1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Windows 7: "Program" has stopped working"?

Discussion in 'Virus & Other Malware Removal' started by Pistol Slap, Dec 19, 2012.

Thread Status:
Not open for further replies.
  1. Pistol Slap

    Pistol Slap Thread Starter

    Joined:
    Mar 16, 2007
    Messages:
    181
    I'm using Windows 7 and for the last couple days I've been flooded with all sorts of "Program" has stopped working" notifications, from everything from the nvidia control panel to windows explorer to various processes that I don't even recognize that must be other ordinary windows processes. These just happen without warning, and when I restart my computer, I get about ten of them right on startup, everything is crashing and I don't know why?

    chkdsk came up with nothing.
    as per suggestion by another user I booted into safe mode -- the crashes do not occur within safe mode -- good to know. I opened cmd and ran 'sfc /scannow'. no results.

    also, a user suggested it may be my ram -- I don't believe this is the case because my XP installation runs just fine on the same hardware.

    i restarted the computer into normal windows and even before windows could boot it said userinit.exe and runoncewrapper both crashed then windows media player, then realtek audio, then nvidia, and a ton of other processes. In fact it seems like every process that runs it happens to, even the screensaver. thats what i mean by it being system programs.

    Also, it seems to for whatever reason be knocking my games from 40fps down to 12.
    Avira and Malwarebytes and Spybot all have nothing to report in the way of viruses or spyware, but this problem behaves like malware. The sticky said that 64 bit scans cannot do rootkits? I did a rootkit scan with Avira with no results, is that actually useless?


    Here's the crash details for one of them:

    Problem signature:
    Problem Event Name: APPCRASH
    Application Name: userinit.exe
    Application Version: 6.1.7601.17514
    Application Timestamp: 4ce79e9a
    Fault Module Name: StackHash_b608
    Fault Module Version: 0.0.0.0
    Fault Module Timestamp: 00000000
    Exception Code: c0000005
    Exception Offset: 000000006fff0110
    OS Version: 6.1.7601.2.1.0.256.1
    Locale ID: 4105
    Additional Information 1: b608
    Additional Information 2: b60879385d1b8e95d4e06307842f33fd
    Additional Information 3: 3b66
    Additional Information 4: 3b66afa504f4053040504f69eeabacd7



    System Specs

    Operating System
    Windows 7 Ultimate (x64) Service Pack 1 (build 7601)

    Processor
    3.20 gigahertz Intel Core i5-3470
    128 kilobyte primary memory cache
    1024 kilobyte secondary memory cache
    6144 kilobyte tertiary memory cache
    64-bit ready
    Multi-core (4 total)
    Not hyper-threaded

    Board:
    Gigabyte Technology Co., Ltd. H77M-D3H
    Bus Clock: 100 megahertz
    BIOS: American Megatrends Inc. F5 03/29/2012

    RAM:
    Slot 'ChannelB-DIMM0' has 8192 MB

    Display:
    NVIDIA GeForce GTX 660 [Display adapter]
    Samsung SyncMaster [Monitor] (24.0"vis, s/n YCUYHVDZ702086, July 2010)

    Audio:
    NVIDIA High Definition Audio
    VIA High Definition Audio

    PSU
    thermaltake atx power supply
    trx-750M 750W TRX RX PSU

    HJT Log
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 10:38:29 AM, on 19/12/2012
    Platform: Unknown Windows (WinNT 6.01.3505 SP1)
    MSIE: Internet Explorer v9.00 (9.00.8112.16457)
    Boot mode: Safe mode with network support

    Running processes:
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    F2 - REG:system.ini: UserInit=userinit.exe
    O2 - BHO: (no name) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - (no file)
    O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
    O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
    O4 - Startup: taskmgr.exe - Shortcut.lnk = C:\Windows\System32\taskmgr.exe
    O4 - Global Startup: Mozilla Firefox.lnk = C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: ASGT - Unknown owner - C:\Windows\SysWOW64\ASGT.exe
    O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
    O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
    O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: S3D Service (Win32) - iZ3D Inc. - C:\Program Files (x86)\iZ3D Driver\Win32\S3DCService.exe
    O23 - Service: S3D Service (Win64) - iZ3D Inc. - C:\Program Files (x86)\iZ3D Driver\Win64\S3DCService.exe
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    --
    End of file - 7638 bytes


    DDS.txt

    DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORK
    Internet Explorer: 9.0.8112.16457
    Run by PistolSlap at 10:38:50 on 2012-12-19
    Microsoft Windows 7 Ultimate 6.1.7601.1.1252.2.1033.18.8150.6815 [GMT -8:00]
    .
    AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
    SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    FW: COMODO Firewall *Enabled* {7DB03214-694B-060B-1600-BD4715C36DBB}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\Explorer.EXE
    C:\Windows\system32\ctfmon.exe
    C:\Windows\helppane.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\SysWOW64\NOTEPAD.EXE
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    mWinlogon: Userinit = userinit.exe
    BHO: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - <orphaned>
    uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
    uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
    mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
    mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
    mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
    mRunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
    StartupFolder: C:\Users\PISTOL~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\TASKMG~1.LNK - C:\Windows\System32\taskmgr.exe
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MOZILL~1.LNK - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
    uPolicies-Explorer: TaskbarNoThumbnail = dword:1
    mPolicies-Explorer: NoActiveDesktop = dword:1
    mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableLUA = dword:0
    mPolicies-System: EnableUIADesktopToggle = dword:0
    mPolicies-System: PromptOnSecureDesktop = dword:0
    .
    INFO: HKCU has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    .
    INFO: HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    TCP: NameServer = 192.168.0.1
    TCP: Interfaces\{0004D73F-774C-474D-862A-CEB16ABD5345} : DHCPNameServer = 192.168.0.1
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\Advisor\System\BAVoilaX.dll
    SSODL: WebCheck - <orphaned>
    x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
    x64-Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
    x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
    .
    INFO: x64-HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    x64-Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - <orphaned>
    x64-SSODL: WebCheck - <orphaned>
    Hosts: 127.0.0.1 ads.mcafee.com
    Hosts: 127.0.0.1 analytics.microsoft.com
    Hosts: 127.0.0.1 metrics.bitdefender.com
    Hosts: 127.0.0.1 metrics.mcafee.com
    Hosts: 127.0.0.1 om.symantec.com
    .
    Note: multiple HOSTS entries found. Please refer to Attach.txt
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\PistolSlap\AppData\Roaming\Mozilla\Firefox\Profiles\lfjl7gg7.default\
    FF - prefs.js: browser.startup.homepage - mail.yahoo.com
    FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
    FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
    FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
    FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
    FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
    FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
    FF - ExtSQL: 2012-12-07 18:37; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\PistolSlap\AppData\Roaming\Mozilla\Firefox\Profiles\lfjl7gg7.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
    FF - ExtSQL: 2012-12-07 18:37; {3d7eb24f-2740-49df-8937-200b1cc08f8a}; C:\Users\PistolSlap\AppData\Roaming\Mozilla\Firefox\Profiles\lfjl7gg7.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}.xpi
    FF - ExtSQL: 2012-12-08 00:17; {41a40cb1-aa9e-47c6-a207-66b9f5875870}; C:\Users\PistolSlap\AppData\Roaming\Mozilla\Firefox\Profiles\lfjl7gg7.default\extensions\{41a40cb1-aa9e-47c6-a207-66b9f5875870}.xpi
    FF - ExtSQL: 2012-12-08 02:58; {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}; C:\Users\PistolSlap\AppData\Roaming\Mozilla\Firefox\Profiles\lfjl7gg7.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
    FF - ExtSQL: 2012-12-08 09:43; [email protected]; C:\Users\PistolSlap\AppData\Roaming\Mozilla\Firefox\Profiles\lfjl7gg7.default\extensions\[email protected]
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2012-12-7 16152]
    R1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\System32\drivers\cmdhlp.sys [2012-11-7 38144]
    R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2012-12-7 279616]
    R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2012-12-7 356120]
    R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2012-12-7 787736]
    R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2012-12-7 104560]
    S1 AppleCharger;AppleCharger;C:\Windows\System32\drivers\AppleCharger.sys [2012-12-7 21616]
    S1 avkmgr;avkmgr;C:\Windows\System32\drivers\avkmgr.sys [2012-12-7 27800]
    S1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\System32\drivers\cmdGuard.sys [2012-11-7 584056]
    S1 iZ3DInjectionDriver;Driver inject our D3D and OGL wrappers;C:\Program Files (x86)\iZ3D Driver\Win64\S3DInjectionDriver.sys [2012-12-16 43704]
    S1 VirtDiskBus;3TB+ Unlock;C:\Windows\System32\drivers\VirtDiskBus64.sys [2012-12-7 66160]
    S2 AntiVirSchedulerService;Avira Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2012-12-7 85280]
    S2 AntiVirService;Avira Real-Time Protection;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2012-12-7 109344]
    S2 ASGT;ASGT;C:\Windows\SysWOW64\ASGT.exe [2012-1-17 55296]
    S2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2012-12-7 99912]
    S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-8 607456]
    S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-12-7 161560]
    S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-17 399432]
    S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-7 676936]
    S2 S3D Service (Win32);S3D Service (Win32);C:\Program Files (x86)\iZ3D Driver\Win32\S3DCService.exe [2012-12-16 360960]
    S2 S3D Service (Win64);S3D Service (Win64);C:\Program Files (x86)\iZ3D Driver\Win64\S3DCService.exe [2012-12-16 614400]
    S2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2012-12-7 1153368]
    S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-2 382824]
    S2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-12-7 363800]
    S2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\System32\ViakaraokeSrv.exe [2012-12-7 27760]
    S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-20 71168]
    S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2012-12-7 30528]
    S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-12-7 160256]
    S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2012-12-7 25928]
    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-18 19456]
    S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
    S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-20 88960]
    S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2012-12-18 29696]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-12-18 57856]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-12-18 30208]
    S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-20 117248]
    S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2012-12-7 2184816]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-12-18 1255736]
    S4 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?]
    S4 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-12-8 1038088]
    .
    =============== File Associations ===============
    .
    FileExt: .ini: Applications\notepad++.exe="C:\Program Files (x86)\Notepad++\notepad++.exe" "%1" [UserChoice]
    .
    =============== Created Last 30 ================
    .
    2012-12-18 19:28:03 -------- d-----w- C:\Program Files (x86)\MozBackup
    2012-12-18 19:10:19 -------- d-----w- C:\Windows\SysWow64\Wat
    2012-12-18 19:10:19 -------- d-----w- C:\Windows\System32\Wat
    2012-12-18 19:03:30 -------- d-----w- C:\Program Files (x86)\Trend Micro
    2012-12-18 18:58:08 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
    2012-12-18 18:58:08 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
    2012-12-18 18:58:08 744448 ----a-w- C:\Windows\System32\WUDFx.dll
    2012-12-18 18:58:08 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
    2012-12-18 18:58:08 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
    2012-12-18 18:58:08 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
    2012-12-18 18:58:08 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
    2012-12-18 18:55:59 515584 ----a-w- C:\Windows\System32\timedate.cpl
    2012-12-18 04:43:57 424960 ----a-w- C:\Windows\System32\KernelBase.dll
    2012-12-18 03:14:52 -------- d-----w- C:\Program Files\WhoCrashed
    2012-12-17 07:06:30 -------- d-----w- C:\Program Files (x86)\Lightscreen
    2012-12-17 06:42:45 185344 ----a-w- C:\Windows\SysWow64\PCGW32.DLL
    2012-12-17 06:42:44 -------- d-----w- C:\Users\PistolSlap\AppData\Roaming\iZ3D Driver
    2012-12-17 06:42:43 -------- d-----w- C:\ProgramData\iZ3D Driver
    2012-12-17 06:42:43 -------- d-----w- C:\Program Files (x86)\iZ3D Driver
    2012-12-17 06:17:43 -------- d-----w- C:\Program Files (x86)\Belarc
    2012-12-17 05:40:05 225280 ------w- C:\Program Files (x86)\Common Files\InstallShield\IScript\IScript.dll
    2012-12-17 05:40:05 176128 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
    2012-12-17 05:40:04 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
    2012-12-17 05:40:04 32768 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
    2012-12-17 05:40:04 212992 ------w- C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
    2012-12-17 05:11:33 -------- d-----w- C:\Users\PistolSlap\AppData\Local\4A Games
    2012-12-17 04:53:16 -------- d-----w- C:\Program Files (x86)\Microsoft Synchronization Services
    2012-12-17 04:53:10 -------- d-----w- C:\Windows\PCHEALTH
    2012-12-17 04:53:10 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
    2012-12-17 04:52:02 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
    2012-12-16 21:32:00 -------- d-----w- C:\Users\PistolSlap\AppData\Local\Apps
    2012-12-16 21:06:06 -------- d-----w- C:\Users\PistolSlap\AppData\Local\Chromium
    2012-12-16 20:27:06 -------- d-----w- C:\Users\PistolSlap\AppData\Local\Tages
    2012-12-16 20:21:15 -------- d-----w- C:\Users\PistolSlap\AppData\Local\2K Games
    2012-12-16 17:54:50 505104 ----a-w- C:\Windows\SysWow64\msxml.dll
    2012-12-16 17:54:50 115016 ----a-w- C:\Windows\SysWow64\MSINET.OCX
    2012-12-16 17:54:49 89360 ----a-w- C:\Windows\SysWow64\VB5DB.DLL
    2012-12-16 17:54:49 69632 ----a-w- C:\Windows\SysWow64\xmltok.dll
    2012-12-16 17:54:49 36864 ----a-w- C:\Windows\SysWow64\xmlparse.dll
    2012-12-16 17:54:49 35840 ----a-w- C:\Windows\SysWow64\comdlg32.oca
    2012-12-16 17:54:49 29184 ----a-w- C:\Windows\SysWow64\MSINET.oca
    2012-12-16 17:54:49 28432 ----a-w- C:\Windows\SysWow64\msxmlr.dll
    2012-12-16 17:54:49 26096 ----a-w- C:\Windows\SysWow64\xmlinst.exe
    2012-12-16 17:54:49 24576 ----a-w- C:\Windows\SysWow64\msxml3a.dll
    2012-12-16 17:54:49 140488 ----a-w- C:\Windows\SysWow64\comdlg32.ocx
    2012-12-16 09:54:46 696320 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
    2012-12-16 09:54:46 57344 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
    2012-12-16 09:54:46 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
    2012-12-16 09:54:46 237568 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
    2012-12-16 09:54:46 155648 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
    2012-12-16 09:54:37 163972 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
    2012-12-16 09:54:36 282756 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
    2012-12-16 09:42:05 -------- d-----w- C:\Users\PistolSlap\AppData\Local\Activision
    2012-12-15 23:22:00 -------- d-----w- C:\Program Files\games
    2012-12-15 13:03:55 -------- d-----w- C:\Users\PistolSlap\AppData\Roaming\NVIDIA
    2012-12-12 18:12:52 -------- d-----w- C:\Users\PistolSlap\AppData\Local\Macromedia
    2012-12-12 18:12:42 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-12-12 18:12:42 697272 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2012-12-11 04:43:25 -------- d-----w- C:\Program Files (x86)\BIK Player
    2012-12-08 18:23:00 -------- d-----w- C:\Users\PistolSlap\AppData\Local\ElevatedDiagnostics
    2012-12-08 18:00:09 2872320 ----a-w- C:\Windows\explorer_edit_w7sbc.exe
    2012-12-08 18:00:09 2872320 ----a-w- C:\Windows\explorer_backup_w7sbc.exe
    2012-12-08 18:00:09 -------- d-----w- C:\Windows\W7SBC
    2012-12-08 17:47:56 -------- d-----w- C:\Program Files\FreeLaunchBar
    2012-12-08 17:43:42 -------- d-----w- C:\Program Files (x86)\Gophoto.it
    2012-12-08 17:17:04 81408 ----a-w- C:\Windows\System32\imagehlp.dll
    2012-12-08 17:17:04 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
    2012-12-08 17:17:04 5120 ----a-w- C:\Windows\System32\wmi.dll
    2012-12-08 17:17:04 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
    2012-12-08 17:17:04 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
    2012-12-08 17:12:59 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
    2012-12-08 17:11:50 1395712 ----a-w- C:\Windows\System32\mfc42.dll
    2012-12-08 17:11:50 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
    2012-12-08 17:11:49 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
    2012-12-08 17:11:49 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
    2012-12-08 17:11:46 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe
    2012-12-08 17:11:45 3968880 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
    2012-12-08 17:11:45 3914096 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
    2012-12-08 17:11:41 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
    2012-12-08 17:11:41 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
    2012-12-08 17:11:41 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
    2012-12-08 17:10:51 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
    2012-12-08 17:10:50 715776 ----a-w- C:\Windows\System32\kerberos.dll
    2012-12-08 17:10:50 542208 ----a-w- C:\Windows\SysWow64\kerberos.dll
    2012-12-08 17:10:02 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
    2012-12-08 17:10:02 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
    2012-12-08 17:10:02 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
    2012-12-08 17:10:02 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
    2012-12-08 17:10:02 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
    2012-12-08 17:10:02 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
    2012-12-08 17:09:06 77312 ----a-w- C:\Windows\System32\packager.dll
    2012-12-08 17:09:06 67072 ----a-w- C:\Windows\SysWow64\packager.dll
    2012-12-08 17:08:19 -------- d-----w- C:\Program Files (x86)\Rockstar Games
    2012-12-08 11:08:23 220160 ----a-w- C:\Windows\System32\wintrust.dll
    2012-12-08 11:08:23 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
    2012-12-08 11:08:21 142336 ----a-w- C:\Windows\System32\poqexec.exe
    2012-12-08 11:08:21 136704 ----a-w- C:\Windows\System32\browser.dll
    2012-12-08 11:08:21 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
    2012-12-08 11:08:20 59392 ----a-w- C:\Windows\System32\browcli.dll
    2012-12-08 11:08:20 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
    2012-12-08 11:04:59 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
    2012-12-08 11:04:59 1464320 ----a-w- C:\Windows\System32\crypt32.dll
    2012-12-08 11:04:59 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
    2012-12-08 11:04:59 140288 ----a-w- C:\Windows\System32\cryptnet.dll
    2012-12-08 11:04:59 1159680 ----a-w- C:\Windows\SysWow64\crypt32.dll
    2012-12-08 11:04:59 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
    2012-12-08 11:04:23 723456 ----a-w- C:\Windows\System32\EncDec.dll
    2012-12-08 11:04:23 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
    2012-12-08 11:04:22 1292080 ----a-w- C:\Windows\SysWow64\ntdll.dll
    2012-12-08 11:04:21 1731920 ----a-w- C:\Windows\System32\ntdll.dll
    2012-12-08 10:56:30 24416 ----a-r- C:\Windows\System32\AdobePDFUI.dll
    2012-12-08 10:52:40 -------- d-----w- C:\Windows\SysWow64\spool
    2012-12-08 10:51:12 -------- d-----w- C:\Program Files\Common Files\Macrovision Shared
    2012-12-08 10:50:16 -------- d-----w- C:\Users\PistolSlap\AppData\Local\Adobe
    2012-12-08 10:50:05 -------- d-----w- C:\Program Files (x86)\Common Files\Macrovision Shared
    2012-12-08 10:47:13 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
    2012-12-08 10:41:31 -------- d-----w- C:\Program Files (x86)\2K Games
    2012-12-08 10:32:35 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller
    2012-12-08 10:11:02 -------- d-----w- C:\Program Files (x86)\games
    2012-12-08 10:00:47 -------- d-----w- C:\Users\PistolSlap\AppData\Local\FLT
    2012-12-08 09:48:34 -------- d-----w- C:\ProgramData\Origin
    2012-12-08 09:20:47 -------- d-----w- C:\Program Files (x86)\Activision
    2012-12-08 09:15:18 -------- d-----w- C:\Program Files (x86)\uTorrent
    2012-12-08 09:14:21 -------- d-----w- C:\Users\PistolSlap\AppData\Roaming\uTorrent
    2012-12-08 04:51:43 -------- d-----w- C:\Program Files (x86)\Microsoft Chart Controls
    2012-12-08 04:35:22 -------- d-----w- C:\Program Files (x86)\Bethesda Softworks
    2012-12-08 04:31:55 519000 ----a-w- C:\Windows\System32\d3dx10_40.dll
    2012-12-08 04:31:55 452440 ----a-w- C:\Windows\SysWow64\d3dx10_40.dll
    2012-12-08 04:31:55 2605920 ----a-w- C:\Windows\System32\D3DCompiler_40.dll
    2012-12-08 04:31:55 2036576 ----a-w- C:\Windows\SysWow64\D3DCompiler_40.dll
    2012-12-08 04:31:54 5631312 ----a-w- C:\Windows\System32\D3DX9_40.dll
    2012-12-08 04:31:54 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll
    2012-12-08 04:23:28 -------- d-----w- C:\Program Files (x86)\XCOM Enemy Unknown
    2012-12-08 04:21:59 68104 ----a-w- C:\Windows\System32\XAPOFX1_0.dll
    2012-12-08 04:18:27 -------- d-----w- C:\Windows\SysWow64\directx
    2012-12-08 04:05:42 -------- d-----w- C:\Windows\WinRAR
    2012-12-08 03:36:21 -------- d-----w- C:\Users\PistolSlap\AppData\Roaming\Call of Duty Black Ops 2
    2012-12-08 03:36:09 77656 ----a-w- C:\Windows\System32\XAPOFX1_5.dll
    2012-12-08 03:36:09 74072 ----a-w- C:\Windows\SysWow64\XAPOFX1_5.dll
    2012-12-08 03:36:09 527192 ----a-w- C:\Windows\SysWow64\XAudio2_7.dll
    2012-12-08 03:36:09 518488 ----a-w- C:\Windows\System32\XAudio2_7.dll
    2012-12-08 03:36:08 81768 ----a-w- C:\Windows\SysWow64\xinput1_3.dll
    2012-12-08 03:36:08 107368 ----a-w- C:\Windows\System32\xinput1_3.dll
    2012-12-08 03:09:55 -------- d-----w- C:\Program Files (x86)\R.G. Mechanics
    2012-12-08 03:00:10 -------- d-----w- C:\Users\PistolSlap\AppData\Local\SKIDROW
    2012-12-08 02:47:49 -------- d-----w- C:\Users\PistolSlap\AppData\Roaming\Avira
    2012-12-08 02:45:42 178688 ----a-w- C:\Windows\SysWow64\unrar.dll
    2012-12-08 02:45:40 -------- d-----w- C:\Program Files (x86)\K-Lite Codec Pack
    2012-12-08 02:41:53 99912 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
    2012-12-08 02:41:53 27800 ----a-w- C:\Windows\System32\drivers\avkmgr.sys
    2012-12-08 02:41:51 -------- d-----w- C:\ProgramData\Avira
    2012-12-08 02:41:51 -------- d-----w- C:\Program Files (x86)\Avira
    2012-12-08 02:33:15 262112 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
    2012-12-08 02:31:31 -------- d-----w- C:\Program Files (x86)\Hitman Absolution
    2012-12-08 02:31:24 -------- d-----w- C:\Users\PistolSlap\AppData\Local\Programs
    2012-12-08 02:30:23 -------- d-----w- C:\Users\PistolSlap\AppData\Local\Mozilla
    2012-12-08 02:30:01 279616 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
    2012-12-08 02:29:58 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
    2012-12-08 02:29:00 -------- d-----w- C:\Users\PistolSlap\AppData\Roaming\DAEMON Tools Lite
    2012-12-08 02:23:20 -------- d-----w- C:\Users\PistolSlap\AppData\Roaming\Malwarebytes
    2012-12-08 02:23:16 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
    2012-12-08 02:23:16 -------- d-----w- C:\ProgramData\Malwarebytes
    2012-12-08 02:23:13 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2012-12-08 02:23:13 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2012-12-08 02:20:24 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
    2012-12-08 02:20:24 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
    2012-12-08 02:18:33 -------- d-----w- C:\ProgramData\Comodo
    2012-12-08 02:18:30 -------- d-----w- C:\Program Files\COMODO
    2012-12-08 02:14:15 23680 ----a-w- C:\Windows\System32\drivers\IOMap64.sys
    2012-12-07 17:27:41 -------- d-----w- C:\Program Files (x86)\ASUS
    2012-12-07 17:27:30 -------- d-----w- C:\Windows\Downloaded Installations
    2012-12-07 17:27:06 30528 ----a-w- C:\Windows\GVTDrv64.sys
    2012-12-07 17:26:52 25640 ----a-w- C:\Windows\gdrv.sys
    2012-12-07 17:26:24 31080 ----a-w- C:\Windows\System32\nvhdap64.dll
    2012-12-07 17:26:24 189288 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys
    2012-12-07 17:26:24 1472360 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll
    2012-12-07 17:25:38 -------- d-----w- C:\temp
    2012-12-07 17:24:43 14922600 ----a-w- C:\Windows\System32\nvwgf2umx.dll
    2012-12-07 17:24:42 973672 ----a-w- C:\Windows\System32\nvumdshimx.dll
    2012-12-07 17:24:42 12501352 ----a-w- C:\Windows\SysWow64\nvwgf2um.dll
    2012-12-07 17:24:11 2731880 ----a-w- C:\Windows\System32\nvapi64.dll
    2012-12-07 17:24:11 2428776 ----a-w- C:\Windows\SysWow64\nvapi.dll
    2012-12-07 17:22:40 891240 ----a-w- C:\Windows\System32\nvvsvc.exe
    2012-12-07 17:22:40 63336 ----a-w- C:\Windows\System32\nvshext.dll
    2012-12-07 17:22:40 6200680 ----a-w- C:\Windows\System32\nvcpl.dll
    2012-12-07 17:22:40 3536817 ----a-w- C:\Windows\System32\nvcoproc.bin
    2012-12-07 17:22:40 3293544 ----a-w- C:\Windows\System32\nvsvc64.dll
    2012-12-07 17:22:40 2557800 ----a-w- C:\Windows\System32\nvsvcr.dll
    2012-12-07 17:22:40 118120 ----a-w- C:\Windows\System32\nvmctray.dll
    2012-12-07 17:22:20 60776 ----a-w- C:\Windows\System32\OpenCL.dll
    2012-12-07 17:22:20 52584 ----a-w- C:\Windows\SysWow64\OpenCL.dll
    2012-12-07 17:22:04 -------- d-----w- C:\ProgramData\NVIDIA Corporation
    2012-12-07 17:22:01 -------- d-----w- C:\Program Files\NVIDIA Corporation
    2012-12-07 17:22:01 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
    2012-12-07 17:21:41 -------- d-----w- C:\Program Files (x86)\MonitorDriver
    2012-12-07 17:19:00 66160 ----a-w- C:\Windows\System32\drivers\VirtDiskBus64.sys
    2012-12-07 17:18:49 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
    2012-12-07 17:18:49 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
    2012-12-07 17:18:48 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
    2012-12-07 17:16:02 -------- d-----w- C:\Program Files (x86)\AMD
    2012-12-07 17:15:18 2622464 ----a-w- C:\Windows\System32\wucltux.dll
    2012-12-07 17:15:14 99840 ----a-w- C:\Windows\System32\wudriver.dll
    2012-12-07 17:15:07 36864 ----a-w- C:\Windows\System32\wuapp.exe
    2012-12-07 17:15:07 186752 ----a-w- C:\Windows\System32\wuwebv.dll
    2012-12-07 17:13:24 95344 ----a-w- C:\Windows\System32\ViaMicArrayPropPageExt.dll
    2012-12-07 17:12:34 -------- d-sh--w- C:\Windows\Installer
    2012-12-07 17:12:29 53248 ----a-r- C:\Windows\SysWow64\CSVer.dll
    2012-12-07 17:12:26 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
    2012-12-07 17:12:19 -------- d-----w- C:\Intel
    2012-12-07 17:06:59 -------- d-sh--w- C:\Recovery
    2012-12-07 08:49:16 -------- d-----w- C:\Windows\Panther
    2012-12-07 05:53:22 84992 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNBPP4.DLL
    .
    ==================== Find3M ====================
    .
    2012-11-22 03:26:40 3149824 ----a-w- C:\Windows\System32\win32k.sys
    2012-11-14 06:11:44 2312704 ----a-w- C:\Windows\System32\jscript9.dll
    2012-11-14 06:04:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
    2012-11-14 06:02:49 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
    2012-11-14 05:57:46 599040 ----a-w- C:\Windows\System32\vbscript.dll
    2012-11-14 05:57:35 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
    2012-11-14 05:52:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
    2012-11-14 02:09:22 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2012-11-14 01:58:15 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2012-11-14 01:57:37 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
    2012-11-14 01:49:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
    2012-11-14 01:48:27 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
    2012-11-14 01:44:42 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2012-11-09 05:45:09 2048 ----a-w- C:\Windows\System32\tzres.dll
    2012-11-09 04:42:49 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
    2012-11-08 07:38:02 38144 ----a-w- C:\Windows\System32\drivers\cmdhlp.sys
    2012-11-08 07:38:00 584056 ----a-w- C:\Windows\System32\drivers\cmdGuard.sys
    2012-11-08 07:37:58 22736 ----a-w- C:\Windows\System32\drivers\cmderd.sys
    2012-11-08 07:37:38 41240 ----a-w- C:\Windows\System32\cmdcsr.dll
    2012-11-08 07:37:36 301264 ----a-w- C:\Windows\SysWow64\guard32.dll
    2012-11-08 07:37:32 390392 ----a-w- C:\Windows\System32\guard64.dll
    2012-11-05 21:35:16 46080 ----a-w- C:\Windows\System32\atmlib.dll
    2012-11-05 20:41:32 367616 ----a-w- C:\Windows\System32\atmfd.dll
    2012-11-05 20:32:16 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
    2012-11-05 20:32:09 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
    2012-11-02 05:59:11 478208 ----a-w- C:\Windows\System32\dpnet.dll
    2012-11-02 05:11:31 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
    2012-10-16 08:38:37 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
    2012-10-16 08:38:34 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
    2012-10-16 07:39:52 561664 ----a-w- C:\Windows\apppatch\AcLayers.dll
    2012-10-11 05:22:52 26331496 ----a-w- C:\Windows\System32\nvoglv64.dll
    2012-10-11 05:22:52 1760104 ----a-w- C:\Windows\System32\nvdispco64.dll
    2012-10-11 05:22:32 15309160 ----a-w- C:\Windows\SysWow64\nvd3dum.dll
    2012-10-11 05:22:26 2747240 ----a-w- C:\Windows\System32\nvcuvid.dll
    2012-10-11 05:22:24 364904 ----a-w- C:\Windows\System32\nvEncodeAPI64.dll
    2012-10-11 05:22:24 19906920 ----a-w- C:\Windows\SysWow64\nvoglv32.dll
    2012-10-11 05:22:18 13443944 ----a-w- C:\Windows\System32\drivers\nvlddmkm.sys
    2012-10-11 05:22:14 17559912 ----a-w- C:\Windows\SysWow64\nvcompiler.dll
    2012-10-09 18:17:13 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
    2012-10-09 18:17:13 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
    2012-10-09 17:40:31 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
    2012-10-09 17:40:31 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
    2012-10-04 17:46:16 362496 ----a-w- C:\Windows\System32\wow64win.dll
    2012-10-04 17:46:15 243200 ----a-w- C:\Windows\System32\wow64.dll
    2012-10-04 17:46:15 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
    2012-10-04 17:45:55 215040 ----a-w- C:\Windows\System32\winsrv.dll
    2012-10-04 17:43:28 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
    2012-10-04 16:47:41 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
    2012-10-04 16:47:41 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
    2012-10-04 15:21:55 338432 ----a-w- C:\Windows\System32\conhost.exe
    2012-10-04 14:46:46 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
    2012-10-04 14:46:46 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
    2012-10-04 14:46:44 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
    2012-10-04 14:46:43 2048 ----a-w- C:\Windows\SysWow64\user.exe
    2012-10-04 14:41:50 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
    2012-10-04 14:41:50 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
    2012-10-04 14:41:50 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
    2012-10-04 14:41:50 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
    2012-10-03 17:56:54 1914248 ----a-w- C:\Windows\System32\drivers\tcpip.sys
    2012-10-03 17:44:21 70656 ----a-w- C:\Windows\System32\nlaapi.dll
    2012-10-03 17:44:21 303104 ----a-w- C:\Windows\System32\nlasvc.dll
    2012-10-03 17:44:17 246272 ----a-w- C:\Windows\System32\netcorehc.dll
    2012-10-03 17:44:17 18944 ----a-w- C:\Windows\System32\netevent.dll
    2012-10-03 17:44:16 216576 ----a-w- C:\Windows\System32\ncsi.dll
    2012-10-03 17:42:16 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
    2012-10-03 16:42:24 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
    2012-10-03 16:42:24 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
    2012-10-03 16:42:23 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
    2012-10-03 16:07:26 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
    2012-10-02 21:15:52 430952 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
    2012-09-25 22:47:43 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
    2012-09-25 22:46:17 95744 ----a-w- C:\Windows\System32\synceng.dll
    .
    ============= FINISH: 10:39:17.94 ===============

    Attach.txt

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows 7 Ultimate
    Boot Device: \Device\HarddiskVolume1
    Install Date: 07/12/2012 9:07:15 AM
    System Uptime: 19/12/2012 10:36:54 AM (0 hours ago)
    .
    Motherboard: Gigabyte Technology Co., Ltd. | | H77M-D3H
    Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz | Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz | 3192/100mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 237 GiB total, 38.598 GiB free.
    D: is CDROM ()
    E: is CDROM ()
    F: is CDROM (UDF)
    G: is Removable
    H: is Removable
    I: is FIXED (NTFS) - 932 GiB total, 60.612 GiB free.
    J: is FIXED (NTFS) - 298 GiB total, 7.002 GiB free.
    K: is CDROM ()
    L: is FIXED (NTFS) - 214 GiB total, 185.809 GiB free.
    M: is CDROM ()
    N: is Removable
    S: is FIXED (NTFS) - 481 GiB total, 407.161 GiB free.
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
    Description: Security Processor Loader Driver
    Device ID: ROOT\LEGACY_SPLDR\0000
    Manufacturer:
    Name: Security Processor Loader Driver
    PNP Device ID: ROOT\LEGACY_SPLDR\0000
    Service: spldr
    .
    ==== System Restore Points ===================
    .
    No restore point in system.
    .
    ==== Hosts File Hijack ======================
    .
    Hosts: 127.0.0.1 ads.mcafee.com
    Hosts: 127.0.0.1 analytics.microsoft.com
    Hosts: 127.0.0.1 metrics.bitdefender.com
    Hosts: 127.0.0.1 metrics.mcafee.com
    Hosts: 127.0.0.1 om.symantec.com
    Hosts: 127.0.0.1 ads.bleepingcomputer.com
    Hosts: 127.0.0.1 wdcs.trendmicro.com
    Hosts: 127.0.0.1 www.spywareinfo.com
    .
    ==== Installed Programs ======================
    .
    @BIOS
    3TB+Unlock B11.0919.1
    Activision(R)
    Adobe Acrobat 9 Pro - English, Français, Deutsch
    Adobe AIR
    Adobe Anchor Service CS4
    Adobe Anchor Service x64 CS4
    Adobe Bridge CS4
    Adobe CMaps CS4
    Adobe CMaps x64 CS4
    Adobe Color - Photoshop Specific CS4
    Adobe Color EU Extra Settings CS4
    Adobe Color JA Extra Settings CS4
    Adobe Color NA Recommended Settings CS4
    Adobe Color Video Profiles CS CS4
    Adobe Community Help
    Adobe Creative Suite 4 Master Collection
    Adobe CSI CS4
    Adobe CSI CS4 x64
    Adobe Default Language CS4
    Adobe Drive CS4 x64
    Adobe ExtendScript Toolkit CS4
    Adobe Flash Player 11 Plugin
    Adobe Fonts All
    Adobe Fonts All x64
    Adobe Linguistics CS4
    Adobe Linguistics CS4 x64
    Adobe Media Player
    Adobe Output Module
    Adobe PDF Library Files CS4
    Adobe PDF Library Files x64 CS4
    Adobe Photoshop CS4
    Adobe Photoshop CS4 (64 Bit)
    Adobe Photoshop CS4 Support
    Adobe Photoshop CS5
    Adobe Search for Help
    Adobe Service Manager Extension
    Adobe Setup
    Adobe Type Support CS4
    Adobe Type Support x64 CS4
    Adobe Update Manager CS4
    Adobe WinSoft Linguistics Plugin
    Adobe WinSoft Linguistics Plugin x64
    Adobe XMP Panels CS4
    AdobeColorCommonSetCMYK
    ASUS GPU Tweak
    Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
    µTorrent
    AutoGreen B12.0206.1
    Avira Free Antivirus
    Belarc Advisor 8.3
    BIK Player
    Call of Duty Black Ops 2
    Call of Duty: Black Ops
    COMODO Internet Security
    Connect
    DAEMON Tools Lite
    Dishonored
    Easy Tune 6 B12.0402.1
    EZ Setup B12.0330.01
    Free Launch Bar 64-bit Edition
    HijackThis 2.0.2
    Hitman Absolution
    Intel(R) Management Engine Components
    Intel(R) USB 3.0 eXtensible Host Controller Driver
    Intel® Trusted Connect Service Client
    iZ3D Driver Remove
    K-Lite Codec Pack 9.5.5 (Standard)
    kuler
    Lightscreen
    Mafia II DLC Jimmy's Vendetta
    Mafia II DLC Joe's Adventures
    Malwarebytes Anti-Malware version 1.65.1.1000
    Mass Effect&#8482; 3
    Max Payne 3
    Max Payne 3 version 1.02
    Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)
    Microsoft Office Access MUI (English) 2010
    Microsoft Office Access Setup Metadata MUI (English) 2010
    Microsoft Office Excel MUI (English) 2010
    Microsoft Office Groove MUI (English) 2010
    Microsoft Office InfoPath MUI (English) 2010
    Microsoft Office Office 64-bit Components 2010
    Microsoft Office OneNote MUI (English) 2010
    Microsoft Office Outlook MUI (English) 2010
    Microsoft Office PowerPoint MUI (English) 2010
    Microsoft Office Professional Plus 2010
    Microsoft Office Proof (English) 2010
    Microsoft Office Proof (French) 2010
    Microsoft Office Proof (Spanish) 2010
    Microsoft Office Proofing (English) 2010
    Microsoft Office Publisher MUI (English) 2010
    Microsoft Office Shared 64-bit MUI (English) 2010
    Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
    Microsoft Office Shared MUI (English) 2010
    Microsoft Office Shared Setup Metadata MUI (English) 2010
    Microsoft Office Word MUI (English) 2010
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    Microsoft_VC80_ATL_x86_x64
    Microsoft_VC80_CRT_x86
    Microsoft_VC80_CRT_x86_x64
    Microsoft_VC80_MFC_x86
    Microsoft_VC80_MFC_x86_x64
    Microsoft_VC80_MFCLOC_x86
    Microsoft_VC80_MFCLOC_x86_x64
    Microsoft_VC90_ATL_x86
    Microsoft_VC90_ATL_x86_x64
    Microsoft_VC90_CRT_x86
    Microsoft_VC90_CRT_x86_x64
    Microsoft_VC90_MFC_x86
    Microsoft_VC90_MFC_x86_x64
    MozBackup 1.5.1
    Mozilla Firefox 17.0.1 (x86 en-US)
    Mozilla Maintenance Service
    Notepad++
    NVIDIA 3D Vision Controller Driver 305.27
    NVIDIA 3D Vision Driver 306.97
    NVIDIA Control Panel 306.97
    NVIDIA Graphics Driver 306.97
    NVIDIA HD Audio Driver 1.3.18.0
    NVIDIA Install Application
    NVIDIA PhysX
    NVIDIA PhysX System Software 9.12.0613
    NVIDIA Stereoscopic 3D Driver
    NVIDIA Update 1.10.8
    NVIDIA Update Components
    ON_OFF Charge B11.1102.1
    PDF Settings CS4
    PDF Settings CS5
    Photoshop Camera Raw
    Photoshop Camera Raw_x64
    Platform
    Prince of Persia The Sands of Time
    Rockstar Games Social Club
    Samsung_MonSetup
    Silent Hill 2
    Spec Ops The Line
    Spider-Man(TM) - Shattered Dimensions
    Spybot - Search & Destroy
    Suite Shared Configuration CS4
    TornTV
    VIA Platform Device Manager
    WhoCrashed 3.01
    WinRAR
    XCOM: Enemy Unknown
    .
    ==== Event Viewer Messages From Past Week ========
    .
    19/12/2012 2:38:14 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service NVSvc with arguments "" in order to run the server: {DCAB0989-1301-4319-BE5F-ADE89F88581C}
    19/12/2012 10:37:50 AM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
    19/12/2012 10:37:49 AM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
    19/12/2012 10:37:49 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
    19/12/2012 10:37:49 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
    19/12/2012 10:37:46 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
    19/12/2012 10:37:41 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
    19/12/2012 10:37:16 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AppleCharger avipbb avkmgr cmdGuard discache iZ3DInjectionDriver spldr VirtDiskBus Wanarpv6
    17/12/2012 5:44:45 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
    .
    ==== End Of File ===========================



    I appreciate any help, let me know if I`ve missed anything.
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1081603

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice