[Closed - banned] PC Acting Slower Than Usual

wealthymike · 2012/09/06

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.06.08

Windows 7 x86 NTFS
Internet Explorer 9.0.8112.16421
User :: PC [administrator]

Protection: Enabled

9/6/2012 11:30:31 AM
mbam-log-2012-09-06 (11-30-31).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 184043
Time elapsed: 5 minute(s), 31 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\Users\User\Downloads\mplayer_tuguu_1285 (1).exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\User\Downloads\mplayer_tuguu_1285 (2).exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\User\Downloads\mplayer_tuguu_1285.exe (PUP.BundleOffers.IIQ) -> Quarantined and deleted successfully.
C:\Users\User\Downloads\Unconfirmed 59966.crdownload (Adware.Agent) -> Quarantined and deleted successfully.

(end)

wealthymike · 2012/09/06

Gmer

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-09-06 12:11:46
Windows 6.1.7600 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1 ST380819AS rev.8.04
Running: gwxbrbxr.exe; Driver: C:\Users\User\AppData\Local\Temp\pxldapow.sys

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwRollbackTransaction + 13E9 8284F599 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 82874092 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}

---- User code sections - GMER 1.0.15 ----

.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[1496] WS2_32.dll!recv 768047DF 6 Bytes JMP 71A00F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[1496] WS2_32.dll!WSALookupServiceNextW 76804C59 6 Bytes JMP 71A90F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[1496] WS2_32.dll!WSALookupServiceEnd 76805198 6 Bytes JMP 71A60F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[1496] WS2_32.dll!WSALookupServiceBeginW 7680561A 6 Bytes JMP 71AF0F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[1496] WS2_32.dll!WSASend 768068A7 6 Bytes JMP 719D0F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[1496] WS2_32.dll!WSARecv 7680C29F 6 Bytes JMP 719A0F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[1496] WS2_32.dll!send 7680C4C8 6 Bytes JMP 71A30F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[1496] WS2_32.dll!WSAGetOverlappedResult 7680E860 6 Bytes JMP 71970F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtCreateFile + 6 777C46B6 4 Bytes [28, 00, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtCreateFile + B 777C46BB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtMapViewOfSection + 6 777C4D16 1 Byte [28]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtMapViewOfSection + 6 777C4D16 4 Bytes [28, 03, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtMapViewOfSection + B 777C4D1B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenFile + 6 777C4DC6 4 Bytes [68, 00, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenFile + B 777C4DCB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenProcess + 6 777C4E76 4 Bytes [A8, 01, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenProcess + B 777C4E7B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenProcessToken + B 777C4E8B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenProcessTokenEx + 6 777C4E96 4 Bytes [A8, 02, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenProcessTokenEx + B 777C4E9B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenThread + 6 777C4EF6 4 Bytes [68, 01, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenThread + B 777C4EFB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenThreadToken + 6 777C4F06 4 Bytes [68, 02, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenThreadToken + B 777C4F0B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtOpenThreadTokenEx + B 777C4F1B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtQueryAttributesFile + 6 777C5026 4 Bytes [A8, 00, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtQueryAttributesFile + B 777C502B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtQueryFullAttributesFile + B 777C50DB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtSetInformationFile + 6 777C5726 4 Bytes [28, 01, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtSetInformationFile + B 777C572B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtSetInformationThread + 6 777C5786 4 Bytes [28, 02, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtSetInformationThread + B 777C578B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtUnmapViewOfSection + 6 777C5AA6 1 Byte [68]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtUnmapViewOfSection + 6 777C5AA6 4 Bytes [68, 03, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] ntdll.dll!NtUnmapViewOfSection + B 777C5AAB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] WS2_32.dll!recv 768047DF 6 Bytes JMP 71A00F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] WS2_32.dll!WSALookupServiceNextW 76804C59 6 Bytes JMP 71A90F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] WS2_32.dll!WSALookupServiceEnd 76805198 6 Bytes JMP 71A60F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] WS2_32.dll!WSALookupServiceBeginW 7680561A 6 Bytes JMP 71AF0F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] WS2_32.dll!WSASend 768068A7 6 Bytes JMP 719D0F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] WS2_32.dll!WSARecv 7680C29F 6 Bytes JMP 719A0F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] WS2_32.dll!send 7680C4C8 6 Bytes JMP 71A30F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[4016] WS2_32.dll!WSAGetOverlappedResult 7680E860 6 Bytes JMP 71970F5A
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtCreateFile + 6 777C46B6 4 Bytes [28, 00, 3C, 00] {SUB [EAX], AL; CMP AL, 0x0}
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtCreateFile + B 777C46BB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtMapViewOfSection + 6 777C4D16 1 Byte [28]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtMapViewOfSection + 6 777C4D16 4 Bytes [28, 03, 3C, 00] {SUB [EBX], AL; CMP AL, 0x0}
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtMapViewOfSection + B 777C4D1B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenFile + 6 777C4DC6 4 Bytes [68, 00, 3C, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenFile + B 777C4DCB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenProcess + 6 777C4E76 4 Bytes [A8, 01, 3C, 00] {TEST AL, 0x1; CMP AL, 0x0}
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenProcess + B 777C4E7B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenProcessToken + B 777C4E8B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenProcessTokenEx + 6 777C4E96 4 Bytes [A8, 02, 3C, 00] {TEST AL, 0x2; CMP AL, 0x0}
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenProcessTokenEx + B 777C4E9B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenThread + 6 777C4EF6 4 Bytes [68, 01, 3C, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenThread + B 777C4EFB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenThreadToken + 6 777C4F06 4 Bytes [68, 02, 3C, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenThreadToken + B 777C4F0B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtOpenThreadTokenEx + B 777C4F1B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtQueryAttributesFile + 6 777C5026 4 Bytes [A8, 00, 3C, 00] {TEST AL, 0x0; CMP AL, 0x0}
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtQueryAttributesFile + B 777C502B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtQueryFullAttributesFile + B 777C50DB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtSetInformationFile + 6 777C5726 4 Bytes [28, 01, 3C, 00] {SUB [ECX], AL; CMP AL, 0x0}
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtSetInformationFile + B 777C572B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtSetInformationThread + 6 777C5786 4 Bytes [28, 02, 3C, 00] {SUB [EDX], AL; CMP AL, 0x0}
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtSetInformationThread + B 777C578B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtUnmapViewOfSection + 6 777C5AA6 1 Byte [68]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtUnmapViewOfSection + 6 777C5AA6 4 Bytes [68, 03, 3C, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[5356] ntdll.dll!NtUnmapViewOfSection + B 777C5AAB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtCreateFile + 6 777C46B6 4 Bytes [28, 00, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtCreateFile + B 777C46BB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtMapViewOfSection + 6 777C4D16 1 Byte [28]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtMapViewOfSection + 6 777C4D16 4 Bytes [28, 03, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtMapViewOfSection + B 777C4D1B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenFile + 6 777C4DC6 4 Bytes [68, 00, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenFile + B 777C4DCB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenProcess + 6 777C4E76 4 Bytes [A8, 01, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenProcess + B 777C4E7B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenProcessToken + B 777C4E8B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenProcessTokenEx + 6 777C4E96 4 Bytes [A8, 02, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenProcessTokenEx + B 777C4E9B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenThread + 6 777C4EF6 4 Bytes [68, 01, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenThread + B 777C4EFB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenThreadToken + 6 777C4F06 4 Bytes [68, 02, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenThreadToken + B 777C4F0B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtOpenThreadTokenEx + B 777C4F1B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtQueryAttributesFile + 6 777C5026 4 Bytes [A8, 00, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtQueryAttributesFile + B 777C502B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtQueryFullAttributesFile + B 777C50DB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtSetInformationFile + 6 777C5726 4 Bytes [28, 01, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtSetInformationFile + B 777C572B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtSetInformationThread + 6 777C5786 4 Bytes [28, 02, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtSetInformationThread + B 777C578B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtUnmapViewOfSection + 6 777C5AA6 1 Byte [68]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtUnmapViewOfSection + 6 777C5AA6 4 Bytes [68, 03, 3D, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6056] ntdll.dll!NtUnmapViewOfSection + B 777C5AAB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtCreateFile + 6 777C46B6 4 Bytes [28, 00, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtCreateFile + B 777C46BB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtMapViewOfSection + 6 777C4D16 1 Byte [28]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtMapViewOfSection + 6 777C4D16 4 Bytes [28, 03, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtMapViewOfSection + B 777C4D1B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenFile + 6 777C4DC6 4 Bytes [68, 00, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenFile + B 777C4DCB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenProcess + 6 777C4E76 4 Bytes [A8, 01, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenProcess + B 777C4E7B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenProcessToken + B 777C4E8B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenProcessTokenEx + 6 777C4E96 4 Bytes [A8, 02, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenProcessTokenEx + B 777C4E9B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenThread + 6 777C4EF6 4 Bytes [68, 01, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenThread + B 777C4EFB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenThreadToken + 6 777C4F06 4 Bytes [68, 02, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenThreadToken + B 777C4F0B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtOpenThreadTokenEx + B 777C4F1B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtQueryAttributesFile + 6 777C5026 4 Bytes [A8, 00, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtQueryAttributesFile + B 777C502B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtQueryFullAttributesFile + B 777C50DB 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtSetInformationFile + 6 777C5726 4 Bytes [28, 01, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtSetInformationFile + B 777C572B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtSetInformationThread + 6 777C5786 4 Bytes [28, 02, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtSetInformationThread + B 777C578B 1 Byte [E2]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtUnmapViewOfSection + 6 777C5AA6 1 Byte [68]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtUnmapViewOfSection + 6 777C5AA6 4 Bytes [68, 03, 17, 00]
.text C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe[6076] ntdll.dll!NtUnmapViewOfSection + B 777C5AAB 1 Byte [E2]

---- Devices - GMER 1.0.15 ----

Device \Driver\ACPI_HAL \Device\00000045 halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----

wealthymike · 2012/09/06

Mbr

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-09-06 12:12:40
-----------------------------
12:12:40.596 OS Version: Windows 6.1.7600
12:12:40.596 Number of processors: 2 586 0x404
12:12:40.601 ComputerName: PC UserName:
12:12:41.972 Initialize success
12:12:58.338 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1
12:12:58.342 Disk 0 Vendor: ST380819AS 8.04 Size: 76293MB BusType: 3
12:12:58.650 Disk 0 MBR read successfully
12:12:58.654 Disk 0 MBR scan
12:12:58.658 Disk 0 Windows 7 default MBR code
12:12:58.728 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
12:12:58.804 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 76191 MB offset 206848
12:12:59.047 Disk 0 scanning sectors +156246016
12:12:59.595 Disk 0 scanning C:\Windows\system32\drivers
12:14:56.116 Service scanning
12:15:07.056 Modules scanning
12:17:23.601 Disk 0 trace - called modules:
12:17:23.689 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS halmacpi.dll intelide.sys PCIIDEX.SYS atapi.sys
12:17:23.696 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85613a58]
12:17:23.706 3 CLASSPNP.SYS[8899d59e] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-1[0x8517d030]
12:17:23.716 Scan finished successfully
12:18:54.566 Disk 0 MBR has been saved successfully to "C:\Users\User\Desktop\MBR.dat "
12:18:54.577 The log file has been saved successfully to "C:\Users\User\Desktop\aswMBR.txt "

wealthymike · 2012/09/06

Dds

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.5.1
Run by User at 19:02:20 on 2012-09-06
Microsoft Windows 7 Enterprise 6.1.7600.0.1252.1.1033.18.2038.1235 [GMT -4:00]
.
AV: Panda Cloud Antivirus *Enabled/Updated* {3456760B-FDAA-FFFD-06C2-7BB528D2066C}
SP: Panda Cloud Antivirus *Enabled/Updated* {8F3797EF-DB90-F073-3C72-40C753554CD1}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Cloud Antivirus Firewall *Disabled* {0C6DF72E-B7C5-FEA5-2D9D-D280D6014117}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filtering.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUAMain.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wuauclt.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
BHO: Panda Security Toolbar: {b821bf60-5c2d-41eb-92dc-3e4ccd3a22e4} - c:\program files\panda security\panda security toolbar\PandaSecurityDx.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
TB: Panda Security Toolbar: {b821bf60-5c2d-41eb-92dc-3e4ccd3a22e4} - c:\program files\panda security\panda security toolbar\PandaSecurityDx.dll
uRun: [Google Update] "c:\users\user\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [ApplePhotoStreams] c:\program files\common files\apple\internet services\ApplePhotoStreams.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [Panda Security URL Filtering] "c:\programdata\panda security url filtering\Panda_URL_Filtering.exe "
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe "
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe "
mRun: [PSUAMain] "c:\program files\panda security\panda cloud antivirus\PSUAMain.exe" /LaunchSysTray
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
dRunOnce: [panda2_0dn] reg.exe delete "HKCU\Software\AppDataLow\Software\panda2_0dn" /f
dRunOnce: [panda2_0dn_XP] reg.exe delete "HKCU\Software\panda2_0dn" /f
StartupFolder: c:\users\user\appdata\roaming\micros~1\windows\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{043AD6A9-35BA-4818-8173-E8106DD49C86} : DhcpNameServer = 192.168.1.1
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\user\appdata\roaming\mozilla\firefox\profiles\wy7hkwyg.default\
FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\users\user\appdata\local\google\update\1.3.21.99\npGoogleUpdate3.dll
.
============= SERVICES / DRIVERS ===============
.
R1 NNSALPC;NNSALPC;c:\windows\system32\drivers\NNSAlpc.sys [2012-6-27 82472]
R1 NNSHTTP;NNSHTTP;c:\windows\system32\drivers\NNSHttp.sys [2012-6-27 120744]
R1 NNSIDS;NNSIDS;c:\windows\system32\drivers\NNSIds.sys [2012-6-27 122664]
R1 NNSPICC;NNSPICC;c:\windows\system32\drivers\NNSpicc.sys [2012-6-27 93992]
R1 NNSPOP3;NNSPOP3;c:\windows\system32\drivers\NNSPop3.sys [2012-6-27 104104]
R1 NNSPROT;NNSPROT;c:\windows\system32\drivers\NNSProt.sys [2012-6-27 286376]
R1 NNSPRV;NNSPRV;c:\windows\system32\drivers\NNSPrv.sys [2012-6-27 153000]
R1 NNSSMTP;NNSSMTP;c:\windows\system32\drivers\NNSSmtp.sys [2012-6-27 106536]
R1 NNSSTRM;NNSSTRM;c:\windows\system32\drivers\NNSStrm.sys [2012-7-12 206632]
R1 NNSTLSC;NNSTLSC;c:\windows\system32\drivers\NNStlsc.sys [2012-6-27 92840]
R1 PSINKNC;PSINKNC;c:\windows\system32\drivers\PSINKNC.sys [2012-7-13 174632]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-9-6 655944]
R2 NanoServiceMain;Panda Cloud Antivirus Service;c:\program files\panda security\panda cloud antivirus\PSANHost.exe [2012-7-13 140064]
R2 PSINAflt;PSINAflt;c:\windows\system32\drivers\PSINAflt.sys [2012-7-13 148520]
R2 PSINFile;PSINFile;c:\windows\system32\drivers\PSINFile.sys [2012-7-13 103464]
R2 PSINProc;PSINProc;c:\windows\system32\drivers\PSINProc.sys [2012-7-13 114216]
R2 PSINProt;PSINProt;c:\windows\system32\drivers\PSINProt.sys [2012-7-13 120872]
R2 PSUAService;Panda Product Service;c:\program files\panda security\panda cloud antivirus\PSUAService.exe [2012-7-13 36640]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-9-6 22344]
S1 NNSNAHSL;Network Activity Hook Server LightWeight Filter Driver;c:\windows\system32\drivers\NNSNAHSL.sys [2012-6-27 28712]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-11-19 1343400]
S4 NNSPIHSW;NNSPIHSW;c:\windows\system32\drivers\NNSPihsw.sys [2012-6-27 60968]
.
=============== Created Last 30 ================
.
2012-09-06 20:37:08 46280 ----a-w- c:\windows\system32\drivers\PSKMAD.sys
2012-09-06 16:35:46 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{36c37bc1-2c6c-48c5-8a4a-c51af0fe336b}\offreg.dll
2012-09-06 15:29:23 -------- d-----w- c:\users\user\appdata\roaming\Malwarebytes
2012-09-06 15:29:14 -------- d-----w- c:\programdata\Malwarebytes
2012-09-06 15:29:13 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-06 15:29:13 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-09-06 14:56:57 7022536 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{36c37bc1-2c6c-48c5-8a4a-c51af0fe336b}\mpengine.dll
2012-08-27 14:52:44 -------- d-----w- c:\program files\VideoLAN
2012-08-27 14:30:08 -------- d-----w- c:\users\user\appdata\roaming\OpenOffice.org
2012-08-27 14:23:42 -------- d-----w- c:\program files\OpenOffice.org 3
2012-08-16 07:01:01 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-16 07:01:00 194560 ----a-w- c:\program files\internet explorer\ieproxy.dll
2012-08-16 07:01:00 194048 ----a-w- c:\program files\internet explorer\IEShims.dll
2012-08-16 07:01:00 140920 ----a-w- c:\program files\internet explorer\sqmapi.dll
2012-08-15 13:50:58 400896 ----a-w- c:\windows\system32\srcore.dll
2012-08-15 13:50:55 2344448 ----a-w- c:\windows\system32\win32k.sys
2012-08-15 13:50:52 492032 ----a-w- c:\windows\system32\win32spl.dll
2012-08-15 13:50:52 316928 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-15 13:50:46 41472 ----a-w- c:\windows\system32\browcli.dll
2012-08-15 13:50:46 102912 ----a-w- c:\windows\system32\browser.dll
2012-08-15 13:50:45 768512 ----a-w- c:\windows\system32\localspl.dll
.
==================== Find3M ====================
.
2012-07-13 11:02:16 174632 ----a-w- c:\windows\system32\drivers\PSINKNC.sys
2012-07-13 11:02:16 120872 ----a-w- c:\windows\system32\drivers\PSINProt.sys
2012-07-13 11:02:16 114216 ----a-w- c:\windows\system32\drivers\PSINProc.sys
2012-07-13 11:02:15 148520 ----a-w- c:\windows\system32\drivers\PSINAflt.sys
2012-07-13 11:02:15 103464 ----a-w- c:\windows\system32\drivers\PSINFile.sys
2012-07-12 15:18:32 206632 ----a-w- c:\windows\system32\drivers\NNSStrm.sys
2012-07-06 02:06:30 772544 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-07-06 02:06:20 687544 ----a-w- c:\windows\system32\deployJava1.dll
2012-06-29 00:16:58 1800704 ----a-w- c:\windows\system32\jscript9.dll
2012-06-29 00:09:01 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-06-29 00:08:59 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2012-06-29 00:04:43 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-06-27 19:51:07 92840 ----a-w- c:\windows\system32\drivers\NNStlsc.sys
2012-06-27 19:51:06 286376 ----a-w- c:\windows\system32\drivers\NNSProt.sys
2012-06-27 19:51:06 153000 ----a-w- c:\windows\system32\drivers\NNSPrv.sys
2012-06-27 19:51:06 106536 ----a-w- c:\windows\system32\drivers\NNSSmtp.sys
2012-06-27 19:51:05 60968 ----a-w- c:\windows\system32\drivers\NNSPihsw.sys
2012-06-27 19:51:05 104104 ----a-w- c:\windows\system32\drivers\NNSPop3.sys
2012-06-27 19:51:04 93992 ----a-w- c:\windows\system32\drivers\NNSpicc.sys
2012-06-27 19:51:04 28712 ----a-w- c:\windows\system32\drivers\NNSNAHSL.sys
2012-06-27 19:51:04 122664 ----a-w- c:\windows\system32\drivers\NNSIds.sys
2012-06-27 19:51:03 82472 ----a-w- c:\windows\system32\drivers\NNSAlpc.sys
2012-06-27 19:51:03 120744 ----a-w- c:\windows\system32\drivers\NNSHttp.sys
.
============= FINISH: 19:03:29.85 ===============

wealthymike · 2012/09/06

DDS Attach

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Enterprise
Boot Device: \Device\HarddiskVolume1
Install Date: 11/1/2011 12:59:00 PM
System Uptime: 9/6/2012 5:27:58 PM (2 hours ago)
.
Motherboard: Dell Inc. | | 0KH290
Processor: Intel(R) Pentium(R) D CPU 2.80GHz | Microprocessor | 2793/800mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 74 GiB total, 43.227 GiB free.
D: is CDROM (UDF)
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP114: 8/27/2012 10:23:11 AM - Installed OpenOffice.org 3.4.1
RP115: 8/28/2012 11:47:32 PM - Windows Update
RP116: 9/4/2012 12:16:32 PM - Windows Update
.
==== Installed Programs ======================
.
µTorrent
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Bonjour
DivX Setup
Foxit Reader 5.1
gedit 2.30.1
Google App Engine
Google Chrome
iCloud
Intel(R) Graphics Media Accelerator Driver
iTunes
Java Auto Updater
Java DB 10.6.2.1
Java(TM) 7 Update 5
Java(TM) SE Development Kit 6 Update 27
JavaFX 2.1.1
Malwarebytes Anti-Malware version 1.62.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MobileMe Control Panel
Mozilla Firefox 11.0 (x86 en-US)
OpenOffice.org 3.4.1
Panda Cloud Antivirus
Panda Security Toolbar
Panda Security URL Filtering
Python 2.7.2
QuickTime
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Tango
Toolbar Cleaner 1.0
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
VC80CRTRedist - 8.0.50727.6195
VLC media player 2.0.3
WinRAR 4.11 (32-bit)
wxPython 2.8.12.1 (unicode) for Python 2.7
.
==== Event Viewer Messages From Past Week ========
.
9/6/2012 4:36:47 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000007f (0x0000000f, 0xb22eca28, 0x00000000, 0x00000000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 090612-31933-01.
9/5/2012 7:22:52 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
9/5/2012 7:22:21 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR15.
9/5/2012 7:21:47 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanmanServer service.
9/5/2012 6:19:32 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
8/31/2012 8:30:58 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
.
==== End Of File ===========================

wealthymike · 2012/09/06

Thank you to anyone that helps. I really appreciate it.

broni · 2012/09/07

Unfortunately you have a history of abandoning topics in the middle of the cleaning process: http://www.windowsbbs.com/search.php?searchid=837
It happened more than twice in the past.
Since I dedicate my free time to help people like you, your behavior is very disrespectful.
I'm not planning on wasting my time on cases like this.
Said that you're not eligible to receive any more help in malware removal forum.

This topic is closed.

Log in or Sign up

[Closed - banned] PC Acting Slower Than Usual

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

broni Moderator Malware Analyst

Share This Page

Log in or Sign up

[Closed - banned] PC Acting Slower Than Usual

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

wealthymike Inactive Thread Starter

broni Moderator Malware Analyst

Share This Page

Useful Searches