Jump to content

Pc running slow Help


Chrism0066
 Share

Recommended Posts

My pc has been running slow and now my Pc Matic wont finish its scan anymore it comes up and says error:json parase error undefined

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 9:13:21 PM, on 1/24/2012

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

Running processes:

E:\Steam\Steam.exe

C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe

C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

E:\downloads\iTunesHelper.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10s_ActiveX.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

E:\DOWNLO~2\PCPITS~1.EXE

E:\downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O4 - HKLM\..\Run: [bCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"

O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe

O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [PC MaticRT] C:\Program Files (x86)\games\PC MaticRT\PCMaticRT.exe

O4 - HKLM\..\Run: [EEventManager] C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "E:\downloads\iTunesHelper.exe"

O4 - HKLM\..\Run: [info Center] C:\Program Files (x86)\PCPitstop\Info Center\InfoCenter.exe

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [Google Update] "C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [steam] "E:\Steam\Steam.exe" -silent

O4 - HKCU\..\Run: [Download Nitro] "E:\Download Nitro\pcpitstop-nitro.exe" -autorun

O4 - Global Startup: GIGABYTE OC_GURU.lnk = C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU\OC_GURU.exe

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab

O16 - DPF: {1842B0EE-B597-11D4-8997-00104BD12D94} (iCC Class) - http://www.pcpitstop.com/internet/pcpConnCheck.cab

O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} (Photo Upload Plugin Class) - http://www.cvsphoto.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab

O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Futuremark SystemInfo) - http://service.futuremark.com/openapi/receivers/FMSI.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} (PCPitstop Exam) - http://utilities.pcpitstop.com/Optimize3/pcpitstop2.dll

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)

O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: DES2 Service for Energy Saving. (DES2 Service) - Unknown owner - C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: JMB36X - Unknown owner - C:\Windows\SysWOW64\XSrvSetup.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Office Source Engine (ose) - Unknown owner - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE (file missing)

O23 - Service: PCPitstop Scheduling - PC Pitstop LLC - E:\downloads\PCPitstopScheduleService.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: RalinkRegistryWriter - Ralink Technology, Corp. - C:\Program Files (x86)\ASUS USB-N53 Utility\RaRegistry.exe

O23 - Service: RalinkRegistryWriter64 - Ralink Technology, Corp. - C:\Program Files (x86)\ASUS USB-N53 Utility\RaRegistry64.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

----------------------------------------------------------------------------------------------------------------------------------------

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421

Run by Chris at 21:03:08 on 2012-01-24

Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.2046.591 [GMT -6:00]

.

AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\atieclxx.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\WLANExt.exe

C:\Windows\system32\conhost.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Windows Sidebar\sidebar.exe

E:\Steam\Steam.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe

C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

E:\downloads\iTunesHelper.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files (x86)\Common Files\Steam\SteamService.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\wuauclt.exe

C:\Windows\system32\svchost.exe -k SDRSVC

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10s_ActiveX.exe

C:\Program Files (x86)\PCPitstop\Info Center\InfoCenter.exe

E:\downloads\PC Matic\PCMatic.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

E:\DOWNLO~2\PCPITS~1.EXE

C:\Windows\explorer.exe

E:\downloads\HijackThis.exe

C:\Windows\explorer.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.yahoo.com/

uInternet Settings,ProxyOverride = *.local

uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll

mWinlogon: Userinit=userinit.exe

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [Google Update] "C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [AdobeBridge]

uRun: [steam] "E:\Steam\Steam.exe" -silent

uRun: [Download Nitro] "E:\Download Nitro\pcpitstop-nitro.exe" -autorun

mRun: [bCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"

mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe

mRun: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

mRun: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start

mRun: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [PC MaticRT] C:\Program Files (x86)\games\PC MaticRT\PCMaticRT.exe

mRun: [EEventManager] C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [iTunesHelper] "E:\downloads\iTunesHelper.exe"

mRun: [info Center] C:\Program Files (x86)\PCPitstop\Info Center\InfoCenter.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\GIGABY~1.LNK - C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU\OC_GURU.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {1842B0EE-B597-11D4-8997-00104BD12D94} - hxxp://www.pcpitstop.com/internet/pcpConnCheck.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

DPF: {BEA7310D-06C4-4339-A784-DC3804819809} - hxxp://www.cvsphoto.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab

DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} - hxxp://service.futuremark.com/openapi/receivers/FMSI.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2.dll

TCP: DhcpNameServer = 192.168.1.1 209.124.193.100 209.124.193.101

TCP: Interfaces\{279C3AA1-C456-44A3-A312-1FA63F003488} : DhcpNameServer = 192.168.0.1

TCP: Interfaces\{2B359C98-E062-48F5-AA76-B374A9555619} : DhcpNameServer = 192.168.1.1 209.124.193.100 209.124.193.101

TCP: Interfaces\{2B359C98-E062-48F5-AA76-B374A9555619}\D41647869637025376 : DhcpNameServer = 192.168.1.1 209.124.193.100 209.124.193.101

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

mRun-x64: [bCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"

mRun-x64: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe

mRun-x64: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

mRun-x64: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start

mRun-x64: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [PC MaticRT] C:\Program Files (x86)\games\PC MaticRT\PCMaticRT.exe

mRun-x64: [EEventManager] C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe

mRun-x64: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun-x64: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun-x64: [iTunesHelper] "E:\downloads\iTunesHelper.exe"

mRun-x64: [info Center] C:\Program Files (x86)\PCPitstop\Info Center\InfoCenter.exe

.

============= SERVICES / DRIVERS ===============

.

R1 AppleCharger;AppleCharger;C:\Windows\system32\DRIVERS\AppleCharger.sys --> C:\Windows\system32\DRIVERS\AppleCharger.sys [?]

R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]

R2 cpuz133;cpuz133;\??\C:\Windows\system32\drivers\cpuz133_x64.sys --> C:\Windows\system32\drivers\cpuz133_x64.sys [?]

R2 sbapifs;sbapifs;C:\Windows\system32\DRIVERS\sbapifs.sys --> C:\Windows\system32\DRIVERS\sbapifs.sys [?]

R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]

R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]

R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]

R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver;C:\Windows\system32\DRIVERS\netr28ux.sys --> C:\Windows\system32\DRIVERS\netr28ux.sys [?]

R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]

R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]

R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]

R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-9-14 209768]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2010-10-20 821664]

S2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-9-14 483688]

S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?]

S3 BCUService;Browser Configuration Utility Service;C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464]

S3 DES2 Service;DES2 Service for Energy Saving.;C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [2010-6-25 68136]

S3 DrvAgent64;DrvAgent64;C:\Windows\SysWOW64\drivers\DrvAgent64.SYS [2010-6-25 21712]

S3 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-8-2 136176]

S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-8-2 136176]

S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2010-6-25 30528]

S3 JMB36X;JMB36X;C:\Windows\SysWOW64\XSrvSetup.exe [2010-6-25 72304]

S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

S3 PCPitstop Scheduling;PCPitstop Scheduling;E:\downloads\PCPitstopScheduleService.exe [2012-1-24 91816]

S3 RalinkRegistryWriter;RalinkRegistryWriter;C:\Program Files (x86)\ASUS USB-N53 Utility\RaRegistry.exe [2011-7-26 375872]

S3 RalinkRegistryWriter64;RalinkRegistryWriter64;C:\Program Files (x86)\ASUS USB-N53 Utility\RaRegistry64.exe [2011-7-26 454208]

S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]

S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S3 WinRing0_1_2_0;WinRing0_1_2_0;E:\downloads\RealTemp_360\WinRing0x64.sys [2008-7-26 14544]

S3 WSDPrintDevice;WSD Print Support via UMB;C:\Windows\system32\DRIVERS\WSDPrint.sys --> C:\Windows\system32\DRIVERS\WSDPrint.sys [?]

S3 WSDScan;WSD Scan Support via UMB;C:\Windows\system32\DRIVERS\WSDScan.sys --> C:\Windows\system32\DRIVERS\WSDScan.sys [?]

.

=============== Created Last 30 ================

.

2012-01-25 02:55:22 -------- d-----w- C:\Users\Chris\AppData\Roaming\Free Download Manager

2012-01-25 02:40:23 -------- d-----w- C:\ProgramData\PCPitstopDat

2012-01-25 02:38:11 69000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8AF5BFB1-7CEA-49F6-895F-83AFB0A7ABC5}\offreg.dll

2012-01-24 23:30:33 8602168 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8AF5BFB1-7CEA-49F6-895F-83AFB0A7ABC5}\mpengine.dll

2012-01-21 20:51:41 -------- d-----w- C:\Program Files\iTunes

2012-01-21 20:51:41 -------- d-----w- C:\Program Files\iPod

2012-01-19 22:12:49 -------- d-----w- C:\Users\Chris\AppData\Roaming\BigHugeEngine

2012-01-11 09:01:25 1572864 ----a-w- C:\Windows\System32\quartz.dll

2012-01-11 09:01:25 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll

2012-01-11 09:01:24 77312 ----a-w- C:\Windows\System32\packager.dll

2012-01-11 09:01:24 67072 ----a-w- C:\Windows\SysWow64\packager.dll

2012-01-11 09:01:24 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll

2012-01-11 09:01:24 366592 ----a-w- C:\Windows\System32\qdvd.dll

2012-01-11 09:01:24 1731920 ----a-w- C:\Windows\System32\ntdll.dll

2012-01-11 09:01:24 1292080 ----a-w- C:\Windows\SysWow64\ntdll.dll

2012-01-07 22:11:05 -------- d-----w- C:\Program Files (x86)\epson

2012-01-04 03:13:32 1660480 ----a-w- C:\Windows\System32\drivers\netr28ux.sys

2012-01-04 03:03:23 -------- d-----w- C:\ProgramData\Ralink

2012-01-04 03:03:02 792416 ----a-w- C:\Windows\System32\RaIOx64.exe

2012-01-04 03:03:02 -------- d-----w- C:\Program Files (x86)\Cisco

2012-01-04 03:03:01 -------- d-----w- C:\Windows\System32\RaLanguages

2012-01-04 03:02:24 -------- d-----w- C:\Program Files (x86)\ASUS USB-N53 Utility

2012-01-04 03:02:12 4115968 ------r- C:\Windows\SysWow64\AInst5090x.exe

.

==================== Find3M ====================

.

2011-12-17 21:59:01 175616 ----a-w- C:\Windows\System32\msclmd.dll

2011-12-17 21:59:01 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll

2011-11-24 04:52:09 3145216 ----a-w- C:\Windows\System32\win32k.sys

2011-11-17 06:49:14 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2011-11-17 06:49:14 152432 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2011-11-17 06:44:43 459232 ----a-w- C:\Windows\System32\drivers\cng.sys

2011-11-17 06:35:28 395776 ----a-w- C:\Windows\System32\webio.dll

2011-11-17 06:35:26 29184 ----a-w- C:\Windows\System32\sspisrv.dll

2011-11-17 06:35:26 136192 ----a-w- C:\Windows\System32\sspicli.dll

2011-11-17 06:35:25 340992 ----a-w- C:\Windows\System32\schannel.dll

2011-11-17 06:35:25 28160 ----a-w- C:\Windows\System32\secur32.dll

2011-11-17 06:35:19 1447936 ----a-w- C:\Windows\System32\lsasrv.dll

2011-11-17 06:33:55 31232 ----a-w- C:\Windows\System32\lsass.exe

2011-11-17 05:35:02 314880 ----a-w- C:\Windows\SysWow64\webio.dll

2011-11-17 05:34:52 224768 ----a-w- C:\Windows\SysWow64\schannel.dll

2011-11-17 05:34:52 22016 ----a-w- C:\Windows\SysWow64\secur32.dll

2011-11-17 05:28:48 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll

2011-11-11 03:59:35 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr

2011-11-11 03:59:35 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe

2011-11-11 03:57:03 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0

2011-11-10 23:48:23 75136 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe

2011-11-05 05:32:50 2048 ----a-w- C:\Windows\System32\tzres.dll

2011-11-05 04:26:03 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2011-11-04 01:53:39 2309120 ----a-w- C:\Windows\System32\jscript9.dll

2011-11-04 01:44:47 1390080 ----a-w- C:\Windows\System32\wininet.dll

2011-11-04 01:44:21 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl

2011-11-04 01:34:43 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2011-11-03 22:47:42 1798144 ----a-w- C:\Windows\SysWow64\jscript9.dll

2011-11-03 22:40:21 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2011-11-03 22:39:47 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll

2011-11-03 22:31:57 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

.

============= FINISH: 21:03:21.79 ===============

Link to comment
Share on other sites

Hello Chrism0066 and :wp:

 

My name is JonTom

  • Malware Logs can sometimes take a lot of time to research and interpret.
  • Please be patient while I try to assist with your problem. If at any time you do not understand what is required, please ask for further explanation.
  • Please note that there is no "Quick Fix" to modern malware infections and we may need to use several different approaches to get your system clean.
  • Read every reply you receive carefully and thoroughly before carrying out the instructions. You may also find it helpful to print out the instructions you receive, as in some instances you may have to disconnect your computer from the Internet.
  • PLEASE NOTE: If you do not reply after 3 days your thread will be closed.
When you ran DDS, two logs would have been produced: the DDS.txt which you have posted, and the attach.txt which I still need to review.

 

Please post the attach.txt log in your next reply along with the log from the following tool:

  • aswMBR

  • Download aswMBR.exe to your desktop.
  • Double click the aswMBR.exe to run it.
  • When asked if you want to download Avast's virus definitions please select Yes.
  • Click the "Scan" button to start scan.

Posted Image

 

  • On completion of the scan click save log, save it to your desktop and post in your next reply.
Posted Image

 

 

Please post the logs in your next reply.

Link to comment
Share on other sites

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Professional

Boot Device: DeviceHarddiskVolume1

Install Date: 6/25/2010 10:37:50 AM

System Uptime: 1/26/2012 5:46:35 PM (0 hours ago)

.

Motherboard: Gigabyte Technology Co., Ltd. | | X58A-UD3R

Processor: Intel® Core i7 CPU 930 @ 2.80GHz | Socket 1366 | 2794/133mhz

.

==== Disk Partitions =========================

.

A: is Removable

C: is FIXED (NTFS) - 74 GiB total, 28.06 GiB free.

D: is CDROM (CDFS)

E: is FIXED (NTFS) - 932 GiB total, 655.494 GiB free.

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP863: 1/21/2012 3:00:10 AM - Windows Update

RP864: 1/22/2012 3:00:27 AM - Windows Update

RP865: 1/22/2012 7:00:06 PM - Windows Backup

RP866: 1/23/2012 3:00:22 AM - Windows Update

RP867: 1/23/2012 3:42:59 PM - Windows Update

RP868: 1/23/2012 6:05:11 PM - Restore Operation

RP869: 1/24/2012 3:00:10 AM - Windows Update

RP870: 1/24/2012 11:21:35 AM - Windows Update

RP871: 1/25/2012 3:00:23 AM - Windows Update

RP872: 1/26/2012 3:00:21 AM - Windows Update

RP873: 1/26/2012 5:36:33 PM - Windows Update

RP874: 1/26/2012 5:40:11 PM - Removed EPSON Scan Assistant

RP875: 1/26/2012 5:40:22 PM - Removed Attach To Email

RP876: 1/26/2012 5:40:30 PM - Removed Epson Event Manager

RP877: 1/26/2012 5:41:33 PM - Removed Epson Print CD

RP878: 1/26/2012 5:45:37 PM - Windows Update

.

==== Installed Programs ======================

.

@BIOS Ver.2.06

Acrobat.com

Adobe AIR

Adobe Community Help

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Photoshop CS5.1

Adobe Reader 9.4.5

Adobe Shockwave Player 11.6

AGEIA PhysX v7.09.13

Anno 2070

Apple Application Support

Apple Software Update

ASUS USB-N53 Utility

ATI Catalyst Registration

Battlefield 3™

Battlefield 3™ Open Beta

Browser Configuration Utility

Catalyst Control Center

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

CCC Help English

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

Crysis 2

Dead Island

DES 2.0

ESN Sonar

EVEREST Ultimate Edition v5.50

Fraps

Futuremark SystemInfo

GIGABYTE OC_GURU

Gigabyte Raid Configurer

Google Chrome

Google Earth Plug-in

Google Update Helper

Info Center 1.0.0.7

Java Auto Updater

Java 6 Update 23

Kingdoms of Amalur: Reckoning Demo

Microsoft Silverlight

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft XNA Framework Redistributable 4.0

Microsoft_VC80_ATL_x86

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Microsoft_VC90_MFCLOC_x86

NEC Electronics USB 3.0 Host Controller Driver

ON_OFF Charge B10.0422.2

OpenAL

Origin

PDF Settings CS5

Portal 2

PunkBuster Services

QuickTime

Realtek Ethernet Controller Driver For Windows 7

Realtek High Definition Audio Driver

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Extended (KB2416472)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Steam

System Requirements Lab for Intel

Terraria

The Elder Scrolls V: Skyrim

The Lord of the Rings FREE Trial

Ubisoft Game Launcher

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

.

==== Event Viewer Messages From Past Week ========

.

1/26/2012 5:47:57 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITYSYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

1/26/2012 5:46:57 PM, Error: Service Control Manager [7003] - The Application Virtualization Client service depends the following service: sftfs. This service might not be installed.

1/26/2012 5:46:57 PM, Error: Service Control Manager [7001] - The Client Virtualization Handler service depends on the Application Virtualization Client service which failed to start because of the following error: The dependency service does not exist or has been marked for deletion.

1/26/2012 5:45:45 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft Office 2010 (KB2515417).

1/26/2012 5:40:51 PM, Error: Service Control Manager [7034] - The PCPitstop Realtime service terminated unexpectedly. It has done this 1 time(s).

1/23/2012 6:43:10 PM, Error: Disk [15] - The device, DeviceHarddisk1DR1, is not ready for access yet.

1/23/2012 6:43:10 PM, Error: atapi [11] - The driver detected a controller error on DeviceIdeIdePort3.

1/23/2012 5:42:26 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.

1/23/2012 5:34:29 PM, Error: Service Control Manager [7001] - The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.

1/23/2012 5:33:04 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.

1/23/2012 5:32:49 PM, Error: Microsoft-Windows-WLAN-AutoConfig [10000] - WLAN Extensibility Module has failed to start. Module Path: C:Windowssystem32RAIHV.dll Error Code: 21

1/23/2012 5:32:41 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

1/23/2012 5:32:41 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

1/23/2012 5:32:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

1/23/2012 5:32:35 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

1/23/2012 5:32:29 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AppleCharger discache MpFilter spldr Wanarpv6

1/23/2012 3:37:53 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.

1/22/2012 4:00:09 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.119.353.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITYSYSTEM Current Engine Version: Previous Engine Version: 1.1.8001.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

1/21/2012 2:38:20 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000009f (0x0000000000000003, 0xfffffa800500b450, 0xfffff80000b9c518, 0xfffffa8007f6f580). A dump was saved in: C:WindowsMEMORY.DMP. Report Id: 012112-18844-01.

.

==== End Of File ===========================

 

 

 

 

 

 

 

 

 

aswMBR version 0.9.9.1532 Copyright© 2011 AVAST Software

Run date: 2012-01-26 17:49:13

-----------------------------

17:49:13.299 OS Version: Windows x64 6.1.7601 Service Pack 1

17:49:13.299 Number of processors: 8 586 0x1A05

17:49:13.299 ComputerName: CHRIS-PC UserName: Chris

17:49:13.393 Initialize success

17:49:55.727 AVAST engine defs: 12012602

17:50:03.371 Disk 0 (boot) DeviceHarddisk0DR0 -> DeviceIdeIdeDeviceP2T0L0-2

17:50:03.371 Disk 0 Vendor: INTEL_SSDSA2M080G2GC 2CV102HD Size: 76319MB BusType: 3

17:50:03.387 Disk 1 DeviceHarddisk1DR1 -> DeviceIdeIdeDeviceP3T0L0-4

17:50:03.387 Disk 1 Vendor: SAMSUNG_HD103SJ 1AJ10001 Size: 953869MB BusType: 3

17:50:03.387 Disk 0 MBR read successfully

17:50:03.387 Disk 0 MBR scan

17:50:03.387 Disk 0 Windows 7 default MBR code

17:50:03.387 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048

17:50:03.418 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 76217 MB offset 206848

17:50:03.434 Service scanning

17:50:04.463 Service MpNWMon C:Windowssystem32DRIVERSMpNWMon.sys **LOCKED** 32

17:50:05.072 Modules scanning

17:50:05.072 Disk 0 trace - called modules:

17:50:05.587 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys

17:50:05.587 1 nt!IofCallDriver -> DeviceHarddisk0DR0[0xfffffa8005782790]

17:50:05.587 3 CLASSPNP.SYS[fffff8800165143f] -> nt!IofCallDriver -> [0xfffffa800555f520]

17:50:05.602 5 ACPI.sys[fffff88000d777a1] -> nt!IofCallDriver -> DeviceIdeIdeDeviceP2T0L0-2[0xfffffa8005569060]

17:50:06.850 AVAST engine scan C:Windows

17:50:07.739 AVAST engine scan C:Windowssystem32

17:51:47.076 AVAST engine scan C:Windowssystem32drivers

17:51:51.740 AVAST engine scan C:UsersChris

17:53:35.309 AVAST engine scan C:ProgramData

17:54:07.098 Scan finished successfully

17:56:18.344 Disk 0 MBR has been saved successfully to "C:UsersChrisDesktopMBR.dat"

17:56:18.391 The log file has been saved successfully to "C:UsersChrisDesktopaswMBR.txt"

Link to comment
Share on other sites

Hello Chrism0066

 

There is not a great deal showing in those logs. Is the machine displaying any other problems besides the slowness (popups, redirects, error messages etc)?

 

Lets run some general scans and see what turns up:

  • Temporary File Cleaner

  • Download TFC to your desktop.
  • Close any open windows.
  • Right click the TFC icon and select "Run as Administrator" to run the program.
  • TFC will close all open programs itself in order to run.
  • Click the Start button to begin the process.
  • Allow TFC to run uninterrupted.
  • The program should not take long to finish.
  • Once complete it should automatically reboot your machine.
  • If your machine does not reboot automatically, manually reboot to ensure a complete clean.
  • Note: After running TFC your machine may take slightly longer to boot the first time. This is normal.
  • Please perform the following scan:

    • Please download MalwareBytes AntiMalware by clicking here and save the file (called mbam-setup.exe) to your desktop.
    • Right click on the mbam-setup.exe icon and select "Run as Administrator" to install the program.
    • Follow the prompts during installation and have the Installation Wizzard create a desktop icon.
    • Once installed, double click on the MalwareBytes AntiMalware icon to launch the program.
    • Click on the "Update" tab and then on "Check for Updates".
    • The program will now install the latest Malware definition files.
    • Once complete, click on the "Scanner" tab, select "Perform Quick Scan"and then click on "Scan".
    • Once the program has scanned your computer, a log file will be created in Notepad.
    • Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
    • If the scan detects any Malware-related objects, make sure that everything is checked, and click "Remove Selected" <– Very Important.
    • When disinfection is completed, a log will open in Notepad and you may be prompted to restart your computer.
    • The log is automatically saved by MBAM and can be viewed by clicking the "Logs" tab.
    • Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process. If asked to restart your computer, please do so immediately.
    • Come back here to this thread and Paste the log in your next reply.
  • Please update your Java

    • Click on "Windows Orb" (bottom left hand corner of your screen), then on "Computer" and then on the "Uninstall or Change a Program" tab.
    • Uninstall any previous versions of Java that you find ().
    • Reboot your computer.
    • Download the latest version of Java Runtime Environment (JRE) 7
    • Scroll down the page until you reach "Java Platform Standard Edition".
    • Beneath this and to the right, you will see a red button marked "JRE Download" for Java SE 7 u2
    • Click the "Download" button.
    • Accept the licence agreement.
    • Under "Product / File Description" download the jre-7u2-windows-x64.exe file for Windows x64.
    • Save the file to your desktop.
    • From your desktop Right click on jre-7u2-windows-x64.exe and select "Run as Administrator" to install the newest version.
    • Delete the downloaded installation file after completing the above procedure and reboot your system if not prompted to do so.
  • Please run the following scan

    • Note: You will need to use Internet Explorer for this scan.
    • Note for Vista/Windows 7 Users: ESET is compatible but Internet Explorer must be run as Administrator. To do this, right-click on your Internet Explorer icon and select "Run as Administrator".
    • Please disable your real time security programs before performing the scan.
    • Scan your system with Eset Online Scanner
    • Place a check mark in the box YES, I accept the Terms Of Use.
    • Click the Posted Image button.
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps).
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
    • Check Posted Image
    • Click the Posted Image button.
    • Accept any security warnings from your browser.
    • Check Posted Image
    • Make sure that the option to "Remove Found Threats" is UN checked.
    • Push the "Start" button.
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
    • When the scan completes, push Posted Image
    • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    • Push the Posted Image button.
    • Push Posted Image
    Post the MBAM log and the ESET log in your next reply.
Link to comment
Share on other sites

2012/01/27 15:05:48 -0600 CHRIS-PC Chris MESSAGE Starting protection

2012/01/27 15:05:49 -0600 CHRIS-PC Chris MESSAGE Protection started successfully

2012/01/27 15:05:52 -0600 CHRIS-PC Chris MESSAGE Starting IP protection

2012/01/27 15:05:53 -0600 CHRIS-PC Chris MESSAGE IP Protection started successfully

2012/01/27 15:08:59 -0600 CHRIS-PC Chris MESSAGE Starting protection

2012/01/27 15:09:00 -0600 CHRIS-PC Chris MESSAGE Protection started successfully

2012/01/27 15:09:03 -0600 CHRIS-PC Chris MESSAGE Starting IP protection

2012/01/27 15:09:04 -0600 CHRIS-PC Chris MESSAGE IP Protection started successfully

2012/01/27 15:14:01 -0600 CHRIS-PC Chris MESSAGE Starting protection

2012/01/27 15:14:02 -0600 CHRIS-PC Chris MESSAGE Protection started successfully

2012/01/27 15:14:05 -0600 CHRIS-PC Chris MESSAGE Starting IP protection

2012/01/27 15:14:05 -0600 CHRIS-PC Chris MESSAGE IP Protection started successfully

2012/01/27 15:20:03 -0600 CHRIS-PC Chris MESSAGE Starting protection

2012/01/27 15:20:05 -0600 CHRIS-PC Chris MESSAGE Protection started successfully

2012/01/27 15:20:08 -0600 CHRIS-PC Chris MESSAGE Starting IP protection

2012/01/27 15:20:08 -0600 CHRIS-PC Chris MESSAGE IP Protection started successfully

2012/01/27 16:17:07 -0600 CHRIS-PC Chris MESSAGE Starting protection

2012/01/27 16:17:08 -0600 CHRIS-PC Chris MESSAGE Protection started successfully

2012/01/27 16:17:11 -0600 CHRIS-PC Chris MESSAGE Starting IP protection

2012/01/27 16:17:12 -0600 CHRIS-PC Chris MESSAGE IP Protection started successfully

2012/01/29 12:22:45 -0600 CHRIS-PC Chris MESSAGE Starting protection

2012/01/29 12:22:46 -0600 CHRIS-PC Chris MESSAGE Executing scheduled update: Daily

2012/01/29 12:22:47 -0600 CHRIS-PC Chris MESSAGE Protection started successfully

2012/01/29 12:22:50 -0600 CHRIS-PC Chris MESSAGE Starting IP protection

2012/01/29 12:22:50 -0600 CHRIS-PC Chris MESSAGE IP Protection started successfully

2012/01/29 12:22:54 -0600 CHRIS-PC Chris MESSAGE Starting database refresh

2012/01/29 12:22:54 -0600 CHRIS-PC Chris MESSAGE Scheduled update executed successfully: database updated from version v2012.01.27.05 to version v2012.01.29.02

2012/01/29 12:22:54 -0600 CHRIS-PC Chris MESSAGE Stopping IP protection

2012/01/29 12:23:24 -0600 CHRIS-PC Chris MESSAGE IP Protection stopped

2012/01/29 12:23:25 -0600 CHRIS-PC Chris MESSAGE Database refreshed successfully

2012/01/29 12:23:25 -0600 CHRIS-PC Chris MESSAGE Starting IP protection

2012/01/29 12:23:26 -0600 CHRIS-PC Chris MESSAGE IP Protection started successfully

2012/01/29 15:07:12 -0600 CHRIS-PC Chris DETECTION E:downloads123kickit_razer_bypassWinject.exe HackTool.Agent.H QUARANTINE

 

Eset

C:Program Files (x86)gamesdownloadsFacemoods.exe a variant of Win32/SweetIM.B application

E:downloadsFacemoods.exe a variant of Win32/SweetIM.B application

Link to comment
Share on other sites

Ok i followed the instructions this time lol.

 

 

Malwarebytes Anti-Malware (Trial) 1.60.1.1000

www.malwarebytes.org

Database version: v2012.01.30.04

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 9.0.8112.16421

Chris :: CHRIS-PC [administrator]

Protection: Enabled

1/30/2012 5:25:05 PM

mbam-log-2012-01-30 (17-25-05).txt

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 181691

Time elapsed: 1 minute(s), 9 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 0

(No malicious items detected)

(end)

Link to comment
Share on other sites

Hello Chris0066

 

Ok i followed the instructions this time lol

That log looks much better :)

 

Is the machine displaying any other problems besides the slowness (popups, redirects, error messages etc)?

Please let me know about this question.

 

Lets take care of the ESET detections:

  • Please download OTM

  • Please download OTM by OldTimer by clicking here.
  • Save the file (called OTM.exe) to your desktop.
  • Double click on the OTM.exe icon to run the program. (Note: If you are running on Vista/Windows 7, right-click on the file and choose Run As Administrator).
  • Copy the lines in the codebox below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

 

:Files
C:\Program Files (x86)\games\downloads\Facemoods.exe
E:\downloads\Facemoods.exe


:Commands
[Purity]
[EmptyTemp]
[Emptyflash]
[Reboot]

  • Return to OTM, right click in the "Paste Instructions for Items to be Moved" window (under the yellow bar) and choose Paste.
  • Click the Moveit! button.
  • Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTM.
  • Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File -> Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTMoveIt\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.
Please post the OTM log in your next reply along with a new set of DDS logs and let me know how the machine is running now.
Link to comment
Share on other sites

Everything is running fine now. Do you have anyother suggestions or does everything look good from your point of view. My pcmatic is finally working with out getting the error screen so I believe that it has been fixed : ).

 

 

All processes killed

Error: Unable to interpret <:FilesC:Program Files (x86)gamesdownloadsFacemoods.exeE:downloadsFacemoods.exe:Commands[Purity][EmptyTemp][Emptyflash][Reboot]> in the current context!

 

OTM by OldTimer - Version 3.1.19.0 log created on 02012012_174422

 

 

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

 

 

Internet Explorer: 9.0.8112.16421

Run by Chris at 17:52:02 on 2012-02-01

Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.6142.4466 [GMT -6:00]

.

AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

.

============== Running Processes ===============

.

C:Windowssystem32wininit.exe

C:Windowssystem32lsm.exe

C:Windowssystem32svchost.exe -k DcomLaunch

C:Windowssystem32svchost.exe -k RPCSS

C:Program FilesMicrosoft Security ClientAntimalwareMsMpEng.exe

C:Windowssystem32atiesrxx.exe

C:WindowsSystem32svchost.exe -k LocalServiceNetworkRestricted

C:WindowsSystem32svchost.exe -k LocalSystemNetworkRestricted

C:Windowssystem32svchost.exe -k netsvcs

C:Windowssystem32svchost.exe -k LocalService

C:Windowssystem32atieclxx.exe

C:Windowssystem32svchost.exe -k NetworkService

C:Windowssystem32WLANExt.exe

C:Windowssystem32conhost.exe

C:WindowsSystem32spoolsv.exe

C:Windowssystem32svchost.exe -k LocalServiceNoNetwork

C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe

C:Program FilesBonjourmDNSResponder.exe

C:WindowsSysWOW64PnkBstrA.exe

C:Program Files (x86)Microsoft Application Virtualization Clientsftvsa.exe

C:Windowssystem32svchost.exe -k imgsvc

C:Program FilesMicrosoft Security ClientAntimalwareNisSrv.exe

C:Windowssystem32taskhost.exe

C:Windowssystem32Dwm.exe

C:WindowsExplorer.EXE

C:Windowssystem32svchost.exe -k LocalServiceAndNoImpersonation

C:Program FilesRealtekAudioHDARAVCpl64.exe

C:Program FilesMicrosoft Security Clientmsseces.exe

C:Program FilesWindows Sidebarsidebar.exe

E:SteamSteam.exe

C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAAAM Updates Notifier.exe

C:Windowssystem32wbemwmiprvse.exe

C:Program Files (x86)DeviceVMBrowser Configuration UtilityBCU.exe

C:Program Files (x86)NEC ElectronicsUSB 3.0 Host Controller DriverApplicationnusb3mon.exe

C:Program Files (x86)Common FilesInstallShieldUpdateServiceissch.exe

C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe

E:downloadsiTunesHelper.exe

E:Malwarebytes' Anti-Malwarembamgui.exe

C:Program Files (x86)PCPitstopInfo CenterInfoCenter.exe

C:Program FilesiPodbiniPodService.exe

C:Program Files (x86)Common FilesSteamSteamService.exe

C:Windowssystem32SearchIndexer.exe

C:Windowssystem32taskeng.exe

C:Program Files (x86)ASUS USB-N53 UtilityWlanMgr.exe

C:Program Files (x86)Internet Exploreriexplore.exe

C:Program Files (x86)Internet Exploreriexplore.exe

C:WindowsSysWOW64MacromedFlashFlashUtil10s_ActiveX.exe

C:Windowssystem32notepad.exe

E:Malwarebytes' Anti-Malwarembamservice.exe

C:Windowssystem32sppsvc.exe

C:Program FilesWindows Media Playerwmpnetwk.exe

C:Windowssystem32wbemwmiprvse.exe

C:Windowssystem32wuauclt.exe

?C:Windowssystem32wbemWMIADAP.EXE

C:Windowssystem32svchost.exe -k SDRSVC

C:Windowssystem32SearchProtocolHost.exe

C:Windowssystem32SearchFilterHost.exe

C:Program Files (x86)Internet Exploreriexplore.exe

C:Windowssystem32SearchProtocolHost.exe

C:Windowssystem32DllHost.exe

C:Windowssystem32DllHost.exe

C:WindowsSysWOW64cmd.exe

C:Windowssystem32conhost.exe

C:WindowsSysWOW64cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.yahoo.com/

uInternet Settings,ProxyOverride = *.local

uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - C:Program Files (x86)DeviceVMBrowser Configuration UtilityAddressBarSearch.dll

mWinlogon: Userinit=userinit.exe,

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:Program Files (x86)Common FilesAdobeAcrobatActiveXAcroIEHelperShim.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:Program Files (x86)Javajre6binjp2ssv.dll

TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

uRun: [sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun

uRun: [Google Update] "C:UsersChrisAppDataLocalGoogleUpdateGoogleUpdate.exe" /c

uRun: [AdobeBridge]

uRun: [steam] "E:SteamSteam.exe" -silent

mRun: [bCU] "C:Program Files (x86)DeviceVMBrowser Configuration UtilityBCU.exe"

mRun: [JMB36X IDE Setup] C:WindowsRaidToolxInsIDE.exe

mRun: [NUSB3MON] "C:Program Files (x86)NEC ElectronicsUSB 3.0 Host Controller DriverApplicationnusb3mon.exe"

mRun: [iSUSScheduler] "C:Program Files (x86)Common FilesInstallShieldUpdateServiceissch.exe" -start

mRun: [ATICustomerCare] "C:Program Files (x86)ATIATICustomerCareATICustomerCare.exe"

mRun: [Adobe ARM] "C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe"

mRun: [switchBoard] C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe

mRun: [AdobeCS5.5ServiceManager] "C:Program Files (x86)Common FilesAdobeCS5.5ServiceManagerCS5.5ServiceManager.exe" -launchedbylogin

mRun: [APSDaemon] "C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe"

mRun: [iTunesHelper] "E:downloadsiTunesHelper.exe"

mRun: [Malwarebytes' Anti-Malware] "E:Malwarebytes' Anti-Malwarembamgui.exe" /starttray

mRun: [info Center] C:Program Files (x86)PCPitstopInfo CenterInfoCenter.exe

StartupFolder: C:PROGRA~3MICROS~1WindowsSTARTM~1ProgramsStartupGIGABY~1.LNK - C:Program Files (x86)GIGABYTEGIGABYTE OC_GURUOC_GURU.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:Program Files (x86)Fiddler2Fiddler.exe"

DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {1842B0EE-B597-11D4-8997-00104BD12D94} - hxxp://www.pcpitstop.com/internet/pcpConnCheck.cab

DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab

DPF: {BEA7310D-06C4-4339-A784-DC3804819809} - hxxp://www.cvsphoto.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab

DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} - hxxp://service.futuremark.com/openapi/receivers/FMSI.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 192.168.1.1 209.124.193.100 209.124.193.101

TCP: Interfaces{279C3AA1-C456-44A3-A312-1FA63F003488} : DhcpNameServer = 192.168.0.1

TCP: Interfaces{2B359C98-E062-48F5-AA76-B374A9555619} : DhcpNameServer = 192.168.1.1 209.124.193.100 209.124.193.101

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:Program Files (x86)Common FilesAdobeAcrobatActiveXAcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program Files (x86)Javajre6binjp2ssv.dll

TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

mRun-x64: [bCU] "C:Program Files (x86)DeviceVMBrowser Configuration UtilityBCU.exe"

mRun-x64: [JMB36X IDE Setup] C:WindowsRaidToolxInsIDE.exe

mRun-x64: [NUSB3MON] "C:Program Files (x86)NEC ElectronicsUSB 3.0 Host Controller DriverApplicationnusb3mon.exe"

mRun-x64: [iSUSScheduler] "C:Program Files (x86)Common FilesInstallShieldUpdateServiceissch.exe" -start

mRun-x64: [ATICustomerCare] "C:Program Files (x86)ATIATICustomerCareATICustomerCare.exe"

mRun-x64: [Adobe ARM] "C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe"

mRun-x64: [switchBoard] C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe

mRun-x64: [AdobeCS5.5ServiceManager] "C:Program Files (x86)Common FilesAdobeCS5.5ServiceManagerCS5.5ServiceManager.exe" -launchedbylogin

mRun-x64: [APSDaemon] "C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe"

mRun-x64: [iTunesHelper] "E:downloadsiTunesHelper.exe"

mRun-x64: [Malwarebytes' Anti-Malware] "E:Malwarebytes' Anti-Malwarembamgui.exe" /starttray

mRun-x64: [info Center] C:Program Files (x86)PCPitstopInfo CenterInfoCenter.exe

IE-X64: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:Program Files (x86)Fiddler2Fiddler.exe"

.

============= SERVICES / DRIVERS ===============

.

R1 AppleCharger;AppleCharger;C:Windowssystem32DRIVERSAppleCharger.sys --> C:Windowssystem32DRIVERSAppleCharger.sys [?]

R1 MpFilter;Microsoft Malware Protection Driver;C:Windowssystem32DRIVERSMpFilter.sys --> C:Windowssystem32DRIVERSMpFilter.sys [?]

R1 vwififlt;Virtual WiFi Filter Driver;C:Windowssystem32DRIVERSvwififlt.sys --> C:Windowssystem32DRIVERSvwififlt.sys [?]

R2 AMD External Events Utility;AMD External Events Utility;C:Windowssystem32atiesrxx.exe --> C:Windowssystem32atiesrxx.exe [?]

R2 cpuz133;cpuz133;??C:Windowssystem32driverscpuz133_x64.sys --> C:Windowssystem32driverscpuz133_x64.sys [?]

R2 MBAMService;MBAMService;E:Malwarebytes' Anti-Malwarembamservice.exe [2012-1-30 652360]

R2 sbapifs;sbapifs;C:Windowssystem32DRIVERSsbapifs.sys --> C:Windowssystem32DRIVERSsbapifs.sys [?]

R3 amdkmdag;amdkmdag;C:Windowssystem32DRIVERSatikmdag.sys --> C:Windowssystem32DRIVERSatikmdag.sys [?]

R3 amdkmdap;amdkmdap;C:Windowssystem32DRIVERSatikmpag.sys --> C:Windowssystem32DRIVERSatikmpag.sys [?]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:Windowssystem32driversAtihdW76.sys --> C:Windowssystem32driversAtihdW76.sys [?]

R3 MBAMProtector;MBAMProtector;??C:Windowssystem32driversmbam.sys --> C:Windowssystem32driversmbam.sys [?]

R3 MpNWMon;Microsoft Malware Protection Network Driver;C:Windowssystem32DRIVERSMpNWMon.sys --> C:Windowssystem32DRIVERSMpNWMon.sys [?]

R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver;C:Windowssystem32DRIVERSnetr28ux.sys --> C:Windowssystem32DRIVERSnetr28ux.sys [?]

R3 NisDrv;Microsoft Network Inspection System;C:Windowssystem32DRIVERSNisDrvWFP.sys --> C:Windowssystem32DRIVERSNisDrvWFP.sys [?]

R3 NisSrv;Microsoft Network Inspection;C:Program FilesMicrosoft Security ClientAntimalwareNisSrv.exe [2011-4-27 288272]

R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;C:Windowssystem32DRIVERSnusb3hub.sys --> C:Windowssystem32DRIVERSnusb3hub.sys [?]

R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;C:Windowssystem32DRIVERSnusb3xhc.sys --> C:Windowssystem32DRIVERSnusb3xhc.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:Windowssystem32DRIVERSRt64win7.sys --> C:Windowssystem32DRIVERSRt64win7.sys [?]

R3 sftvsa;Application Virtualization Service Agent;C:Program Files (x86)Microsoft Application Virtualization Clientsftvsa.exe [2010-9-14 209768]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:WindowsMicrosoft.NETFramework64v4.0.30319mscorsvw.exe [2010-3-18 138576]

S2 cvhsvc;Client Virtualization Handler;C:Program Files (x86)Common Filesmicrosoft sharedVirtualization HandlerCVHSVC.EXE [2010-10-20 821664]

S2 sftlist;Application Virtualization Client;C:Program Files (x86)Microsoft Application Virtualization Clientsftlist.exe [2010-9-14 483688]

S3 AppleChargerSrv;AppleChargerSrv;system32AppleChargerSrv.exe --> system32AppleChargerSrv.exe [?]

S3 BCUService;Browser Configuration Utility Service;C:Program Files (x86)DeviceVMBrowser Configuration UtilityBCUService.exe [2009-10-15 223464]

S3 DES2 Service;DES2 Service for Energy Saving.;C:Program Files (x86)GIGABYTEEnergySaver2des2svr.exe [2010-6-25 68136]

S3 DrvAgent64;DrvAgent64;C:WindowsSysWOW64driversDrvAgent64.SYS [2010-6-25 21712]

S3 gupdate;Google Update Service (gupdate);C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2011-8-2 136176]

S3 gupdatem;Google Update Service (gupdatem);C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2011-8-2 136176]

S3 GVTDrv64;GVTDrv64;C:WindowsGVTDrv64.sys [2010-6-25 30528]

S3 JMB36X;JMB36X;C:WindowsSysWOW64XSrvSetup.exe [2010-6-25 72304]

S3 osppsvc;Office Software Protection Platform;C:Program FilesCommon FilesMicrosoft SharedOfficeSoftwareProtectionPlatformOSPPSVC.EXE [2010-1-9 4925184]

S3 PCPitstop Scheduling;PCPitstop Scheduling;C:Program Files (x86)PCPitstopPCPitstopScheduleService.exe [2012-1-29 91816]

S3 RalinkRegistryWriter;RalinkRegistryWriter;C:Program Files (x86)ASUS USB-N53 UtilityRaRegistry.exe [2011-7-26 375872]

S3 RalinkRegistryWriter64;RalinkRegistryWriter64;C:Program Files (x86)ASUS USB-N53 UtilityRaRegistry64.exe [2011-7-26 454208]

S3 StorSvc;Storage Service;C:WindowsSystem32svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]

S3 SwitchBoard;Adobe SwitchBoard;C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe [2010-2-19 517096]

S3 TsUsbFlt;TsUsbFlt;C:Windowssystem32driverstsusbflt.sys --> C:Windowssystem32driverstsusbflt.sys [?]

S3 USBAAPL64;Apple Mobile USB Driver;C:Windowssystem32Driversusbaapl64.sys --> C:Windowssystem32Driversusbaapl64.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:Windowssystem32WatWatAdminSvc.exe --> C:Windowssystem32WatWatAdminSvc.exe [?]

S3 WinRing0_1_2_0;WinRing0_1_2_0;E:downloadsRealTemp_360WinRing0x64.sys [2008-7-26 14544]

S3 WSDPrintDevice;WSD Print Support via UMB;C:Windowssystem32DRIVERSWSDPrint.sys --> C:Windowssystem32DRIVERSWSDPrint.sys [?]

S3 WSDScan;WSD Scan Support via UMB;C:Windowssystem32DRIVERSWSDScan.sys --> C:Windowssystem32DRIVERSWSDScan.sys [?]

.

=============== Created Last 30 ================

.

2012-02-01 23:44:22 -------- d-----w- C:_OTM

2012-01-31 01:57:40 -------- d-----w- C:Program Files (x86)Fiddler2

2012-01-30 23:51:13 8602168 ----a-w- C:ProgramDataMicrosoftMicrosoft AntimalwareDefinition Updates{3F98D288-6795-44CF-9844-A0C7022330E7}mpengine.dll

2012-01-30 02:20:34 -------- d-----w- C:ProgramDataPCPitstopDat

2012-01-27 21:21:22 -------- d-----w- C:Program Files (x86)ESET

2012-01-27 21:15:51 750488 ----a-w- C:WindowsSystem32npdeployJava1.dll

2012-01-27 21:15:51 660368 ----a-w- C:WindowsSystem32deployJava1.dll

2012-01-27 21:05:29 -------- d-----w- C:UsersChrisAppDataRoamingMalwarebytes

2012-01-27 21:05:09 -------- d-----w- C:ProgramDataMalwarebytes

2012-01-27 21:05:08 23152 ----a-w- C:WindowsSystem32driversmbam.sys

2012-01-25 03:35:10 -------- d-----w- C:ProgramDataPCPitstop

2012-01-21 20:51:41 -------- d-----w- C:Program FilesiTunes

2012-01-21 20:51:41 -------- d-----w- C:Program FilesiPod

2012-01-19 22:12:49 -------- d-----w- C:UsersChrisAppDataRoamingBigHugeEngine

2012-01-11 09:01:25 1572864 ----a-w- C:WindowsSystem32quartz.dll

2012-01-11 09:01:25 1328128 ----a-w- C:WindowsSysWow64quartz.dll

2012-01-11 09:01:24 77312 ----a-w- C:WindowsSystem32packager.dll

2012-01-11 09:01:24 67072 ----a-w- C:WindowsSysWow64packager.dll

2012-01-11 09:01:24 514560 ----a-w- C:WindowsSysWow64qdvd.dll

2012-01-11 09:01:24 366592 ----a-w- C:WindowsSystem32qdvd.dll

2012-01-11 09:01:24 1731920 ----a-w- C:WindowsSystem32ntdll.dll

2012-01-11 09:01:24 1292080 ----a-w- C:WindowsSysWow64ntdll.dll

2012-01-04 03:13:32 1660480 ----a-w- C:WindowsSystem32driversnetr28ux.sys

2012-01-04 03:03:23 -------- d-----w- C:ProgramDataRalink

2012-01-04 03:03:02 792416 ----a-w- C:WindowsSystem32RaIOx64.exe

2012-01-04 03:03:02 -------- d-----w- C:Program Files (x86)Cisco

2012-01-04 03:03:01 -------- d-----w- C:WindowsSystem32RaLanguages

2012-01-04 03:02:24 -------- d-----w- C:Program Files (x86)ASUS USB-N53 Utility

2012-01-04 03:02:12 4115968 ------r- C:WindowsSysWow64AInst5090x.exe

.

==================== Find3M ====================

.

2012-01-04 09:26:37 279096 ------w- C:WindowsSystem32MpSigStub.exe

2011-12-17 21:59:01 175616 ----a-w- C:WindowsSystem32msclmd.dll

2011-12-17 21:59:01 152576 ----a-w- C:WindowsSysWow64msclmd.dll

2011-11-24 04:52:09 3145216 ----a-w- C:WindowsSystem32win32k.sys

2011-11-17 06:49:14 95600 ----a-w- C:WindowsSystem32driversksecdd.sys

2011-11-17 06:49:14 152432 ----a-w- C:WindowsSystem32driversksecpkg.sys

2011-11-17 06:44:43 459232 ----a-w- C:WindowsSystem32driverscng.sys

2011-11-17 06:35:28 395776 ----a-w- C:WindowsSystem32webio.dll

2011-11-17 06:35:26 29184 ----a-w- C:WindowsSystem32sspisrv.dll

2011-11-17 06:35:26 136192 ----a-w- C:WindowsSystem32sspicli.dll

2011-11-17 06:35:25 340992 ----a-w- C:WindowsSystem32schannel.dll

2011-11-17 06:35:25 28160 ----a-w- C:WindowsSystem32secur32.dll

2011-11-17 06:35:19 1447936 ----a-w- C:WindowsSystem32lsasrv.dll

2011-11-17 06:33:55 31232 ----a-w- C:WindowsSystem32lsass.exe

2011-11-17 05:35:02 314880 ----a-w- C:WindowsSysWow64webio.dll

2011-11-17 05:34:52 224768 ----a-w- C:WindowsSysWow64schannel.dll

2011-11-17 05:34:52 22016 ----a-w- C:WindowsSysWow64secur32.dll

2011-11-17 05:28:48 96768 ----a-w- C:WindowsSysWow64sspicli.dll

2011-11-11 03:59:35 280904 ----a-w- C:WindowsSysWow64PnkBstrB.xtr

2011-11-11 03:59:35 280904 ----a-w- C:WindowsSysWow64PnkBstrB.exe

2011-11-11 03:57:03 280904 ----a-w- C:WindowsSysWow64PnkBstrB.ex0

2011-11-10 23:48:23 75136 ----a-w- C:WindowsSysWow64PnkBstrA.exe

2011-11-05 05:32:50 2048 ----a-w- C:WindowsSystem32tzres.dll

2011-11-05 04:26:03 2048 ----a-w- C:WindowsSysWow64tzres.dll

2011-11-04 01:53:39 2309120 ----a-w- C:WindowsSystem32jscript9.dll

2011-11-04 01:44:47 1390080 ----a-w- C:WindowsSystem32wininet.dll

2011-11-04 01:44:21 1493504 ----a-w- C:WindowsSystem32inetcpl.cpl

2011-11-04 01:34:43 2382848 ----a-w- C:WindowsSystem32mshtml.tlb

.

============= FINISH: 17:52:17.15 ===============

 

 

 

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Professional

Boot Device: DeviceHarddiskVolume1

Install Date: 6/25/2010 10:37:50 AM

System Uptime: 2/1/2012 5:44:58 PM (0 hours ago)

.

Motherboard: Gigabyte Technology Co., Ltd. | | X58A-UD3R

Processor: Intel® Core i7 CPU 930 @ 2.80GHz | Socket 1366 | 2794/133mhz

.

==== Disk Partitions =========================

.

A: is Removable

C: is FIXED (NTFS) - 74 GiB total, 27.946 GiB free.

D: is CDROM (CDFS)

E: is FIXED (NTFS) - 932 GiB total, 716.553 GiB free.

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP875: 1/26/2012 5:40:22 PM - Removed Attach To Email

RP876: 1/26/2012 5:40:30 PM - Removed Epson Event Manager

RP877: 1/26/2012 5:41:33 PM - Removed Epson Print CD

RP878: 1/26/2012 5:45:37 PM - Windows Update

RP879: 1/27/2012 3:00:10 AM - Windows Update

RP880: 1/27/2012 3:10:30 PM - Removed Java 6 Update 23

RP881: 1/27/2012 3:15:42 PM - Installed Java 7 Update 2 (64-bit)

RP882: 1/27/2012 4:13:51 PM - Windows Update

RP883: 1/29/2012 12:23:57 PM - Windows Update

RP884: 1/29/2012 7:00:02 PM - Windows Backup

RP885: 1/29/2012 9:39:33 PM - Windows Update

RP886: 1/30/2012 3:00:17 AM - Windows Update

RP887: 1/30/2012 5:27:38 PM - Windows Update

RP888: 1/31/2012 3:00:18 AM - Windows Update

RP889: 2/1/2012 3:00:15 AM - Windows Update

.

==== Installed Programs ======================

.

@BIOS Ver.2.06

Acrobat.com

Adobe AIR

Adobe Community Help

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Photoshop CS5.1

Adobe Reader 9.4.5

Adobe Shockwave Player 11.6

AGEIA PhysX v7.09.13

Anno 2070

Apple Application Support

Apple Software Update

ASUS USB-N53 Utility

ATI Catalyst Registration

Battlefield 3™

Battlefield 3™ Open Beta

Browser Configuration Utility

Catalyst Control Center

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

CCC Help English

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

Crysis 2

Dead Island

DES 2.0

ESET Online Scanner v3

ESN Sonar

EVEREST Ultimate Edition v5.50

Fiddler2

Fraps

Futuremark SystemInfo

GIGABYTE OC_GURU

Gigabyte Raid Configurer

Google Chrome

Google Earth Plug-in

Google Update Helper

Info Center 1.0.0.7

Java Auto Updater

Kingdoms of Amalur: Reckoning Demo

Malwarebytes Anti-Malware version 1.60.1.1000

Microsoft Silverlight

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft XNA Framework Redistributable 4.0

Microsoft_VC80_ATL_x86

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Microsoft_VC90_MFCLOC_x86

NEC Electronics USB 3.0 Host Controller Driver

ON_OFF Charge B10.0422.2

OpenAL

Origin

PC Matic 1.1.0.44

PDF Settings CS5

Portal 2

PunkBuster Services

QuickTime

Realtek Ethernet Controller Driver For Windows 7

Realtek High Definition Audio Driver

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Extended (KB2416472)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Steam

System Requirements Lab for Intel

Terraria

The Elder Scrolls V: Skyrim

The Lord of the Rings FREE Trial

Ubisoft Game Launcher

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

.

==== Event Viewer Messages From Past Week ========

.

2/1/2012 8:33:13 AM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.119.978.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITYSYSTEM Current Engine Version: Previous Engine Version: 1.1.8001.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

2/1/2012 5:46:18 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITYSYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

2/1/2012 5:45:18 PM, Error: Service Control Manager [7001] - The Client Virtualization Handler service depends on the Application Virtualization Client service which failed to start because of the following error: The dependency service does not exist or has been marked for deletion.

2/1/2012 5:45:17 PM, Error: Service Control Manager [7003] - The Application Virtualization Client service depends the following service: sftfs. This service might not be installed.

2/1/2012 5:44:22 PM, Error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

2/1/2012 3:00:30 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft Office 2010 (KB2515417).

1/30/2012 5:39:04 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.

1/30/2012 5:38:56 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service BITS with arguments "" in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}

1/30/2012 5:33:14 PM, Error: Service Control Manager [7001] - The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.

1/30/2012 5:31:34 PM, Error: Microsoft-Windows-WLAN-AutoConfig [10000] - WLAN Extensibility Module has failed to start. Module Path: C:Windowssystem32RAIHV.dll Error Code: 21

1/30/2012 5:31:27 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

1/30/2012 5:31:27 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

1/30/2012 5:31:26 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

1/30/2012 5:31:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

1/30/2012 5:31:14 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AppleCharger discache MpFilter spldr Wanarpv6

1/30/2012 5:29:01 PM, Error: Microsoft-Windows-Directory-Services-SAM [12291] - SAM failed to start the TCP/IP or SPX/IPX listening thread

1/29/2012 9:24:25 PM, Error: Service Control Manager [7034] - The Steam Client Service service terminated unexpectedly. It has done this 1 time(s).

1/29/2012 9:24:22 PM, Error: Disk [15] - The device, DeviceHarddisk1DR1, is not ready for access yet.

1/29/2012 9:24:22 PM, Error: atapi [11] - The driver detected a controller error on DeviceIdeIdePort3.

1/28/2012 3:30:48 AM, Error: volsnap [10] - The shadow copy of volume E: took too long to install.

1/28/2012 3:12:48 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrkWks service.

1/28/2012 3:11:48 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

1/28/2012 3:11:18 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanmanServer service.

1/28/2012 3:07:44 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

1/28/2012 3:01:44 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Browser service.

1/28/2012 3:00:45 AM, Error: Service Control Manager [7034] - The MBAMService service terminated unexpectedly. It has done this 1 time(s).

1/28/2012 3:00:45 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Volume Shadow Copy service to connect.

1/28/2012 3:00:45 AM, Error: Service Control Manager [7000] - The Volume Shadow Copy service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

1/28/2012 3:00:45 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service VSS with arguments "" in order to run the server: {0B5A2C52-3EB9-470A-96E2-6C6D4570E40F}

1/28/2012 2:04:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AudioEndpointBuilder service.

1/28/2012 2:03:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SENS service.

1/28/2012 2:03:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

1/28/2012 2:02:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service.

1/28/2012 2:02:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Spooler service.

1/28/2012 2:01:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service.

1/28/2012 2:01:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanmanWorkstation service.

1/28/2012 2:00:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IKEEXT service.

1/28/2012 2:00:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the iphlpsvc service.

1/28/2012 1:59:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

1/28/2012 1:59:12 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the upnphost service.

1/28/2012 1:58:42 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wuauserv service.

1/27/2012 3:08:49 PM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.

1/26/2012 5:40:51 PM, Error: Service Control Manager [7034] - The PCPitstop Realtime service terminated unexpectedly. It has done this 1 time(s).

.

Link to comment
Share on other sites

Hello chrism0066

 

It looks as though the OTM script failed.

 

Please try the script again, and when you paste the copied lines into OTM, please make sure that they are formatted exactly as they look in post number 8.

 

Post the new OTM log in your next reply.

Link to comment
Share on other sites

I ran it twice and i keep getting the same thing.

 

All processes killed

Error: Unable to interpret <:FilesC:Program Files (x86)gamesdownloadsFacemoods.exeE:downloadsFacemoods.exe:Commands[Purity][EmptyTemp][Emptyflash][Reboot]> in the current context!

 

OTM by OldTimer - Version 3.1.19.0 log created on 02042012_093215

Link to comment
Share on other sites

Hello chrism0066

 

I ran it twice and i keep getting the same thing.

Okay, lets deal with those files manually:

  • Please search for the following files

  • NOTE: DO NOT double click on ANY executable (.exe) files in the next step!!!
  • Right-click your "Start" button and select "Explore".
  • Navigate to and delete the following files in bold.

 

C:Program Files (x86)gamesdownloadsFacemoods.exe <==== Delete this file.

E:downloadsFacemoods.exe <==== Delete this file.

  • Once deleted, empty the Recycle Bin.

     

    Let me know how the machine is running in your next reply.

Link to comment
Share on other sites

Due to lack of response, this topic is now closed.

 

If you are the topic starter and need this topic reopened, please PM a staff member (include the address of this thread in your request).

 

Everyone else please start a new topic.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

×
×
  • Create New...