Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Connected to net but cant not dl win updates connect to autolog and ma

Started by waynegr , Aug 21 2011 06:53 PM

  • This topic is locked This topic is locked

#76
Dakeyras
Posted 09 September 2011 - 02:45 PM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts
Hi. :)

Not sure what you want me to do with OTL.exe, I opened it, but what then please ???

My apologies about that...a completely honest omission. When you start OTL I meant to include the instruction to click on the Run Scan button. Anyway leave this for now as this is of more importance I feel:-

Found something like repair your computer, ran it, but nothing much seemed to happen when I restarted.

Ran the other scan, said some files were corrupt, and could not fix all.

Found the log, but it would not let me open.

Not looking good I'm afraid and as I suspected your machines Operating System is both corrupted and damaged...

Let myself sleep on this so to speak to see if I can think of something else(I will actually perform some extra research also on your behalf with regard to the ongoing issues) and in the mean time I strongly advise you backup any personal files and folders.
  • 0

Advertisements

#77
waynegr
Posted 09 September 2011 - 03:15 PM

waynegr

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 194 posts
Did a scan of OTL, just in case you neded that.

OTL logfile created on: 09/09/2011 21:17:03 - Run 6
OTL by OldTimer - Version 3.2.26.5 Folder = C:\Users\FLIPP\Downloads
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

4.00 Gb Total Physical Memory | 2.37 Gb Available Physical Memory | 59.29% Memory free
8.19 Gb Paging File | 6.55 Gb Available in Paging File | 80.07% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.06 Gb Total Space | 544.14 Gb Free Space | 59.34% Space Free | Partition Type: NTFS
Drive D: | 14.46 Gb Total Space | 1.98 Gb Free Space | 13.73% Space Free | Partition Type: NTFS

Computer Name: FLIPP-PC | User Name: FLIPP | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\FLIPP\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink)
PRC - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Easy Backup\HPBtnSrv.exe ()
PRC - C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink Corp.)
PRC - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
PRC - C:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)


========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSPTLS.DLL ()
MOD - C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll ()


========== Win32 Services (SafeList) ==========

SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (IAANTMON) Intel® -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
SRV - (HPBtnSrv) -- C:\Program Files (x86)\Hewlett-Packard\HP Easy Backup\HPBtnSrv.exe ()
SRV - (ezSharedSvc) -- C:\Windows\SysWOW64\ezsvc7.dll (EasyBits Sofware AS)


========== Driver Services (SafeList) ==========

DRV:64bit: - (avipbb) -- C:\Windows\SysNative\DRIVERS\avipbb.sys (Avira GmbH)
DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\DRIVERS\avgntflt.sys (Avira GmbH)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys (Microsoft Corporation)
DRV:64bit: - (HCW85BDA) -- C:\Windows\SysNative\drivers\HCW85BDA.sys (Hauppauge Computer Works)
DRV:64bit: - (netr28x) -- C:\Windows\SysNative\DRIVERS\netr28x.sys (Ralink Technology, Corp.)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iastor.sys (Intel Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (RTL8169) -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys (Realtek Corporation )
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\Drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (xnacc) -- C:\Windows\SysNative\DRIVERS\xnacc.sys (Microsoft Corporation)
DRV - (MxlW2k) -- C:\Windows\SysWow64\drivers\MxlW2k.sys (MusicMatch, Inc.)
DRV - ({55662437-DA8C-40c0-AADA-2C816A897A49}) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl (Cyberlink Corp.)
DRV - (Secdrv) -- C:\Windows\SysWOW64\drivers\SECDRV.SYS ()


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_0_1.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\FLIPP\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF


O1 HOSTS File: ([2011/09/04 21:26:36 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - File not found
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Hewlett-Packard)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [CLMLServer for HP TouchSmart] c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DVDAgent] c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [EEventManager] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [KBD] C:\Program Files (x86)\Hewlett-Packard\KBD\KbdStub.exe (Microsoft)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [OsdMaestro] c:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD64.exe (OsdMaestro)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UpdatePDIRShortCut] c:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4:64bit: - HKLM..\RunOnce: [PC-Doctor for Windows REBOOT] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 - File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 - File not found
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.h...tDetection2.cab (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.co...sreqlab_nvd.cab (System Requirements Lab Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\FLIPP\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\FLIPP\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/09/09 01:44:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011/09/09 01:43:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2011/09/06 23:07:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
[2011/09/06 23:05:15 | 000,000,000 | ---D | C] -- C:\Users\FLIPP\{9d8c9fa4-08a6-45d7-a420-a105e07a0dba}
[2011/09/06 22:50:22 | 000,000,000 | ---D | C] -- C:\ProgramData\PC-Doctor
[2011/09/04 21:33:02 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/09/04 21:33:01 | 000,000,000 | ---D | C] -- C:\Users\FLIPP\AppData\Local\temp
[2011/09/04 21:26:43 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2011/09/04 21:11:33 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/09/04 21:11:33 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/09/04 21:11:33 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/09/04 21:11:23 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/09/04 18:37:24 | 000,190,752 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe
[2011/09/04 18:37:24 | 000,171,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe
[2011/09/04 18:37:24 | 000,171,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe
[2011/09/04 18:37:10 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/09/01 20:11:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2011/08/31 13:43:49 | 000,000,000 | ---D | C] -- C:\Users\FLIPP\Desktop\HostsXpert
[2011/08/30 00:09:40 | 000,000,000 | ---D | C] -- C:\Users\FLIPP\Documents\ManiaPlanet
[2011/08/30 00:09:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManiaPlanet
[2011/08/30 00:08:26 | 000,000,000 | ---D | C] -- C:\ProgramData\ManiaPlanet
[2011/08/30 00:08:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ManiaPlanet
[2011/08/27 14:34:12 | 000,000,000 | ---D | C] -- C:\Users\FLIPP\AppData\Roaming\Sammsoft
[2011/08/27 01:48:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2011/08/26 22:07:29 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/08/26 22:05:19 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/08/26 22:02:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
[2011/08/26 22:02:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ERUNT
[2011/08/24 13:45:20 | 000,000,000 | ---D | C] -- C:\f12f1591da052aec4117
[2011/08/19 23:56:15 | 000,000,000 | ---D | C] -- C:\Users\FLIPP\AppData\Local\Mozilla
[2011/08/19 19:20:22 | 000,000,000 | ---D | C] -- C:\Users\FLIPP\AppData\Local\Deployment
[2011/08/19 19:20:22 | 000,000,000 | ---D | C] -- C:\Users\FLIPP\AppData\Local\Apps
[2011/08/13 01:23:21 | 000,525,544 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deployJava1.dll
[2011/08/11 13:56:04 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software

========== Files - Modified Within 30 Days ==========

[2011/09/09 21:15:15 | 000,002,635 | ---- | M] () -- C:\Users\FLIPP\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007 (2).lnk
[2011/09/09 20:53:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/09/09 20:48:32 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/09/09 20:48:08 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/09 20:48:08 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/09 20:48:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/09/06 13:04:35 | 001,223,168 | ---- | M] () -- C:\Users\FLIPP\Desktop\HP Product Detection.msi
[2011/09/06 13:04:32 | 000,003,584 | ---- | M] () -- C:\Users\FLIPP\Desktop\1033.MST
[2011/09/05 21:07:25 | 000,001,460 | ---- | M] () -- C:\Users\FLIPP\AppData\Local\d3d9caps64.dat
[2011/09/04 21:26:36 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2011/09/04 18:37:13 | 000,525,544 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deployJava1.dll
[2011/09/04 18:37:13 | 000,190,752 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe
[2011/09/04 18:37:13 | 000,171,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe
[2011/09/04 18:37:13 | 000,171,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe
[2011/09/02 19:13:47 | 000,591,122 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/09/02 19:13:47 | 000,102,996 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/09/01 21:20:54 | 000,009,160 | ---- | M] () -- C:\Users\FLIPP\AppData\Local\d3d9caps.dat
[2011/08/31 13:59:01 | 000,000,726 | ---- | M] () -- C:\Users\FLIPP\Desktop\HostsXpert.exe - Shortcut.lnk
[2011/08/30 00:09:08 | 000,000,884 | ---- | M] () -- C:\Users\Public\Desktop\ManiaPlanet.lnk
[2011/08/29 20:19:24 | 000,074,736 | ---- | M] () -- C:\Users\FLIPP\Desktop\GetSystemInfo_FLIPP-PC_FLIPP_2011_08_29_20_18_10.zip
[2011/08/29 19:43:10 | 000,001,024 | ---- | M] () -- C:\Users\FLIPP\Desktop\Continue FoxTab PDF Converter Installation.lnk
[2011/08/29 18:27:05 | 000,000,588 | ---- | M] () -- C:\Users\FLIPP\Desktop\SystemLook_x64.exe - Shortcut.lnk
[2011/08/28 12:50:08 | 000,000,934 | ---- | M] () -- C:\Users\FLIPP\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2011/08/28 12:50:08 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/27 01:21:47 | 000,002,014 | ---- | M] () -- C:\Users\Public\Desktop\Need For Speed World.lnk
[2011/08/26 22:54:48 | 000,000,172 | ---- | M] () -- C:\Users\FLIPP\Desktop\Dr. Darden's H.I.T..url
[2011/08/26 22:04:52 | 000,000,725 | ---- | M] () -- C:\Users\FLIPP\Desktop\NTREGOPT.lnk
[2011/08/26 22:04:52 | 000,000,706 | ---- | M] () -- C:\Users\FLIPP\Desktop\ERUNT.lnk
[2011/08/26 20:33:32 | 000,001,200 | ---- | M] () -- C:\Users\FLIPP\Desktop\OTL.exe - Shortcut.lnk
[2011/08/26 18:23:30 | 000,000,222 | ---- | M] () -- C:\Users\FLIPP\Desktop\Virus, Spyware, Malware Removal - Geeks to Go Forums.url
[2011/08/25 12:03:21 | 000,715,772 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/08/20 02:03:33 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011/08/19 02:42:21 | 000,000,064 | ---- | M] () -- C:\Windows\SysWow64\rp_stats.dat
[2011/08/19 02:42:21 | 000,000,044 | ---- | M] () -- C:\Windows\SysWow64\rp_rules.dat
[2011/08/14 21:07:34 | 000,144,144 | ---- | M] () -- C:\Users\FLIPP\Desktop\GetSystemInfo_FLIPP-PC_FLIPP_2011_08_14_21_06_21.zip
[2011/08/12 23:27:08 | 000,000,322 | ---- | M] () -- C:\Users\FLIPP\Desktop\Building Muscle Mass A Quick Look at Muscular Growth and Hypertrophy • AmpedTraining.com • Matthew Perryman, CSCS.url
[2011/08/11 13:56:33 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt

========== Files Created - No Company Name ==========

[2011/09/06 13:04:50 | 001,223,168 | ---- | C] () -- C:\Users\FLIPP\Desktop\HP Product Detection.msi
[2011/09/06 13:04:50 | 000,003,584 | ---- | C] () -- C:\Users\FLIPP\Desktop\1033.MST
[2011/09/04 21:11:33 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/09/04 21:11:33 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/09/04 21:11:33 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/09/04 21:11:33 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/09/04 21:11:33 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/08/31 13:59:01 | 000,000,726 | ---- | C] () -- C:\Users\FLIPP\Desktop\HostsXpert.exe - Shortcut.lnk
[2011/08/30 00:09:08 | 000,000,884 | ---- | C] () -- C:\Users\Public\Desktop\ManiaPlanet.lnk
[2011/08/29 20:18:51 | 000,074,736 | ---- | C] () -- C:\Users\FLIPP\Desktop\GetSystemInfo_FLIPP-PC_FLIPP_2011_08_29_20_18_10.zip
[2011/08/29 19:43:10 | 000,001,024 | ---- | C] () -- C:\Users\FLIPP\Desktop\Continue FoxTab PDF Converter Installation.lnk
[2011/08/29 18:26:25 | 000,000,588 | ---- | C] () -- C:\Users\FLIPP\Desktop\SystemLook_x64.exe - Shortcut.lnk
[2011/08/27 01:48:48 | 000,000,896 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/08/27 01:48:48 | 000,000,892 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/08/26 22:54:48 | 000,000,172 | ---- | C] () -- C:\Users\FLIPP\Desktop\Dr. Darden's H.I.T..url
[2011/08/26 22:24:09 | 000,000,934 | ---- | C] () -- C:\Users\FLIPP\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2011/08/26 22:24:09 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/26 22:02:04 | 000,000,725 | ---- | C] () -- C:\Users\FLIPP\Desktop\NTREGOPT.lnk
[2011/08/26 22:02:04 | 000,000,706 | ---- | C] () -- C:\Users\FLIPP\Desktop\ERUNT.lnk
[2011/08/26 20:32:47 | 000,001,200 | ---- | C] () -- C:\Users\FLIPP\Desktop\OTL.exe - Shortcut.lnk
[2011/08/26 18:23:30 | 000,000,222 | ---- | C] () -- C:\Users\FLIPP\Desktop\Virus, Spyware, Malware Removal - Geeks to Go Forums.url
[2011/08/14 21:06:48 | 000,144,144 | ---- | C] () -- C:\Users\FLIPP\Desktop\GetSystemInfo_FLIPP-PC_FLIPP_2011_08_14_21_06_21.zip
[2011/08/12 23:27:08 | 000,000,322 | ---- | C] () -- C:\Users\FLIPP\Desktop\Building Muscle Mass A Quick Look at Muscular Growth and Hypertrophy • AmpedTraining.com • Matthew Perryman, CSCS.url
[2011/05/02 22:28:13 | 000,000,064 | ---- | C] () -- C:\Windows\SysWow64\rp_stats.dat
[2011/05/02 22:28:13 | 000,000,044 | ---- | C] () -- C:\Windows\SysWow64\rp_rules.dat
[2011/04/26 19:16:50 | 000,000,192 | ---- | C] () -- C:\ProgramData\video
[2011/04/21 12:39:04 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/03/09 02:12:01 | 000,000,036 | ---- | C] () -- C:\Users\FLIPP\AppData\Local\housecall.guid.cache
[2011/02/27 23:03:48 | 000,822,636 | ---- | C] () -- C:\Users\FLIPP\AppData\Local\tmpIMG008.0
[2011/02/27 23:03:48 | 000,589,257 | ---- | C] () -- C:\Users\FLIPP\AppData\Local\tmpIMG008.JPG
[2011/02/18 15:26:49 | 000,001,460 | ---- | C] () -- C:\Users\FLIPP\AppData\Local\d3d9caps64.dat
[2010/06/04 00:26:18 | 000,819,200 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010/06/04 00:26:18 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010/02/28 16:17:48 | 003,284,480 | ---- | C] () -- C:\Windows\SysWow64\x264vfw.dll
[2009/12/25 19:37:42 | 000,070,575 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009/12/25 19:27:08 | 000,070,575 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009/11/11 02:01:29 | 000,111,932 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
[2009/11/11 02:01:29 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
[2009/11/11 02:01:29 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
[2009/11/11 02:01:29 | 000,026,154 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
[2009/11/11 02:01:29 | 000,024,903 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
[2009/11/11 02:01:29 | 000,021,390 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
[2009/11/11 02:01:29 | 000,020,148 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
[2009/11/11 02:01:29 | 000,011,811 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
[2009/11/11 02:01:29 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
[2009/11/11 02:01:29 | 000,001,146 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_DU.dat
[2009/11/11 02:01:29 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat
[2009/11/11 02:01:29 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat
[2009/11/11 02:01:29 | 000,001,136 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat
[2009/11/11 02:01:29 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat
[2009/11/11 02:01:29 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat
[2009/11/11 02:01:29 | 000,001,120 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_IT.dat
[2009/11/11 02:01:29 | 000,001,107 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_GE.dat
[2009/11/11 02:01:29 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat
[2009/11/11 02:01:29 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2009/11/10 21:52:31 | 000,000,025 | ---- | C] () -- C:\Windows\CDER300Euro.ini
[2009/11/10 14:25:52 | 000,000,000 | ---- | C] () -- C:\Windows\pcfriend.INI
[2009/09/24 12:28:53 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2009/09/24 12:28:32 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
[2009/09/24 12:28:14 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/19 18:22:48 | 000,009,160 | ---- | C] () -- C:\Users\FLIPP\AppData\Local\d3d9caps.dat
[2009/05/22 22:05:44 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2009/04/08 19:45:11 | 000,140,288 | ---- | C] () -- C:\Users\FLIPP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/01/07 00:17:13 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
[2009/01/06 17:18:44 | 000,008,572 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat
[2009/01/06 16:40:11 | 000,327,680 | ---- | C] () -- C:\Windows\SysWow64\pythoncom25.dll
[2009/01/06 16:40:11 | 000,102,400 | ---- | C] () -- C:\Windows\SysWow64\pywintypes25.dll
[2008/01/21 03:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2006/11/02 16:37:05 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 13:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2006/11/02 13:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2006/11/02 13:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2006/11/02 10:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2000/08/29 03:09:26 | 000,011,616 | R--- | C] () -- C:\Windows\SysWow64\drivers\SECDRV.SYS

========== Files - Unicode (All) ==========
[2011/08/12 23:24:34 | 000,000,647 | ---- | M] ()(C:\Users\FLIPP\Desktop\Tension-time index, fatigue, and energetics in isolated rat diaphragm a new experimental model--«???????»--??????--?????.url) -- C:\Users\FLIPP\Desktop\Tension-time index, fatigue, and energetics in isolated rat diaphragm a new experimental model--《应用生理学杂志》--医学期刊频道--首席医学网.url
[2011/08/12 23:24:34 | 000,000,647 | ---- | C] ()(C:\Users\FLIPP\Desktop\Tension-time index, fatigue, and energetics in isolated rat diaphragm a new experimental model--«???????»--??????--?????.url) -- C:\Users\FLIPP\Desktop\Tension-time index, fatigue, and energetics in isolated rat diaphragm a new experimental model--《应用生理学杂志》--医学期刊频道--首席医学网.url

========== Alternate Data Streams ==========

@Alternate Data Stream - 2873 bytes -> C:\Users\FLIPP\Documents\FW_ Animated Map of Europe During World War II.eml:OECustomProperty

< End of report >


Wayne
  • 0

#78
waynegr
Posted 09 September 2011 - 03:24 PM

waynegr

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 194 posts
K thank you. Do you think that the other antivirus, antivirus Avira has anything to do with it ??? As it happened when I started dling this, however it is a good and well known program, mind you, and I best be honest, I think, not 100% sure, but I started to dl this when I still had my pay for Kaspersky, maybe there was a conflict. I had K for many years, and it was good, just thought I would say some money any try a few of the free ones, imagine lots of us do that, wish I had not bothered now.

Wayne
  • 0

#79
waynegr
Posted 09 September 2011 - 04:56 PM

waynegr

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 194 posts
I know this might sound silly to you, so please don’t laugh too much, but what if I changed to Windows 7 ??? Or is in my computer files themselves that are damaged or corrupted. Could not I dl something from the HP site.

Wayne
  • 0

#80
Dakeyras
Posted 09 September 2011 - 06:45 PM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts
Hi. :)

K thank you. Do you think that the other antivirus, antivirus Avira has anything to do with it ??? As it happened when I started dling this, however it is a good and well known program, mind you, and I best be honest, I think, not 100% sure, but I started to dl this when I still had my pay for Kaspersky, maybe there was a conflict. I had K for many years, and it was good, just thought I would say some money any try a few of the free ones, imagine lots of us do that, wish I had not bothered now.

No I do not and being honest it was the compromised Host File that has been the major vector plus the dire ARO' which undoubtedly played a major part also.

I know this might sound silly to you, so please don’t laugh too much, but what if I changed to Windows 7 ??? Or is in my computer files themselves that are damaged or corrupted. Could not I dl something from the HP site.

I never laugh at any person I provide my free Anti-Malware Support for I assure you! Aye in theory you can upgrade your machine to Windows 7...read this below:-

Windows 7 Upgrade Advisor

Plus you can use something called the Windows Easy Transfer

Next:

Apart from the Windows 7 advice and what to do...I'm afraid there is absolutely nothing else I can do and or advise concerning your machines current issues apart from utilising the Recovery Partition which I mentioned about in this prior post of mine.
  • 0

#81
waynegr
Posted 10 September 2011 - 11:06 AM

waynegr

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 194 posts
One last question please, do you think if I change to 7 it will get rid of these problems ??? and will I have to save all my files photos and videos before I dl, And can I change back with a system restore if I don’t like it, if you have not time to answer these I will understand, and will ask in some comp forum.

I do not know how to say thank you in a bigger way, as you say it’s free, is there any place I can contribute something if not to you to this site ???

Hold on, another last question please, do you think it would be safe to dl that antivirus again for the free trial, or is there a better one free, or do you think I should go back to pay kaspersky. Thx for you time and help again.

Wayne
  • 0

#82
Dakeyras
Posted 12 September 2011 - 03:20 AM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts
Hi. :)

My apologies for the delay I am rarely active/online on Sundays because I am a single parent and spend time with my family.

OK back to the topic...

One last question please, do you think if I change to 7 it will get rid of these problems ??? and will I have to save all my files photos and videos before I dl, And can I change back with a system restore if I don’t like it, if you have not time to answer these I will understand, and will ask in some comp forum.

Aye it will because during the installation of Windows 7 the Hard-Drive will be formatted. Also yes it would be prudent to backup anything you wish to keep before hand as a precaution.

Unfortunately you will not be able to revert back to Vista persay and the downside of upgrading to Windows 7 is the Recovery Partition present will be most likely overwritten during the process. So what you could do is invoke the partition...

Instructions are here(Post #70) reset your machine back to as was when first shipped which as I have explained prior is defacto a reformat and reinstallation of the Windows Operating System.

Then I advise you create a set of Recovery Disks. Now you have the choice either keep you machine with Vista 64 bit as it will be as new etc and or upgrade to Windows 7. Then in the event you do not like Windows 7 you could use the aforementioned Recovery Disks to revert the machine back to Vista 64 bit.

Just for interest sake I have a laptop that had Vista 64 bit on it and with a Recovery Partition also and I chose to upgrade it to Windows 7 64 bit and have been very pleased with it myself and I also upgraded the memory on the machine. If you wish to upgrade the installed memory, Crucial have a small scanner(CrucialScan.exe)which is perfectly safe to download and run. Which will advise if your system can support any upgraded memory modules. They cater for the US/UK and Europe.

I do not know how to say thank you in a bigger way, as you say it’s free, is there any place I can contribute something if not to you to this site ???

You're most welcome...I choose not to except donations myself but thank you for the offer. However feel free to contribute what ever you feel comfortable with doing so towards the running costs of this forum. How to do so can be read in this topic:-

Donation information

Hold on, another last question please, do you think it would be safe to dl that antivirus again for the free trial, or is there a better one free, or do you think I should go back to pay kaspersky. Thx for you time and help again.

Aye it would be fine to do so afterwards and or you could choose the other listed below(Microsoft Security Essentials, I actually use that on all of my machines)...


Next:

Would you care for some advice about online safety to take into account after what ever option you have decided to do with your machine? If not fair play and stay safe!
  • 0

#83
waynegr
Posted 13 September 2011 - 10:37 AM

waynegr

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 194 posts
Ok, thank you for your time help and advice; wish you all the future happiness in the World.

Wayne
  • 0

#84
Dakeyras
Posted 14 September 2011 - 01:36 AM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts
You're welcome! :)
  • 0

#85
Dakeyras
Posted 15 September 2011 - 03:13 AM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP