Jump to content

CLR Error 80004005 won't go away


Recommended Posts

McAfee® Labs Stinger Version 10.2.0.787 built on Sep 17 2012

Copyright © 2012 McAfee, Inc. All Rights Reserved.

Virus data file v1000.0000 created on Sep 17 2012.

Ready to scan for 4978 viruses, trojans and variants.

Scan initiated on Tue Sep 18 08:23:53 2012

Rootkit scan result : Not Scanned

Master Boot Record(s):....1

Possibly Infected:.............0

Boot Sector(s):.................1

Possibly Infected: ............0

Number of clean files: 23092

Link to post
Share on other sites

OS Version = 6.1.7601, Platform 2, Service Pack 1

OS Description = Windows 7 - x64 Home Premium Edition Service Pack 1

CommandLine = C:\af15ab2298c86aef25c6cf13cea46a9a\\Setup.exe /x86 /x64 /ia64 /web

TimeZone = Mountain Daylight Time

Initial LCID = 1033

Using Simultaneous Download and Install mechanism

Operation: Installing

Package Name = Microsoft .NET Framework 4 Setup

Package Version = 4.0.30319

User Experience Data Collection Policy: AlwaysUploaded

Number of applicable items: 11

Exe (C:\af15ab2298c86aef25c6cf13cea46a9a\SetupUtility.exe) succeeded.

Exe Log File: dd_SetupUtility.txt

ServiceControl operation succeeded!

ServiceControl operation succeeded!

Exe (C:\Users\Gabe\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\Windows6.1-KB958488-v6001-x64.msu) failed with 0x240006 - (null).

Exe (C:\af15ab2298c86aef25c6cf13cea46a9a\SetupUtility.exe) succeeded.

Exe Log File: dd_SetupUtility.txt

MSI (C:\Users\Gabe\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\netfx_Core_x64.msi) Installation failed. Msi Log: Microsoft .NET Framework 4 Setup_20120918_095719673-MSI_netfx_Core_x64.msi.txt

Final Result: Installation failed with error code: (0x80070643), "Fatal error during installation. " (Elapsed time: 0 00:00:49).

Link to post
Share on other sites

Hold on. Do not try to install Net framework. But I would like for you to be clear: Did you (just today) try it from Windows Update website {online) ? yes/no

OR did you try to manually install yourself? via a command line ??

And beyond that, where do you see

CLR Error 80004005
?

I see this from your last log

Installation failed with error code: (0x80070643)

Question for you:

Have you used Iolo System Mechanic to do some sort of optimize or registry what-not?

Have you used any other registry tweaker / optimizer / or what's it snake-oil optimizer ??

I suggest you provide the answers. Then for a starter, do the following and stay tuned for a later follow-up.

Close and exit any open work documents or program windows you opened.

1a. Open Internet Explorer (only!) to http://support.microsoft.com/kb/910336 [ignore the title & Symptoms].

1b. Dismiss/close the "automated troubleshooter" pop-up! - then...

1c. Ignoring any "Not recommended" or similar warnings, run Fix It 50202 in DEFAULT and then AGGRESSIVE modes. [1]

~~~~~~~~~~~~~~~

[1] Running the Fixit in aggressive mode will result in your history of installed MS updates to be "empty" when viewed online at Windows Updates.

What is actually installed on your system will not be affected.

Next

Do method 1 in this MS support article http://support.microsoft.com/kb/976982

"Error codes “0x80070643” or “0x643” occur when you install the .NET Framework updates"

Reboot & then run a manual check for updates at Windows Update, etc., etc...

When you reach Windows Update, do a Custom scan for updates. Take (accept) the ones marked Critical or Important.

Decline any that are marked as "optional".

Have infinite patience while it scans and does it's work.

When it prompts you to Restart Windows, please do that. Allow it to restart.

IF and only if you get an "error" or "exception/failure" message, I will need the complete so called "failure code" and description (if you see it).

Please have good patience, this is not very complicated. Ask me if you have questions.

Link to post
Share on other sites

What is (are) Terraria, DayZ Commander and Curse Client ?

What is showing this

CLR Error
?

and how and when does it occur ?

If these are games and that is the only time you get these "notices" perhaps you need to check with the game publisher.

Is .net framework client version 4.0 being presented as a Critical or Important update ? or only as "Recommended" ?

Link to post
Share on other sites

Terraria is a Steam game life a side scrolling minecraft. DayZ Commander is a Server finder for the Arma 2 Mod called DayZ ( zombie survival mod), and curse client is world of warcraft, and other mmo's addon installer. They all require .net framework. The thing is they work fine on my laptop just not my desktop. It happens when i try to launch the individual programs usually within 30 seconds

Link to post
Share on other sites

Go to Control Panel >>> Programs and Features

Then make a list and report back on the "Net Framework" that are listed. I need the full name(s).

and

You have to make a list of any "Failed" Windows update item and the fail-exception code for each.

To do that:

Press Windows-key on keyboard, type in

windows update

in the search-box and press Enter.

Then at the upper left, press on View Update history

Locate each item marked as "Failed" in the Status column; right-click on it and click View details.

Then write down and report here in Error Details the Code shown and the name of the update item.

Note: If that "clr error" is the only thing happening, then this is not due to malware, but some other glitch on your system.

Link to post
Share on other sites

My computer is only launching in safe mode. tried running the launching repair and it said it could not be done. It was working fine last night but this morning it wouldnt respond to anything and when i tried to reset it, it wouldnt start back up. Even in safe mode it takes around 5 minutes to completely load

Link to post
Share on other sites

To run a report tool from a command prompt, please do the following:

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.

For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select English as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:

  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select English as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:


    • Startup Repair
    • System Restore
    • Windows Complete PC Restore
    • Windows Memory Diagnostic Tool
    • Command Prompt i_arrow-l.gif

[*]Select Command Prompt

[*]In the command window type in notepad and press Enter.

[*]The notepad opens. Under File menu select Open.

[*]Select "Computer" and find your flash drive letter and close the notepad.

[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter

Note: Replace letter e with the drive letter of your flash drive.

[*]The tool will start to run.

[*]When the tool opens click Yes to disclaimer.

[*]Press Scan button.

[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.

Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-09-2012

Ran by SYSTEM at 20-09-2012 12:19:16

Running from G:\

Windows 7 Home Premium (X64) OS Language: English(US)

The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [7981088 2009-07-20] (Realtek Semiconductor)

HKLM\...\Run: [RunDLLEntry] C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry [17920 2009-02-26] (Creative Technology Ltd.)

HKLM\...\Run: [Windows Mobile-based device management] %WINDIR%\WindowsMobile\wmdcBase.exe [x]

HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [499608 2011-06-16] (Adobe Systems Incorporated)

HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [1271168 2012-03-26] (Microsoft Corporation)

HKLM\...\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon [2779024 2011-03-14] (CANON INC.)

HKLM-x32\...\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\BackupManagerTray.exe" -h -k [244480 2009-08-12] (NewTech Infosystems, Inc.)

HKLM-x32\...\Run: [VolPanel] "C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r [241789 2009-07-07] (Creative Technology Ltd)

HKLM-x32\...\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume [288080 2009-07-17] (Microsoft Corporation)

HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-08-27] (Apple Inc.)

HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-04-18] (Apple Inc.)

HKLM-x32\...\Run: [Razer Naga Driver] C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe [953232 2011-11-16] (Razer USA Ltd)

HKLM-x32\...\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide [2793304 2009-10-14] ()

HKLM-x32\...\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon [1611160 2011-03-28] (CANON INC.)

HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421776 2012-09-09] (Apple Inc.)

HKU\Default\...\RunOnce: [scrSav] C:\Program Files (x86)\Gateway\Screensaver\run_Gateway.exe /default [162336 2009-07-21] ()

HKU\Default User\...\RunOnce: [scrSav] C:\Program Files (x86)\Gateway\Screensaver\run_Gateway.exe /default [162336 2009-07-21] ()

HKU\Gabe\...\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()

HKU\Gabe\...\Run: [Akamai NetSession Interface] "C:\Users\Gabe\AppData\Local\Akamai\netsession_win.exe" [4440896 2012-08-10] (Akamai Technologies, Inc.)

HKU\Gabe\...\Run: [Google Update] "C:\Users\Gabe\AppData\Local\Google\Update\GoogleUpdate.exe" /c [135664 2009-12-26] (Google Inc.)

HKU\Gabe\...\Run: [steam] "C:\Program Files (x86)\newsteam\steam.exe" -silent [1353080 2012-09-13] (Valve Corporation)

HKU\Gabe\...\Run: [WinFLTray] C:\Windows\SysWow64\WinFLTray.exe [321736 2012-09-20] ( New Softwares.net)

HKU\Gabe\...\RunOnce: [Application Restart #2] C:\Users\Gabe\AppData\Local\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session --flag-switches-begin --flag-switches-end -- http://go.microsoft.com/fwlink/?LinkID=143357&cid=50202&P2=50202&ct=fxit&P0=fxit&showpage=1 [1229848 2012-08-29] (Google Inc.)

HKU\Gabe\...\Policies\system: [LogonHoursAction] 2

HKU\Gabe\...\Policies\system: [DontDisplayLogonHoursWarnings] 1

HKU\Mcx1-AUSTIN\...\Winlogon: [shell] C:\Windows\eHome\McrMgr.exe [343552 2009-07-13] (Microsoft Corporation)

HKU\UpdatusUser\...\RunOnce: [scrSav] C:\Program Files (x86)\Gateway\Screensaver\run_Gateway.exe /default [162336 2009-07-21] ()

HKLM-x32\...\Runonce: [GrpConv] grpconv -o [x]

Tcpip\Parameters: [DhcpNameServer] 69.169.190.211 208.72.160.67

Tcpip\..\Interfaces\{6BC084C6-73F6-4A18-AC61-EB4D9553E781}: [NameServer]192.168.1.1

Startup: C:\Users\Gabe\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

Startup: C:\Users\Gabe\Start Menu\Programs\Startup\ts3server_win64.exe (TeamSpeak Systems GmbH)

==================== Services (Whitelisted) ===================

2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated)

2 Akamai; C:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll [4537664 2012-09-10] (Akamai Technologies, Inc.)

4 Dyn Updater; C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe [95608 2011-11-15] (Dyn, Inc.)

2 FLService; C:\Windows\SysWow64\WinFLService.exe [91336 2012-09-20] (New Softwares.net)

2 MBAMScheduler; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" [399432 2012-09-07] (Malwarebytes Corporation)

2 MBAMService; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" [676936 2012-09-07] (Malwarebytes Corporation)

2 MsMpSvc; "C:\Program Files\Microsoft Security Client\MsMpEng.exe" [12600 2012-03-26] (Microsoft Corporation)

3 NisSrv; "C:\Program Files\Microsoft Security Client\NisSrv.exe" [291696 2012-03-26] (Microsoft Corporation)

2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-09-15] ()

2 SysMain; C:\Windows\System32\sysmain.dll [1743360 2010-11-20] ()

2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [x]

2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

==================== Drivers (Whitelisted) =====================

3 AE1000; C:\Windows\System32\DRIVERS\ae1000w7.sys [1101600 2010-01-19] (Ralink Technology Corp.)

3 hamachi; C:\Windows\System32\Drivers\hamachi.sys [33856 2009-03-18] (LogMeIn, Inc.)

3 LVPr2M64; C:\Windows\System32\Drivers\LVPr2M64.sys [30232 2009-10-07] ()

3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()

3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [25928 2012-09-07] (Malwarebytes Corporation)

2 NEWDRIVER; \??\C:\Windows\SysWow64\WinVDEdrv6.sys [197648 2012-09-20] ()

3 RzSynapse; C:\Windows\System32\Drivers\RzSynapse.sys [126464 2011-11-15] (Razer USA Ltd)

3 U6000ALL; C:\Windows\System32\DRIVERS\dmdcap.sys [276480 2007-06-08] ()

1 WinFLAdrv; C:\Windows\SysWow64\WinFLAdrv.sys [35328 2012-09-20] ()

2 WinVDEDrv; \??\C:\Windows\SysWow64\WinVDEdrv.sys [225680 2012-09-20] (NewSoftwares.net, Inc.)

3 catchme; \??\C:\ComboFix\catchme.sys [x]

3 dump_wmimmc; \??\C:\Program Files (x86)\CABAL Online (NA - Global)\GameGuard\dump_wmimmc.sys [x]

3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]

1 pilzjtxd; \??\C:\Windows\system32\drivers\pilzjtxd.sys [x]

3 X6va003; \??\C:\Users\Gabe\AppData\Local\Temp\0036C13.tmp [x]

1 xylmutwv; \??\C:\Windows\system32\drivers\xylmutwv.sys [x]

==================== NetSvcs (Whitelisted) ====================

==================== One Month Created Files and Folders ========

2012-09-20 04:07 - 2012-09-20 04:07 - 00321736 ____A ( New Softwares.net) C:\Windows\SysWOW64\WinFLTrayShred.exe

2012-09-20 04:07 - 2012-09-20 04:07 - 00321736 ____A ( New Softwares.net) C:\Windows\SysWOW64\WinFLTray.exe

2012-09-20 04:07 - 2012-09-20 04:07 - 00225680 ____A (NewSoftwares.net, Inc.) C:\Windows\SysWOW64\WinVDEdrv.sys

2012-09-20 04:07 - 2012-09-20 04:07 - 00197648 ____A C:\Windows\SysWOW64\WinVDEdrv6.sys

2012-09-20 04:07 - 2012-09-20 04:07 - 00091336 ____A (New Softwares.net) C:\Windows\SysWOW64\WinFLService.exe

2012-09-20 04:07 - 2012-09-20 04:07 - 00035328 ____A C:\Windows\SysWOW64\WinFLAdrv.sys

2012-09-20 04:07 - 2012-09-20 04:07 - 00014024 ____A C:\Windows\SysWOW64\WinFLMsgService.exe

2012-09-20 04:07 - 2012-09-20 04:07 - 00001106 ____A C:\Users\Public\Desktop\Folder Lock.lnk

2012-09-18 13:12 - 2012-09-18 13:10 - 00985600 ____A C:\Users\Gabe\Downloads\MicrosoftFixit50123.msi

2012-09-18 11:37 - 2012-09-18 11:37 - 00689664 ____A C:\Users\Gabe\Downloads\MicrosoftFixit50202.msi

2012-09-18 10:02 - 2012-09-18 10:02 - 00347424 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\MicrosoftFixit.wu.LB.13527142207976578.1.1.Run.exe

2012-09-18 08:36 - 2012-09-18 08:37 - 00000000 ____D C:\94cc1a18a3c877753d22699295

2012-09-18 08:33 - 2012-09-18 08:33 - 00000000 ____D C:\df5974af1b1f4b4e0428d5640740dab7

2012-09-18 08:09 - 2012-09-18 08:09 - 08613968 ____A (Macroplant LLC ) C:\Users\Gabe\Downloads\iExplorer_3_Setup.exe

2012-09-18 07:19 - 2012-09-18 07:19 - 00889416 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\dotNetFx40_Full_setup.exe

2012-09-18 07:17 - 2012-09-19 15:43 - 00000040 ___RH C:\Users\Gabe\Downloads\stinger.opt

2012-09-18 07:17 - 2012-09-18 07:17 - 00000491 ____A C:\Users\Gabe\Downloads\stinger.txt

2012-09-18 04:06 - 2012-09-18 04:06 - 17483288 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\Windows-KB890830-x64-V4.12.exe

2012-09-18 04:04 - 2012-09-18 04:04 - 74537576 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\msert.exe

2012-09-18 04:04 - 2012-09-18 04:04 - 10023016 ____A (McAfee Inc.) C:\Users\Gabe\Downloads\stinger.exe

2012-09-17 04:05 - 2012-09-17 04:05 - 00000492 ____A C:\Users\Gabe\Desktop\DrWeb.csv

2012-09-16 15:43 - 2012-09-16 16:11 - 00000000 ____D C:\Users\Gabe\DoctorWeb

2012-09-16 15:37 - 2012-09-16 15:39 - 93189968 ____A C:\Users\Gabe\Desktop\drweb-cureit.exe

2012-09-16 11:29 - 2012-09-16 11:29 - 00002639 ____A C:\Users\Gabe\Desktop\FSS.txt

2012-09-16 11:28 - 2012-09-16 11:28 - 00693235 ____A (Farbar) C:\Users\Gabe\Desktop\FSS.exe

2012-09-16 11:21 - 2012-09-16 11:21 - 00002902 ____A C:\Users\Gabe\Desktop\Rkill.txt

2012-09-16 11:17 - 2012-09-16 11:17 - 01659808 ____A (Bleeping Computer, LLC) C:\Users\Gabe\Downloads\rkill.com

2012-09-16 11:14 - 2012-09-16 11:14 - 00025230 ____A C:\Users\Gabe\Desktop\09162012_130704.log

2012-09-16 11:07 - 2012-09-16 11:07 - 00000000 ____D C:\_OTL

2012-09-16 10:56 - 2012-09-16 10:56 - 01034216 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll

2012-09-16 10:56 - 2012-09-16 10:56 - 00916456 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll

2012-09-16 10:56 - 2012-09-16 10:56 - 00289768 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe

2012-09-16 10:56 - 2012-09-16 10:56 - 00189416 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe

2012-09-16 10:56 - 2012-09-16 10:56 - 00188904 ____A (Oracle Corporation) C:\Windows\System32\java.exe

2012-09-16 10:56 - 2012-09-16 10:56 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll

2012-09-16 10:56 - 2012-09-16 10:56 - 00000000 ____D C:\Program Files\Java

2012-09-16 10:30 - 2012-09-16 10:30 - 00000000 ____D C:\FRST

2012-09-16 10:16 - 2012-09-16 10:16 - 00001146 ____A C:\Users\Gabe\Desktop\checkup.txt

2012-09-16 10:06 - 2012-09-16 10:06 - 00854156 ____A C:\Users\Gabe\Downloads\SecurityCheck.exe

2012-09-16 09:51 - 2012-09-16 10:06 - 00149850 ____A C:\Users\Gabe\Desktop\Extras.Txt

2012-09-16 09:50 - 2012-09-16 10:06 - 00150488 ____A C:\Users\Gabe\Desktop\OTL.Txt

2012-09-16 09:34 - 2012-09-16 09:34 - 00600064 ____A (OldTimer Tools) C:\Users\Gabe\Desktop\OTL.exe

2012-09-16 08:16 - 2012-09-16 08:16 - 00000000 ____A C:\Users\Gabe\defogger_reenable

2012-09-16 08:13 - 2012-09-16 08:15 - 00000000 ____D C:\Users\Gabe\Desktop\ERUNT

2012-09-16 08:10 - 2012-09-16 08:10 - 00050477 ____A C:\Users\Gabe\Desktop\Defogger.exe

2012-09-15 06:22 - 2012-09-15 06:23 - 00000000 ____D C:\Users\Gabe\Documents\Battlefield 3

2012-09-15 06:06 - 2012-09-15 16:03 - 00283304 ____A C:\Windows\SysWOW64\PnkBstrB.exe

2012-09-15 06:06 - 2012-09-15 06:30 - 00076888 ____A C:\Windows\SysWOW64\PnkBstrA.exe

2012-09-15 05:37 - 2012-09-15 06:17 - 00000000 ____D C:\Users\Gabe\AppData\Local\Origin

2012-09-15 05:37 - 2012-09-15 05:37 - 00000000 ____D C:\Users\Gabe\AppData\Roaming\Origin

2012-09-15 05:35 - 2012-09-15 05:39 - 00000000 ____D C:\Users\All Users\Origin

2012-09-15 05:35 - 2012-09-15 05:37 - 00000000 ____D C:\Program Files (x86)\Origin

2012-09-14 17:30 - 2012-08-30 22:12 - 62164608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe

2012-09-14 17:29 - 2012-09-14 17:29 - 16868888 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\Windows-KB890830-V4.12.exe

2012-09-14 13:27 - 2012-09-14 16:41 - 00000038 ___RH C:\Users\Gabe\Desktop\stinger.opt

2012-09-14 13:26 - 2012-09-19 15:43 - 00000000 ____D C:\Program Files (x86)\stinger

2012-09-14 06:23 - 2012-09-14 17:25 - 00000000 ____D C:\Users\Gabe\AppData\Local\ArmA 2

2012-09-13 20:18 - 2012-09-13 20:18 - 00607260 ____R (Swearware) C:\Users\Gabe\Downloads\dds.com

2012-09-13 20:17 - 2012-09-13 20:34 - 00034177 ____A C:\Users\Gabe\Downloads\Result.txt

2012-09-13 20:16 - 2012-09-13 20:16 - 00751391 ____A (Farbar) C:\Users\Gabe\Downloads\MiniToolBox.exe

2012-09-13 19:22 - 2012-09-13 19:22 - 00001750 ____A C:\Users\Public\Desktop\iTunes.lnk

2012-09-13 19:22 - 2012-08-21 11:01 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys

2012-09-13 19:21 - 2012-09-13 19:22 - 00000000 ____D C:\Users\All Users\34BE82C4-E596-4e99-A191-52C6199EBF69

2012-09-13 19:21 - 2012-09-13 19:22 - 00000000 ____D C:\Program Files\iTunes

2012-09-13 19:21 - 2012-09-13 19:22 - 00000000 ____D C:\Program Files (x86)\iTunes

2012-09-13 19:21 - 2012-09-13 19:21 - 00000000 ____D C:\Program Files\iPod

2012-09-13 19:10 - 2012-08-22 10:12 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys

2012-09-13 19:10 - 2012-08-02 09:58 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll

2012-09-13 19:10 - 2012-08-02 08:57 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll

2012-09-13 19:10 - 2012-07-04 12:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rndismpx.sys

2012-09-13 19:10 - 2012-07-04 12:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys

2012-09-13 19:06 - 2012-09-13 19:06 - 00000000 ____D C:\f1367e126a89152dbd33

2012-09-13 18:31 - 2012-09-14 17:25 - 00000000 ____D C:\Users\Gabe\Documents\ArmA 2

2012-09-13 18:31 - 2012-09-13 18:33 - 00000000 ____D C:\Users\Gabe\AppData\Local\ArmA 2 OA

2012-09-13 18:21 - 2012-09-13 18:21 - 00000000 ____D C:\Program Files (x86)\Dotjosh Studios

2012-09-12 12:01 - 2012-09-12 12:01 - 00000000 ____D C:\Users\Gabe\AppData\Roaming\SystemRequirementsLab

2012-09-12 12:01 - 2012-09-12 12:01 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab

2012-09-11 22:54 - 2012-08-22 10:12 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys

2012-09-11 22:54 - 2012-08-22 10:12 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys

2012-09-11 22:54 - 2012-08-22 10:12 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS

2012-09-02 23:53 - 2012-09-02 23:53 - 00000000 ____D C:\Users\Gabe\Documents\Amazon MP3

2012-09-01 22:50 - 2012-09-01 22:50 - 00000000 ___DC C:\Users\All Users\{3FC66E2C-85B6-4398-82FB-C13C51DE9DD8}

2012-09-01 22:42 - 2012-09-01 22:50 - 1519417223 ____A C:\Users\Gabe\Downloads\LOLPBE.zip

2012-09-01 01:11 - 1999-12-31 16:00 - 25743168 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 25248064 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 19607872 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 17551680 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 15322432 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 14298944 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys

2012-09-01 01:11 - 1999-12-31 16:00 - 08139072 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 08105280 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 05982528 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 02881856 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 02681664 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 02524992 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 02445120 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll

2012-09-01 01:11 - 1999-12-31 16:00 - 02368832 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2012-09-01 00:40 - 2012-09-01 00:40 - 00000000 ____D C:\Users\Gabe\AppData\Roaming\InstallShield

2012-09-01 00:40 - 2012-09-01 00:40 - 00000000 ____D C:\Users\All Users\InstallShield

2012-09-01 00:40 - 2011-02-18 06:11 - 00439320 ____A (Intel Corporation) C:\Windows\System32\Drivers\iaStor.sys

2012-09-01 00:38 - 2012-09-01 00:38 - 00000000 ____D C:\Windows\SysWOW64\sda

2012-09-01 00:36 - 1999-12-31 16:00 - 09888360 ____A (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUStoricon.dll

2012-09-01 00:36 - 1999-12-31 16:00 - 00422504 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtsUStor.dll

2012-09-01 00:36 - 1999-12-31 16:00 - 00250984 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RtsUStor.sys

2012-09-01 00:33 - 2012-09-01 00:33 - 00000000 ____D C:\Program Files\Intel

2012-09-01 00:33 - 2011-09-26 15:15 - 00178344 ____A (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe

2012-09-01 00:32 - 2011-09-06 13:33 - 00355016 ____A (Intel Corporation) C:\Windows\System32\PROUnstl.exe

2012-09-01 00:32 - 2006-01-12 12:52 - 00001904 ____N C:\Windows\System32\SetupBD.din

2012-09-01 00:19 - 2011-07-20 06:58 - 00342704 ____A (Intel Corporation) C:\Windows\System32\Drivers\e1k62x64.sys

2012-09-01 00:19 - 2011-06-29 21:55 - 00068264 ____A (Intel Corporation) C:\Windows\System32\e1kmsg.dll

2012-09-01 00:19 - 2011-06-15 22:14 - 00098496 ____A (Intel Corporation) C:\Windows\System32\NicInstK.dll

2012-09-01 00:19 - 2009-10-09 08:43 - 00003143 ____A C:\Windows\System32\e1k62x64.din

2012-09-01 00:04 - 2012-09-01 00:04 - 00002469 ____A C:\Users\Public\Desktop\DriverUpdate.lnk

2012-09-01 00:04 - 2012-09-01 00:04 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers

2012-09-01 00:04 - 2012-09-01 00:04 - 00000000 ____D C:\Users\Gabe\AppData\Local\SlimWare Utilities Inc

2012-09-01 00:04 - 2012-09-01 00:04 - 00000000 ____D C:\Program Files (x86)\DriverUpdate

2012-08-31 20:19 - 2012-08-31 20:19 - 00002885 ____A C:\Windows\SysWOW64\jupdate-1.6.0_35-b10.log

2012-08-29 20:05 - 2012-08-29 20:05 - 00000318 ____A C:\Users\Gabe\Desktop\Curse Client.appref-ms

2012-08-29 20:05 - 2012-08-29 20:05 - 00000000 ____D C:\Users\Gabe\Documents\My Curse

2012-08-29 19:46 - 2012-08-29 20:04 - 00000000 ____D C:\Users\Gabe\AppData\Local\Apps\2.0

2012-08-29 19:46 - 2012-08-29 19:46 - 00000965 ____A C:\Users\Gabe\Gabe - Shortcut.lnk

2012-08-28 08:25 - 2012-08-28 08:59 - 00000984 ____A C:\Users\Public\Desktop\World of Warcraft.lnk

2012-08-24 13:39 - 2012-08-24 13:39 - 00000000 ____D C:\Users\Gabe\AppData\Local\{2E299EFB-46B7-442A-845F-11E4B795ED59}

==================== 3 Months Modified Files ==================

2012-09-20 04:07 - 2012-09-20 04:07 - 00321736 ____A ( New Softwares.net) C:\Windows\SysWOW64\WinFLTrayShred.exe

2012-09-20 04:07 - 2012-09-20 04:07 - 00321736 ____A ( New Softwares.net) C:\Windows\SysWOW64\WinFLTray.exe

2012-09-20 04:07 - 2012-09-20 04:07 - 00225680 ____A (NewSoftwares.net, Inc.) C:\Windows\SysWOW64\WinVDEdrv.sys

2012-09-20 04:07 - 2012-09-20 04:07 - 00197648 ____A C:\Windows\SysWOW64\WinVDEdrv6.sys

2012-09-20 04:07 - 2012-09-20 04:07 - 00091336 ____A (New Softwares.net) C:\Windows\SysWOW64\WinFLService.exe

2012-09-20 04:07 - 2012-09-20 04:07 - 00035328 ____A C:\Windows\SysWOW64\WinFLAdrv.sys

2012-09-20 04:07 - 2012-09-20 04:07 - 00014024 ____A C:\Windows\SysWOW64\WinFLMsgService.exe

2012-09-20 04:07 - 2012-09-20 04:07 - 00001106 ____A C:\Users\Public\Desktop\Folder Lock.lnk

2012-09-20 04:07 - 2012-08-13 19:05 - 00040960 ____A C:\Windows\SysWOW64\nwsftUninstall.exe

2012-09-19 20:35 - 2009-07-13 21:13 - 00882862 ____A C:\Windows\System32\PerfStringBackup.INI

2012-09-19 15:50 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT

2012-09-19 15:43 - 2012-09-18 07:17 - 00000040 ___RH C:\Users\Gabe\Downloads\stinger.opt

2012-09-19 12:28 - 2010-02-02 06:07 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2012-09-19 12:26 - 2012-04-07 21:30 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2012-09-19 02:46 - 2009-12-26 20:18 - 00000904 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2684759980-1959591888-1663914851-1000UA.job

2012-09-19 02:45 - 2010-02-02 06:07 - 00000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2012-09-18 18:41 - 2009-07-13 20:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2012-09-18 18:41 - 2009-07-13 20:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2012-09-18 13:50 - 2009-12-26 20:18 - 00000852 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2684759980-1959591888-1663914851-1000Core.job

2012-09-18 13:10 - 2012-09-18 13:12 - 00985600 ____A C:\Users\Gabe\Downloads\MicrosoftFixit50123.msi

2012-09-18 11:37 - 2012-09-18 11:37 - 00689664 ____A C:\Users\Gabe\Downloads\MicrosoftFixit50202.msi

2012-09-18 10:02 - 2012-09-18 10:02 - 00347424 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\MicrosoftFixit.wu.LB.13527142207976578.1.1.Run.exe

2012-09-18 08:09 - 2012-09-18 08:09 - 08613968 ____A (Macroplant LLC ) C:\Users\Gabe\Downloads\iExplorer_3_Setup.exe

2012-09-18 07:19 - 2012-09-18 07:19 - 00889416 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\dotNetFx40_Full_setup.exe

2012-09-18 07:17 - 2012-09-18 07:17 - 00000491 ____A C:\Users\Gabe\Downloads\stinger.txt

2012-09-18 04:06 - 2012-09-18 04:06 - 17483288 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\Windows-KB890830-x64-V4.12.exe

2012-09-18 04:04 - 2012-09-18 04:04 - 74537576 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\msert.exe

2012-09-18 04:04 - 2012-09-18 04:04 - 10023016 ____A (McAfee Inc.) C:\Users\Gabe\Downloads\stinger.exe

2012-09-17 04:05 - 2012-09-17 04:05 - 00000492 ____A C:\Users\Gabe\Desktop\DrWeb.csv

2012-09-16 15:39 - 2012-09-16 15:37 - 93189968 ____A C:\Users\Gabe\Desktop\drweb-cureit.exe

2012-09-16 11:29 - 2012-09-16 11:29 - 00002639 ____A C:\Users\Gabe\Desktop\FSS.txt

2012-09-16 11:28 - 2012-09-16 11:28 - 00693235 ____A (Farbar) C:\Users\Gabe\Desktop\FSS.exe

2012-09-16 11:21 - 2012-09-16 11:21 - 00002902 ____A C:\Users\Gabe\Desktop\Rkill.txt

2012-09-16 11:17 - 2012-09-16 11:17 - 01659808 ____A (Bleeping Computer, LLC) C:\Users\Gabe\Downloads\rkill.com

2012-09-16 11:14 - 2012-09-16 11:14 - 00025230 ____A C:\Users\Gabe\Desktop\09162012_130704.log

2012-09-16 10:56 - 2012-09-16 10:56 - 01034216 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll

2012-09-16 10:56 - 2012-09-16 10:56 - 00916456 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll

2012-09-16 10:56 - 2012-09-16 10:56 - 00289768 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe

2012-09-16 10:56 - 2012-09-16 10:56 - 00189416 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe

2012-09-16 10:56 - 2012-09-16 10:56 - 00188904 ____A (Oracle Corporation) C:\Windows\System32\java.exe

2012-09-16 10:56 - 2012-09-16 10:56 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll

2012-09-16 10:16 - 2012-09-16 10:16 - 00001146 ____A C:\Users\Gabe\Desktop\checkup.txt

2012-09-16 10:06 - 2012-09-16 10:06 - 00854156 ____A C:\Users\Gabe\Downloads\SecurityCheck.exe

2012-09-16 10:06 - 2012-09-16 09:51 - 00149850 ____A C:\Users\Gabe\Desktop\Extras.Txt

2012-09-16 10:06 - 2012-09-16 09:50 - 00150488 ____A C:\Users\Gabe\Desktop\OTL.Txt

2012-09-16 09:34 - 2012-09-16 09:34 - 00600064 ____A (OldTimer Tools) C:\Users\Gabe\Desktop\OTL.exe

2012-09-16 08:16 - 2012-09-16 08:16 - 00000000 ____A C:\Users\Gabe\defogger_reenable

2012-09-16 08:10 - 2012-09-16 08:10 - 00050477 ____A C:\Users\Gabe\Desktop\Defogger.exe

2012-09-15 16:03 - 2012-09-15 06:06 - 00283304 ____A C:\Windows\SysWOW64\PnkBstrB.exe

2012-09-15 16:03 - 2011-08-31 09:12 - 00283304 ____A C:\Windows\SysWOW64\PnkBstrB.xtr

2012-09-15 16:03 - 2011-08-31 09:10 - 00280904 ____A C:\Windows\SysWOW64\PnkBstrB.ex0

2012-09-15 06:30 - 2012-09-15 06:06 - 00076888 ____A C:\Windows\SysWOW64\PnkBstrA.exe

2012-09-15 05:35 - 2010-01-26 11:38 - 00003000 ____A C:\Windows\wininit.ini

2012-09-14 17:29 - 2012-09-14 17:29 - 16868888 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\Windows-KB890830-V4.12.exe

2012-09-14 16:41 - 2012-09-14 13:27 - 00000038 ___RH C:\Users\Gabe\Desktop\stinger.opt

2012-09-13 20:34 - 2012-09-13 20:17 - 00034177 ____A C:\Users\Gabe\Downloads\Result.txt

2012-09-13 20:18 - 2012-09-13 20:18 - 00607260 ____R (Swearware) C:\Users\Gabe\Downloads\dds.com

2012-09-13 20:16 - 2012-09-13 20:16 - 00751391 ____A (Farbar) C:\Users\Gabe\Downloads\MiniToolBox.exe

2012-09-13 20:04 - 2012-01-01 03:40 - 00001080 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2012-09-13 19:25 - 2010-12-23 11:30 - 00868104 ____A C:\Windows\SysWOW64\PerfStringBackup.INI

2012-09-13 19:22 - 2012-09-13 19:22 - 00001750 ____A C:\Users\Public\Desktop\iTunes.lnk

2012-09-13 19:04 - 2012-04-07 21:30 - 00696520 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2012-09-13 19:04 - 2011-11-20 23:33 - 00073416 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2012-09-07 15:04 - 2011-10-09 21:14 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys

2012-09-04 09:46 - 2011-11-01 13:56 - 00002455 ____A C:\Users\Gabe\Desktop\Google Chrome.lnk

2012-09-01 22:50 - 2012-09-01 22:42 - 1519417223 ____A C:\Users\Gabe\Downloads\LOLPBE.zip

2012-09-01 00:04 - 2012-09-01 00:04 - 00002469 ____A C:\Users\Public\Desktop\DriverUpdate.lnk

2012-08-31 20:19 - 2012-08-31 20:19 - 00002885 ____A C:\Windows\SysWOW64\jupdate-1.6.0_35-b10.log

2012-08-30 22:43 - 2009-11-26 14:54 - 64462936 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe

2012-08-30 22:12 - 2012-09-14 17:30 - 62164608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe

2012-08-29 20:05 - 2012-08-29 20:05 - 00000318 ____A C:\Users\Gabe\Desktop\Curse Client.appref-ms

2012-08-29 20:01 - 2012-08-13 19:06 - 00000700 __ASH C:\Users\Gabe\AppData\Local\systemFL7.dat

2012-08-29 19:46 - 2012-08-29 19:46 - 00000965 ____A C:\Users\Gabe\Gabe - Shortcut.lnk

2012-08-28 18:24 - 2012-08-19 18:24 - 00477168 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\npdeployJava1.dll

2012-08-28 18:24 - 2010-09-03 11:41 - 00473072 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll

2012-08-28 08:59 - 2012-08-28 08:25 - 00000984 ____A C:\Users\Public\Desktop\World of Warcraft.lnk

2012-08-22 10:12 - 2012-09-13 19:10 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys

2012-08-22 10:12 - 2012-09-11 22:54 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys

2012-08-22 10:12 - 2012-09-11 22:54 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys

2012-08-22 10:12 - 2012-09-11 22:54 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS

2012-08-21 11:01 - 2012-09-13 19:22 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys

2012-08-21 11:01 - 2009-11-27 11:46 - 00125872 ____A (GEAR Software Inc.) C:\Windows\System32\GEARAspi64.dll

2012-08-21 11:01 - 2009-11-27 11:46 - 00106928 ____A (GEAR Software Inc.) C:\Windows\SysWOW64\GEARAspi.dll

2012-08-16 12:51 - 2012-08-16 12:47 - 00049512 ____A C:\Users\Gabe\Documents\(Unknown) - Clip 001.avi.sfk

2012-08-16 12:46 - 2012-08-16 12:45 - 967345152 ____A C:\Users\Gabe\Documents\(Unknown) - Clip 001.avi

2012-08-16 01:28 - 2009-07-13 20:45 - 04909576 ____A C:\Windows\System32\FNTCACHE.DAT

2012-08-14 17:17 - 2012-08-14 17:16 - 00001328 ____A C:\Users\Public\Desktop\World of Warcraft Beta.lnk

2012-08-14 17:11 - 2012-08-14 17:11 - 31727744 ____A (Blizzard Entertainment) C:\Users\Gabe\Desktop\World of Warcraft Beta Setup.exe

2012-08-05 17:25 - 2012-03-14 10:40 - 00001156 ____A C:\Users\Public\Desktop\GOM Player.lnk

2012-08-02 09:58 - 2012-09-13 19:10 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll

2012-08-02 08:57 - 2012-09-13 19:10 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll

2012-08-01 21:12 - 2012-08-01 21:12 - 00007603 ____A C:\Users\Gabe\AppData\Local\Resmon.ResmonCfg

2012-07-31 20:33 - 2012-07-31 20:33 - 00002533 ____A C:\Users\Gabe\Desktop\Skype.lnk

2012-07-31 20:11 - 2011-10-03 22:26 - 00021352 ____A C:\Windows\System32\lvcoinst.log

2012-07-30 11:32 - 2012-07-30 11:32 - 00203104 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudmdm.sys

2012-07-30 11:32 - 2012-07-30 11:32 - 00102240 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudbus.sys

2012-07-29 17:03 - 2011-10-30 23:14 - 00036864 ____A C:\Users\Gabe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2012-07-29 09:52 - 2012-07-29 09:52 - 00001047 ____A C:\Users\Public\Desktop\Vegas Pro 11.0.lnk

2012-07-28 17:20 - 2011-10-04 11:13 - 00083984 ____A C:\Users\Gabe\AppData\Local\GDIPFONTCACHEV1.DAT

2012-07-28 17:19 - 2010-01-11 12:13 - 00007756 ____A C:\Users\All Users\hpzinstall.log

2012-07-25 14:01 - 2012-07-25 11:19 - 00002046 ____A C:\Users\Public\Desktop\Canon Solution Menu EX.lnk

2012-07-18 10:15 - 2012-08-15 02:27 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys

2012-07-12 06:33 - 2012-06-08 16:58 - 00000829 ____A C:\Users\Public\Desktop\CCleaner.lnk

2012-07-09 11:42 - 2012-07-09 11:42 - 04547984 ____A (Apple, Inc.) C:\Windows\System32\usbaaplrc.dll

2012-07-09 11:42 - 2012-07-09 11:42 - 00052736 ____A (Apple, Inc.) C:\Windows\System32\Drivers\usbaapl64.sys

2012-07-04 14:16 - 2012-08-15 02:27 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll

2012-07-04 14:13 - 2012-08-15 02:27 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll

2012-07-04 14:13 - 2012-08-15 02:27 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll

2012-07-04 13:16 - 2012-08-15 02:27 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll

2012-07-04 13:14 - 2012-08-15 02:27 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll

2012-07-04 12:26 - 2012-09-13 19:10 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rndismpx.sys

2012-07-04 12:26 - 2012-09-13 19:10 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys

2012-06-28 20:55 - 2012-08-16 01:08 - 17809920 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2012-06-28 20:09 - 2012-08-16 01:08 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2012-06-28 19:56 - 2012-08-16 01:08 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll

2012-06-28 19:49 - 2012-08-16 01:08 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll

2012-06-28 19:49 - 2012-08-16 01:08 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll

2012-06-28 19:48 - 2012-08-16 01:08 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl

2012-06-28 19:47 - 2012-08-16 01:08 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll

2012-06-28 19:45 - 2012-08-16 01:08 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll

2012-06-28 19:44 - 2012-08-16 01:08 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll

2012-06-28 19:43 - 2012-08-16 01:08 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe

2012-06-28 19:42 - 2012-08-16 01:08 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2012-06-28 19:40 - 2012-08-16 01:08 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll

2012-06-28 19:39 - 2012-08-16 01:08 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2012-06-28 19:35 - 2012-08-16 01:08 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll

2012-06-28 16:52 - 2012-08-16 01:08 - 12317184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2012-06-28 16:27 - 2012-08-16 01:08 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2012-06-28 16:16 - 2012-08-16 01:08 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2012-06-28 16:09 - 2012-08-16 01:08 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2012-06-28 16:09 - 2012-08-16 01:08 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2012-06-28 16:08 - 2012-08-16 01:08 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2012-06-28 16:07 - 2012-08-16 01:08 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2012-06-28 16:06 - 2012-08-16 01:08 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2012-06-28 16:04 - 2012-08-16 01:08 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2012-06-28 16:04 - 2012-08-16 01:08 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2012-06-28 16:01 - 2012-08-16 01:08 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2012-06-28 16:01 - 2012-08-16 01:08 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2012-06-28 16:00 - 2012-08-16 01:08 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2012-06-28 15:57 - 2012-08-16 01:08 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2012-06-25 13:22 - 2012-04-28 18:36 - 00000432 ____A C:\Windows\System32\Drivers\etc\hosts.ics

==================== Known DLLs (Whitelisted) =================

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK

HKLM\...\exefile\DefaultIcon: %1 => OK

HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

==================== Memory info ===========================

Percentage of memory in use: 9%

Total physical RAM: 8183.11 MB

Available physical RAM: 7368.54 MB

Total Pagefile: 8181.26 MB

Available Pagefile: 7369.34 MB

Total Virtual: 8192 MB

Available Virtual: 8191.91 MB

==================== Partitions =============================

1 Drive c: (Gateway) (Fixed) (Total:916.41 GB) (Free:607.2 GB) NTFS

2 Drive e: (PQSERVICE) (Fixed) (Total:15 GB) (Free:4.68 GB) NTFS

4 Drive g: (USB20FD) (Removable) (Total:3.73 GB) (Free:3.72 GB) FAT32

5 Drive h: (SEAGATE) (Fixed) (Total:465.64 GB) (Free:181.97 GB) FAT32

11 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

12 Drive y: (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt

-------- ------------- ------- ------- --- ---

Disk 0 Online 931 GB 0 B

Disk 1 Online 3824 MB 0 B

Disk 2 Online 465 GB 0 B

Disk 3 No Media 0 B 0 B

Disk 4 No Media 0 B 0 B

Disk 5 No Media 0 B 0 B

Disk 6 No Media 0 B 0 B

Disk 7 No Media 0 B 0 B

Partitions of Disk 0:

===============

Partition ### Type Size Offset

------------- ---------------- ------- -------

Partition 1 Recovery 15 GB 1024 KB

Partition 2 Primary 100 MB 15 GB

Partition 3 Primary 916 GB 15 GB

==================================================================================

Disk: 0

Partition 1

Type : 27

Hidden: Yes

Active: No

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 3 E PQSERVICE NTFS Partition 15 GB Healthy Hidden

=========================================================

Disk: 0

Partition 2

Type : 07

Hidden: No

Active: Yes

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 1 Y SYSTEM RESE NTFS Partition 100 MB Healthy

=========================================================

Disk: 0

Partition 3

Type : 07

Hidden: No

Active: No

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 2 C Gateway NTFS Partition 916 GB Healthy

=========================================================

Partitions of Disk 1:

===============

Partition ### Type Size Offset

------------- ---------------- ------- -------

Partition 1 Primary 3823 MB 564 KB

==================================================================================

Disk: 1

Partition 1

Type : 0B

Hidden: No

Active: Yes

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 4 G USB20FD FAT32 Removable 3823 MB Healthy

=========================================================

Partitions of Disk 2:

===============

Partition ### Type Size Offset

------------- ---------------- ------- -------

Partition 1 Primary 465 GB 31 KB

==================================================================================

Disk: 2

Partition 1

Type : 0C

Hidden: No

Active: No

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 5 H SEAGATE FAT32 Partition 465 GB Healthy

=========================================================

Last Boot: 2012-09-16 10:35

==================== End Of Log =============================

Link to post
Share on other sites

Check with the manufacturer of your system on the proper sequence and procedure for doing a factory restore of Windows.

Almost all pc manufacturers have support websites.

If the pc did not come with a Windows DVD/CD, the oem-manufacturer will have a restore partition on the system. Check with your manufacturer. Your system appears to be a Gateway pc. So check with Gateway support.

Doing a factory restore will take the system back to day 1 as it came out of factory.

So, if you do not have offline backups of your personal files and documents, then do the backup now :excl:

Backup to offline media like external USB drive, to CD/DVD

For all the files, documents, personal stuff you backup..... after all is done & you have the new Windows setup, and Antivirus installed, and MBAM.....

then I would scan any files you restore with 1) antivirus, 2) MBAM.

Keep your pc disconnected from internet before & during the Windows clean install.

Only reconnect after the antivirus program is installed.

IF and only if your OEM or vendor included a pre-installed antivirus, be sure to Uninstall it before installing your antivirus.

Look at this article http://windows.micro...lling-Windows-7

for Custom / clean install

After a clean install, you will need to immediately do a Windows Update to get current, followed by getting and installing antivirus program.

Link to post
Share on other sites

You are welcome. Stay safe. Follow safer practices. Wish you well.

Safer practices & malware prevention

Resolved by user - system wipe & clean Windows install. This thread is now closed.

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.