Page 1 of 6 123 ... LastLast
Results 1 to 10 of 54

Thread: Security on new Win 7 64 Pro computer

  1. #1
    Join Date
    Jun 2012
    Location
    Butte, MT
    Posts
    28

    Security on new Win 7 64 Pro computer

    Judy:
    Even after turning off firewall, computer won't let DDS in. Runs in Sandbox then terminates.
    Don't think Windows security likes it either. Blue screen and black screen crash, Moizilla crash,
    and 68 Win updates.
    Is there an alternative program? Computer is new and has very little time on line.
    Ed

  2. #2
    Join Date
    Aug 2006
    Location
    The Middle
    Age
    74
    Posts
    4,079
    Did you turn off Avast? Does it have a firewall? You should NEVER ever use two firewalls, so if Avast has a firewall the built-in Windows firewall must be turned off. Also turn off Windows Defender. This comes built into Windows 7, it is their supposed anti-spyware program and it is virtually useless, plus it interferes with almost every single other security program you have installed.
    To turn if off do the following:

    • Open Windows Defender by clicking the Start button , clicking All Programs, and then clicking Windows Defender.
    • Click Tools, and then click Options.
    • Under Administrator options, clear the Use Windows Defender check box, and then click Save. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.

      Do all that and then Delete the DDS if you were able to download it. Download it again from here:




    http://www.bleepingcomputer.com/download/dds/

    TURN OFF AVAST. Completely. Then try to run DDS. If you still cannot run DDS then do the following:

    Avast should most definitely NOT cause any of those problems, are you 100% certain you downloaded the correct one? Where did you get the download?

    Uninstall Avast completely by following the instructions on this page.
    http://www.avast.com/uninstall-utility

    Firewall should have nothing to do with at all. I have never had DDS blocked by either Avira or the built-in Windows firewall, which is what I use and it is truly excellent in Windows 7

  3. #3
    Join Date
    Jun 2012
    Location
    Butte, MT
    Posts
    28
    .
    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 9.0.8112.16421
    Run by Edward Shaw at 12:21:17 on 2012-06-05
    Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.32664.30149 [GMT -6:00]
    .
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Program Files\AuthenTec TrueSuite\TrueSuiteService.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    C:\Windows\system32\WUDFHost.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k WbioSvcGroup
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    D:\Programs\Adobe Version Cue CS2\bin\VersionCueCS2.exe
    C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
    C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    c:\Program Files\Intel\iCLS Client\HeciServer.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
    c:\Program Files (x86)\Hotkey\PowerBiosServer.exe
    D:\Programs\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\System32\rundll32.exe
    C:\Program Files\AuthenTec TrueSuite\TouchControl.exe
    C:\Program Files\AuthenTec TrueSuite\BioMonitor.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\AuthenTec TrueSuite\KeepSafe\fvsvr.exe
    C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
    C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Hotkey\Hotkey.exe
    D:\Programs\Adobe Acrobat 7.0\Distillr\acrotray.exe
    D:\Programs\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
    C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
    C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files (x86)\Free Download Manager\fdm.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\splwow64.exe
    D:\Programs\Office\WINWORD.EXE
    C:\Windows\Msagent\AGENTSVR.EXE
    C:\Windows\Microsoft.NET\Framework\v4.0.30319\msco rsvw.exe
    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ms corsvw.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
    C:\Windows\system32\sppsvc.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    C:\Windows\servicing\TrustedInstaller.exe
    C:\Windows\system32\SearchFilterHost.exe
    \\?\C:\Windows\system32\wbem\WMIADAP.EXE
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    .
    .
    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 9.0.8112.16421
    Run by Edward Shaw at 12:21:17 on 2012-06-05
    Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.32664.30149 [GMT -6:00]
    .
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Program Files\AuthenTec TrueSuite\TrueSuiteService.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    C:\Windows\system32\WUDFHost.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k WbioSvcGroup
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    D:\Programs\Adobe Version Cue CS2\bin\VersionCueCS2.exe
    C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
    C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    c:\Program Files\Intel\iCLS Client\HeciServer.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
    c:\Program Files (x86)\Hotkey\PowerBiosServer.exe
    D:\Programs\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\System32\rundll32.exe
    C:\Program Files\AuthenTec TrueSuite\TouchControl.exe
    C:\Program Files\AuthenTec TrueSuite\BioMonitor.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\AuthenTec TrueSuite\KeepSafe\fvsvr.exe
    C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
    C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Hotkey\Hotkey.exe
    D:\Programs\Adobe Acrobat 7.0\Distillr\acrotray.exe
    D:\Programs\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
    C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
    C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files (x86)\Free Download Manager\fdm.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\splwow64.exe
    D:\Programs\Office\WINWORD.EXE
    C:\Windows\Msagent\AGENTSVR.EXE
    C:\Windows\Microsoft.NET\Framework\v4.0.30319\msco rsvw.exe
    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ms corsvw.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
    C:\Windows\system32\sppsvc.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    C:\Windows\servicing\TrustedInstaller.exe
    C:\Windows\system32\SearchFilterHost.exe
    \\?\C:\Windows\system32\wbem\WMIADAP.EXE
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Edward Shaw\AppData\Roaming\Mozilla\Firefox\Profiles\z9pb brlw.default\
    FF - prefs.js: browser.search.selectedEngine - Blekko
    FF - prefs.js: browser.startup.homepage - hxxp://blekkosearch.mystart.com/blekkotb_soc/?source=a545ea26&toolbarid=blekkotb_soc&u=86CA6D47 8E271168854B924FCE4A4C5A&tbp=homepage&v=2_0
    FF - prefs.js: keyword.URL - hxxp://blekko.com/ws/?source={SourceID}&tbp=url&toolbarid=blekkotb_soc& u=USERGUID&q=
    FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
    FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_20 2_235.dll
    FF - plugin: D:\Programs\Adobe Acrobat 7.0\Acrobat\browser\nppdf32.dll
    FF - plugin: D:\Programs\QuickTime\Plugins\npqtplugin.dll
    FF - plugin: D:\Programs\QuickTime\Plugins\npqtplugin2.dll
    FF - plugin: D:\Programs\QuickTime\Plugins\npqtplugin3.dll
    FF - plugin: D:\Programs\QuickTime\Plugins\npqtplugin4.dll
    FF - plugin: D:\Programs\QuickTime\Plugins\npqtplugin5.dll
    FF - plugin: D:\Programs\QuickTime\Plugins\npqtplugin6.dll
    FF - plugin: D:\Programs\QuickTime\Plugins\npqtplugin7.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\system32\DRIVERS\iusb3hcs.sys --> C:\Windows\system32\DRIVERS\iusb3hcs.sys [?]
    R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpc iflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
    R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
    R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-3-13 138400]
    R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2011-3-13 74912]
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\ v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework6 4\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    R2 FPLService;TrueSuiteService;C:\Program Files\AuthenTec TrueSuite\TrueSuiteService.exe [2011-11-3 299848]
    R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-5-22 13592]
    R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-1-10 627936]
    R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-5-22 161560]
    R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-5-22 2458944]
    R2 PaceLicenseDServices;PACE License Services;C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2011-7-9 2932224]
    R2 PowerBiosServer;PowerBiosServer;C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [2011-2-18 35328]
    R2 Sentinel64;Sentinel64;C:\Windows\system32\Drivers\ Sentinel64.sys --> C:\Windows\system32\Drivers\Sentinel64.sys [?]
    R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-5-22 363800]
    R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
    R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\iusb3hub.sys --> C:\Windows\system32\DRIVERS\iusb3hub.sys [?]
    R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\system32\DRIVERS\iusb3xhc.sys --> C:\Windows\system32\DRIVERS\iusb3xhc.sys [?]
    R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
    R3 RSBASTOR;Realtek PCIE CardReader Driver - BA;C:\Windows\system32\DRIVERS\RtsBaStor.sys --> C:\Windows\system32\DRIVERS\RtsBaStor.sys [?]
    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
    R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
    S3 BtFilter;BtFilter;C:\Windows\system32\DRIVERS\btfi lter.sys --> C:\Windows\system32\DRIVERS\btfilter.sys [?]
    S3 cphs;Intel(R) Content Protection HECI Service;C:\Windows\SysWOW64\IntelCpHeciSvc.exe [2012-5-21 276248]
    S3 dmvsc;dmvsc;C:\Windows\system32\drivers\dmvsc.sys --> C:\Windows\system32\drivers\dmvsc.sys [?]
    S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-30 129976]
    S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsus bflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
    .
    =============== Created Last 30 ================
    .
    2012-06-05 18:20:10 -------- d-----w- C:\Downloads
    2012-06-05 18:05:37 -------- d-----w- C:\Users\Edward Shaw\AppData\Roaming\Free Download Manager
    2012-06-05 18:05:36 -------- d-----w- C:\Program Files (x86)\Free Download Manager
    2012-06-05 18:05:20 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\antiphishing-vmninternethelper1_1dn
    2012-06-05 18:05:11 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Vid-Saver
    2012-06-05 18:05:10 -------- d-----w- C:\Program Files (x86)\Vid-Saver
    2012-06-05 18:05:04 -------- d-----w- C:\Program Files (x86)\blekkotb_soc
    2012-06-05 16:21:10 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
    2012-06-05 16:19:45 -------- d-----w- C:\ProgramData\Anti-phishing Domain Advisor
    2012-06-05 16:19:29 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Google
    2012-06-05 16:18:51 -------- d-----w- C:\ProgramData\blekko toolbars
    2012-06-05 15:54:50 81408 ----a-w- C:\Windows\System32\imagehlp.dll
    2012-06-05 15:54:50 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
    2012-06-05 15:54:50 5120 ----a-w- C:\Windows\System32\wmi.dll
    2012-06-05 15:54:50 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
    2012-06-05 15:54:50 220672 ----a-w- C:\Windows\System32\wintrust.dll
    2012-06-05 15:54:50 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
    2012-06-05 15:54:50 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
    2012-06-05 13:08:48 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
    2012-06-05 13:08:48 46080 ----a-w- C:\Windows\System32\atmlib.dll
    2012-06-05 13:08:48 367616 ----a-w- C:\Windows\System32\atmfd.dll
    2012-06-05 13:08:48 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
    2012-06-05 13:08:48 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
    2012-06-05 13:08:48 294912 ----a-w- C:\Windows\SysWow64\atmfd.dll
    2012-06-05 13:08:48 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
    2012-06-05 13:08:48 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
    2012-06-05 13:08:48 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
    2012-06-05 13:08:48 100864 ----a-w- C:\Windows\System32\fontsub.dll
    2012-06-05 13:03:20 8955792 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
    2012-06-05 13:03:18 8955792 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AC39B827-6AF8-4204-BF91-C39AFBD206D9}\mpengine.dll
    2012-06-04 23:34:30 -------- d-----w- C:\Windows\Panther
    2012-06-04 23:31:20 -------- d--h--w- C:\$WINDOWS.~Q
    2012-06-04 23:30:46 -------- d--h--w- C:\$INPLACE.~TR
    2012-06-04 23:21:40 1560168 ----a-w- C:\Windows\System32\RTSnMg64.cpl
    2012-06-04 21:47:37 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
    2012-06-04 21:47:37 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
    2012-06-04 21:47:37 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
    2012-06-04 21:47:31 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
    2012-06-04 21:47:31 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
    2012-06-04 21:47:31 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
    2012-06-04 21:47:31 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
    2012-06-04 21:35:55 -------- d-----w- C:\ProgramData\NVIDIA Corporation
    2012-06-04 21:35:53 -------- d-----w- C:\Program Files\NVIDIA Corporation
    2012-06-04 21:35:53 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
    2012-06-04 21:35:36 -------- d-----w- C:\Windows\SysWow64\RTCOM
    2012-06-04 21:35:36 -------- d-----w- C:\Program Files\Realtek
    2012-06-04 21:35:33 -------- d-----w- C:\Program Files\Synaptics
    2012-06-01 13:53:35 16152 ----a-w- C:\Windows\System32\drivers\iusb3hcs.sys
    2012-06-01 13:53:28 356120 ----a-w- C:\Windows\System32\drivers\iusb3hub.sys
    2012-06-01 13:53:27 787736 ----a-w- C:\Windows\System32\drivers\iusb3xhc.sys
    2012-06-01 13:50:36 9888872 ----a-w- C:\Windows\SysWow64\RtsBaStorIcon.dll
    2012-06-01 13:50:36 292968 ----a-r- C:\Windows\System32\drivers\RtsBaStor.sys
    2012-06-01 1337 757760 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Int el32\iKernel.dll
    2012-06-01 1337 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Int el32\ctor.dll
    2012-06-01 1337 65024 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Int el32\ISBEW64.exe
    2012-06-01 1337 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Int el32\iscript.dll
    2012-06-01 1337 204800 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Int el32\iuser.dll
    2012-06-01 1336 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Int el32\setup.dll
    2012-06-01 1336 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Int el32\iGdi.dll
    2012-06-01 13:04:49 -------- d-----w- C:\ProgramData\Downloaded Installations
    2012-06-01 04:28:11 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\ElevatedDiagnostics
    2012-05-30 14:34:09 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
    2012-05-30 13:47:02 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Diagnostics
    2012-05-29 14:10:37 -------- d-----w- C:\Windows\System32\appmgmt
    2012-05-29 00:09:50 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Apple Computer
    2012-05-27 14:59:45 -------- d-----w- C:\Program Files\Opera Next x64
    2012-05-27 14:16:25 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
    2012-05-27 14:16:25 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
    2012-05-27 14:16:25 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
    2012-05-27 14:16:25 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
    2012-05-27 14:16:25 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
    2012-05-27 14:16:25 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
    2012-05-27 14:16:25 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin.dll
    2012-05-27 14:16:02 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Apple
    2012-05-27 13:44:34 -------- d-----w- C:\Windows\SysWow64\Wat
    2012-05-27 13:44:34 -------- d-----w- C:\Windows\System32\Wat
    2012-05-27 13:24:22 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Sony
    2012-05-27 13:22:55 -------- d-----w- C:\Program Files (x86)\Sony
    2012-05-27 12:16:08 -------- d-----w- C:\Users\Edward Shaw\AppData\Roaming\Avid Technology
    2012-05-27 12:15:04 53248 ----a-r- C:\Users\Edward Shaw\AppData\Roaming\Microsoft\Installer\{12E59A19-9883-4BEC-961F-AE95CD454C10}\ARPPRODUCTICON.exe
    2012-05-27 12:13:41 53248 ----a-r- C:\Users\Edward Shaw\AppData\Roaming\Microsoft\Installer\{A876EBF9-9046-4953-888D-8A60B8777027}\ARPPRODUCTICON.exe
    2012-05-27 12:03:21 -------- d-----w- C:\Users\Edward Shaw\AppData\Roaming\Avid
    2012-05-27 12:02:09 -------- d-----w- C:\Users\Edward Shaw\AppData\Roaming\PACE Anti-Piracy
    2012-05-27 12:02:09 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\PACE Anti-Piracy
    2012-05-27 12:02:09 -------- d-----w- C:\ProgramData\PACE Anti-Piracy
    2012-05-27 12:01:57 -------- d-----w- C:\Users\Edward Shaw\AppData\Roaming\NVIDIA
    2012-05-27 03:41:22 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Mozilla
    2012-05-27 01:50:04 -------- d-----w- C:\Program Files (x86)\SpywareBlaster
    2012-05-27 01:45:19 -------- d-----w- C:\Users\Edward Shaw\AppData\Roaming\Malwarebytes
    2012-05-27 01:45:13 -------- d-----w- C:\ProgramData\Malwarebytes
    2012-05-27 01:45:12 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2012-05-27 01:45:12 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2012-05-27 00:56:13 -------- d-----w- C:\ProgramData\Avid
    2012-05-27 00:42:26 -------- d-----w- C:\Program Files (x86)\Common Files\Digidesign
    2012-05-27 00:42:10 -------- d-----w- C:\Program Files (x86)\Common Files\Avid
    2012-05-27 00:41:35 -------- d-----w- C:\ProgramData\PACE
    2012-05-27 00:41:34 -------- d-----w- C:\Program Files (x86)\Common Files\PACE
    2012-05-27 00:40:23 142120 ----a-w- C:\Windows\System32\drivers\sentinel64.sys
    2012-05-27 00:40:22 -------- d-----w- C:\Program Files (x86)\Common Files\SafeNet Sentinel
    2012-05-27 00:40:18 -------- d-----w- C:\Windows\Downloaded Installations
    2012-05-27 00:40:01 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\{6448F0A6-6813-11D6-A77B-00B0D0160060}
    2012-05-27 00:36:03 -------- d-----w- C:\Program Files (x86)\Licenses
    2012-05-27 00:35:42 -------- d-----w- C:\Program Files (x86)\Avid
    2012-05-27 00:11:42 -------- d-----w- C:\ProgramData\AVAST Software
    2012-05-27 00:11:42 -------- d-----w- C:\Program Files\AVAST Software
    2012-05-26 19:51:21 -------- d-----w- C:\Windows\Msagent
    2012-05-26 19:21:39 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-05-26 19:21:39 419488 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2012-05-26 17:44:03 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Opera
    2012-05-26 17:44:02 -------- d-----w- C:\Program Files (x86)\Opera Next
    2012-05-26 16:54:31 -------- d--h--w- C:\Windows\msdownld.tmp
    2012-05-26 05:38:00 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\Adobe
    2012-05-26 05:33:22 -------- d-----w- C:\Windows\SysWow64\spool
    2012-05-26 05:29:28 16384 ----a-w- C:\Windows\SysWow64\FileOps.exe
    2012-05-26 05:29:28 -------- d-----w- C:\Windows\SysWow64\Adobe
    2012-05-26 05:21:35 -------- d-----w- C:\Program Files (x86)\Common Files\Adobe Systems Shared
    2012-05-26 03:42:35 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\AuthenTec
    2012-05-26 03:40:19 -------- d-----w- C:\Users\Edward Shaw\AppData\Roaming\KeepSafe
    2012-05-26 03:40:19 -------- d-----w- C:\Users\Edward Shaw\AppData\Roaming\Intel Corporation
    2012-05-26 03:40:09 -------- d-----w- C:\Users\Edward Shaw\AppData\Local\VirtualStore
    2012-05-26 03:40:08 -------- d-sh--w- C:\Recovery
    2012-05-22 16:41:10 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation
    2012-05-22 16:39:08 -------- d-----w- C:\Windows\SysWow64\NV
    2012-05-22 16:39:08 -------- d-----w- C:\Windows\System32\NV
    2012-05-22 16:24:52 -------- d-----w- C:\Program Files (x86)\Common Files\Atheros
    2012-05-22 16:24:52 -------- d-----w- C:\Program Files (x86)\Bluetooth Suite
    2012-05-22 16:24:33 2228736 ----a-w- C:\Windows\System32\athrx.sys
    2012-05-22 16:24:33 -------- d-----w- C:\Program Files (x86)\Atheros
    2012-05-22 16:24:30 -------- d-----w- C:\ProgramData\Atheros
    2012-05-22 15:46:00 -------- d-----w- C:\Program Files\Common Files\Intel
    2012-05-22 15:46:00 -------- d-----w- C:\Program Files (x86)\Common Files\Intel
    2012-05-22 15:44:57 -------- d-sh--w- C:\Windows\Installer
    2012-05-22 15:44:57 -------- d-----w- C:\Program Files (x86)\Hotkey
    2012-05-22 15:44:29 74344 ----a-w- C:\Windows\System32\RtNicProp64.dll
    2012-05-22 15:44:29 677480 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
    2012-05-22 15:44:29 107552 ----a-w- C:\Windows\System32\RTNUninst64.dll
    2012-05-22 15:44:17 -------- d-----w- C:\Program Files (x86)\Realtek
    2012-05-22 15:44:16 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps. dll
    2012-05-22 15:44:16 1698408 ----a-r- C:\Windows\RtlExUpd.dll
    2012-05-22 15:44:16 -------- d--h--w- C:\Program Files (x86)\Temp
    2012-05-22 15:44:06 -------- d-----w- C:\Intel
    2012-05-21 23:12:23 221480 ----a-w- C:\Windows\System32\SynTPAPI.dll
    2012-05-21 23:12:23 147752 ----a-w- C:\Windows\System32\SynTPCo4.dll
    2012-05-21 23:12:23 1393200 ----a-w- C:\Windows\System32\drivers\SynTP.sys
    2012-05-21 23:12:23 107816 ----a-w- C:\Windows\SysWow64\SynTPCOM.dll
    2012-05-21 23:12:22 400168 ----a-w- C:\Windows\System32\SynCOM.dll
    2012-05-21 23:12:22 272168 ----a-w- C:\Windows\System32\SynCtrl.dll
    2012-05-21 23:12:22 218408 ----a-w- C:\Windows\SysWow64\SynCtrl.dll
    2012-05-21 23:12:22 173352 ----a-w- C:\Windows\SysWow64\SynCOM.dll
    2012-05-21 23:11:56 60184 ----a-w- C:\Windows\System32\drivers\HECIx64.sys
    2012-05-21 23:10:50 -------- d---a-w- C:\Drivers
    .
    ==================== Find3M ====================
    .
    2012-04-19 02:56:30 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
    2012-04-19 02:56:30 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
    2012-03-31 06:05:57 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe
    2012-03-31 04:39:37 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
    2012-03-31 04:39:37 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
    2012-03-31 03:10:03 3146240 ----a-w- C:\Windows\System32\win32k.sys
    2012-03-30 22:43:34 276248 ----a-w- C:\Windows\SysWow64\IntelCpHeciSvc.exe
    2012-03-30 22:43:28 170264 ----a-w- C:\Windows\System32\igfxtray.exe
    2012-03-30 22:43:26 509720 ----a-w- C:\Windows\System32\igfxsrvc.exe
    2012-03-30 22:43:24 439064 ----a-w- C:\Windows\System32\igfxpers.exe
    2012-03-30 22:43:20 250136 ----a-w- C:\Windows\System32\igfxext.exe
    2012-03-30 22:43:18 398616 ----a-w- C:\Windows\System32\hkcmd.exe
    2012-03-30 22:43:16 5888792 ----a-w- C:\Windows\System32\GfxUI.exe
    2012-03-30 22:43:14 184600 ----a-w- C:\Windows\System32\difx64.exe
    2012-03-30 11:35:47 1918320 ----a-w- C:\Windows\System32\drivers\tcpip.sys
    2012-03-27 02:25:18 90112 ----a-w- C:\Windows\System32\igfxCoIn_v2712.dll
    2012-03-27 02:19:10 755188 ----a-w- C:\Windows\SysWow64\igkrng700.bin
    2012-03-27 02:19:10 755188 ----a-w- C:\Windows\System32\igkrng700.bin
    2012-03-27 02:19:08 561508 ----a-w- C:\Windows\SysWow64\igfcg700m.bin
    2012-03-27 02:19:08 561508 ----a-w- C:\Windows\System32\igfcg700m.bin
    2012-03-27 02:09:58 8087040 ----a-w- C:\Windows\System32\igdumd64.dll
    2012-03-27 02:09:54 14748416 ----a-w- C:\Windows\System32\drivers\igdkmd64.sys
    2012-03-27 02:08:38 79360 ----a-w- C:\Windows\System32\igdde64.dll
    2012-03-27 02:05:00 6121472 ----a-w- C:\Windows\SysWow64\igdumd32.dll
    2012-03-27 02:03:46 58880 ----a-w- C:\Windows\SysWow64\igdde32.dll
    2012-03-27 01:58:58 9605632 ----a-w- C:\Windows\System32\igd10umd64.dll
    2012-03-27 01:47:04 7795200 ----a-w- C:\Windows\SysWow64\igd10umd32.dll
    2012-03-27 01:38:00 3749888 ----a-w- C:\Windows\System32\igdbcl64.dll
    2012-03-27 01:37:44 591872 ----a-w- C:\Windows\System32\igdrcl64.dll
    2012-03-27 01:37:34 236544 ----a-w- C:\Windows\System32\IntelOpenCL64.dll
    2012-03-27 01:36:04 2866688 ----a-w- C:\Windows\SysWow64\igdbcl32.dll
    2012-03-27 01:36:00 518144 ----a-w- C:\Windows\SysWow64\igdrcl32.dll
    2012-03-27 01:35:40 188416 ----a-w- C:\Windows\SysWow64\IntelOpenCL32.dll
    2012-03-27 01:31:24 28992000 ----a-w- C:\Windows\System32\igdfcl64.dll
    2012-03-27 01:19:14 23460864 ----a-w- C:\Windows\SysWow64\igdfcl32.dll
    2012-03-27 01:08:10 17226240 ----a-w- C:\Windows\System32\ig7icd64.dll
    2012-03-27 00:53:42 13024768 ----a-w- C:\Windows\SysWow64\ig7icd32.dll
    2012-03-27 00:39:32 386560 ----a-w- C:\Windows\System32\igfxpph.dll
    2012-03-27 00:39:30 410624 ----a-w- C:\Windows\System32\igfxTMM.dll
    2012-03-27 00:39:24 28672 ----a-w- C:\Windows\System32\igfxexps.dll
    2012-03-27 00:39:10 63488 ----a-w- C:\Windows\System32\igfxsrvc.dll
    2012-03-27 00:38:40 110592 ----a-w- C:\Windows\System32\hccutils.dll
    2012-03-27 00:38:32 9216 ----a-w- C:\Windows\System32\IGFXDEVLib.dll
    2012-03-27 00:38:32 172032 ----a-w- C:\Windows\System32\gfxSrvc.dll
    2012-03-27 00:38:30 434688 ----a-w- C:\Windows\System32\igfxdev.dll
    2012-03-27 00:37:50 286208 ----a-w- C:\Windows\System32\igfxrenu.lrc
    2012-03-27 00:37:44 9007616 ----a-w- C:\Windows\System32\igfxress.dll
    2012-03-27 00:37:44 142336 ----a-w- C:\Windows\System32\igfxdo.dll
    2012-03-27 00:36:18 25088 ----a-w- C:\Windows\SysWow64\igfxexps32.dll
    2012-03-27 00:35:30 325120 ----a-w- C:\Windows\SysWow64\igfxdv32.dll
    2012-03-27 00:33:34 52736 ----a-w- C:\Windows\System32\OpenCL.dll
    2012-03-27 00:33:34 51200 ----a-w- C:\Windows\SysWow64\OpenCL.dll
    2012-03-27 00:33:28 94208 ----a-w- C:\Windows\System32\IccLibDll_x64.dll
    2012-03-27 00:33:28 524800 ----a-w- C:\Windows\System32\iglhsip64.dll
    2012-03-27 00:33:28 519680 ----a-w- C:\Windows\SysWow64\iglhsip32.dll
    2012-03-27 00:33:28 2967040 ----a-w- C:\Windows\System32\igfxcmjit64.dll
    2012-03-27 00:33:28 237056 ----a-w- C:\Windows\SysWow64\igfxcmrt32.dll
    2012-03-27 00:33:28 2321408 ----a-w- C:\Windows\SysWow64\igfxcmjit32.dll
    2012-03-27 00:33:28 213504 ----a-w- C:\Windows\System32\iglhcp64.dll
    2012-03-27 00:33:28 193024 ----a-w- C:\Windows\System32\igfxcmrt64.dll
    2012-03-27 00:33:28 177152 ----a-w- C:\Windows\SysWow64\iglhcp32.dll
    2012-03-17 07:58:57 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
    .
    ============= FINISH: 12:21:26.46 ===============

  4. #4
    Join Date
    Jun 2012
    Location
    Butte, MT
    Posts
    28
    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft Windows 7 Professional
    Boot Device: \Device\HarddiskVolume2
    Install Date: 6/4/2012 3:46:09 PM
    System Uptime: 6/5/2012 12:15:31 PM (0 hours ago)
    .
    Motherboard: CLEVO | | P170EM
    Processor: Intel(R) Core(TM) i7-3920XM CPU @ 2.90GHz | SOCKET 0 | 3101/100mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 167 GiB total, 82.073 GiB free.
    D: is FIXED (NTFS) - 699 GiB total, 676.668 GiB free.
    E: is CDROM ()
    F: is FIXED (NTFS) - 699 GiB total, 681.876 GiB free.
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP3: 6/4/2012 3:47:26 PM - Windows Update
    RP4: 6/4/2012 3:47:39 PM - Windows Update
    RP5: 6/4/2012 4:01:04 PM - Installed Realtek Ethernet Controller Driver
    RP6: 6/4/2012 4:02:02 PM - Installed Realtek PCIE Card Reader
    RP7: 6/4/2012 7:32:40 PM - Removed Avid FilmScribe.
    RP8: 6/5/2012 9:40:07 AM - Installed HiJackThis
    RP9: 6/5/2012 9:45:49 AM - Removed HiJackThis
    RP10: 6/5/2012 9:54:27 AM - Windows Update
    RP11: 6/5/2012 10:26:53 AM - Windows Update
    RP12: 6/5/2012 11:57:43 AM - avast! Internet Security Setup
    .
    ==== Installed Programs ======================
    .
    Adobe Acrobat 7.0 Professional
    Adobe Bridge 1.0
    Adobe Common File Installer
    Adobe Creative Suite 2
    Adobe GoLive CS2
    Adobe Help Center 1.0
    Adobe Illustrator CS2
    Adobe InDesign CS2
    Adobe Photoshop CS2
    Adobe Stock Photos 1.0
    Adobe SVG Viewer 3.0
    Adobe Version Cue CS2
    Anti-phishing Domain Advisor
    Apple Application Support
    Apple Software Update
    Atheros Client Installation Program
    Avid Codecs LE
    Avid EDL Manager
    Avid FilmScribe
    Avid License Control
    Avid Log Exchange
    Avid MediaLog
    Avid MetaFuze
    Blekko search bar
    Free Download Manager 3.8
    Hotkey 6.0045
    Intel(R) Control Center
    Intel(R) Management Engine Components
    Intel(R) OpenCL CPU Runtime
    Intel(R) Processor Graphics
    Intel(R) Rapid Storage Technology
    Intel(R) USB 3.0 eXtensible Host Controller Driver
    License Support
    Malwarebytes Anti-Malware version 1.61.0.1400
    Microsoft Office 2000 Professional
    Microsoft Silverlight
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
    Mozilla Firefox 12.0 (x86 en-US)
    Mozilla Maintenance Service
    NVIDIA PhysX
    QuickTime
    Realtek Ethernet Controller Driver
    Realtek High Definition Audio Driver
    Realtek PCIE Card Reader
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
    Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
    Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
    Sentinel Protection Installer 7.4.0
    SpywareBlaster 4.6
    Suite Specific
    THX TruStudio Pro
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
    Update for Microsoft .NET Framework 4 Extended (KB2468871)
    Update for Microsoft .NET Framework 4 Extended (KB2533523)
    Update for Microsoft .NET Framework 4 Extended (KB2600217)
    Vid-Saver
    Visual C++ 64-bit Redistributables
    Visual C++ Redistributables
    XDCAM EX Clip Browser
    .
    ==== Event Viewer Messages From Past Week ========
    .
    6/5/2012 12:20:59 PM, Error: BTHUSB [17] - The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.
    6/5/2012 12:15:46 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: iaStor
    6/5/2012 10:46:33 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000003b (0x00000000c0000005, 0xfffff8800405cb00, 0xfffff88007517b50, 0x0000000000000000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 060512-17425-01.
    6/5/2012 10:15:51 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80242016: Update for Windows 7 for x64-based Systems (KB2632503).
    6/5/2012 10:15:51 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80242016: Update for Internet Explorer 8 Compatibility View List for Windows 7 for x64-based Systems (KB2598845).
    6/5/2012 10:15:51 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80242016: Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB2544521).
    6/5/2012 10:13:06 AM, Error: Service Control Manager [7023] -
    6/4/2012 5:46:51 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: cdrom iaStor
    6/4/2012 5:18:01 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: cdrom
    6/4/2012 4:34:26 PM, Error: Service Control Manager [7023] - The Superfetch service terminated with the following error: The service has not been started.
    6/1/2012 7:32:22 AM, Error: iaStor [9] - The device, \Device\Ide\iaStor0, did not respond within the timeout period.
    5/31/2012 9:33:02 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000019 (0x0000000000000020, 0xfffffa800903a630, 0xfffffa800903ae30, 0x0000000004809bb0). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 053112-18423-01.
    5/31/2012 10:30:45 PM, Error: Microsoft-Windows-SharedAccess_NAT [30009] - The DHCP allocator encountered a network error while attempting to reply on IP address 0.0.0.0 to a request from a client. The data is the error code.
    5/30/2012 11:15:41 AM, Error: Service Control Manager [7023] - The Windows Update service terminated with the following error: %%-2147467243
    5/30/2012 11:13:22 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the nvsvc service.
    5/29/2012 9:20:40 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk3\DR3.
    5/29/2012 6:52:40 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Aspi32
    .
    ==== End Of File ===========================

  5. #5
    Join Date
    Aug 2006
    Location
    The Middle
    Age
    74
    Posts
    4,079
    Hate to tell you but you have a WHOLE lot of stuff on there that I have never seen anywhere before and have virtually no clue about.
    I have no idea where in the world you got this Free Download Manager but it sure would NOT have come from Microsoft and there is absolutely no reason to use a Download Manager unless it for some reason has to do with a specific program, I have no programs that use a download manager however.
    What is this authentec truesuite ? While it appears to be a good program I honestly know nothing about it or whether it will run well with any other programs on there.
    What is this PACE Anti-Piracy?
    Also don't know why this should have been difficult at all. DDS is an extremely simple program to use. It is only a scanner, period so why you had the trouble I don't know.

    You also mentioned in your PM to me that Bleepingcomputer had 5 buttons on it....it has one and only one Download button so am not sure what 5 buttons you are talking about.

    Look at my print screen and you will see the only download button on Bleepingcomputer.
    Click image for larger version. 

Name:	dds download button.jpg 
Views:	6 
Size:	26.3 KB 
ID:	2113

  6. #6
    Join Date
    Jun 2012
    Location
    Butte, MT
    Posts
    28
    Isn't that interesting. Now, when I click the link on your email, the only way I have accessed the bleepingcomputer site, I get exactly what your screenshot shows -- there is no confusion at all as to which is the correct button, even though there is a slight discrepency in your labeling and that of the site.
    I assure you, I am not dreaming. When I clicked the link to /download/antivirus/dds
    I was directed to a page that was nothing like the page I am directed to, now. I admit to having some suspicion about the page on account of one or two of the ads on it.

    My wild guess is that someone is using that site for their own purposes. The layout was a little haphazard, as I have said, nearly amateurish in the same way non English speakers often give themselves away by substandard layouts or use of English.

    As I say, both browsers have been taken over. It will be interesting to see what gives once I delete and reinstall Mozilla. I already went to MS and installed IE 9.0 with no change.

  7. #7
    Join Date
    Aug 2006
    Location
    The Middle
    Age
    74
    Posts
    4,079
    Not sure what you mean by
    My wild guess is that someone is using that site for their own purposes.
    That site is bleepingcomputer, one of the safest sites on the net and Nobody but bleepingcomputer is using that site, I guarantee you. The link I have given you for DDS is the exact same link each and everytime. I have not changed it I have not altered it, and each one of the ones I have given you I just now checked and each and every one of them leads me directly to the bleepingcomputer DDS download page. What is happening is that your computer is being redirected by something you have put on the computer yourself.I was suspicious when you told me via email that,
    Avast blocked DDS.
    Windows updated 68 updates.
    Mistakenly downloaded download manager. It took over IE with a search bar and other things. Getting rid of that.
    and also this via PM
    Download manager is running my Mozilla browser and has installed Blekke executables on my HD that finder can't locate.
    I see NO blekke executables running and if they were they would show. You DO have a Blekko search bar showing as installed in your Installed Programs list.
    I have no idea what you have done to get all this junk on your computer in just a matter of days but there is a chance there are some bad things on there.
    There is absolutely NO way that just installing Avast would cause DDS to be blocked, or a Blue screen and black screen crash, Mozilla crash, especially on a brand new computer. UNLESS that computer has become infected.
    I don't know where you got any of these programs that are installed there but since you obviously didn't get DDS at bleepingcomputer, even though that is where the links I gave ALL take you there.

    Did you uninstall Avast because it doesn't show as installed.

    Where did you get all of these programs below?
    Sentinel Protection Installer 7.4.0
    Blekko search bar
    Free Download Manager 3.8
    AuthenTec TrueSuite
    PACE Anti-Piracy

  8. #8
    Join Date
    Jun 2012
    Location
    Butte, MT
    Posts
    28
    The Free Download manager uninstall appears to have worked. I used the onboard uninstaller rather than the one the program offered,
    Authentic Tru site is a fingerprint verification system that came with the computer. I have yet to get it to work.
    As for the Pace, it doesn't show up either under "programs," or by search.
    The Mozilla cleaned up on the surface. Somehow the home page had been changed to the Blekko search engine. It went away without a trace when I changed the default page. The IE is still being run by MyStart powered by Blekko and it appears to be quite well integrated with Facebook, Twitter, and My Space. The interface is like something I have never seen. It has only a barely functioning address bar, close and minimize buttons, a MyStart search box, a MyStart copyright sticker, and links to the big social media sites.

    The reassuring thing is that the "privacy policy" button leads to all kinds of information about the company. It is Canadian apparently, and named "My Start."
    Very unusual business practice. I appears to have hijacked IE for good, which may be all right, since I don't use it much anyway. I like Opera and Mozilla.

  9. #9
    Join Date
    Aug 2006
    Location
    The Middle
    Age
    74
    Posts
    4,079
    The reassuring thing is that the "privacy policy" button leads to all kinds of information about the company. It is Canadian apparently, and named "My Start."
    Very unusual business practice. I appears to have hijacked IE for good, which may be all right, since I don't use it much anyway.
    Don't be too reassured because the information you seem to have found is not correct.
    This is owned by Perion network ltd, formerly Incredimail it is not a Canadian company as far as I know, don't know where you found this but it is not true. It's headquarters used to be in Israel, don't know where it is now.
    This explains to my why all of your emails today are loaded with fancy jumping smiley faces, each one with more than the last one and the smileys in each mail get bigger with each mail also...they were not in those previously.

    How you have gotten malware on the computer in this short a time I have no idea but you have.
    When you first got this computer what is the very first thing that you did?

  10. #10
    Join Date
    Jun 2012
    Location
    Butte, MT
    Posts
    28
    It's looking like I have picked up one of those redirect programs.
    The restore points show a record of what I have put on the computer, but the record does not go back very far. I have had the computer about two weeks. The first thing I recall doing was installing Avast. I had looked at a couple of sites prior to that, nothing out of the ordinary. I then installed MS Office. In the meanwhile, I had installed Opera and Mozilla and Malwarebyte. Then I downloaded Avid Symphony and had some problems with the download. At that point, I thought the best thing to do was have the Security check with Jholland and them procede to the mirror setup.
    Sentinal Protector Installer 7.4 I have no idea.
    Blekko Search bar showed up with Free Download Manger.
    Free download manager from the link I was sent to by clicking the email you sent.
    Authentic track tru site I think is the fingerprint reader, not working now or ever.
    Pace Anti Piracy I don't know and cannot find it in Programs or search.
    I have not run a malware scan.
    Last edited by ed_shaw; 06-06-2012 at 04:02 PM.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •