow6432Node-HKCU-Run-ASRockXTU - (no file) Wow6432Node-HKCU-Run-zASRockInstantBoot - (no file) Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\postgresql-8.4] "ImagePath"="c:/postgreSQL/bin/pg_ctl.exe runservice -N \"postgresql-8.4\" -D \"c:/postgreSQL/data\" -w" . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\postgresql-8.4] "ImagePath"="c:/postgreSQL/bin/pg_ctl.exe runservice -N \"postgresql-8.4\" -D \"c:/postgreSQL/data\" -w" . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\software\Microsoft\Cryptography\RNG*] "Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d, bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\ "Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d, bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\ . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2013-04-05 11:41:18 ComboFix-quarantined-files.txt 2013-04-05 04:41 . Pre-Run: 169,922,953,216 bytes free Post-Run: 169,584,775,168 bytes free . - - End Of File - - 5D0C1B816F027B7146059518EFB32E8F
  11. Hello, thanks for the response. I have run the combofix as described, but I did get an error that appeared about 30-40 times and I had to close the window each time, it said Commandline Standard Stream Splitter has stopped working. The c:\combofix folder was empty and did not have the .txt file in it, and I guess I accidentally closed the one that popped up after the scan; I messed up by closing the notepad document I suppose, but I expected it to be saved to the c:\combofix folder also. :unsure:I don't know if I should re-run the scan or not.
  12. Appreciate any help, I did not suspect I was infected but I was told to post here. Thanks! . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 3/29/2013 11:08:38 PM System Uptime: 4/5/2013 1:04:12 AM (2 hours ago) . Motherboard: ASRock | | Z77 Extreme4 Processor: Intel® Core i7-3770K CPU @ 3.50GHz | CPUSocket | 3501/100mhz . ==== Disk Partitions ========================= . B: is FIXED (NTFS) - 1863 GiB total, 1780.679 GiB free. C: is FIXED (NTFS) - 223 GiB total, 159.393 GiB free. D: is CDROM (CDFS) . ==== Disabled Device Manager Items ============= . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: avast! Firewall NDIS Filter Miniport Device ID: ROOT\SW_ASWNDISMP\0000 Manufacturer: ALWIL Software Name: avast! Firewall NDIS Filter Miniport PNP Device ID: ROOT\SW_ASWNDISMP\0000 Service: aswNdis . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Broadcom NetLink Gigabit Ethernet Device ID: PCI\VEN_14E4&DEV_16B1&SUBSYS_96B11849&REV_10\4&2B8260C3&0&00E4 Manufacturer: Broadcom Name: Broadcom NetLink Gigabit Ethernet PNP Device ID: PCI\VEN_14E4&DEV_16B1&SUBSYS_96B11849&REV_10\4&2B8260C3&0&00E4 Service: k57nd60a . ==== System Restore Points =================== . RP43: 4/2/2013 1:35:12 AM - Removed Microsoft Visual C++ 2005 Redistributable RP44: 4/2/2013 1:38:56 AM - Removed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 RP45: 4/2/2013 1:39:34 AM - Configured THX TruStudio RP46: 4/2/2013 1:39:51 AM - Removed avast! Ad Blocker RP47: 4/2/2013 1:40:14 AM - Windows Update RP48: 4/2/2013 2:19:42 AM - Installed Steam RP49: 4/2/2013 4:57:05 AM - Installed DirectX RP50: 4/2/2013 5:06:34 AM - Installed DirectX RP51: 4/2/2013 10:36:01 AM - Windows Backup RP52: 4/3/2013 4:31:09 AM - Installed Microsoft Visual C++ 2005 Redistributable RP53: 4/3/2013 8:07:39 PM - Online Armor installation RP54: 4/3/2013 10:56:00 PM - TrueCrypt installation . ==== Installed Programs ====================== . 7-Zip 9.20 (x64 edition) Acrobat.com Adobe AIR Adobe Flash Player 11 Plugin AMD Catalyst Install Manager Asmedia ASM104x USB 3.0 Host Controller Driver Asmedia ASM106x SATA Host Controller Driver ASRock App Charger v1.0.5 ASRock eXtreme Tuner v0.1.257 ASRock InstantBoot v1.29 ASRock SmartConnect v1.0.6 ASRock XFast RAM v2.0.9 Bastion BitComet 1.35 64-bit Borderlands Broadcom NetLink Controller Catalyst Control Center InstallProxy CCleaner COMODO Programs Manager Counter-Strike Counter-Strike: Condition Zero Counter-Strike: Source DOOM 3 Dota 2 EMET Emsisoft Anti-Malware F.lux FAHClient Full Tilt Poker Google Chrome Google Drive Google Toolbar for Internet Explorer Google Update Helper Half-Life 2 HitmanPro 3.7 Holdem Manager 2 Intel® Control Center Intel® Manageability Engine Firmware Recovery Agent Intel® Management Engine Components Intel® Processor Graphics Intel® Rapid Storage Technology Intel® SDK for OpenCL - CPU Only Runtime Package Intel® Smart Connect Technology 2.0 x64 Intel® USB 3.0 eXtensible Host Controller Driver Intel® Trusted Connect Service Client KeePass Password Safe 2.21 LastPass(uninstall only) LuckyAcePoker.com Malwarebytes Anti-Malware version 1.70.0.1100 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Extended Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft XNA Framework Redistributable 3.1 Mozilla Firefox 19.0.2 (x86 en-US) Mozilla Maintenance Service Online Armor 6.0 Panda USB Vaccine 1.0.1.4 PartyPoker PokerStars Portal PostgreSQL 8.4 Realtek High Definition Audio Driver Sandboxie 3.76 (64-bit) Secunia PSI (3.0.0.6005) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Shadow Defender Skype Click to Call Skype™ 6.3 SpeedFan (remove only) SpywareBlaster 5.0 StarCraft II Steam Team Fortress 2 TrueCrypt Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) . ==== Event Viewer Messages From Past Week ======== . 4/5/2013 1:04:42 AM, Error: Service Control Manager [7000] - The AMD External Events Utility service failed to start due to the following error: This version of AMD External Events Utility is not compatible with the version of Windows you're running. Check your computer's system information to see whether you need a x86 (32-bit) or x64 (64-bit) version of the program, and then contact the software publisher. 4/3/2013 6:57:18 AM, Error: Service Control Manager [7000] - The speedfan service failed to start due to the following error: Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. 4/2/2013 4:57:45 AM, Error: NetBT [4321] - The name "MARK-PC :0" could not be registered on the interface with IP address 192.168.1.6. The computer with the IP address 192.168.1.9 did not allow the name to be claimed by this computer. 4/2/2013 4:14:18 AM, Error: Server [2505] - The server could not bind to the transport \Device\NetBT_Tcpip_{27578805-F147-4E0F-97BE-E306199B0116} because another computer on the network has the same name. The server could not start. 4/2/2013 4:14:18 AM, Error: NetBT [4321] - The name "MARK-PC :20" could not be registered on the interface with IP address 192.168.1.6. The computer with the IP address 192.168.1.9 did not allow the name to be claimed by this computer. 4/2/2013 2:21:53 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect. 4/2/2013 2:21:53 AM, Error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 4/2/2013 2:13:39 AM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {7D1933CB-86F6-4A98-8628-01BE94C9A575} and APPID {F290BFB2-1864-45B1-8804-2654194A87E7} to the user Mark-PC\Mark SID (S-1-5-21-1822074126-4183425279-3926646095-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool. 4/2/2013 11:21:30 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMService service. 4/2/2013 1:44:17 AM, Error: Service Control Manager [7034] - The MBAMService service terminated unexpectedly. It has done this 1 time(s). 4/1/2013 10:20:25 PM, Error: Service Control Manager [7030] - The Blue Ridge AppGuard Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. 3/31/2013 6:43:10 PM, Error: VDS Basic Provider [1] - Unexpected failure. Error code: D@01010004 3/31/2013 6:43:08 PM, Error: Service Control Manager [7024] - The Windows Firewall service terminated with service-specific error Access is denied.. 3/31/2013 6:41:51 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334} 3/31/2013 6:41:41 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start. 3/31/2013 6:41:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030} 3/31/2013 6:41:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} 3/31/2013 6:41:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89} 3/31/2013 6:41:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E} 3/31/2013 6:41:39 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} 3/31/2013 6:41:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC} 3/31/2013 6:41:28 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: a2injectiondriver AFD AsrAppCharger avc3 BdfNdisf bdfwfpf DfsC discache gzflt NetBIOS NetBT nsiproxy Psched rdbss spldr tdx trufos Wanarpv6 WfpLwf 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning. 3/31/2013 6:41:28 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning. 3/31/2013 10:44:18 PM, Error: Microsoft-Windows-DistributedCOM [10001] - Unable to start a DCOM Server: {995C996E-D918-4A8C-A302-45719A6F4EA7} as /. The error: "5" Happened while starting this command: C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding 3/30/2013 9:30:55 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wuauserv service. 3/30/2013 9:30:25 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the VSSERV service. 3/30/2013 9:29:55 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service. 3/30/2013 9:29:25 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service. 3/30/2013 9:28:25 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BITS service. 3/30/2013 9:27:25 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Appinfo service. 3/30/2013 6:34:24 PM, Error: Service Control Manager [7023] - The Superfetch service terminated with the following error: The service has not been started. 3/30/2013 6:00:18 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WerSvc service. 3/30/2013 5:30:13 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x8024200d: Update for Windows 7 for x64-based Systems (KB2729094). 3/30/2013 4:33:01 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Windows 7 Service Pack 1 for x64-based Systems (KB976932). 3/30/2013 4:32:19 PM, Error: Microsoft-Windows-Service Pack Installer [8] - Service Pack installation failed with error code 0x800b0100. 3/30/2013 4:26:17 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect. 3/30/2013 2:34:36 AM, Error: Service Control Manager [7023] - 3/30/2013 2:33:55 AM, Error: Microsoft-Windows-Directory-Services-SAM [12291] - SAM failed to start the TCP/IP or SPX/IPX listening thread 3/30/2013 1:32:41 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the CryptSvc service. 3/30/2013 1:31:31 AM, Error: Service Control Manager [7034] - The MBAMScheduler service terminated unexpectedly. It has done this 1 time(s). 3/30/2013 1:31:30 AM, Error: Service Control Manager [7034] - The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly. It has done this 1 time(s). 3/30/2013 1:31:30 AM, Error: Service Control Manager [7034] - The Intel® Content Protection HECI Service service terminated unexpectedly. It has done this 1 time(s). 3/30/2013 1:31:28 AM, Error: Service Control Manager [7031] - The avast! Firewall service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service. 3/30/2013 1:31:28 AM, Error: Service Control Manager [7031] - The avast! Antivirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service. 3/30/2013 1:25:08 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Windows Malicious Software Removal Tool x64 - March 2013 (KB890830). 3/30/2013 1:25:08 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2739159). 3/30/2013 1:25:08 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2563227). 3/30/2013 1:25:08 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB979309). 3/30/2013 1:25:08 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2799494). 3/30/2013 1:25:08 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2769369). 3/30/2013 1:25:08 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Cumulative Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB2809289). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706be: Windows Internet Explorer 9 for Windows 7 for x64-based Systems. 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update Rollup for ActiveX Killbits for Windows 7 for x64-based Systems (KB2736233). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB980846). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB977074). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB976422). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB974431). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2779562). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2741355). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2718704). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2660075). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2640148). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2603229). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2552343). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2547666). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2545698). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2533552). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2522422). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2515325). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2511250). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2484033). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2467023). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Windows 7 for x64-based Systems (KB2387530). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Rights Management Services Client for Windows 7 for x64-based Systems (KB979099). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Kernel-Mode Driver Framework version 1.11 for Windows 7 for x64-based Systems (KB2685811). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB982799). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB982132). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB979688). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB979687). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB979482). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB978542). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB975467). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB972270). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2807986). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2778344). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2691442). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2676562). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2667402). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2658846). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2655992). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2631813). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2620712). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2620704). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2585542). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2570947). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2560656). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2536276). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2535512). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2506212). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2479943). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2347290). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2305420). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows 7 for x64-based Systems (KB2296011). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2789644). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2729451). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2656410). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2604114). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Microsoft .NET Framework 3.5 SP1 Update for Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB982526). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Dell Inc. - Bus Controllers and Ports, Display, Storage - Dell 3008WFP(Digital). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Cumulative Update for Media Center for Windows 7 x64-based Systems (KB2284742). 3/30/2013 1:25:05 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Cumulative Security Update for ActiveX Killbits for Windows 7 for x64-based Systems (KB2618451). 3/30/2013 1:20:15 AM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: An instance of the service is already running. 3/30/2013 1:19:45 AM, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. 3/30/2013 1:19:45 AM, Error: Service Control Manager [7023] - The Windows Search service terminated with the following error: The process cannot access the file because it is being used by another process. 3/29/2013 11:35:33 PM, Error: Service Control Manager [7023] - The Intel® Content Protection HECI Service service terminated with the following error: %%-2147024637 . ==== End Of File =========================== DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16521 Run by mfark at 3:37:38 on 2013-04-05 #Option Extended Search is enabled. Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.16076.11721 [GMT 7:00] . AV: Emsisoft Anti-Malware *Disabled/Updated* {8504DEEF-CC04-1F76-2137-F1A5F4A659DA} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Emsisoft Anti-Malware *Disabled/Updated* {3E653F0B-EA3E-10F8-1B87-CAD78F211367} FW: Online Armor Firewall *Disabled* {BD3F5FCA-866B-1E2E-0A68-58900A751EA1} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Program Files\Sandboxie\SbieSvc.exe C:\Program Files\HitmanPro\hmpsched.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files (x86)\Online Armor\OAcat.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe C:\Program Files\Intel\iCLS Client\HeciServer.exe C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe c:\postgreSQL\bin\pg_ctl.exe C:\Program Files (x86)\Secunia\PSI\PSIA.exe C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe c:\postgreSQL\bin\postgres.exe c:\postgreSQL\bin\postgres.exe c:\postgreSQL\bin\postgres.exe c:\postgreSQL\bin\postgres.exe c:\postgreSQL\bin\postgres.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\taskhost.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\rundll32.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Shadow Defender\DefenderDaemon.exe C:\Program Files\Sandboxie\SbieCtrl.exe C:\Program Files (x86)\Secunia\PSI\psi_tray.exe C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Windows\system32\sppsvc.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe C:\Program Files\Sandboxie\SandboxieRpcSs.exe C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe C:\Program Files\Sandboxie\SandboxieCrypto.exe C:\Program Files\Sandboxie\32\SbieSvc.exe C:\Users\Mark\Local Settings\Apps\F.lux\flux.exe C:\Program Files\Shadow Defender\Defender.exe B:\Program Files (x86)\FAHClient\FAHClient.exe B:\Program Files (x86)\FAHClient\FAHCoreWrapper.exe B:\Users\mfark\AppData\Roaming\FAHClient\cores\www.stanford.edu\~pande\Win32\AMD64\Core_a4.fah\FahCore_a4.exe C:\Program Files\Sandboxie\SandboxieRpcSs.exe C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe C:\Program Files\Sandboxie\SandboxieCrypto.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2start.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\explorer.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ mWinlogon: Userinit = userinit.exe, BHO: LastPass Vault: {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll TB: LastPass Toolbar: {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll uRun: [ASRockXTU] <no file> mRun: [emsisoft anti-malware] "c:\program files (x86)\emsisoft anti-malware\a2guard.exe" /d=60 mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent dRunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\INSTAL~2.LNK - C:\Program Files (x86)\Common Files\lpuninstall.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\INSTAL~1.LNK - C:\Program Files (x86)\Common Files\lpuninstall.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SECUNI~1.LNK - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:255 mPolicies-Explorer: NoDriveAutoRun = dword:67108863 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: LastPass - C:\Users\Mark\AppData\LocalLow\LastPass\context.html?cmd=lastpass IE: LastPass Fill Forms - C:\Users\Mark\AppData\LocalLow\LastPass\context.html?cmd=fillforms IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll TCP: NameServer = 192.168.1.1 TCP: Interfaces\{27578805-F147-4E0F-97BE-E306199B0116} : DHCPNameServer = 192.168.1.1 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll SSODL: WebCheck - <orphaned> mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.43\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome x64-BHO: LastPass Vault: {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll x64-BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg64.dll x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll x64-TB: LastPass Toolbar: {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll x64-Run: [shadow Defender Daemon] "C:\Program Files\Shadow Defender\DefenderDaemon.exe" /Auto x64-Run: [@OnlineArmor GUI] "C:\Program Files (x86)\Online Armor\oaui.exe" x64-IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-Notify: igfxcui - igfxdev.dll x64-SSODL: WebCheck - <orphaned> . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\ FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll FF - ExtSQL: 2013-02-25 16:09; adblocker@avast.com; C:\Program Files (x86)\Mozilla Firefox\extensions\adblocker@avast.com.xpi FF - ExtSQL: 2013-03-30 16:21; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF - ExtSQL: 2013-03-30 17:39; {73a6fe31-595d-460b-a920-fcc0f8843232}; C:\Users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi FF - ExtSQL: 2013-03-30 17:39; firefox@ghostery.com; C:\Users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\firefox@ghostery.com FF - ExtSQL: 2013-03-31 08:51; trafficlight@bitdefender.com; C:\Users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\trafficlight@bitdefender.com.xpi FF - ExtSQL: 2013-04-01 00:28; https-everywhere@eff.org; C:\Users\mfark\AppData\Roaming\Mozilla\Firefox\Profiles\iy72bswd.default\extensions\https-everywhere@eff.org . ============= SERVICES / DRIVERS =============== . R0 asahci64;asahci64;C:\Windows\System32\drivers\asahci64.sys [2011-9-21 49760] R0 AsrRamDisk;AsrRamDisk;C:\Windows\System32\drivers\AsrRamDisk.sys [2013-3-29 31016] R0 cumon;cumon;C:\Windows\System32\drivers\cumon.sys [2013-4-1 205512] R0 diskpt;diskpt;C:\Windows\System32\drivers\diskpt.sys [2013-4-3 257408] R0 Evdd;Evdd;C:\Windows\System32\drivers\evdd.sys [2013-4-1 19568] R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2013-3-29 647736] R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2013-3-29 28216] R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-3-29 16152] R1 A2DDA;A2 Direct Disk Access Support Driver;C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [2013-4-3 26176] R1 a2injectiondriver;a2injectiondriver;C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [2013-4-3 44688] R1 a2util;a-squared Malware-IDS utility driver;C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [2013-4-3 17384] R1 AsrAppCharger;AsrAppCharger;C:\Windows\System32\drivers\AsrAppCharger.sys [2013-3-29 17192] R1 OADevice;OADriver;C:\Windows\SysWOW64\drivers\OADriver.sys [2013-4-3 61632] R1 OAmon;OAmon;C:\Windows\SysWOW64\drivers\OAmon.sys [2013-4-3 40520] R2 a2AntiMalware;Emsisoft Anti-Malware 7.0 - Service;C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [2013-4-3 3089856] R2 CPMService;COMODO Programs Manager Service;C:\Program Files\COMODO\COMODO Programs Manager\CPMservice.exe [2011-9-5 116032] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-3-29 14904] R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-6-19 634632] R2 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2013-3-29 129856] R2 ISCTAgent;ISCT Always Updated Agent;C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [2012-2-9 133632] R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-3-29 166720] R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-4-4 398184] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-4-4 682344] R2 OAcat;Online Armor Helper Service;C:\Program Files (x86)\Online Armor\oacat.exe [2013-4-3 216072] R2 postgresql-8.4;postgresql-8.4 - PostgreSQL Server 8.4;c:/postgreSQL/bin/pg_ctl.exe runservice -N "postgresql-8.4" -D "c:/postgreSQL/data" -w --> c:/postgreSQL/bin/pg_ctl.exe runservice -N postgresql-8.4 [?] R2 Secunia PSI Agent;Secunia PSI Agent;C:\Program Files (x86)\Secunia\PSI\psia.exe [2013-2-7 1223704] R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-1-31 3289208] R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-3-29 365344] R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-3-4 126952] R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-3-4 390632] R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\Windows\System32\drivers\ikbevent.sys [2012-2-9 25536] R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\Windows\System32\drivers\imsevent.sys [2012-2-9 25536] R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-3-29 342528] R3 ISCT;Intel® Smart Connect Technology Device Driver;C:\Windows\System32\drivers\ISCTD64.sys [2012-2-9 44992] R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-3-29 356120] R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-3-29 788760] R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-4-4 24176] R3 MBfilt;MBfilt;C:\Windows\System32\drivers\MBfilt64.sys [2013-3-29 32344] R3 OAnet;OnlineArmor Service;C:\Windows\System32\drivers\OAnet.sys [2013-4-3 35376] R3 PSI;PSI;C:\Windows\System32\drivers\psi_mf_amd64.sys [2013-2-7 18456] R3 SbieDrv;SbieDrv;C:\Program Files\Sandboxie\SbieDrv.sys [2012-12-16 202632] R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\Windows\System32\drivers\WPRO_41_2001.sys [2013-3-29 34752] R4 HitmanProScheduler;HitmanPro Scheduler;C:\Program Files\HitmanPro\hmpsched.exe [2013-4-3 109352] S1 oahlpXX;Online Armor helper driver;C:\Windows\SysWOW64\drivers\oahlp64.sys [2013-4-3 62016] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 Secunia Update Agent;Secunia Update Agent;C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-2-7 660504] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384] S2 SvcOnlineArmor;Online Armor;C:\Program Files (x86)\Online Armor\oasrv.exe [2013-4-3 4463864] S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2011-5-9 425000] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-3-30 19456] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-3-30 57856] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-3-30 1255736] S4 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-7-28 239616] S4 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files\BitComet\tools\BitCometService.exe -service --> C:\Program Files\BitComet\tools\BitCometService.exe -service [?] . =============== Created Last 60 ================ . 2013-04-04 18:09:42 -------- d-----w- C:\Windows\pss 2013-04-04 16:55:45 -------- d-----w- C:\Program Files (x86)\SpeedFan 2013-04-04 03:31:51 -------- d-----w- C:\Users\mfark\AppData\Roaming\Malwarebytes 2013-04-04 03:31:49 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-04-04 03:31:49 -------- d-----w- C:\ProgramData\Malwarebytes 2013-04-04 03:31:49 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-04-04 03:29:54 -------- d-----w- C:\Program Files\CCleaner 2013-04-04 01:09:43 94656 ----a-w- C:\Windows\System32\WPRO_41_2001woem.tmp 2013-04-03 17:40:05 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{700241E5-ECB2-41DC-BED7-A0FE1F5D99EA}\offreg.dll 2013-04-03 16:06:08 257408 ----a-w- C:\Windows\System32\drivers\diskpt.sys 2013-04-03 16:03:30 -------- d-----w- C:\Users\mfark\AppData\Roaming\TrueCrypt 2013-04-03 16:03:30 -------- d-----w- C:\ProgramData\TrueCrypt 2013-04-03 15:56:03 231376 ----a-w- C:\Windows\System32\drivers\truecrypt.sys 2013-04-03 15:55:58 -------- d-----w- C:\Program Files\TrueCrypt 2013-04-03 13:07:49 -------- d-----w- C:\ProgramData\OnlineArmor 2013-04-03 13:07:38 62016 ----a-w- C:\Windows\SysWow64\drivers\oahlp64.sys 2013-04-03 13:07:38 61632 ----a-w- C:\Windows\SysWow64\drivers\OADriver.sys 2013-04-03 13:07:38 40520 ----a-w- C:\Windows\SysWow64\drivers\OAmon.sys 2013-04-03 13:07:38 35376 ----a-w- C:\Windows\System32\drivers\OAnet.sys 2013-04-03 13:07:36 -------- d-----w- C:\Program Files (x86)\Online Armor 2013-04-03 12:46:54 -------- d-----w- C:\Program Files (x86)\FAHClient 2013-04-03 00:48:33 9311288 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll 2013-04-03 00:48:31 9311288 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{700241E5-ECB2-41DC-BED7-A0FE1F5D99EA}\mpengine.dll 2013-04-03 00:01:02 27968 ----a-w- C:\Windows\System32\cpmnat.exe 2013-04-02 22:33:18 -------- d-----w- C:\Users\mfark\AppData\Local\Hold'em_Manager 2013-04-02 22:23:23 14823424 ----a-w- C:\Program Files (x86)\Common Files\lpuninstall.exe 2013-04-02 22:06:47 -------- d-----w- C:\Program Files (x86)\LastPass 2013-04-02 21:31:52 -------- d-----w- C:\Program Files (x86)\Holdem Manager 2 2013-04-02 21:31:05 -------- d-----w- C:\postgreSQL 2013-04-02 21:25:28 -------- d-----w- C:\Program Files\HitmanPro 2013-04-02 20:25:43 237219 ----a-w- C:\ProgramData\1364934302.bdinstall.bin 2013-04-02 19:26:54 -------- d-----w- C:\Program Files (x86)\Emsisoft Anti-Malware 2013-04-02 04:51:29 -------- d-----w- C:\ProgramData\AMD 2013-04-02 04:51:29 -------- d-----w- C:\Program Files (x86)\AMD AVT 2013-04-02 04:43:35 -------- d-----w- C:\Users\mfark\AppData\Roaming\FAHClient 2013-04-02 04:40:30 -------- d-----w- C:\AMD 2013-04-01 22:06:40 -------- d-----w- C:\Windows\SysWow64\directx 2013-04-01 22:06:34 -------- d-----w- C:\Program Files (x86)\Microsoft XNA 2013-04-01 19:20:00 -------- d-----w- C:\Program Files (x86)\Common Files\Steam 2013-04-01 17:45:44 -------- d-----w- C:\Users\mfark\AppData\Roaming\Roaming 2013-04-01 17:45:29 -------- d-----w- C:\HM2Archive 2013-04-01 17:45:27 -------- d-----w- C:\Users\mfark\AppData\Roaming\HEM Data 2013-04-01 17:44:49 -------- d-----w- C:\New folder 2013-04-01 17:42:45 -------- d-----w- C:\Users\mfark\AppData\Local\IsolatedStorage 2013-04-01 17:42:45 -------- d-----w- C:\ProgramData\XHEO INC 2013-04-01 17:42:39 -------- d-----w- C:\Users\mfark\AppData\Roaming\HoldemManager 2013-04-01 17:34:15 -------- d-----w- C:\Program Files (x86)\PSQLINSTALL 2013-04-01 15:20:17 -------- d-----w- C:\ProgramData\Blue Ridge Networks 2013-04-01 15:20:17 -------- d-----w- C:\Program Files (x86)\Blue Ridge Networks 2013-04-01 15:20:04 -------- d-----w- C:\Windows\Downloaded Installations 2013-04-01 14:58:30 -------- d-----w- C:\Downloads 2013-04-01 14:58:23 -------- d-----w- C:\Program Files\BitComet 2013-04-01 03:12:30 205512 ----a-w- C:\Windows\System32\drivers\cumon.sys 2013-04-01 03:12:28 19568 ----a-w- C:\Windows\System32\drivers\evdd.sys 2013-04-01 03:11:10 -------- d-----w- C:\Users\mfark\AppData\Roaming\KeePass 2013-03-31 23:23:31 -------- d-----w- C:\Users\mfark\AppData\Local\Apps 2013-03-31 22:03:13 -------- d-----w- C:\Users\mfark\AppData\Local\Diagnostics 2013-03-31 21:54:20 -------- d-----w- C:\ProgramData\HitmanPro 2013-03-31 20:25:33 -------- d-----w- C:\Users\mfark\AppData\Local\cache 2013-03-31 18:01:54 -------- d-----w- C:\Users\mfark\AppData\Local\FullTiltPoker 2013-03-31 17:56:55 -------- d-----w- C:\Program Files\Full Tilt Poker 2013-03-31 17:50:43 -------- d-----w- C:\Users\mfark\AppData\Roaming\LuckyAcePoker.com 2013-03-31 17:26:49 -------- d-----w- C:\Users\mfark\AppData\Local\Adobe 2013-03-31 17:26:16 -------- d-----w- C:\Program Files\COMODO 2013-03-31 17:26:06 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll 2013-03-31 17:26:06 1700352 ----a-w- C:\Windows\SysWow64\gdiplus.dll 2013-03-31 17:26:06 1060864 ----a-w- C:\Windows\SysWow64\mfc71.dll 2013-03-31 13:49:47 498488 ----a-w- C:\Program Files (x86)\Mozilla Firefox\uninstall\uninstaller.exe 2013-03-31 11:47:21 -------- d-----w- C:\Program Files (x86)\Mamutu 2013-03-31 03:49:26 -------- d-----w- C:\Program Files (x86)\Emsisoft HiJackFree 2013-03-31 00:43:14 -------- d-----w- C:\TDSSKiller_Quarantine 2013-03-31 00:25:58 -------- d-----w- C:\ProgramData\Panda Security 2013-03-31 00:25:52 -------- d-----w- C:\Program Files (x86)\Panda USB Vaccine 2013-03-31 00:11:19 -------- d-----w- C:\Program Files (x86)\EMET 2013-03-30 23:21:23 -------- d-----w- C:\ProgramData\Licenses 2013-03-30 23:21:22 129872 ----a-w- C:\Windows\SysWow64\MSSTDFMT.DLL 2013-03-30 23:21:22 1070352 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX 2013-03-30 23:21:22 -------- d-----w- C:\Program Files (x86)\SpywareBlaster 2013-03-30 22:19:34 -------- d-----r- C:\Program Files (x86)\Skype 2013-03-30 15:50:45 -------- d-----w- C:\HHin 2013-03-30 15:44:07 -------- d-----w- C:\Program Files (x86)\KeePass Password Safe 2 2013-03-30 15:44:01 -------- d-----w- C:\Users\mfark\AppData\Local\Programs 2013-03-30 13:23:36 -------- d-----w- C:\Program Files (x86)\LuckyAcePoker.com 2013-03-30 13:17:35 -------- d-----w- C:\Users\mfark\AppData\Roaming\cef-cache 2013-03-30 13:17:25 -------- d-----w- C:\Users\mfark\AppData\Roaming\Party 2013-03-30 13:16:39 -------- d-----w- C:\Programs 2013-03-30 13:16:32 -------- d-----w- C:\Users\mfark\AppData\Local\PokerStars 2013-03-30 13:16:27 -------- d-----w- C:\Program Files (x86)\PokerStars 2013-03-30 13:08:56 -------- d-----w- C:\Program Files\Shadow Defender 2013-03-30 10:30:56 62976 ----a-w- C:\Windows\System32\TSWbPrxy.exe 2013-03-30 10:29:47 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2013-03-30 10:26:43 68608 ----a-w- C:\Windows\System32\taskhost.exe 2013-03-30 10:19:29 487180 ----a-w- C:\ProgramData\1364638366.bdinstall.bin 2013-03-30 10:19:16 -------- d-----w- C:\Windows\System32\SPReview 2013-03-30 10:14:17 -------- d-----w- C:\Users\mfark\AppData\Roaming\QuickScan 2013-03-30 10:13:15 -------- d-----w- C:\Program Files\Bitdefender 2013-03-30 10:12:36 -------- d-----w- C:\Program Files\Common Files\Bitdefender 2013-03-30 10:08:13 -------- d-s---w- C:\Windows\SysWow64\Microsoft 2013-03-30 09:21:44 -------- d-----w- C:\Users\mfark\AppData\Local\Macromedia 2013-03-30 07:14:47 73432 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-03-30 07:14:47 693976 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-03-30 06:54:37 -------- d-----w- C:\Windows\Panther 2013-03-29 19:40:06 -------- d-----w- C:\Windows\System32\EventProviders 2013-03-29 19:38:34 2565632 ----a-w- C:\Windows\System32\esent.dll 2013-03-29 19:38:34 1699328 ----a-w- C:\Windows\SysWow64\esent.dll 2013-03-29 19:38:34 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys 2013-03-29 19:38:33 96768 ----a-w- C:\Windows\System32\fsutil.exe 2013-03-29 19:38:33 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe 2013-03-29 19:38:33 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys 2013-03-29 19:38:33 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys 2013-03-29 19:38:33 189824 ----a-w- C:\Windows\System32\drivers\storport.sys 2013-03-29 19:38:33 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys 2013-03-29 19:38:33 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys 2013-03-29 19:30:51 -------- d-----w- C:\bd5ffbb2319eff166075992a298d 2013-03-29 19:25:40 -------- d-----r- C:\Sandbox 2013-03-29 19:23:58 -------- d-----w- C:\Program Files\Sandboxie 2013-03-29 19:22:28 -------- d-----w- C:\Users\mfark\AppData\Local\Mozilla 2013-03-29 19:20:53 -------- d-----w- C:\Windows\CheckSur 2013-03-29 19:16:25 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui 2013-03-29 19:16:24 9728 ----a-w- C:\Windows\System32\Wdfres.dll 2013-03-29 19:16:24 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys 2013-03-29 19:16:24 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys 2013-03-29 19:09:59 -------- d-----w- C:\Users\mfark\AppData\Local\Microsoft Games 2013-03-29 19:09:56 -------- d-----w- C:\Users\mfark\AppData\Roaming\Intel Corporation 2013-03-29 19:09:07 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys 2013-03-29 19:09:07 7936 ----a-w- C:\Windows\System32\drivers\usbd.sys 2013-03-29 19:09:07 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2013-03-29 19:09:07 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2013-03-29 19:09:07 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys 2013-03-29 19:09:07 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys 2013-03-29 19:09:07 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys 2013-03-29 19:07:10 -------- d-----w- C:\Users\mfark\AppData\Local\PassMark 2013-03-29 19:06:58 540688 ----a-w- C:\Windows\System32\d3dx10_39.dll 2013-03-29 19:06:58 1942552 ----a-w- C:\Windows\System32\D3DCompiler_39.dll 2013-03-29 19:06:57 4992520 ----a-w- C:\Windows\System32\D3DX9_39.dll 2013-03-29 19:06:56 3977496 ----a-w- C:\Windows\System32\d3dx9_31.dll 2013-03-29 19:06:49 -------- d-----w- C:\ProgramData\Passmark 2013-03-29 18:31:22 -------- d-----w- C:\Windows\SysWow64\Wat 2013-03-29 18:31:22 -------- d-----w- C:\Windows\System32\Wat 2013-03-29 17:54:26 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll 2013-03-29 17:54:26 46080 ----a-w- C:\Windows\System32\atmlib.dll 2013-03-29 17:54:26 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll 2013-03-29 17:54:26 100864 ----a-w- C:\Windows\System32\fontsub.dll 2013-03-29 17:54:25 367616 ----a-w- C:\Windows\System32\atmfd.dll 2013-03-29 17:54:24 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll 2013-03-29 17:53:53 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys 2013-03-29 17:53:53 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys 2013-03-29 17:53:52 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll 2013-03-29 17:53:52 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll 2013-03-29 17:53:50 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll 2013-03-29 17:53:49 744448 ----a-w- C:\Windows\System32\WUDFx.dll 2013-03-29 17:53:49 229888 ----a-w- C:\Windows\System32\WUDFHost.exe 2013-03-29 17:52:00 81408 ----a-w- C:\Windows\System32\imagehlp.dll 2013-03-29 17:52:00 5120 ----a-w- C:\Windows\SysWow64\wmi.dll 2013-03-29 17:52:00 5120 ----a-w- C:\Windows\System32\wmi.dll 2013-03-29 17:52:00 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys 2013-03-29 17:52:00 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll 2013-03-29 17:46:36 976896 ----a-w- C:\Windows\System32\inetcomm.dll 2013-03-29 17:46:36 974336 ----a-w- C:\Windows\System32\WFS.exe 2013-03-29 17:46:36 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll 2013-03-29 17:46:36 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe 2013-03-29 17:46:02 -------- d-----w- C:\Users\mfark\AppData\Local\WindowsUpdate 2013-03-29 17:43:19 -------- d-----w- C:\Users\mfark\AppData\Local\Secunia PSI 2013-03-29 17:43:10 -------- d-----w- C:\Program Files (x86)\Secunia 2013-03-29 17:33:28 -------- d-----w- C:\ProgramData\Blizzard Entertainment 2013-03-29 17:33:28 -------- d-----w- C:\Program Files (x86)\StarCraft II 2013-03-29 17:33:28 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment 2013-03-29 17:32:15 -------- d-----w- C:\ProgramData\Battle.net 2013-03-29 17:06:59 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2013-03-29 17:05:47 478208 ----a-w- C:\Windows\System32\dpnet.dll 2013-03-29 17:04:58 503808 ----a-w- C:\Windows\System32\srcore.dll 2013-03-29 17:01:48 273840 ------w- C:\Windows\System32\MpSigStub.exe 2013-03-29 16:54:38 70144 ----a-w- C:\Windows\System32\coinst_8.982.dll 2013-03-29 16:54:37 442368 ----a-w- C:\Windows\System32\ATIDEMGX.dll 2013-03-29 16:53:55 -------- d-----w- C:\Program Files (x86)\ATI Technologies 2013-03-29 16:53:49 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll 2013-03-29 16:53:49 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys 2013-03-29 16:53:49 1031680 ----a-w- C:\Windows\System32\rdpcore.dll 2013-03-29 16:53:22 -------- d-----w- C:\Program Files\ATI Technologies 2013-03-29 16:53:21 -------- d-----w- C:\Program Files\ATI 2013-03-29 16:49:14 -------- d-----w- C:\ProgramData\NortonInstaller 2013-03-29 16:48:36 -------- d-----w- C:\Users\mfark\AppData\Local\Cyberlink 2013-03-29 16:47:21 2622464 ----a-w- C:\Windows\System32\wucltux.dll 2013-03-29 16:47:19 99840 ----a-w- C:\Windows\System32\wudriver.dll 2013-03-29 16:47:18 36864 ----a-w- C:\Windows\System32\wuapp.exe 2013-03-29 16:47:18 186752 ----a-w- C:\Windows\System32\wuwebv.dll 2013-03-29 16:46:04 -------- d-----w- C:\Program Files\ASRock 2013-03-29 16:45:02 -------- d-----w- C:\Users\mfark\AppData\Local\Google 2013-03-29 16:44:54 17192 ----a-w- C:\Windows\System32\drivers\AsrAppCharger.sys 2013-03-29 16:44:50 -------- d-----w- C:\Program Files\Broadcom 2013-03-29 16:43:39 34752 ----a-w- C:\Windows\System32\drivers\WPRO_41_2001.sys 2013-03-29 16:42:28 -------- d-----w- C:\Program Files (x86)\ASM106xSATA 2013-03-29 16:41:26 -------- d-----w- C:\Program Files (x86)\ASM104xUSB3 2013-03-29 16:41:19 16152 ----a-w- C:\Windows\System32\drivers\iusb3hcs.sys 2013-03-29 16:41:13 788760 ----a-w- C:\Windows\System32\drivers\iusb3xhc.sys 2013-03-29 16:41:12 356120 ----a-w- C:\Windows\System32\drivers\iusb3hub.sys 2013-03-29 16:38:18 15168 ----a-w- C:\Windows\System32\drivers\IntelMEFWVer.dll 2013-03-29 16:37:58 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent 2013-03-29 16:37:56 62784 ----a-w- C:\Windows\System32\drivers\HECIx64.sys 2013-03-29 16:37:36 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation 2013-03-29 16:35:00 647736 ----a-w- C:\Windows\System32\drivers\iaStorA.sys 2013-03-29 16:35:00 28216 ----a-w- C:\Windows\System32\drivers\iaStorF.sys 2013-03-29 16:29:26 53248 ----a-r- C:\Windows\SysWow64\CSVer.dll 2013-03-29 16:29:13 -------- d-----w- C:\Intel 2013-03-29 16:27:57 1632128 ----a-w- C:\Windows\System32\drivers\cfosspeed6.sys 2013-03-29 16:25:55 -------- d-----w- C:\ProgramData\FNET 2013-03-29 16:25:24 31016 ----a-w- C:\Windows\System32\drivers\AsrRamDisk.sys 2013-03-29 16:25:24 -------- d-----w- C:\Program Files\ASRock Utility 2013-03-29 16:25:23 -------- d-----w- C:\Program Files (x86)\ASRock Utility 2013-03-29 16:21:11 -------- d-----w- C:\Users\mfark\AppData\Local\VirtualStore 2013-03-29 16:10:13 96664 ----a-w- C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe 2013-03-29 16:09:48 -------- d-sh--w- C:\Windows\Installer 2013-03-29 16:09:30 -------- d-----w- C:\Program Files\AVAST Software 2013-03-29 16:09:12 -------- d-----w- C:\ProgramData\AVAST Software 2013-03-29 16:08:38 -------- d-sh--w- C:\Recovery 2013-02-18 22:39:22 18507776 ----a-w- C:\Windows\SysWow64\FAHScreensaver.scr 2013-02-07 12:15:22 18456 ----a-w- C:\Windows\System32\drivers\psi_mf_amd64.sys . ==================== Find6M ==================== . 2013-03-30 10:21:14 175616 ----a-w- C:\Windows\System32\msclmd.dll 2013-03-30 10:21:14 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll 2013-02-12 05:45:24 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll 2013-02-12 05:45:22 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll 2013-02-12 05:45:22 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll 2013-02-12 05:45:22 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll 2013-02-12 04:48:31 474112 ----a-w- C:\Windows\apppatch\AcSpecfc.dll 2013-02-12 04:48:26 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll 2013-02-12 04:12:05 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-01-13 21:17:03 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-01-13 21:17:02 2560 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll 2013-01-13 21:16:42 10752 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll 2013-01-13 21:12:46 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll 2013-01-13 21:11:21 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll 2013-01-13 21:11:08 5632 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll 2013-01-13 21:11:07 5632 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2013-01-13 21:11:07 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll 2013-01-13 21:11:07 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll 2013-01-13 20:35:31 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-01-13 20:35:31 2560 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2013-01-13 20:35:18 10752 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2013-01-13 20:32:07 3584 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2013-01-13 20:31:48 4096 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll 2013-01-13 20:31:41 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll 2013-01-13 20:31:40 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2013-01-13 20:31:40 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll 2013-01-13 20:31:40 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll 2013-01-13 20:31:00 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll 2013-01-13 20:22:22 1988096 ----a-w- C:\Windows\SysWow64\d3d10warp.dll 2013-01-13 20:20:31 293376 ----a-w- C:\Windows\SysWow64\dxgi.dll 2013-01-13 20:09:00 249856 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll 2013-01-13 20:08:43 220160 ----a-w- C:\Windows\SysWow64\d3d10core.dll 2013-01-13 20:08:35 1504768 ----a-w- C:\Windows\SysWow64\d3d11.dll 2013-01-13 19:59:04 1643520 ----a-w- C:\Windows\System32\DWrite.dll 2013-01-13 19:58:28 1175552 ----a-w- C:\Windows\System32\FntCache.dll 2013-01-13 19:54:01 604160 ----a-w- C:\Windows\SysWow64\d3d10level9.dll 2013-01-13 19:53:58 207872 ----a-w- C:\Windows\SysWow64\WindowsCodecsExt.dll 2013-01-13 19:53:14 187392 ----a-w- C:\Windows\SysWow64\UIAnimation.dll 2013-01-13 19:51:30 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll 2013-01-13 19:49:17 363008 ----a-w- C:\Windows\System32\dxgi.dll 2013-01-13 19:48:47 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll 2013-01-13 19:46:25 1080832 ----a-w- C:\Windows\SysWow64\d3d10.dll 2013-01-13 19:43:21 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll 2013-01-13 19:38:39 333312 ----a-w- C:\Windows\System32\d3d10_1core.dll 2013-01-13 19:38:32 1887232 ----a-w- C:\Windows\System32\d3d11.dll 2013-01-13 19:38:21 296960 ----a-w- C:\Windows\System32\d3d10core.dll 2013-01-13 19:37:57 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll 2013-01-13 19:25:04 245248 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll 2013-01-13 19:24:33 648192 ----a-w- C:\Windows\System32\d3d10level9.dll 2013-01-13 19:24:30 221184 ----a-w- C:\Windows\System32\UIAnimation.dll 2013-01-13 19:20:42 194560 ----a-w- C:\Windows\System32\d3d10_1.dll 2013-01-13 19:20:04 1238528 ----a-w- C:\Windows\System32\d3d10.dll 2013-01-13 19:15:40 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll 2013-01-13 19:10:36 3928064 ----a-w- C:\Windows\System32\d2d1.dll 2013-01-13 19:02:06 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll 2013-01-13 18:34:58 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll 2013-01-13 18:32:43 465920 ----a-w- C:\Windows\System32\WMPhoto.dll 2013-01-13 18:09:52 522752 ----a-w- C:\Windows\System32\XpsGdiConverter.dll 2013-01-13 17:26:42 1158144 ----a-w- C:\Windows\SysWow64\XpsPrint.dll 2013-01-13 17:05:09 1682432 ----a-w- C:\Windows\System32\XpsPrint.dll 2013-01-05 05:53:43 5553512 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-01-05 05:00:15 3967848 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe 2013-01-05 05:00:11 3913064 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe 2013-01-04 06:11:21 2284544 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll 2013-01-04 06:11:13 2776576 ----a-w- C:\Windows\System32\msmpeg2vdec.dll 2013-01-04 05:46:09 215040 ----a-w- C:\Windows\System32\winsrv.dll 2013-01-04 04:51:16 5120 ----a-w- C:\Windows\SysWow64\wow32.dll 2013-01-04 04:43:21 44032 ----a-w- C:\Windows\apppatch\acwow64.dll 2013-01-04 03:26:48 3153408 ----a-w- C:\Windows\System32\win32k.sys 2013-01-04 02:47:35 25600 ----a-w- C:\Windows\SysWow64\setup16.exe 2013-01-04 02:47:34 7680 ----a-w- C:\Windows\SysWow64\instnm.exe 2013-01-04 02:47:34 2048 ----a-w- C:\Windows\SysWow64\user.exe 2013-01-04 02:47:33 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll 2013-01-03 06:00:54 1913192 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-01-03 06:00:42 288088 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2012-12-29 20:59:38 28664 ----a-w- C:\Windows\SysWow64\speedfan.sys 2012-12-07 13:20:16 441856 ----a-w- C:\Windows\System32\Wpc.dll 2012-12-07 13:15:31 2746368 ----a-w- C:\Windows\System32\gameux.dll 2012-12-07 12:26:17 308736 ----a-w- C:\Windows\SysWow64\Wpc.dll 2012-12-07 12:20:43 2576384 ----a-w- C:\Windows\SysWow64\gameux.dll 2012-12-07 11:20:04 30720 ----a-w- C:\Windows\System32\usk.rs 2012-12-07 11:20:03 43520 ----a-w- C:\Windows\System32\csrr.rs 2012-12-07 11:20:03 23552 ----a-w- C:\Windows\System32\oflc.rs 2012-12-07 11:20:01 45568 ----a-w- C:\Windows\System32\oflc-nz.rs 2012-12-07 11:20:01 44544 ----a-w- C:\Windows\System32\pegibbfc.rs 2012-12-07 11:20:01 20480 ----a-w- C:\Windows\System32\pegi-fi.rs 2012-12-07 11:20:00 20480 ----a-w- C:\Windows\System32\pegi-pt.rs 2012-12-07 11:19:59 20480 ----a-w- C:\Windows\System32\pegi.rs 2012-12-07 11:19:58 46592 ----a-w- C:\Windows\System32\fpb.rs 2012-12-07 11:19:57 40960 ----a-w- C:\Windows\System32\cob-au.rs 2012-12-07 11:19:57 21504 ----a-w- C:\Windows\System32\grb.rs 2012-12-07 11:19:57 15360 ----a-w- C:\Windows\System32\djctq.rs 2012-12-07 11:19:56 55296 ----a-w- C:\Windows\System32\cero.rs 2012-12-07 11:19:55 51712 ----a-w- C:\Windows\System32\esrb.rs 2012-11-30 05:45:35 362496 ----a-w- C:\Windows\System32\wow64win.dll 2012-11-30 05:45:35 243200 ----a-w- C:\Windows\System32\wow64.dll 2012-11-30 05:45:35 13312 ----a-w- C:\Windows\System32\wow64cpu.dll 2012-11-30 05:43:12 16384 ----a-w- C:\Windows\System32\ntvdm64.dll 2012-11-30 05:41:07 424448 ----a-w- C:\Windows\System32\KernelBase.dll 2012-11-30 04:53:59 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll . ============= FINISH: 3:37:57.54 ===============
  13. I wouldn't think my system is infected, I don't have any reason to believe it is and run a fairly tight ship, is this error a sign of infection? Thanks.
  14. Hello, I am getting this error when I try to update MBAM. I am using a standard account (not admin) and running MBAM as an administrator. I have tried using the "mbam clean" tool, have uninstalled and reinstalled MBAM, and nothing has helped. Any help is apreciated, thanks.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.