boombaby16 Posted September 18, 2012 Author ID:598562 Share Posted September 18, 2012 McAfee® Labs Stinger Version 10.2.0.787 built on Sep 17 2012Copyright © 2012 McAfee, Inc. All Rights Reserved.Virus data file v1000.0000 created on Sep 17 2012.Ready to scan for 4978 viruses, trojans and variants.Scan initiated on Tue Sep 18 08:23:53 2012Rootkit scan result : Not Scanned Master Boot Record(s):....1 Possibly Infected:.............0 Boot Sector(s):.................1 Possibly Infected: ............0 Number of clean files: 23092 Link to post Share on other sites More sharing options...
boombaby16 Posted September 18, 2012 Author ID:598564 Share Posted September 18, 2012 It's running good but when i try to install .net framework 4 from microsoft it says fatal error during installation Link to post Share on other sites More sharing options...
boombaby16 Posted September 18, 2012 Author ID:598565 Share Posted September 18, 2012 OS Version = 6.1.7601, Platform 2, Service Pack 1OS Description = Windows 7 - x64 Home Premium Edition Service Pack 1CommandLine = C:\af15ab2298c86aef25c6cf13cea46a9a\\Setup.exe /x86 /x64 /ia64 /webTimeZone = Mountain Daylight TimeInitial LCID = 1033Using Simultaneous Download and Install mechanismOperation: InstallingPackage Name = Microsoft .NET Framework 4 SetupPackage Version = 4.0.30319User Experience Data Collection Policy: AlwaysUploadedNumber of applicable items: 11Exe (C:\af15ab2298c86aef25c6cf13cea46a9a\SetupUtility.exe) succeeded.Exe Log File: dd_SetupUtility.txtServiceControl operation succeeded!ServiceControl operation succeeded!Exe (C:\Users\Gabe\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\Windows6.1-KB958488-v6001-x64.msu) failed with 0x240006 - (null).Exe (C:\af15ab2298c86aef25c6cf13cea46a9a\SetupUtility.exe) succeeded.Exe Log File: dd_SetupUtility.txtMSI (C:\Users\Gabe\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\netfx_Core_x64.msi) Installation failed. Msi Log: Microsoft .NET Framework 4 Setup_20120918_095719673-MSI_netfx_Core_x64.msi.txtFinal Result: Installation failed with error code: (0x80070643), "Fatal error during installation. " (Elapsed time: 0 00:00:49). Link to post Share on other sites More sharing options...
boombaby16 Posted September 18, 2012 Author ID:598568 Share Posted September 18, 2012 I was able to install it through windows update Link to post Share on other sites More sharing options...
boombaby16 Posted September 18, 2012 Author ID:598569 Share Posted September 18, 2012 but i am still getting CLR Error 80004005 Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 18, 2012 ID:598591 Share Posted September 18, 2012 Hold on. Do not try to install Net framework. But I would like for you to be clear: Did you (just today) try it from Windows Update website {online) ? yes/noOR did you try to manually install yourself? via a command line ??And beyond that, where do you see CLR Error 80004005 ?I see this from your last log Installation failed with error code: (0x80070643)Question for you:Have you used Iolo System Mechanic to do some sort of optimize or registry what-not?Have you used any other registry tweaker / optimizer / or what's it snake-oil optimizer ??I suggest you provide the answers. Then for a starter, do the following and stay tuned for a later follow-up.Close and exit any open work documents or program windows you opened.1a. Open Internet Explorer (only!) to http://support.microsoft.com/kb/910336 [ignore the title & Symptoms].1b. Dismiss/close the "automated troubleshooter" pop-up! - then...1c. Ignoring any "Not recommended" or similar warnings, run Fix It 50202 in DEFAULT and then AGGRESSIVE modes. [1]~~~~~~~~~~~~~~~[1] Running the Fixit in aggressive mode will result in your history of installed MS updates to be "empty" when viewed online at Windows Updates.What is actually installed on your system will not be affected.NextDo method 1 in this MS support article http://support.microsoft.com/kb/976982"Error codes “0x80070643” or “0x643” occur when you install the .NET Framework updates"Reboot & then run a manual check for updates at Windows Update, etc., etc...When you reach Windows Update, do a Custom scan for updates. Take (accept) the ones marked Critical or Important.Decline any that are marked as "optional".Have infinite patience while it scans and does it's work.When it prompts you to Restart Windows, please do that. Allow it to restart.IF and only if you get an "error" or "exception/failure" message, I will need the complete so called "failure code" and description (if you see it).Please have good patience, this is not very complicated. Ask me if you have questions. Link to post Share on other sites More sharing options...
boombaby16 Posted September 18, 2012 Author ID:598635 Share Posted September 18, 2012 Have you used Iolo System Mechanic to do some sort of optimize or registry what-not? No I have notHave you used any other registry tweaker / optimizer / or what's it snake-oil optimizer ?? Yes a long time ago but i on't remember what they were Link to post Share on other sites More sharing options...
boombaby16 Posted September 19, 2012 Author ID:598707 Share Posted September 19, 2012 Oh and i see CLR Error when running certain .exe programs such as Terraria, DayZ Commander and Curse Client Link to post Share on other sites More sharing options...
boombaby16 Posted September 19, 2012 Author ID:598709 Share Posted September 19, 2012 when i check for windows update the only one i see is .net framework client version 4.0 Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 19, 2012 ID:598793 Share Posted September 19, 2012 What is (are) Terraria, DayZ Commander and Curse Client ?What is showing this CLR Error ?and how and when does it occur ?If these are games and that is the only time you get these "notices" perhaps you need to check with the game publisher.Is .net framework client version 4.0 being presented as a Critical or Important update ? or only as "Recommended" ? Link to post Share on other sites More sharing options...
boombaby16 Posted September 19, 2012 Author ID:598850 Share Posted September 19, 2012 Terraria is a Steam game life a side scrolling minecraft. DayZ Commander is a Server finder for the Arma 2 Mod called DayZ ( zombie survival mod), and curse client is world of warcraft, and other mmo's addon installer. They all require .net framework. The thing is they work fine on my laptop just not my desktop. It happens when i try to launch the individual programs usually within 30 seconds Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 19, 2012 ID:598860 Share Posted September 19, 2012 Go to Control Panel >>> Programs and FeaturesThen make a list and report back on the "Net Framework" that are listed. I need the full name(s).andYou have to make a list of any "Failed" Windows update item and the fail-exception code for each.To do that:Press Windows-key on keyboard, type in windows update in the search-box and press Enter.Then at the upper left, press on View Update historyLocate each item marked as "Failed" in the Status column; right-click on it and click View details.Then write down and report here in Error Details the Code shown and the name of the update item.Note: If that "clr error" is the only thing happening, then this is not due to malware, but some other glitch on your system. Link to post Share on other sites More sharing options...
boombaby16 Posted September 19, 2012 Author ID:598946 Share Posted September 19, 2012 I will do that when i get home. and i had this under as PC Help area first but they found the malware and transferred me here Link to post Share on other sites More sharing options...
boombaby16 Posted September 20, 2012 Author ID:599078 Share Posted September 20, 2012 My computer is only launching in safe mode. tried running the launching repair and it said it could not be done. It was working fine last night but this morning it wouldnt respond to anything and when i tried to reset it, it wouldnt start back up. Even in safe mode it takes around 5 minutes to completely load Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 20, 2012 ID:599089 Share Posted September 20, 2012 Better take some time and backup (copy) your personal files and documents to offline media (external USB drive, or CD /DVD) just in case. Link to post Share on other sites More sharing options...
boombaby16 Posted September 20, 2012 Author ID:599096 Share Posted September 20, 2012 Will do Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 20, 2012 ID:599352 Share Posted September 20, 2012 To run a report tool from a command prompt, please do the following:For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.Plug the flashdrive into the infected PC.Enter System Recovery Options.To enter System Recovery Options from the Advanced Boot Options:Restart the computer.As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.Use the arrow keys to select the Repair your computer menu item.Select English as the keyboard language settings, and then click Next.Select the operating system you want to repair, and then click Next.Select your user account an click Next.To enter System Recovery Options by using Windows installation disc:Insert the installation disc.Restart your computer.If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.Click Repair your computer.Select English as the keyboard language settings, and then click Next.Select the operating system you want to repair, and then click Next.Select your user account and click Next.On the System Recovery Options menu you will get the following options:Startup RepairSystem RestoreWindows Complete PC RestoreWindows Memory Diagnostic ToolCommand Prompt [*]Select Command Prompt[*]In the command window type in notepad and press Enter.[*]The notepad opens. Under File menu select Open.[*]Select "Computer" and find your flash drive letter and close the notepad.[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press EnterNote: Replace letter e with the drive letter of your flash drive.[*]The tool will start to run.[*]When the tool opens click Yes to disclaimer.[*]Press Scan button.[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply. Link to post Share on other sites More sharing options...
boombaby16 Posted September 21, 2012 Author ID:599534 Share Posted September 21, 2012 Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-09-2012Ran by SYSTEM at 20-09-2012 12:19:16Running from G:\Windows 7 Home Premium (X64) OS Language: English(US) The current controlset is ControlSet001==================== Registry (Whitelisted) ===================HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [7981088 2009-07-20] (Realtek Semiconductor)HKLM\...\Run: [RunDLLEntry] C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry [17920 2009-02-26] (Creative Technology Ltd.)HKLM\...\Run: [Windows Mobile-based device management] %WINDIR%\WindowsMobile\wmdcBase.exe [x]HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [499608 2011-06-16] (Adobe Systems Incorporated)HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [1271168 2012-03-26] (Microsoft Corporation)HKLM\...\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon [2779024 2011-03-14] (CANON INC.)HKLM-x32\...\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\BackupManagerTray.exe" -h -k [244480 2009-08-12] (NewTech Infosystems, Inc.)HKLM-x32\...\Run: [VolPanel] "C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r [241789 2009-07-07] (Creative Technology Ltd)HKLM-x32\...\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume [288080 2009-07-17] (Microsoft Corporation)HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-08-27] (Apple Inc.)HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-04-18] (Apple Inc.)HKLM-x32\...\Run: [Razer Naga Driver] C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe [953232 2011-11-16] (Razer USA Ltd)HKLM-x32\...\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide [2793304 2009-10-14] ()HKLM-x32\...\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon [1611160 2011-03-28] (CANON INC.)HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421776 2012-09-09] (Apple Inc.)HKU\Default\...\RunOnce: [scrSav] C:\Program Files (x86)\Gateway\Screensaver\run_Gateway.exe /default [162336 2009-07-21] ()HKU\Default User\...\RunOnce: [scrSav] C:\Program Files (x86)\Gateway\Screensaver\run_Gateway.exe /default [162336 2009-07-21] ()HKU\Gabe\...\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()HKU\Gabe\...\Run: [Akamai NetSession Interface] "C:\Users\Gabe\AppData\Local\Akamai\netsession_win.exe" [4440896 2012-08-10] (Akamai Technologies, Inc.)HKU\Gabe\...\Run: [Google Update] "C:\Users\Gabe\AppData\Local\Google\Update\GoogleUpdate.exe" /c [135664 2009-12-26] (Google Inc.)HKU\Gabe\...\Run: [steam] "C:\Program Files (x86)\newsteam\steam.exe" -silent [1353080 2012-09-13] (Valve Corporation)HKU\Gabe\...\Run: [WinFLTray] C:\Windows\SysWow64\WinFLTray.exe [321736 2012-09-20] ( New Softwares.net)HKU\Gabe\...\RunOnce: [Application Restart #2] C:\Users\Gabe\AppData\Local\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session --flag-switches-begin --flag-switches-end -- http://go.microsoft.com/fwlink/?LinkID=143357&cid=50202&P2=50202&ct=fxit&P0=fxit&showpage=1 [1229848 2012-08-29] (Google Inc.)HKU\Gabe\...\Policies\system: [LogonHoursAction] 2HKU\Gabe\...\Policies\system: [DontDisplayLogonHoursWarnings] 1HKU\Mcx1-AUSTIN\...\Winlogon: [shell] C:\Windows\eHome\McrMgr.exe [343552 2009-07-13] (Microsoft Corporation)HKU\UpdatusUser\...\RunOnce: [scrSav] C:\Program Files (x86)\Gateway\Screensaver\run_Gateway.exe /default [162336 2009-07-21] ()HKLM-x32\...\Runonce: [GrpConv] grpconv -o [x]Tcpip\Parameters: [DhcpNameServer] 69.169.190.211 208.72.160.67Tcpip\..\Interfaces\{6BC084C6-73F6-4A18-AC61-EB4D9553E781}: [NameServer]192.168.1.1Startup: C:\Users\Gabe\Start Menu\Programs\Startup\CurseClientStartup.ccip ()Startup: C:\Users\Gabe\Start Menu\Programs\Startup\ts3server_win64.exe (TeamSpeak Systems GmbH)==================== Services (Whitelisted) ===================2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated)2 Akamai; C:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll [4537664 2012-09-10] (Akamai Technologies, Inc.)4 Dyn Updater; C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe [95608 2011-11-15] (Dyn, Inc.)2 FLService; C:\Windows\SysWow64\WinFLService.exe [91336 2012-09-20] (New Softwares.net)2 MBAMScheduler; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" [399432 2012-09-07] (Malwarebytes Corporation)2 MBAMService; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" [676936 2012-09-07] (Malwarebytes Corporation)2 MsMpSvc; "C:\Program Files\Microsoft Security Client\MsMpEng.exe" [12600 2012-03-26] (Microsoft Corporation)3 NisSrv; "C:\Program Files\Microsoft Security Client\NisSrv.exe" [291696 2012-03-26] (Microsoft Corporation)2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-09-15] ()2 SysMain; C:\Windows\System32\sysmain.dll [1743360 2010-11-20] ()2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [x]2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]==================== Drivers (Whitelisted) =====================3 AE1000; C:\Windows\System32\DRIVERS\ae1000w7.sys [1101600 2010-01-19] (Ralink Technology Corp.)3 hamachi; C:\Windows\System32\Drivers\hamachi.sys [33856 2009-03-18] (LogMeIn, Inc.)3 LVPr2M64; C:\Windows\System32\Drivers\LVPr2M64.sys [30232 2009-10-07] ()3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [25928 2012-09-07] (Malwarebytes Corporation)2 NEWDRIVER; \??\C:\Windows\SysWow64\WinVDEdrv6.sys [197648 2012-09-20] ()3 RzSynapse; C:\Windows\System32\Drivers\RzSynapse.sys [126464 2011-11-15] (Razer USA Ltd)3 U6000ALL; C:\Windows\System32\DRIVERS\dmdcap.sys [276480 2007-06-08] ()1 WinFLAdrv; C:\Windows\SysWow64\WinFLAdrv.sys [35328 2012-09-20] ()2 WinVDEDrv; \??\C:\Windows\SysWow64\WinVDEdrv.sys [225680 2012-09-20] (NewSoftwares.net, Inc.)3 catchme; \??\C:\ComboFix\catchme.sys [x]3 dump_wmimmc; \??\C:\Program Files (x86)\CABAL Online (NA - Global)\GameGuard\dump_wmimmc.sys [x]3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]1 pilzjtxd; \??\C:\Windows\system32\drivers\pilzjtxd.sys [x]3 X6va003; \??\C:\Users\Gabe\AppData\Local\Temp\0036C13.tmp [x]1 xylmutwv; \??\C:\Windows\system32\drivers\xylmutwv.sys [x]==================== NetSvcs (Whitelisted) ======================================== One Month Created Files and Folders ========2012-09-20 04:07 - 2012-09-20 04:07 - 00321736 ____A ( New Softwares.net) C:\Windows\SysWOW64\WinFLTrayShred.exe2012-09-20 04:07 - 2012-09-20 04:07 - 00321736 ____A ( New Softwares.net) C:\Windows\SysWOW64\WinFLTray.exe2012-09-20 04:07 - 2012-09-20 04:07 - 00225680 ____A (NewSoftwares.net, Inc.) C:\Windows\SysWOW64\WinVDEdrv.sys2012-09-20 04:07 - 2012-09-20 04:07 - 00197648 ____A C:\Windows\SysWOW64\WinVDEdrv6.sys2012-09-20 04:07 - 2012-09-20 04:07 - 00091336 ____A (New Softwares.net) C:\Windows\SysWOW64\WinFLService.exe2012-09-20 04:07 - 2012-09-20 04:07 - 00035328 ____A C:\Windows\SysWOW64\WinFLAdrv.sys2012-09-20 04:07 - 2012-09-20 04:07 - 00014024 ____A C:\Windows\SysWOW64\WinFLMsgService.exe2012-09-20 04:07 - 2012-09-20 04:07 - 00001106 ____A C:\Users\Public\Desktop\Folder Lock.lnk2012-09-18 13:12 - 2012-09-18 13:10 - 00985600 ____A C:\Users\Gabe\Downloads\MicrosoftFixit50123.msi2012-09-18 11:37 - 2012-09-18 11:37 - 00689664 ____A C:\Users\Gabe\Downloads\MicrosoftFixit50202.msi2012-09-18 10:02 - 2012-09-18 10:02 - 00347424 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\MicrosoftFixit.wu.LB.13527142207976578.1.1.Run.exe2012-09-18 08:36 - 2012-09-18 08:37 - 00000000 ____D C:\94cc1a18a3c877753d226992952012-09-18 08:33 - 2012-09-18 08:33 - 00000000 ____D C:\df5974af1b1f4b4e0428d5640740dab72012-09-18 08:09 - 2012-09-18 08:09 - 08613968 ____A (Macroplant LLC ) C:\Users\Gabe\Downloads\iExplorer_3_Setup.exe2012-09-18 07:19 - 2012-09-18 07:19 - 00889416 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\dotNetFx40_Full_setup.exe2012-09-18 07:17 - 2012-09-19 15:43 - 00000040 ___RH C:\Users\Gabe\Downloads\stinger.opt2012-09-18 07:17 - 2012-09-18 07:17 - 00000491 ____A C:\Users\Gabe\Downloads\stinger.txt2012-09-18 04:06 - 2012-09-18 04:06 - 17483288 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\Windows-KB890830-x64-V4.12.exe2012-09-18 04:04 - 2012-09-18 04:04 - 74537576 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\msert.exe2012-09-18 04:04 - 2012-09-18 04:04 - 10023016 ____A (McAfee Inc.) C:\Users\Gabe\Downloads\stinger.exe2012-09-17 04:05 - 2012-09-17 04:05 - 00000492 ____A C:\Users\Gabe\Desktop\DrWeb.csv2012-09-16 15:43 - 2012-09-16 16:11 - 00000000 ____D C:\Users\Gabe\DoctorWeb2012-09-16 15:37 - 2012-09-16 15:39 - 93189968 ____A C:\Users\Gabe\Desktop\drweb-cureit.exe2012-09-16 11:29 - 2012-09-16 11:29 - 00002639 ____A C:\Users\Gabe\Desktop\FSS.txt2012-09-16 11:28 - 2012-09-16 11:28 - 00693235 ____A (Farbar) C:\Users\Gabe\Desktop\FSS.exe2012-09-16 11:21 - 2012-09-16 11:21 - 00002902 ____A C:\Users\Gabe\Desktop\Rkill.txt2012-09-16 11:17 - 2012-09-16 11:17 - 01659808 ____A (Bleeping Computer, LLC) C:\Users\Gabe\Downloads\rkill.com2012-09-16 11:14 - 2012-09-16 11:14 - 00025230 ____A C:\Users\Gabe\Desktop\09162012_130704.log2012-09-16 11:07 - 2012-09-16 11:07 - 00000000 ____D C:\_OTL2012-09-16 10:56 - 2012-09-16 10:56 - 01034216 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll2012-09-16 10:56 - 2012-09-16 10:56 - 00916456 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll2012-09-16 10:56 - 2012-09-16 10:56 - 00289768 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe2012-09-16 10:56 - 2012-09-16 10:56 - 00189416 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe2012-09-16 10:56 - 2012-09-16 10:56 - 00188904 ____A (Oracle Corporation) C:\Windows\System32\java.exe2012-09-16 10:56 - 2012-09-16 10:56 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll2012-09-16 10:56 - 2012-09-16 10:56 - 00000000 ____D C:\Program Files\Java2012-09-16 10:30 - 2012-09-16 10:30 - 00000000 ____D C:\FRST2012-09-16 10:16 - 2012-09-16 10:16 - 00001146 ____A C:\Users\Gabe\Desktop\checkup.txt2012-09-16 10:06 - 2012-09-16 10:06 - 00854156 ____A C:\Users\Gabe\Downloads\SecurityCheck.exe2012-09-16 09:51 - 2012-09-16 10:06 - 00149850 ____A C:\Users\Gabe\Desktop\Extras.Txt2012-09-16 09:50 - 2012-09-16 10:06 - 00150488 ____A C:\Users\Gabe\Desktop\OTL.Txt2012-09-16 09:34 - 2012-09-16 09:34 - 00600064 ____A (OldTimer Tools) C:\Users\Gabe\Desktop\OTL.exe2012-09-16 08:16 - 2012-09-16 08:16 - 00000000 ____A C:\Users\Gabe\defogger_reenable2012-09-16 08:13 - 2012-09-16 08:15 - 00000000 ____D C:\Users\Gabe\Desktop\ERUNT2012-09-16 08:10 - 2012-09-16 08:10 - 00050477 ____A C:\Users\Gabe\Desktop\Defogger.exe2012-09-15 06:22 - 2012-09-15 06:23 - 00000000 ____D C:\Users\Gabe\Documents\Battlefield 32012-09-15 06:06 - 2012-09-15 16:03 - 00283304 ____A C:\Windows\SysWOW64\PnkBstrB.exe2012-09-15 06:06 - 2012-09-15 06:30 - 00076888 ____A C:\Windows\SysWOW64\PnkBstrA.exe2012-09-15 05:37 - 2012-09-15 06:17 - 00000000 ____D C:\Users\Gabe\AppData\Local\Origin2012-09-15 05:37 - 2012-09-15 05:37 - 00000000 ____D C:\Users\Gabe\AppData\Roaming\Origin2012-09-15 05:35 - 2012-09-15 05:39 - 00000000 ____D C:\Users\All Users\Origin2012-09-15 05:35 - 2012-09-15 05:37 - 00000000 ____D C:\Program Files (x86)\Origin2012-09-14 17:30 - 2012-08-30 22:12 - 62164608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe2012-09-14 17:29 - 2012-09-14 17:29 - 16868888 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\Windows-KB890830-V4.12.exe2012-09-14 13:27 - 2012-09-14 16:41 - 00000038 ___RH C:\Users\Gabe\Desktop\stinger.opt2012-09-14 13:26 - 2012-09-19 15:43 - 00000000 ____D C:\Program Files (x86)\stinger2012-09-14 06:23 - 2012-09-14 17:25 - 00000000 ____D C:\Users\Gabe\AppData\Local\ArmA 22012-09-13 20:18 - 2012-09-13 20:18 - 00607260 ____R (Swearware) C:\Users\Gabe\Downloads\dds.com2012-09-13 20:17 - 2012-09-13 20:34 - 00034177 ____A C:\Users\Gabe\Downloads\Result.txt2012-09-13 20:16 - 2012-09-13 20:16 - 00751391 ____A (Farbar) C:\Users\Gabe\Downloads\MiniToolBox.exe2012-09-13 19:22 - 2012-09-13 19:22 - 00001750 ____A C:\Users\Public\Desktop\iTunes.lnk2012-09-13 19:22 - 2012-08-21 11:01 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys2012-09-13 19:21 - 2012-09-13 19:22 - 00000000 ____D C:\Users\All Users\34BE82C4-E596-4e99-A191-52C6199EBF692012-09-13 19:21 - 2012-09-13 19:22 - 00000000 ____D C:\Program Files\iTunes2012-09-13 19:21 - 2012-09-13 19:22 - 00000000 ____D C:\Program Files (x86)\iTunes2012-09-13 19:21 - 2012-09-13 19:21 - 00000000 ____D C:\Program Files\iPod2012-09-13 19:10 - 2012-08-22 10:12 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys2012-09-13 19:10 - 2012-08-02 09:58 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll2012-09-13 19:10 - 2012-08-02 08:57 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll2012-09-13 19:10 - 2012-07-04 12:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rndismpx.sys2012-09-13 19:10 - 2012-07-04 12:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys2012-09-13 19:06 - 2012-09-13 19:06 - 00000000 ____D C:\f1367e126a89152dbd332012-09-13 18:31 - 2012-09-14 17:25 - 00000000 ____D C:\Users\Gabe\Documents\ArmA 22012-09-13 18:31 - 2012-09-13 18:33 - 00000000 ____D C:\Users\Gabe\AppData\Local\ArmA 2 OA2012-09-13 18:21 - 2012-09-13 18:21 - 00000000 ____D C:\Program Files (x86)\Dotjosh Studios2012-09-12 12:01 - 2012-09-12 12:01 - 00000000 ____D C:\Users\Gabe\AppData\Roaming\SystemRequirementsLab2012-09-12 12:01 - 2012-09-12 12:01 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab2012-09-11 22:54 - 2012-08-22 10:12 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys2012-09-11 22:54 - 2012-08-22 10:12 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys2012-09-11 22:54 - 2012-08-22 10:12 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS2012-09-02 23:53 - 2012-09-02 23:53 - 00000000 ____D C:\Users\Gabe\Documents\Amazon MP32012-09-01 22:50 - 2012-09-01 22:50 - 00000000 ___DC C:\Users\All Users\{3FC66E2C-85B6-4398-82FB-C13C51DE9DD8}2012-09-01 22:42 - 2012-09-01 22:50 - 1519417223 ____A C:\Users\Gabe\Downloads\LOLPBE.zip2012-09-01 01:11 - 1999-12-31 16:00 - 25743168 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll2012-09-01 01:11 - 1999-12-31 16:00 - 25248064 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll2012-09-01 01:11 - 1999-12-31 16:00 - 19607872 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll2012-09-01 01:11 - 1999-12-31 16:00 - 17551680 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll2012-09-01 01:11 - 1999-12-31 16:00 - 15322432 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll2012-09-01 01:11 - 1999-12-31 16:00 - 14298944 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys2012-09-01 01:11 - 1999-12-31 16:00 - 08139072 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll2012-09-01 01:11 - 1999-12-31 16:00 - 08105280 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll2012-09-01 01:11 - 1999-12-31 16:00 - 05982528 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll2012-09-01 01:11 - 1999-12-31 16:00 - 02881856 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll2012-09-01 01:11 - 1999-12-31 16:00 - 02681664 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll2012-09-01 01:11 - 1999-12-31 16:00 - 02524992 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll2012-09-01 01:11 - 1999-12-31 16:00 - 02445120 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll2012-09-01 01:11 - 1999-12-31 16:00 - 02368832 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll2012-09-01 00:40 - 2012-09-01 00:40 - 00000000 ____D C:\Users\Gabe\AppData\Roaming\InstallShield2012-09-01 00:40 - 2012-09-01 00:40 - 00000000 ____D C:\Users\All Users\InstallShield2012-09-01 00:40 - 2011-02-18 06:11 - 00439320 ____A (Intel Corporation) C:\Windows\System32\Drivers\iaStor.sys2012-09-01 00:38 - 2012-09-01 00:38 - 00000000 ____D C:\Windows\SysWOW64\sda2012-09-01 00:36 - 1999-12-31 16:00 - 09888360 ____A (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUStoricon.dll2012-09-01 00:36 - 1999-12-31 16:00 - 00422504 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtsUStor.dll2012-09-01 00:36 - 1999-12-31 16:00 - 00250984 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RtsUStor.sys2012-09-01 00:33 - 2012-09-01 00:33 - 00000000 ____D C:\Program Files\Intel2012-09-01 00:33 - 2011-09-26 15:15 - 00178344 ____A (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe2012-09-01 00:32 - 2011-09-06 13:33 - 00355016 ____A (Intel Corporation) C:\Windows\System32\PROUnstl.exe2012-09-01 00:32 - 2006-01-12 12:52 - 00001904 ____N C:\Windows\System32\SetupBD.din2012-09-01 00:19 - 2011-07-20 06:58 - 00342704 ____A (Intel Corporation) C:\Windows\System32\Drivers\e1k62x64.sys2012-09-01 00:19 - 2011-06-29 21:55 - 00068264 ____A (Intel Corporation) C:\Windows\System32\e1kmsg.dll2012-09-01 00:19 - 2011-06-15 22:14 - 00098496 ____A (Intel Corporation) C:\Windows\System32\NicInstK.dll2012-09-01 00:19 - 2009-10-09 08:43 - 00003143 ____A C:\Windows\System32\e1k62x64.din2012-09-01 00:04 - 2012-09-01 00:04 - 00002469 ____A C:\Users\Public\Desktop\DriverUpdate.lnk2012-09-01 00:04 - 2012-09-01 00:04 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers2012-09-01 00:04 - 2012-09-01 00:04 - 00000000 ____D C:\Users\Gabe\AppData\Local\SlimWare Utilities Inc2012-09-01 00:04 - 2012-09-01 00:04 - 00000000 ____D C:\Program Files (x86)\DriverUpdate2012-08-31 20:19 - 2012-08-31 20:19 - 00002885 ____A C:\Windows\SysWOW64\jupdate-1.6.0_35-b10.log2012-08-29 20:05 - 2012-08-29 20:05 - 00000318 ____A C:\Users\Gabe\Desktop\Curse Client.appref-ms2012-08-29 20:05 - 2012-08-29 20:05 - 00000000 ____D C:\Users\Gabe\Documents\My Curse2012-08-29 19:46 - 2012-08-29 20:04 - 00000000 ____D C:\Users\Gabe\AppData\Local\Apps\2.02012-08-29 19:46 - 2012-08-29 19:46 - 00000965 ____A C:\Users\Gabe\Gabe - Shortcut.lnk2012-08-28 08:25 - 2012-08-28 08:59 - 00000984 ____A C:\Users\Public\Desktop\World of Warcraft.lnk2012-08-24 13:39 - 2012-08-24 13:39 - 00000000 ____D C:\Users\Gabe\AppData\Local\{2E299EFB-46B7-442A-845F-11E4B795ED59}==================== 3 Months Modified Files ==================2012-09-20 04:07 - 2012-09-20 04:07 - 00321736 ____A ( New Softwares.net) C:\Windows\SysWOW64\WinFLTrayShred.exe2012-09-20 04:07 - 2012-09-20 04:07 - 00321736 ____A ( New Softwares.net) C:\Windows\SysWOW64\WinFLTray.exe2012-09-20 04:07 - 2012-09-20 04:07 - 00225680 ____A (NewSoftwares.net, Inc.) C:\Windows\SysWOW64\WinVDEdrv.sys2012-09-20 04:07 - 2012-09-20 04:07 - 00197648 ____A C:\Windows\SysWOW64\WinVDEdrv6.sys2012-09-20 04:07 - 2012-09-20 04:07 - 00091336 ____A (New Softwares.net) C:\Windows\SysWOW64\WinFLService.exe2012-09-20 04:07 - 2012-09-20 04:07 - 00035328 ____A C:\Windows\SysWOW64\WinFLAdrv.sys2012-09-20 04:07 - 2012-09-20 04:07 - 00014024 ____A C:\Windows\SysWOW64\WinFLMsgService.exe2012-09-20 04:07 - 2012-09-20 04:07 - 00001106 ____A C:\Users\Public\Desktop\Folder Lock.lnk2012-09-20 04:07 - 2012-08-13 19:05 - 00040960 ____A C:\Windows\SysWOW64\nwsftUninstall.exe2012-09-19 20:35 - 2009-07-13 21:13 - 00882862 ____A C:\Windows\System32\PerfStringBackup.INI2012-09-19 15:50 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT2012-09-19 15:43 - 2012-09-18 07:17 - 00000040 ___RH C:\Users\Gabe\Downloads\stinger.opt2012-09-19 12:28 - 2010-02-02 06:07 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2012-09-19 12:26 - 2012-04-07 21:30 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job2012-09-19 02:46 - 2009-12-26 20:18 - 00000904 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2684759980-1959591888-1663914851-1000UA.job2012-09-19 02:45 - 2010-02-02 06:07 - 00000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2012-09-18 18:41 - 2009-07-13 20:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02012-09-18 18:41 - 2009-07-13 20:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02012-09-18 13:50 - 2009-12-26 20:18 - 00000852 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2684759980-1959591888-1663914851-1000Core.job2012-09-18 13:10 - 2012-09-18 13:12 - 00985600 ____A C:\Users\Gabe\Downloads\MicrosoftFixit50123.msi2012-09-18 11:37 - 2012-09-18 11:37 - 00689664 ____A C:\Users\Gabe\Downloads\MicrosoftFixit50202.msi2012-09-18 10:02 - 2012-09-18 10:02 - 00347424 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\MicrosoftFixit.wu.LB.13527142207976578.1.1.Run.exe2012-09-18 08:09 - 2012-09-18 08:09 - 08613968 ____A (Macroplant LLC ) C:\Users\Gabe\Downloads\iExplorer_3_Setup.exe2012-09-18 07:19 - 2012-09-18 07:19 - 00889416 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\dotNetFx40_Full_setup.exe2012-09-18 07:17 - 2012-09-18 07:17 - 00000491 ____A C:\Users\Gabe\Downloads\stinger.txt2012-09-18 04:06 - 2012-09-18 04:06 - 17483288 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\Windows-KB890830-x64-V4.12.exe2012-09-18 04:04 - 2012-09-18 04:04 - 74537576 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\msert.exe2012-09-18 04:04 - 2012-09-18 04:04 - 10023016 ____A (McAfee Inc.) C:\Users\Gabe\Downloads\stinger.exe2012-09-17 04:05 - 2012-09-17 04:05 - 00000492 ____A C:\Users\Gabe\Desktop\DrWeb.csv2012-09-16 15:39 - 2012-09-16 15:37 - 93189968 ____A C:\Users\Gabe\Desktop\drweb-cureit.exe2012-09-16 11:29 - 2012-09-16 11:29 - 00002639 ____A C:\Users\Gabe\Desktop\FSS.txt2012-09-16 11:28 - 2012-09-16 11:28 - 00693235 ____A (Farbar) C:\Users\Gabe\Desktop\FSS.exe2012-09-16 11:21 - 2012-09-16 11:21 - 00002902 ____A C:\Users\Gabe\Desktop\Rkill.txt2012-09-16 11:17 - 2012-09-16 11:17 - 01659808 ____A (Bleeping Computer, LLC) C:\Users\Gabe\Downloads\rkill.com2012-09-16 11:14 - 2012-09-16 11:14 - 00025230 ____A C:\Users\Gabe\Desktop\09162012_130704.log2012-09-16 10:56 - 2012-09-16 10:56 - 01034216 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll2012-09-16 10:56 - 2012-09-16 10:56 - 00916456 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll2012-09-16 10:56 - 2012-09-16 10:56 - 00289768 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe2012-09-16 10:56 - 2012-09-16 10:56 - 00189416 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe2012-09-16 10:56 - 2012-09-16 10:56 - 00188904 ____A (Oracle Corporation) C:\Windows\System32\java.exe2012-09-16 10:56 - 2012-09-16 10:56 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll2012-09-16 10:16 - 2012-09-16 10:16 - 00001146 ____A C:\Users\Gabe\Desktop\checkup.txt2012-09-16 10:06 - 2012-09-16 10:06 - 00854156 ____A C:\Users\Gabe\Downloads\SecurityCheck.exe2012-09-16 10:06 - 2012-09-16 09:51 - 00149850 ____A C:\Users\Gabe\Desktop\Extras.Txt2012-09-16 10:06 - 2012-09-16 09:50 - 00150488 ____A C:\Users\Gabe\Desktop\OTL.Txt2012-09-16 09:34 - 2012-09-16 09:34 - 00600064 ____A (OldTimer Tools) C:\Users\Gabe\Desktop\OTL.exe2012-09-16 08:16 - 2012-09-16 08:16 - 00000000 ____A C:\Users\Gabe\defogger_reenable2012-09-16 08:10 - 2012-09-16 08:10 - 00050477 ____A C:\Users\Gabe\Desktop\Defogger.exe2012-09-15 16:03 - 2012-09-15 06:06 - 00283304 ____A C:\Windows\SysWOW64\PnkBstrB.exe2012-09-15 16:03 - 2011-08-31 09:12 - 00283304 ____A C:\Windows\SysWOW64\PnkBstrB.xtr2012-09-15 16:03 - 2011-08-31 09:10 - 00280904 ____A C:\Windows\SysWOW64\PnkBstrB.ex02012-09-15 06:30 - 2012-09-15 06:06 - 00076888 ____A C:\Windows\SysWOW64\PnkBstrA.exe2012-09-15 05:35 - 2010-01-26 11:38 - 00003000 ____A C:\Windows\wininit.ini2012-09-14 17:29 - 2012-09-14 17:29 - 16868888 ____A (Microsoft Corporation) C:\Users\Gabe\Downloads\Windows-KB890830-V4.12.exe2012-09-14 16:41 - 2012-09-14 13:27 - 00000038 ___RH C:\Users\Gabe\Desktop\stinger.opt2012-09-13 20:34 - 2012-09-13 20:17 - 00034177 ____A C:\Users\Gabe\Downloads\Result.txt2012-09-13 20:18 - 2012-09-13 20:18 - 00607260 ____R (Swearware) C:\Users\Gabe\Downloads\dds.com2012-09-13 20:16 - 2012-09-13 20:16 - 00751391 ____A (Farbar) C:\Users\Gabe\Downloads\MiniToolBox.exe2012-09-13 20:04 - 2012-01-01 03:40 - 00001080 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2012-09-13 19:25 - 2010-12-23 11:30 - 00868104 ____A C:\Windows\SysWOW64\PerfStringBackup.INI2012-09-13 19:22 - 2012-09-13 19:22 - 00001750 ____A C:\Users\Public\Desktop\iTunes.lnk2012-09-13 19:04 - 2012-04-07 21:30 - 00696520 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe2012-09-13 19:04 - 2011-11-20 23:33 - 00073416 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl2012-09-07 15:04 - 2011-10-09 21:14 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys2012-09-04 09:46 - 2011-11-01 13:56 - 00002455 ____A C:\Users\Gabe\Desktop\Google Chrome.lnk2012-09-01 22:50 - 2012-09-01 22:42 - 1519417223 ____A C:\Users\Gabe\Downloads\LOLPBE.zip2012-09-01 00:04 - 2012-09-01 00:04 - 00002469 ____A C:\Users\Public\Desktop\DriverUpdate.lnk2012-08-31 20:19 - 2012-08-31 20:19 - 00002885 ____A C:\Windows\SysWOW64\jupdate-1.6.0_35-b10.log2012-08-30 22:43 - 2009-11-26 14:54 - 64462936 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe2012-08-30 22:12 - 2012-09-14 17:30 - 62164608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe2012-08-29 20:05 - 2012-08-29 20:05 - 00000318 ____A C:\Users\Gabe\Desktop\Curse Client.appref-ms2012-08-29 20:01 - 2012-08-13 19:06 - 00000700 __ASH C:\Users\Gabe\AppData\Local\systemFL7.dat2012-08-29 19:46 - 2012-08-29 19:46 - 00000965 ____A C:\Users\Gabe\Gabe - Shortcut.lnk2012-08-28 18:24 - 2012-08-19 18:24 - 00477168 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\npdeployJava1.dll2012-08-28 18:24 - 2010-09-03 11:41 - 00473072 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll2012-08-28 08:59 - 2012-08-28 08:25 - 00000984 ____A C:\Users\Public\Desktop\World of Warcraft.lnk2012-08-22 10:12 - 2012-09-13 19:10 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys2012-08-22 10:12 - 2012-09-11 22:54 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys2012-08-22 10:12 - 2012-09-11 22:54 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys2012-08-22 10:12 - 2012-09-11 22:54 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS2012-08-21 11:01 - 2012-09-13 19:22 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys2012-08-21 11:01 - 2009-11-27 11:46 - 00125872 ____A (GEAR Software Inc.) C:\Windows\System32\GEARAspi64.dll2012-08-21 11:01 - 2009-11-27 11:46 - 00106928 ____A (GEAR Software Inc.) C:\Windows\SysWOW64\GEARAspi.dll2012-08-16 12:51 - 2012-08-16 12:47 - 00049512 ____A C:\Users\Gabe\Documents\(Unknown) - Clip 001.avi.sfk2012-08-16 12:46 - 2012-08-16 12:45 - 967345152 ____A C:\Users\Gabe\Documents\(Unknown) - Clip 001.avi2012-08-16 01:28 - 2009-07-13 20:45 - 04909576 ____A C:\Windows\System32\FNTCACHE.DAT2012-08-14 17:17 - 2012-08-14 17:16 - 00001328 ____A C:\Users\Public\Desktop\World of Warcraft Beta.lnk2012-08-14 17:11 - 2012-08-14 17:11 - 31727744 ____A (Blizzard Entertainment) C:\Users\Gabe\Desktop\World of Warcraft Beta Setup.exe2012-08-05 17:25 - 2012-03-14 10:40 - 00001156 ____A C:\Users\Public\Desktop\GOM Player.lnk2012-08-02 09:58 - 2012-09-13 19:10 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll2012-08-02 08:57 - 2012-09-13 19:10 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll2012-08-01 21:12 - 2012-08-01 21:12 - 00007603 ____A C:\Users\Gabe\AppData\Local\Resmon.ResmonCfg2012-07-31 20:33 - 2012-07-31 20:33 - 00002533 ____A C:\Users\Gabe\Desktop\Skype.lnk2012-07-31 20:11 - 2011-10-03 22:26 - 00021352 ____A C:\Windows\System32\lvcoinst.log2012-07-30 11:32 - 2012-07-30 11:32 - 00203104 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudmdm.sys2012-07-30 11:32 - 2012-07-30 11:32 - 00102240 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudbus.sys2012-07-29 17:03 - 2011-10-30 23:14 - 00036864 ____A C:\Users\Gabe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini2012-07-29 09:52 - 2012-07-29 09:52 - 00001047 ____A C:\Users\Public\Desktop\Vegas Pro 11.0.lnk2012-07-28 17:20 - 2011-10-04 11:13 - 00083984 ____A C:\Users\Gabe\AppData\Local\GDIPFONTCACHEV1.DAT2012-07-28 17:19 - 2010-01-11 12:13 - 00007756 ____A C:\Users\All Users\hpzinstall.log2012-07-25 14:01 - 2012-07-25 11:19 - 00002046 ____A C:\Users\Public\Desktop\Canon Solution Menu EX.lnk2012-07-18 10:15 - 2012-08-15 02:27 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys2012-07-12 06:33 - 2012-06-08 16:58 - 00000829 ____A C:\Users\Public\Desktop\CCleaner.lnk2012-07-09 11:42 - 2012-07-09 11:42 - 04547984 ____A (Apple, Inc.) C:\Windows\System32\usbaaplrc.dll2012-07-09 11:42 - 2012-07-09 11:42 - 00052736 ____A (Apple, Inc.) C:\Windows\System32\Drivers\usbaapl64.sys2012-07-04 14:16 - 2012-08-15 02:27 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll2012-07-04 14:13 - 2012-08-15 02:27 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll2012-07-04 14:13 - 2012-08-15 02:27 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll2012-07-04 13:16 - 2012-08-15 02:27 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll2012-07-04 13:14 - 2012-08-15 02:27 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll2012-07-04 12:26 - 2012-09-13 19:10 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rndismpx.sys2012-07-04 12:26 - 2012-09-13 19:10 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys2012-06-28 20:55 - 2012-08-16 01:08 - 17809920 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll2012-06-28 20:09 - 2012-08-16 01:08 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll2012-06-28 19:56 - 2012-08-16 01:08 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll2012-06-28 19:49 - 2012-08-16 01:08 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll2012-06-28 19:49 - 2012-08-16 01:08 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll2012-06-28 19:48 - 2012-08-16 01:08 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl2012-06-28 19:47 - 2012-08-16 01:08 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll2012-06-28 19:45 - 2012-08-16 01:08 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll2012-06-28 19:44 - 2012-08-16 01:08 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll2012-06-28 19:43 - 2012-08-16 01:08 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe2012-06-28 19:42 - 2012-08-16 01:08 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll2012-06-28 19:40 - 2012-08-16 01:08 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll2012-06-28 19:39 - 2012-08-16 01:08 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb2012-06-28 19:35 - 2012-08-16 01:08 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll2012-06-28 16:52 - 2012-08-16 01:08 - 12317184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2012-06-28 16:27 - 2012-08-16 01:08 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2012-06-28 16:16 - 2012-08-16 01:08 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2012-06-28 16:09 - 2012-08-16 01:08 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2012-06-28 16:09 - 2012-08-16 01:08 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2012-06-28 16:08 - 2012-08-16 01:08 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2012-06-28 16:07 - 2012-08-16 01:08 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll2012-06-28 16:06 - 2012-08-16 01:08 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2012-06-28 16:04 - 2012-08-16 01:08 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll2012-06-28 16:04 - 2012-08-16 01:08 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2012-06-28 16:01 - 2012-08-16 01:08 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2012-06-28 16:01 - 2012-08-16 01:08 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll2012-06-28 16:00 - 2012-08-16 01:08 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2012-06-28 15:57 - 2012-08-16 01:08 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2012-06-25 13:22 - 2012-04-28 18:36 - 00000432 ____A C:\Windows\System32\Drivers\etc\hosts.ics==================== Known DLLs (Whitelisted) ===================================== Bamital & volsnap Check =================C:\Windows\System32\winlogon.exe => MD5 is legitC:\Windows\System32\wininit.exe => MD5 is legitC:\Windows\SysWOW64\wininit.exe => MD5 is legitC:\Windows\explorer.exe => MD5 is legitC:\Windows\SysWOW64\explorer.exe => MD5 is legitC:\Windows\System32\svchost.exe => MD5 is legitC:\Windows\SysWOW64\svchost.exe => MD5 is legitC:\Windows\System32\services.exe => MD5 is legitC:\Windows\System32\User32.dll => MD5 is legitC:\Windows\SysWOW64\User32.dll => MD5 is legitC:\Windows\System32\userinit.exe => MD5 is legitC:\Windows\SysWOW64\userinit.exe => MD5 is legitC:\Windows\System32\Drivers\volsnap.sys => MD5 is legit==================== EXE ASSOCIATION =====================HKLM\...\.exe: exefile => OKHKLM\...\exefile\DefaultIcon: %1 => OKHKLM\...\exefile\open\command: "%1" %* => OK==================== Restore Points ============================================= Memory info =========================== Percentage of memory in use: 9%Total physical RAM: 8183.11 MBAvailable physical RAM: 7368.54 MBTotal Pagefile: 8181.26 MBAvailable Pagefile: 7369.34 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.91 MB==================== Partitions =============================1 Drive c: (Gateway) (Fixed) (Total:916.41 GB) (Free:607.2 GB) NTFS2 Drive e: (PQSERVICE) (Fixed) (Total:15 GB) (Free:4.68 GB) NTFS4 Drive g: (USB20FD) (Removable) (Total:3.73 GB) (Free:3.72 GB) FAT325 Drive h: (SEAGATE) (Fixed) (Total:465.64 GB) (Free:181.97 GB) FAT3211 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS12 Drive y: (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from reading drive)] Disk ### Status Size Free Dyn Gpt -------- ------------- ------- ------- --- --- Disk 0 Online 931 GB 0 B Disk 1 Online 3824 MB 0 B Disk 2 Online 465 GB 0 B Disk 3 No Media 0 B 0 B Disk 4 No Media 0 B 0 B Disk 5 No Media 0 B 0 B Disk 6 No Media 0 B 0 B Disk 7 No Media 0 B 0 B Partitions of Disk 0:=============== Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Recovery 15 GB 1024 KB Partition 2 Primary 100 MB 15 GB Partition 3 Primary 916 GB 15 GB==================================================================================Disk: 0Partition 1Type : 27Hidden: YesActive: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 3 E PQSERVICE NTFS Partition 15 GB Healthy Hidden =========================================================Disk: 0Partition 2Type : 07Hidden: NoActive: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 1 Y SYSTEM RESE NTFS Partition 100 MB Healthy =========================================================Disk: 0Partition 3Type : 07Hidden: NoActive: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 2 C Gateway NTFS Partition 916 GB Healthy =========================================================Partitions of Disk 1:=============== Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 3823 MB 564 KB==================================================================================Disk: 1Partition 1Type : 0BHidden: NoActive: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 4 G USB20FD FAT32 Removable 3823 MB Healthy =========================================================Partitions of Disk 2:=============== Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 465 GB 31 KB==================================================================================Disk: 2Partition 1Type : 0CHidden: NoActive: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 5 H SEAGATE FAT32 Partition 465 GB Healthy =========================================================Last Boot: 2012-09-16 10:35==================== End Of Log ============================= Link to post Share on other sites More sharing options...
boombaby16 Posted September 21, 2012 Author ID:599535 Share Posted September 21, 2012 How would i go about doing a fresh install of windows because i got the computer from my step dad and i no longer live at home so i don't have the disks. Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 21, 2012 ID:599626 Share Posted September 21, 2012 Check with the manufacturer of your system on the proper sequence and procedure for doing a factory restore of Windows.Almost all pc manufacturers have support websites. If the pc did not come with a Windows DVD/CD, the oem-manufacturer will have a restore partition on the system. Check with your manufacturer. Your system appears to be a Gateway pc. So check with Gateway support.Doing a factory restore will take the system back to day 1 as it came out of factory.So, if you do not have offline backups of your personal files and documents, then do the backup now Backup to offline media like external USB drive, to CD/DVDFor all the files, documents, personal stuff you backup..... after all is done & you have the new Windows setup, and Antivirus installed, and MBAM.....then I would scan any files you restore with 1) antivirus, 2) MBAM.Keep your pc disconnected from internet before & during the Windows clean install.Only reconnect after the antivirus program is installed.IF and only if your OEM or vendor included a pre-installed antivirus, be sure to Uninstall it before installing your antivirus.Look at this article http://windows.micro...lling-Windows-7for Custom / clean installAfter a clean install, you will need to immediately do a Windows Update to get current, followed by getting and installing antivirus program. Link to post Share on other sites More sharing options...
boombaby16 Posted September 22, 2012 Author ID:599783 Share Posted September 22, 2012 reinstallation fixed the CLR Error i downloaded terraria and ran it just fine. I ended up just putting the pictures and documents on my laptop to keep my desktop fresh. but it made a windows.old file can this be deleted because it's taking up around 300gb of space Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 22, 2012 ID:599932 Share Posted September 22, 2012 If you are very sure you now have your documents showing properly, then yes you can delete the window.old Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 24, 2012 ID:600711 Share Posted September 24, 2012 Can we close this thread now? Link to post Share on other sites More sharing options...
boombaby16 Posted September 24, 2012 Author ID:600731 Share Posted September 24, 2012 Yes everything is fixed now. Thank you for your help Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 24, 2012 ID:600736 Share Posted September 24, 2012 You are welcome. Stay safe. Follow safer practices. Wish you well.Safer practices & malware preventionHave a hardware router between the incoming internet-modem and your computer.Configure your Antivirus software to check for updates daily, at a time in which you are sure the computer will be on.Check in at Windows Update and install any Critical Updates offered.Make certain that Automatic Updates is enabled.How to configure and use Automatic Updates in Windowshttp://support.microsoft.com/kb/306525Check on other update issues as well, visit Secunia Online Software Inspector (OSI)See How to detect vulnerable and out-dated programs using Secunia Personal Software InspectorDownload, install, and keep updated Spyware Blaster (free): http://www.javacools...areblaster.html (all Protections should be enabled at all times)Tutorial for Spywareblaster: Using SpywareBlaster to protect your computer from Spyware, Hijackers, and MalwareI'd recommend that you get and use MVP Mike Burgess' custom hosts file http://mvps.org/winhelp2002/hosts.htmSee the FAQ page http://mvps.org/winh...02/hostsfaq.htmThat would help to keep your browser away from known spyware/malware sites.Make regular backups of your system to removable media: DVD, USB external hard drive, etc.Having a total image backup of your system stored on DVD/CD is highly important.Get and make use of imaging-backup utilities and save them to offline media. That way you have something to fall back to if another disaster hits.Examples of image backup software: Acronis True Image, or the free (for personal use) Macrium Reflect http://www.macrium.com/reflectfree.aspor Paragon Backup & Recovery http://www.paragon-s...e/download.htmlConsider using Web of Trust WOT add-on for your browser(s)http://www.mywot.com/en/downloadhttp://www.mywot.com/en/faq/add-onOn some regular schedule, it is a good idea to do an online scan for viruses and malware. Here is a very short list of sites where this may be done:ESET Online ScannerBitDefender QuickscanTrend Micro HousecallF-Secure Online ScannerMicrosoft Safety ScannerPanda ActiveScanSee Six tips to help you stay safer onlineNever, ever download free games, free tools, videos, mutli-media files or anything free unless you can be absolutely sure the source is safe !Resolved by user - system wipe & clean Windows install. This thread is now closed. Link to post Share on other sites More sharing options...
Recommended Posts