Sharky420
Posts: 18 +0
After following those instructions: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/ these are my results
MBAM Application logs:
Files: 24
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, Delete-on-Reboot, [221671815e2b082ed160beb8c23f38c8],
PUP.Optional.WindowsProtectManger.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, Delete-on-Reboot, [66d21fd3e9a0a096430d11b122dfd030],
Virus.Ramnit, C:\Program Files\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe, Delete-on-Reboot, [e94fa151721769cdd694e2b5a0605ba5],
Virus.Ramnit, C:\Users\Intel\Desktop\pbsetup.exe, Quarantined, [fa3e7181aedbe5512745d8bf3dc36b95],
Malware.Packer, C:\Program Files\Microsoft\DesktopLayer.exe, Delete-on-Reboot, [8cac25cd355475c10b95571442be7e82],
PUP.Optional.Somoto.A, C:\Users\Intel\AppData\Local\Temp\nsr8E2F.tmp, Quarantined, [ce6a4ba78ffaaf8703e9581578892dd3],
PUP.Optional.BPlug, C:\Users\Intel\AppData\Local\Temp\EEA2.tmp, Quarantined, [0632e1113d4c1c1ac69e7258c43d659b],
Spyware.OnlineGames, C:\Users\Intel\AppData\Local\Temp\CF74.tmp, Quarantined, [93a523cf65243afc4a211d432ad67f81],
PUP.Optional.Bundle, C:\Users\Intel\AppData\Local\Temp\smt_omiga-plus.exe, Quarantined, [8dab19d9098085b16e0405e76e9308f8],
PUP.Optional.Softonic, C:\Users\Intel\AppData\Local\Temp\247B.tmp, Quarantined, [1127688aa7e284b22689a7b3af5143bd],
Spyware.OnlineGames, C:\Users\Intel\AppData\Local\Temp\34AD.tmp, Quarantined, [ca6e5f93aadff73faac195cb1ce42ad6],
Spyware.OnlineGames, C:\Users\Intel\AppData\Local\Temp\5068.tmp, Quarantined, [162201f13950fe38d59600606799a759],
Spyware.OnlineGames, C:\Users\Intel\AppData\Local\Temp\6A5F.tmp, Quarantined, [0830945ea2e76acc88e3e27e7a864cb4],
PUP.Optional.Somoto, C:\Users\Intel\AppData\Local\Temp\bitool.dll, Quarantined, [003816dc3a4ffd39ce1ec2e13ec48878],
PUP.Optional.OpenCandy, C:\Users\Intel\Downloads\DTLite4491-0356 (1).exe, Quarantined, [9d9b2bc71376d95d112604a7b154b54b],
PUP.Optional.OpenCandy, C:\Users\Intel\Downloads\DTLite4491-0356.exe, Quarantined, [49efba38ec9d5dd958df7536ff0625db],
PUP.Optional.Softonic, C:\Users\Intel\Downloads\SoftonicDownloader_for_hamachi.exe, Quarantined, [db5de909563387afa8072e2c38c87d83],
PUP.Optional.Softonic, C:\Users\Intel\Downloads\SoftonicDownloader_for_painttool-sai.exe, Quarantined, [2216fff398f160d6e7c895c5a25e3ac6],
Virus.Ramnit, C:\Users\Intel\Downloads\Need For Speed World Hack.exe, Quarantined, [e553d41e404973c3c7a3098e5da314ec],
PUP.Optional.Goobzo, C:\Users\Intel\AppData\Local\Installer\Install_24987\setup.exe, Quarantined, [84b4549e2e5baf8713733a35669f758b],
PUP.Optional.OmigaPlus.A, C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_isearch.omiga-plus.com_0.localstorage-journal, Quarantined, [ce6a787a8bfe2f072499b9ac887b9c64],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{21b5abe9-a6e9-4a3b-ae74-84488fe21796}Gw.sys, Quarantined, [b1874fa362273df9857c69134fb4966a],
Malware.Trace.E, C:\Users\Intel\AppData\Roaming\die.bat, Quarantined, [0c2cd81a17721323ace06e76798ba759],
PUP.Optional.OmigaPlus.A, C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://isearch.omiga-plus.com/?type...d=WDCXWD5000AAKX-00ERMA0_WD-WCC2E014125341253" ],), Replaced,[2c0c945e2762ac8a9ceef8c859acbf41]
Physical Sectors: 0
(No malicious items detected)
(end)
DDS:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.17496 BrowserJavaVersion: 10.67.2
Run by Intel at 22:11:51 on 2015-01-01
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3583.1448 [GMT 2:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\FsUsbExService.Exe
C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\PnkBstrA.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Program Files\Tablet\Pen\WacomHost.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\conhost.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Bamboo Dock\BambooCore.exe
C:\Users\Intel\AppData\Local\Akamai\netsession_win.exe
C:\Users\Intel\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
D:\Steam\Steam.exe
D:\Steam\bin\steamwebhelper.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Steam\bin\steamwebhelper.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uDefault_Page_URL = about:blank
mStart Page = about:blank
mSearch Page = www.google.com
mDefault_Page_URL = about:blank
mDefault_Search_URL = www.google.com
mSearchAssistant = hxxp://www.bing.com/search?q={searchTerms}
mCustomizeSearch = hxxp://www.bing.com/search?q={searchTerms}
mWinlogon: Userinit = userinit.exe,,c:\program files\microsoft\desktoplayer.exe
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
EB: <No Name>: {555D4D79-4BD2-4094-A395-CFC534424A05} - LocalServer32 - <no file>
uRun: [Akamai NetSession Interface] "c:\users\intel\appdata\local\akamai\netsession_win.exe"
uRun: [Steam] "d:\steam\steam.exe" -silent
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
mRun: [NvBackend] "c:\program files\nvidia corporation\update core\NvBackend.exe"
mRun: [ShadowPlay] c:\windows\system32\rundll32.exe c:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [BambooCore] c:\program files\bamboo dock\BambooCore.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: Interfaces\{5EA53AAB-B393-4484-95FF-FC8FD7F26E7E} : NameServer = 193.231.252.1 213.154.124.1
AppInit_DLLs= Û
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\35.0.1916.153\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2014-12-2 243128]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2013-2-25 233472]
R2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\nvidia corporation\geforce experience service\GfExperienceService.exe [2014-9-22 915600]
R2 NvNetworkService;NVIDIA Network Service;c:\program files\nvidia corporation\netservice\NvNetworkService.exe [2014-8-28 1701520]
R2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe [2014-8-28 18186896]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2014-12-23 410768]
R2 TeamViewer9;TeamViewer 9;c:\program files\teamviewer\version9\TeamViewer_Service.exe [2014-8-28 5052224]
R2 WTabletServiceCon;Wacom Consumer Service;c:\program files\tablet\pen\WTabletServiceCon.exe [2014-11-28 567064]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2013-2-25 36608]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-8-25 114904]
R3 NvStreamKms;NvStreamKms;c:\program files\nvidia corporation\nvstreamsrv\NvStreamKms.sys [2014-8-28 18576]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-12-16 32912]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S3 apf003;apf003;c:\windows\system32\apf003.sys [2013-6-19 13232]
S3 apf005;apf005;c:\windows\system32\apf005.sys [2014-6-14 14160]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 62464]
S3 hidkmdf;KMDF Driver;c:\windows\system32\drivers\hidkmdf.sys [2014-11-28 12088]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-12-10 102912]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2009-9-19 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2009-9-19 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2009-9-19 123648]
S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 WacHidRouter;Wacom Hid Router;c:\windows\system32\drivers\wachidrouter.sys [2014-11-28 85304]
S3 wacomrouterfilter;Wacom Router Filter Driver;c:\windows\system32\drivers\wacomrouterfilter.sys [2014-11-28 13112]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2012-10-15 1343400]
.
=============== Created Last 30 ================
.
2014-12-30 07:00:07 9054624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{8d07bd7e-7fb0-47a3-98d2-041150bb2f04}\mpengine.dll
2014-12-23 21:58:07 620176 ----a-w- c:\windows\system32\nvStreaming.exe
2014-12-19 09:18:32 -------- d-sh--w- c:\users\intel\appdata\local\EmieBrowserModeList
2014-12-18 23:25:41 139648 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-12-18 23:25:27 282296 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-12-18 23:25:25 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2014-12-18 08:47:09 115712 ----a-w- c:\windows\system32\ieUnatt.exe
2014-12-16 19:33:24 32912 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2014-12-16 09:48:22 -------- d-----w- c:\users\intel\appdata\roaming\Prototype
2014-12-16 09:09:28 -------- d--h--w- c:\windows\PIF
2014-12-14 12:31:44 811008 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iKernel.dll
2014-12-14 12:31:44 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\ctor.dll
2014-12-14 12:31:44 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\DotNetInstaller.exe
2014-12-14 12:31:44 335872 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iscript.dll
2014-12-14 12:31:44 241664 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iuser.dll
2014-12-14 12:31:43 192644 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iGdi.dll
2014-12-14 12:31:42 323716 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\setup.dll
2014-12-13 11:36:17 -------- d-----w- c:\users\intel\appdata\roaming\Solvusoft
2014-12-13 11:23:26 270952 ----a-w- c:\windows\system32\libcurl.dll
2014-12-13 11:23:02 17840 ----a-w- c:\windows\system32\roboot.exe
2014-12-10 19:29:43 906440 ----a-w- c:\windows\system32\nvdispgenco3234475.dll
2014-12-10 19:29:42 1042064 ----a-w- c:\windows\system32\nvdispco3234475.dll
2014-12-10 13:04:43 -------- d-----w- c:\windows\AppCompat
2014-12-10 13:04:42 -------- d-----w- c:\windows\system32\appraiser
2014-12-10 10:55:50 3209728 ----a-w- c:\windows\system32\mf.dll
2014-12-05 21:38:17 -------- d-----w- c:\users\intel\appdata\local\NFS Underground 2
2014-12-02 21:01:07 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-12-02 21:01:02 -------- d-----w- c:\program files\DAEMON Tools Lite
.
==================== Find3M ====================
.
2015-01-01 20:09:26 114904 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-19 13:06:19 282296 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-12-19 13:06:19 282296 ----a-w- c:\windows\system32\PnkBstrB.ex0
2014-12-18 23:25:41 138056 ----a-w- c:\users\intel\appdata\roaming\PnkBstrK.sys
2014-12-13 07:30:19 4403016 ----a-w- c:\windows\system32\nvcpl.dll
2014-12-13 07:30:19 3056784 ----a-w- c:\windows\system32\nvsvc.dll
2014-12-13 07:30:17 669840 ----a-w- c:\windows\system32\nvvsvc.exe
2014-12-13 07:30:17 62784 ----a-w- c:\windows\system32\nvshext.dll
2014-12-13 07:30:17 375112 ----a-w- c:\windows\system32\nvmctray.dll
2014-12-13 07:30:17 2554000 ----a-w- c:\windows\system32\nvsvcr.dll
2014-12-13 00:12:24 2210040 ----a-w- c:\windows\system32\nvspcap.dll
2014-12-13 00:12:24 1291464 ----a-w- c:\windows\system32\nvspbridge.dll
2014-12-11 12:49:36 4151176 ----a-w- c:\windows\system32\nvcoproc.bin
2014-12-04 04:38:59 337920 ----a-w- c:\windows\system32\generaltel.dll
2014-12-04 04:38:45 610304 ----a-w- c:\windows\system32\invagent.dll
2014-12-04 04:38:40 315392 ----a-w- c:\windows\system32\devinv.dll
2014-12-04 04:38:37 728576 ----a-w- c:\windows\system32\appraiser.dll
2014-12-04 04:38:36 202752 ----a-w- c:\windows\system32\aepdu.dll
2014-12-04 04:38:36 159744 ----a-w- c:\windows\system32\aepic.dll
2014-12-04 04:34:13 873984 ----a-w- c:\windows\system32\aeinv.dll
2014-12-01 23:28:26 1160872 ----a-w- c:\windows\system32\aitstatic.exe
2014-12-01 14:26:28 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2014-12-01 14:11:06 86016 ----a-w- c:\windows\system32\OpenAL32.dll
2014-11-24 12:04:58 229000 ------w- c:\windows\system32\MpSigStub.exe
2014-11-22 10:46:30 32400 ----a-w- c:\windows\system32\nvaudcap32v.dll
2014-11-22 02:20:44 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-11-22 02:20:30 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-11-22 02:07:43 501248 ----a-w- c:\windows\system32\vbscript.dll
2014-11-22 02:07:17 62464 ----a-w- c:\windows\system32\iesetup.dll
2014-11-22 02:06:32 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-11-22 02:05:02 64000 ----a-w- c:\windows\system32\MshtmlDac.dll
2014-11-22 01:55:14 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-11-22 01:54:30 620032 ----a-w- c:\windows\system32\jscript9diag.dll
2014-11-22 01:48:26 667648 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-11-22 01:40:04 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2014-11-22 01:29:26 4299264 ----a-w- c:\windows\system32\jscript9.dll
2014-11-22 01:22:49 2052096 ----a-w- c:\windows\system32\inetcpl.cpl
2014-11-22 01:21:57 1155072 ----a-w- c:\windows\system32\mshtmlmedia.dll
2014-11-22 01:00:20 1888256 ----a-w- c:\windows\system32\wininet.dll
2014-11-21 04:14:20 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-11-21 04:14:10 75480 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-11-21 04:14:06 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-11-18 12:56:48 1202848 ----a-w- c:\windows\system32\FM20.DLL
2014-11-11 02:44:45 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-11-11 02:44:32 186880 ----a-w- c:\windows\system32\pku2u.dll
2014-11-11 02:44:25 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-11-11 01:32:14 74752 ----a-w- c:\windows\system32\drivers\tdx.sys
2014-11-08 02:45:09 2048 ----a-w- c:\windows\system32\tzres.dll
2014-11-06 21:00:51 906048 ----a-w- c:\windows\system32\nvhdagenco3220103.dll
2014-11-04 00:05:30 907592 ----a-w- c:\windows\system32\nvdispgenco3234465.dll
2014-11-04 00:05:30 1043264 ----a-w- c:\windows\system32\nvdispco3234465.dll
2014-10-30 04:49:27 908608 ----a-w- c:\windows\system32\nvdispgenco3234460.dll
2014-10-30 04:49:27 1043264 ----a-w- c:\windows\system32\nvdispco3234460.dll
2014-10-30 01:45:43 155136 ----a-w- c:\windows\system32\charmap.exe
2014-10-25 01:32:37 67584 ----a-w- c:\windows\system32\packager.dll
2014-10-18 01:33:18 571904 ----a-w- c:\windows\system32\oleaut32.dll
2014-10-16 16:38:21 906440 ----a-w- c:\windows\system32\nvdispgenco3234448.dll
2014-10-16 16:38:21 1041096 ----a-w- c:\windows\system32\nvdispco3234448.dll
2014-10-14 01:56:19 136632 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-10-14 01:50:50 523776 ----a-w- c:\windows\system32\termsrv.dll
2014-10-14 01:50:41 2363904 ----a-w- c:\windows\system32\msi.dll
2014-10-14 01:50:39 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-10-14 01:47:30 146432 ----a-w- c:\windows\system32\msaudite.dll
2014-10-14 01:46:02 681984 ----a-w- c:\windows\system32\adtschema.dll
2014-10-10 00:45:54 2379264 ----a-w- c:\windows\system32\win32k.sys
2014-10-09 17:02:43 27280 ----a-w- c:\windows\system32\nvhdap32.dll
2014-10-09 17:02:40 161424 ----a-w- c:\windows\system32\drivers\nvhda32v.sys
2014-10-09 07:17:51 908608 ----a-w- c:\windows\system32\nvhdagenco32.dll
2010-08-03 08:11:16 819200 --sha-w- c:\windows\system32\xvidcore.dll
2010-08-03 08:11:16 180224 --sha-w- c:\windows\system32\xvidvfw.dll
.
============= FINISH: 22:14:01.35 ===============
Attach:
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 10/15/2012 12:00:18 PM
System Uptime: 1/1/2015 10:07:51 PM (0 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | P5KPL-AM EPU
Processor: Pentium(R) Dual-Core CPU E5300 @ 2.60GHz | Socket 775 | 2600/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 98 GiB total, 38.553 GiB free.
D: is FIXED (NTFS) - 368 GiB total, 141.521 GiB free.
E: is CDROM ()
F: is CDROM (UDF)
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft Teredo Tunneling Adapter
Device ID: ROOT\*TEREDO\0000
Manufacturer: Microsoft
Name: Teredo Tunneling Pseudo-Interface
PNP Device ID: ROOT\*TEREDO\0000
Service: tunnel
.
==== System Restore Points ===================
.
RP443: 12/23/2014 10:03:23 AM - Windows Update
RP444: 12/30/2014 8:59:18 AM - Windows Update
RP445: 12/30/2014 11:06:07 PM - Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
RP446: 12/31/2014 12:08:48 AM - Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
.
==== Installed Programs ======================
.
µTorrent
32 Bit HP CIO Components Installer
4StoryEG
Adobe AIR
Adobe Flash Player 14 ActiveX
Adobe Flash Player 14 Plugin
Adobe Shockwave Player 12.1
Akamai NetSession Interface
Bamboo Dock
Battlefield Heroes
BufferChm
Burnout(TM) Paradise The Ultimate Box
Chibi Kart
Cry of Fear
DAEMON Tools Lite
DJ_AIO_06_F2400_SW_Min
Dota 2
Drift City
F2400
Far Cry 3
Five Nights at Freddy's
Google Chrome
Grand Theft Auto IV
GTA San Andreas
Hazard Ops
HP Update
HPPhotoGadget
hpWLPGInstaller
Java Auto Updater
Left 4 Dead
Left 4 Dead 2
Malwarebytes Anti-Malware version 2.0.4.1028
MathType 6
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 (español)
Microsoft ASP.NET MVC 4 Runtime
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Professional Plus 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Moonbase Alpha
MSXML 4.0 SP2 Parser and SDK
Need for Speed Most Wanted
Need for Speed Underground 2
Need For Speed™ World
NVIDIA 3D Vision Controller Driver 347.09
NVIDIA 3D Vision Driver 347.09
NVIDIA Control Panel 347.09
NVIDIA GeForce Experience 2.1.5
NVIDIA GeForce Experience Service
NVIDIA Graphics Driver 347.09
NVIDIA HD Audio Driver 1.3.33.0
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX
NVIDIA PhysX System Software 9.14.0702
NVIDIA ShadowPlay 16.18.9
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 16.18.9
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.27
Off-Road Drive
OGPlanet Game Launcher
PlanetSide 2
Portal 2
Prototype(TM)
PunkBuster Services
Rapture3D 2.4.11 Game
Rising Storm/Red Orchestra 2 Multiplayer
Rockstar Games Social Club
Saints Row The Third
SAMSUNG Mobile Composite Device Software
Samsung Mobile Modem Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Drive Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung New PC Studio
SAMSUNG USB Mobile Device Software
Scan
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596927) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920790) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920792) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2984942) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2920793) 32-Bit Edition
SHIELD Streaming
SHIELD Wireless Controller Driver
Spiral Knights
SPORE™
Star Sword
Steam
Stubbs The Zombie
StubbsPatchInstaller
swMSM
Tales Runner version 1.2
Team Fortress 2
TeamSpeak 3 Client
TeamViewer 9
Toolbox
Unturned
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2920789) 32-Bit Edition
Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition
Wacom
WebReg
WebTablet FB Plugin 32 bit
WinRAR 5.01 (32-bit)
.
==== Event Viewer Messages From Past Week ========
.
12/31/2014 10:02:05 AM, Error: Service Control Manager [7034] - The PnkBstrA service terminated unexpectedly. It has done this 1 time(s).
1/1/2015 12:55:32 PM, Error: Microsoft-Windows-DistributedCOM [10001] - Unable to start a DCOM Server: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} as /. The error: "5" Happened while starting this command: C:\Windows\System32\slui.exe -Embedding
1/1/2015 12:06:53 PM, Error: Service Control Manager [7000] - The Update SourceApp service failed to start due to the following error: The system cannot find the file specified.
.
==== End Of File ===========================
MBAM Application logs:
Files: 24
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, Delete-on-Reboot, [221671815e2b082ed160beb8c23f38c8],
PUP.Optional.WindowsProtectManger.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, Delete-on-Reboot, [66d21fd3e9a0a096430d11b122dfd030],
Virus.Ramnit, C:\Program Files\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe, Delete-on-Reboot, [e94fa151721769cdd694e2b5a0605ba5],
Virus.Ramnit, C:\Users\Intel\Desktop\pbsetup.exe, Quarantined, [fa3e7181aedbe5512745d8bf3dc36b95],
Malware.Packer, C:\Program Files\Microsoft\DesktopLayer.exe, Delete-on-Reboot, [8cac25cd355475c10b95571442be7e82],
PUP.Optional.Somoto.A, C:\Users\Intel\AppData\Local\Temp\nsr8E2F.tmp, Quarantined, [ce6a4ba78ffaaf8703e9581578892dd3],
PUP.Optional.BPlug, C:\Users\Intel\AppData\Local\Temp\EEA2.tmp, Quarantined, [0632e1113d4c1c1ac69e7258c43d659b],
Spyware.OnlineGames, C:\Users\Intel\AppData\Local\Temp\CF74.tmp, Quarantined, [93a523cf65243afc4a211d432ad67f81],
PUP.Optional.Bundle, C:\Users\Intel\AppData\Local\Temp\smt_omiga-plus.exe, Quarantined, [8dab19d9098085b16e0405e76e9308f8],
PUP.Optional.Softonic, C:\Users\Intel\AppData\Local\Temp\247B.tmp, Quarantined, [1127688aa7e284b22689a7b3af5143bd],
Spyware.OnlineGames, C:\Users\Intel\AppData\Local\Temp\34AD.tmp, Quarantined, [ca6e5f93aadff73faac195cb1ce42ad6],
Spyware.OnlineGames, C:\Users\Intel\AppData\Local\Temp\5068.tmp, Quarantined, [162201f13950fe38d59600606799a759],
Spyware.OnlineGames, C:\Users\Intel\AppData\Local\Temp\6A5F.tmp, Quarantined, [0830945ea2e76acc88e3e27e7a864cb4],
PUP.Optional.Somoto, C:\Users\Intel\AppData\Local\Temp\bitool.dll, Quarantined, [003816dc3a4ffd39ce1ec2e13ec48878],
PUP.Optional.OpenCandy, C:\Users\Intel\Downloads\DTLite4491-0356 (1).exe, Quarantined, [9d9b2bc71376d95d112604a7b154b54b],
PUP.Optional.OpenCandy, C:\Users\Intel\Downloads\DTLite4491-0356.exe, Quarantined, [49efba38ec9d5dd958df7536ff0625db],
PUP.Optional.Softonic, C:\Users\Intel\Downloads\SoftonicDownloader_for_hamachi.exe, Quarantined, [db5de909563387afa8072e2c38c87d83],
PUP.Optional.Softonic, C:\Users\Intel\Downloads\SoftonicDownloader_for_painttool-sai.exe, Quarantined, [2216fff398f160d6e7c895c5a25e3ac6],
Virus.Ramnit, C:\Users\Intel\Downloads\Need For Speed World Hack.exe, Quarantined, [e553d41e404973c3c7a3098e5da314ec],
PUP.Optional.Goobzo, C:\Users\Intel\AppData\Local\Installer\Install_24987\setup.exe, Quarantined, [84b4549e2e5baf8713733a35669f758b],
PUP.Optional.OmigaPlus.A, C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_isearch.omiga-plus.com_0.localstorage-journal, Quarantined, [ce6a787a8bfe2f072499b9ac887b9c64],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{21b5abe9-a6e9-4a3b-ae74-84488fe21796}Gw.sys, Quarantined, [b1874fa362273df9857c69134fb4966a],
Malware.Trace.E, C:\Users\Intel\AppData\Roaming\die.bat, Quarantined, [0c2cd81a17721323ace06e76798ba759],
PUP.Optional.OmigaPlus.A, C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://isearch.omiga-plus.com/?type...d=WDCXWD5000AAKX-00ERMA0_WD-WCC2E014125341253" ],), Replaced,[2c0c945e2762ac8a9ceef8c859acbf41]
Physical Sectors: 0
(No malicious items detected)
(end)
DDS:
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.17496 BrowserJavaVersion: 10.67.2
Run by Intel at 22:11:51 on 2015-01-01
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3583.1448 [GMT 2:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\FsUsbExService.Exe
C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\PnkBstrA.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Program Files\Tablet\Pen\WacomHost.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\conhost.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Bamboo Dock\BambooCore.exe
C:\Users\Intel\AppData\Local\Akamai\netsession_win.exe
C:\Users\Intel\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
D:\Steam\Steam.exe
D:\Steam\bin\steamwebhelper.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Steam\bin\steamwebhelper.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uDefault_Page_URL = about:blank
mStart Page = about:blank
mSearch Page = www.google.com
mDefault_Page_URL = about:blank
mDefault_Search_URL = www.google.com
mSearchAssistant = hxxp://www.bing.com/search?q={searchTerms}
mCustomizeSearch = hxxp://www.bing.com/search?q={searchTerms}
mWinlogon: Userinit = userinit.exe,,c:\program files\microsoft\desktoplayer.exe
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
EB: <No Name>: {555D4D79-4BD2-4094-A395-CFC534424A05} - LocalServer32 - <no file>
uRun: [Akamai NetSession Interface] "c:\users\intel\appdata\local\akamai\netsession_win.exe"
uRun: [Steam] "d:\steam\steam.exe" -silent
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
mRun: [NvBackend] "c:\program files\nvidia corporation\update core\NvBackend.exe"
mRun: [ShadowPlay] c:\windows\system32\rundll32.exe c:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [BambooCore] c:\program files\bamboo dock\BambooCore.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: Interfaces\{5EA53AAB-B393-4484-95FF-FC8FD7F26E7E} : NameServer = 193.231.252.1 213.154.124.1
AppInit_DLLs= Û
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\35.0.1916.153\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2014-12-2 243128]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2013-2-25 233472]
R2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\nvidia corporation\geforce experience service\GfExperienceService.exe [2014-9-22 915600]
R2 NvNetworkService;NVIDIA Network Service;c:\program files\nvidia corporation\netservice\NvNetworkService.exe [2014-8-28 1701520]
R2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe [2014-8-28 18186896]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2014-12-23 410768]
R2 TeamViewer9;TeamViewer 9;c:\program files\teamviewer\version9\TeamViewer_Service.exe [2014-8-28 5052224]
R2 WTabletServiceCon;Wacom Consumer Service;c:\program files\tablet\pen\WTabletServiceCon.exe [2014-11-28 567064]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2013-2-25 36608]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-8-25 114904]
R3 NvStreamKms;NvStreamKms;c:\program files\nvidia corporation\nvstreamsrv\NvStreamKms.sys [2014-8-28 18576]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-12-16 32912]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S3 apf003;apf003;c:\windows\system32\apf003.sys [2013-6-19 13232]
S3 apf005;apf005;c:\windows\system32\apf005.sys [2014-6-14 14160]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 62464]
S3 hidkmdf;KMDF Driver;c:\windows\system32\drivers\hidkmdf.sys [2014-11-28 12088]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-12-10 102912]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2009-9-19 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2009-9-19 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2009-9-19 123648]
S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 WacHidRouter;Wacom Hid Router;c:\windows\system32\drivers\wachidrouter.sys [2014-11-28 85304]
S3 wacomrouterfilter;Wacom Router Filter Driver;c:\windows\system32\drivers\wacomrouterfilter.sys [2014-11-28 13112]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2012-10-15 1343400]
.
=============== Created Last 30 ================
.
2014-12-30 07:00:07 9054624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{8d07bd7e-7fb0-47a3-98d2-041150bb2f04}\mpengine.dll
2014-12-23 21:58:07 620176 ----a-w- c:\windows\system32\nvStreaming.exe
2014-12-19 09:18:32 -------- d-sh--w- c:\users\intel\appdata\local\EmieBrowserModeList
2014-12-18 23:25:41 139648 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-12-18 23:25:27 282296 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-12-18 23:25:25 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2014-12-18 08:47:09 115712 ----a-w- c:\windows\system32\ieUnatt.exe
2014-12-16 19:33:24 32912 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2014-12-16 09:48:22 -------- d-----w- c:\users\intel\appdata\roaming\Prototype
2014-12-16 09:09:28 -------- d--h--w- c:\windows\PIF
2014-12-14 12:31:44 811008 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iKernel.dll
2014-12-14 12:31:44 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\ctor.dll
2014-12-14 12:31:44 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\DotNetInstaller.exe
2014-12-14 12:31:44 335872 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iscript.dll
2014-12-14 12:31:44 241664 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iuser.dll
2014-12-14 12:31:43 192644 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\iGdi.dll
2014-12-14 12:31:42 323716 ----a-w- c:\program files\common files\installshield\professional\runtime\10\50\intel32\setup.dll
2014-12-13 11:36:17 -------- d-----w- c:\users\intel\appdata\roaming\Solvusoft
2014-12-13 11:23:26 270952 ----a-w- c:\windows\system32\libcurl.dll
2014-12-13 11:23:02 17840 ----a-w- c:\windows\system32\roboot.exe
2014-12-10 19:29:43 906440 ----a-w- c:\windows\system32\nvdispgenco3234475.dll
2014-12-10 19:29:42 1042064 ----a-w- c:\windows\system32\nvdispco3234475.dll
2014-12-10 13:04:43 -------- d-----w- c:\windows\AppCompat
2014-12-10 13:04:42 -------- d-----w- c:\windows\system32\appraiser
2014-12-10 10:55:50 3209728 ----a-w- c:\windows\system32\mf.dll
2014-12-05 21:38:17 -------- d-----w- c:\users\intel\appdata\local\NFS Underground 2
2014-12-02 21:01:07 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-12-02 21:01:02 -------- d-----w- c:\program files\DAEMON Tools Lite
.
==================== Find3M ====================
.
2015-01-01 20:09:26 114904 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-19 13:06:19 282296 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-12-19 13:06:19 282296 ----a-w- c:\windows\system32\PnkBstrB.ex0
2014-12-18 23:25:41 138056 ----a-w- c:\users\intel\appdata\roaming\PnkBstrK.sys
2014-12-13 07:30:19 4403016 ----a-w- c:\windows\system32\nvcpl.dll
2014-12-13 07:30:19 3056784 ----a-w- c:\windows\system32\nvsvc.dll
2014-12-13 07:30:17 669840 ----a-w- c:\windows\system32\nvvsvc.exe
2014-12-13 07:30:17 62784 ----a-w- c:\windows\system32\nvshext.dll
2014-12-13 07:30:17 375112 ----a-w- c:\windows\system32\nvmctray.dll
2014-12-13 07:30:17 2554000 ----a-w- c:\windows\system32\nvsvcr.dll
2014-12-13 00:12:24 2210040 ----a-w- c:\windows\system32\nvspcap.dll
2014-12-13 00:12:24 1291464 ----a-w- c:\windows\system32\nvspbridge.dll
2014-12-11 12:49:36 4151176 ----a-w- c:\windows\system32\nvcoproc.bin
2014-12-04 04:38:59 337920 ----a-w- c:\windows\system32\generaltel.dll
2014-12-04 04:38:45 610304 ----a-w- c:\windows\system32\invagent.dll
2014-12-04 04:38:40 315392 ----a-w- c:\windows\system32\devinv.dll
2014-12-04 04:38:37 728576 ----a-w- c:\windows\system32\appraiser.dll
2014-12-04 04:38:36 202752 ----a-w- c:\windows\system32\aepdu.dll
2014-12-04 04:38:36 159744 ----a-w- c:\windows\system32\aepic.dll
2014-12-04 04:34:13 873984 ----a-w- c:\windows\system32\aeinv.dll
2014-12-01 23:28:26 1160872 ----a-w- c:\windows\system32\aitstatic.exe
2014-12-01 14:26:28 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2014-12-01 14:11:06 86016 ----a-w- c:\windows\system32\OpenAL32.dll
2014-11-24 12:04:58 229000 ------w- c:\windows\system32\MpSigStub.exe
2014-11-22 10:46:30 32400 ----a-w- c:\windows\system32\nvaudcap32v.dll
2014-11-22 02:20:44 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-11-22 02:20:30 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-11-22 02:07:43 501248 ----a-w- c:\windows\system32\vbscript.dll
2014-11-22 02:07:17 62464 ----a-w- c:\windows\system32\iesetup.dll
2014-11-22 02:06:32 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-11-22 02:05:02 64000 ----a-w- c:\windows\system32\MshtmlDac.dll
2014-11-22 01:55:14 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-11-22 01:54:30 620032 ----a-w- c:\windows\system32\jscript9diag.dll
2014-11-22 01:48:26 667648 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-11-22 01:40:04 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2014-11-22 01:29:26 4299264 ----a-w- c:\windows\system32\jscript9.dll
2014-11-22 01:22:49 2052096 ----a-w- c:\windows\system32\inetcpl.cpl
2014-11-22 01:21:57 1155072 ----a-w- c:\windows\system32\mshtmlmedia.dll
2014-11-22 01:00:20 1888256 ----a-w- c:\windows\system32\wininet.dll
2014-11-21 04:14:20 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-11-21 04:14:10 75480 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-11-21 04:14:06 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-11-18 12:56:48 1202848 ----a-w- c:\windows\system32\FM20.DLL
2014-11-11 02:44:45 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-11-11 02:44:32 186880 ----a-w- c:\windows\system32\pku2u.dll
2014-11-11 02:44:25 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-11-11 01:32:14 74752 ----a-w- c:\windows\system32\drivers\tdx.sys
2014-11-08 02:45:09 2048 ----a-w- c:\windows\system32\tzres.dll
2014-11-06 21:00:51 906048 ----a-w- c:\windows\system32\nvhdagenco3220103.dll
2014-11-04 00:05:30 907592 ----a-w- c:\windows\system32\nvdispgenco3234465.dll
2014-11-04 00:05:30 1043264 ----a-w- c:\windows\system32\nvdispco3234465.dll
2014-10-30 04:49:27 908608 ----a-w- c:\windows\system32\nvdispgenco3234460.dll
2014-10-30 04:49:27 1043264 ----a-w- c:\windows\system32\nvdispco3234460.dll
2014-10-30 01:45:43 155136 ----a-w- c:\windows\system32\charmap.exe
2014-10-25 01:32:37 67584 ----a-w- c:\windows\system32\packager.dll
2014-10-18 01:33:18 571904 ----a-w- c:\windows\system32\oleaut32.dll
2014-10-16 16:38:21 906440 ----a-w- c:\windows\system32\nvdispgenco3234448.dll
2014-10-16 16:38:21 1041096 ----a-w- c:\windows\system32\nvdispco3234448.dll
2014-10-14 01:56:19 136632 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-10-14 01:50:50 523776 ----a-w- c:\windows\system32\termsrv.dll
2014-10-14 01:50:41 2363904 ----a-w- c:\windows\system32\msi.dll
2014-10-14 01:50:39 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-10-14 01:47:30 146432 ----a-w- c:\windows\system32\msaudite.dll
2014-10-14 01:46:02 681984 ----a-w- c:\windows\system32\adtschema.dll
2014-10-10 00:45:54 2379264 ----a-w- c:\windows\system32\win32k.sys
2014-10-09 17:02:43 27280 ----a-w- c:\windows\system32\nvhdap32.dll
2014-10-09 17:02:40 161424 ----a-w- c:\windows\system32\drivers\nvhda32v.sys
2014-10-09 07:17:51 908608 ----a-w- c:\windows\system32\nvhdagenco32.dll
2010-08-03 08:11:16 819200 --sha-w- c:\windows\system32\xvidcore.dll
2010-08-03 08:11:16 180224 --sha-w- c:\windows\system32\xvidvfw.dll
.
============= FINISH: 22:14:01.35 ===============
Attach:
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 10/15/2012 12:00:18 PM
System Uptime: 1/1/2015 10:07:51 PM (0 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | P5KPL-AM EPU
Processor: Pentium(R) Dual-Core CPU E5300 @ 2.60GHz | Socket 775 | 2600/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 98 GiB total, 38.553 GiB free.
D: is FIXED (NTFS) - 368 GiB total, 141.521 GiB free.
E: is CDROM ()
F: is CDROM (UDF)
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft Teredo Tunneling Adapter
Device ID: ROOT\*TEREDO\0000
Manufacturer: Microsoft
Name: Teredo Tunneling Pseudo-Interface
PNP Device ID: ROOT\*TEREDO\0000
Service: tunnel
.
==== System Restore Points ===================
.
RP443: 12/23/2014 10:03:23 AM - Windows Update
RP444: 12/30/2014 8:59:18 AM - Windows Update
RP445: 12/30/2014 11:06:07 PM - Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
RP446: 12/31/2014 12:08:48 AM - Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
.
==== Installed Programs ======================
.
µTorrent
32 Bit HP CIO Components Installer
4StoryEG
Adobe AIR
Adobe Flash Player 14 ActiveX
Adobe Flash Player 14 Plugin
Adobe Shockwave Player 12.1
Akamai NetSession Interface
Bamboo Dock
Battlefield Heroes
BufferChm
Burnout(TM) Paradise The Ultimate Box
Chibi Kart
Cry of Fear
DAEMON Tools Lite
DJ_AIO_06_F2400_SW_Min
Dota 2
Drift City
F2400
Far Cry 3
Five Nights at Freddy's
Google Chrome
Grand Theft Auto IV
GTA San Andreas
Hazard Ops
HP Update
HPPhotoGadget
hpWLPGInstaller
Java Auto Updater
Left 4 Dead
Left 4 Dead 2
Malwarebytes Anti-Malware version 2.0.4.1028
MathType 6
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 (español)
Microsoft ASP.NET MVC 4 Runtime
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Professional Plus 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Moonbase Alpha
MSXML 4.0 SP2 Parser and SDK
Need for Speed Most Wanted
Need for Speed Underground 2
Need For Speed™ World
NVIDIA 3D Vision Controller Driver 347.09
NVIDIA 3D Vision Driver 347.09
NVIDIA Control Panel 347.09
NVIDIA GeForce Experience 2.1.5
NVIDIA GeForce Experience Service
NVIDIA Graphics Driver 347.09
NVIDIA HD Audio Driver 1.3.33.0
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX
NVIDIA PhysX System Software 9.14.0702
NVIDIA ShadowPlay 16.18.9
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 16.18.9
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.27
Off-Road Drive
OGPlanet Game Launcher
PlanetSide 2
Portal 2
Prototype(TM)
PunkBuster Services
Rapture3D 2.4.11 Game
Rising Storm/Red Orchestra 2 Multiplayer
Rockstar Games Social Club
Saints Row The Third
SAMSUNG Mobile Composite Device Software
Samsung Mobile Modem Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Drive Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung New PC Studio
SAMSUNG USB Mobile Device Software
Scan
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596927) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920790) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920792) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2984942) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2920793) 32-Bit Edition
SHIELD Streaming
SHIELD Wireless Controller Driver
Spiral Knights
SPORE™
Star Sword
Steam
Stubbs The Zombie
StubbsPatchInstaller
swMSM
Tales Runner version 1.2
Team Fortress 2
TeamSpeak 3 Client
TeamViewer 9
Toolbox
Unturned
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2920789) 32-Bit Edition
Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition
Wacom
WebReg
WebTablet FB Plugin 32 bit
WinRAR 5.01 (32-bit)
.
==== Event Viewer Messages From Past Week ========
.
12/31/2014 10:02:05 AM, Error: Service Control Manager [7034] - The PnkBstrA service terminated unexpectedly. It has done this 1 time(s).
1/1/2015 12:55:32 PM, Error: Microsoft-Windows-DistributedCOM [10001] - Unable to start a DCOM Server: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} as /. The error: "5" Happened while starting this command: C:\Windows\System32\slui.exe -Embedding
1/1/2015 12:06:53 PM, Error: Service Control Manager [7000] - The Update SourceApp service failed to start due to the following error: The system cannot find the file specified.
.
==== End Of File ===========================