Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Active screen issues, mouse problems


  • This topic is locked This topic is locked
13 replies to this topic

#1 Nasir64

Nasir64

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:45 AM

Posted 26 May 2011 - 09:13 AM

Hello I am new to these forums and this is pretty much my last hope on figuring out what is going on with my computer. For the past few months I have been noticing my mouse do strange things (move on its own, delayed responses, slow down ect ect) and up until now I wasn't sure if I was imagining things or if something is on my computer.

I have formatted many times in the past few months but the same issues reoccur over and over. For example I recently purchased the witcher 2 and while playing it the game seems to go off active screen sometimes, kind of like if you have 2 windows up and your not active on one so you have to click it to make it active. I get that in game quite a bit and sometimes invisible boxes that the mouse cannot pass over or is limited for a brief amount of time.

My computer that I run is fairly well built and can handle a lot of games at full graphics but as of the past few months it feels like I have a delay in keystrokes, mouse movement and general slowdown even with graphics turned all the way down. I suspect someone has something viewing my desktop so that is why I am here.

Today I downloaded HijackThis and ran it but I have no idea what I am looking at. I'd like to mention that I recently downloaded spybot snd 2.0 beta and have ran that in safe mode a few times as well. It always picks up stuff no matter how many times I run it. Anyways, please help I am losing faith here.

Thanks in advance.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:02:38 AM, on 5/26/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Razer\Naga Epic\NagaEpicSysTray.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Razer Naga Driver] C:\Program Files (x86)\Razer\Naga Epic\NagaEpicSysTray.exe
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bigfoot Killer Network Manager.lnk = C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Bigfoot Networks Killer Service - Unknown owner - C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Firewall Service (SDFirewallService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFWSvc.exe
O23 - Service: Spybot-S&D 2 Monitoring Service (SDMonitorService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDMonSvc.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8119 bytes

Spybot SnD 2.0 Rootkit Analyzer

Type: Key
Object: 1<0x00>
Location: HKLM\SOFTWARE\Microsoft\DbgagD\
Details: Zero char in key name

Type: Key
Object: 1<0x00>
Location: HKLM\SOFTWARE\Wow6432Node\Microsoft\DbgagD\
Details: Zero char in key name

Type: Key
Object: Svc
Location: HKLM\SOFTWARE\Wow6432Node\Microsoft\Security Center\
Details: No admin in ACL

Type: Key
Object: Flyout
Location: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Applets\SysTray\BattMeter\
Details: No admin in ACL

Type: Key
Object: NetworkLocationWizard
Location: HKLM\SYSTEM\ControlSet001\Control\Network\
Details: No admin in ACL

Type: Key
Object: SQMServiceList
Location: HKLM\SYSTEM\ControlSet001\Control\
Details: No admin in ACL

Type: Key
Object: NetworkLocationWizard
Location: HKLM\SYSTEM\ControlSet002\Control\Network\
Details: No admin in ACL

Type: Key
Object: SQMServiceList
Location: HKLM\SYSTEM\ControlSet002\Control\
Details: No admin in ACL

Type: Key
Object: NetworkLocationWizard
Location: HKLM\SYSTEM\CurrentControlSet\Control\Network\
Details: No admin in ACL

Type: Key
Object: SQMServiceList
Location: HKLM\SYSTEM\CurrentControlSet\Control\
Details: No admin in ACL
Type: Key
Object: RpcSs
Location: HKLM\SYSTEM\CurrentControlSet\services\
Details: No admin in ACL


Type: Key
Object: DcomLaunch
Location: HKLM\SYSTEM\CurrentControlSet\services\
Details: No admin in ACL

EDIT: Posts merged ~Budapest

I know you guys have a lot of posts and what not from people asking. But it has been quite some time and I see others getting quicker responses. I even linked my thread in the "If you havn't gotten help in 3 days post here" thread, which post was removed and no one responded. The only response I received was someone merging my posts together. Just looking for a little help, thanks.

EDIT: Please be patient. There are over 350 unanswered topics in this forum at present and the current average wait time to receive help is 7 days. ~Budapest

Edited by Budapest, 01 June 2011 - 04:51 PM.
Moved to log forum. ~BZ


BC AdBot (Login to Remove)

 


#2 oneof4

oneof4

  • Malware Response Team
  • 3,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Collective
  • Local time:04:45 AM

Posted 05 June 2011 - 10:39 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

Please take note:

  • If you have since resolved the original problem you were having, we would appreciate you letting us know.
  • If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.
  • If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.
  • If you have already posted a DDS log, please do so again, as your situation may have changed.
  • Use the 'Add Reply' and add the new log to this thread.

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


We also need a new log from the GMER anti-rootkit Scanner.

Please note that if you are running a 64-bit version of Windows you will not be able to run GMER and you may skip this step.

Please first disable any CD emulation programs using the steps found in this topic:

Why we request you disable CD Emulation when receiving Malware Removal Advice

Then create another GMER log and post it as an attachment to the reply where you post your new DDS log. Instructions on how to properly create a GMER log can be found here:

How to create a GMER log


Thanks and again sorry for the delay.

Best Regards,
oneof4.


#3 Nasir64

Nasir64
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:45 AM

Posted 06 June 2011 - 03:37 PM

.
DDS (Ver_2011-06-03.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Bill at 16:34:11 on 2011-06-06
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.4095.3254 [GMT -4:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\GamersFirst\LIVE!\Live.exe
C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\explorer.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
mURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
mWinlogon: Userinit=userinit.exe
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
BHO: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Razer Naga Driver] C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BIGFOO~1.LNK - C:\Program Files (x86)\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\GAMERS~1.LNK - C:\Program Files (x86)\GamersFirst\LIVE!\Live.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
LSP: %SYSTEMROOT%\system32\BfLLR.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{D853A93A-9DF4-45FE-B7F7-E4CD1A619BE6} : DhcpNameServer = 192.168.0.1
BHO-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
BHO-X64: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
TB-X64: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [Razer Naga Driver] C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Bill\AppData\Roaming\Mozilla\Firefox\Profiles\eq33sbo7.default\
FF - component: C:\Users\Bill\AppData\Roaming\Mozilla\Firefox\Profiles\eq33sbo7.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\components\RadioWMPCoreGecko19.dll
FF - component: C:\Users\Bill\AppData\Roaming\Mozilla\Firefox\Profiles\eq33sbo7.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\ProgramData\id Software\QuakeLive\npquakezero.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com
FF - Ext: uTorrentBar Community Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - %profile%\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
.
============= SERVICES / DRIVERS ===============
.
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-4-19 365568]
R2 Bigfoot Networks Killer Service;Bigfoot Networks Killer Service;C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [2010-5-10 573952]
R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 BfEdge7x64;Bigfoot Networks Killer Ethernet Service;C:\Windows\system32\DRIVERS\Edge7x64.sys --> C:\Windows\system32\DRIVERS\Edge7x64.sys [?]
R3 BFN7x64;Bigfoot Networks Killer Gaming Service;C:\Windows\system32\DRIVERS\Xeno7x64.sys --> C:\Windows\system32\DRIVERS\Xeno7x64.sys [?]
R3 RzSynapse;Razer Driver;C:\Windows\system32\DRIVERS\RzSynapse.sys --> C:\Windows\system32\DRIVERS\RzSynapse.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?]
.
=============== Created Last 30 ================
.
2011-06-04 23:07:42 -------- d-----w- C:\Program Files (x86)\Conduit
2011-06-04 23:07:40 -------- d-----w- C:\Program Files (x86)\ConduitEngine
2011-06-04 23:07:39 -------- d-----w- C:\Program Files (x86)\uTorrentBar
2011-06-04 23:07:30 -------- d-----w- C:\Program Files (x86)\uTorrent
2011-06-04 23:07:09 -------- d-----w- C:\Users\Bill\AppData\Roaming\uTorrent
2011-06-03 19:22:40 -------- d-----w- C:\Users\Bill\AppData\Roaming\TS3Client
2011-06-03 18:59:19 -------- d-----w- C:\Program Files\TeamSpeak 3 Client
2011-06-03 18:09:54 -------- d-----w- C:\Fraps
2011-06-03 18:08:30 -------- d-----w- C:\Users\Bill\AppData\Roaming\Sytexis Software
2011-06-03 18:08:12 -------- d-----w- C:\Program Files (x86)\Sytexis Software
2011-06-03 13:03:56 -------- d-----w- C:\Windows\pss
2011-06-03 12:30:07 8718160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{138A981F-9000-49D1-9C31-E4D7E7397575}\mpengine.dll
2011-06-03 00:51:00 -------- d-----w- C:\DogFood
2011-06-02 11:58:05 281656 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2011-06-02 11:58:01 -------- d-----w- C:\Users\Bill\AppData\Local\PunkBuster
2011-06-02 11:54:14 281656 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2011-06-02 11:54:14 281656 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2011-06-02 11:54:13 75136 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2011-06-02 11:53:58 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2011-06-02 11:53:56 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2011-06-02 03:30:07 -------- d-----w- C:\Users\Bill\AppData\Local\GamersFirst LIVE!
2011-06-02 03:26:51 -------- d-----w- C:\Users\Bill\AppData\Local\PMB Files
2011-06-02 03:26:50 -------- d-----w- C:\ProgramData\PMB Files
2011-06-02 03:26:49 -------- d-----w- C:\Program Files (x86)\Pando Networks
2011-06-02 03:26:43 -------- d-----w- C:\Program Files (x86)\GamersFirst
2011-06-01 17:21:40 388096 ----a-r- C:\Users\Bill\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-06-01 17:21:40 -------- d-----w- C:\Program Files (x86)\Trend Micro
2011-06-01 16:25:04 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2011-06-01 16:24:54 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy 2
2011-06-01 15:01:02 -------- d-----w- C:\ProgramData\CCP
2011-06-01 15:00:58 -------- d-----w- C:\Users\Bill\AppData\Local\CCP
2011-06-01 03:28:52 -------- d-----w- C:\Users\Bill\AppData\Roaming\wolfcamql
2011-05-31 19:43:59 83736 ----a-w- C:\Windows\System32\xinput1_2.dll
2011-05-31 19:40:47 -------- d-----w- C:\Windows\SysWow64\directx
2011-05-31 19:40:27 -------- d-----w- C:\Users\Bill\AppData\Roaming\Rift
2011-05-31 16:54:57 -------- d-----w- C:\Users\Bill\AppData\Local\Mozilla
2011-05-31 16:30:03 -------- d-----w- C:\Program Files (x86)\AutoHotkey
2011-05-31 12:59:42 8718160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-05-31 04:38:51 -------- d-----w- C:\Windows\Panther
2011-05-31 04:16:18 -------- d-sh--w- C:\Boot
2011-05-31 01:54:08 -------- d-----w- C:\Users\Bill\AppData\Local\Google
2011-05-31 01:54:03 -------- d-----w- C:\Users\Bill\AppData\Local\Deployment
2011-05-31 01:54:03 -------- d-----w- C:\Users\Bill\AppData\Local\Apps
2011-05-31 01:44:07 -------- d-----w- C:\Users\Bill\AppData\Local\AMD
2011-05-31 01:43:56 -------- d-----w- C:\Users\Bill\AppData\Local\ATI
2011-05-31 01:42:17 -------- d-----w- C:\Windows\SysWow64\Wat
2011-05-31 01:42:17 -------- d-----w- C:\Windows\System32\Wat
2011-05-31 01:42:09 0 ----a-w- C:\Windows\ativpsrm.bin
2011-05-31 01:39:24 367104 ----a-w- C:\Windows\System32\wcncsvc.dll
2011-05-31 01:39:24 276992 ----a-w- C:\Windows\SysWow64\wcncsvc.dll
2011-05-31 01:34:53 311808 ----a-w- C:\Windows\System32\msv1_0.dll
2011-05-31 01:34:53 257024 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2011-05-31 01:28:03 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll
2011-05-31 01:28:03 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll
2011-05-31 01:28:03 48960 ----a-w- C:\Windows\System32\netfxperf.dll
2011-05-31 01:28:03 444752 ----a-w- C:\Windows\System32\mscoree.dll
2011-05-31 01:28:03 320352 ----a-w- C:\Windows\System32\PresentationHost.exe
2011-05-31 01:28:03 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll
2011-05-31 01:28:03 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe
2011-05-31 01:28:03 1942856 ----a-w- C:\Windows\System32\dfshim.dll
2011-05-31 01:28:03 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2011-05-31 01:28:03 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll
2011-05-31 01:24:28 243712 ----a-w- C:\Windows\System32\drivers\ks.sys
2011-05-31 01:23:20 -------- d-----w- C:\ProgramData\id Software
2011-05-31 01:16:35 -------- d-----w- C:\Users\Bill\AppData\Roaming\.minecraft
2011-05-31 01:16:09 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-05-31 01:14:23 714752 ----a-w- C:\Windows\System32\kerberos.dll
2011-05-31 01:14:23 541184 ----a-w- C:\Windows\SysWow64\kerberos.dll
2011-05-31 01:14:15 84992 ----a-w- C:\Windows\System32\asycfilt.dll
2011-05-31 01:14:15 67584 ----a-w- C:\Windows\SysWow64\asycfilt.dll
2011-05-31 01:14:11 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-05-31 01:14:11 2048 ----a-w- C:\Windows\System32\tzres.dll
2011-05-31 01:12:56 1975296 ----a-w- C:\Windows\System32\CertEnroll.dll
2011-05-31 01:11:21 1896832 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2011-05-31 01:11:08 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2011-05-31 01:11:08 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2011-05-31 01:09:51 861184 ----a-w- C:\Windows\System32\oleaut32.dll
2011-05-31 01:08:55 558592 ----a-w- C:\Windows\System32\spoolsv.exe
2011-05-31 01:07:49 395776 ----a-w- C:\Windows\System32\webio.dll
2011-05-31 01:06:45 1739176 ----a-w- C:\Windows\System32\ntdll.dll
2011-05-31 01:05:52 46592 ----a-w- C:\Windows\System32\msasn1.dll
2011-05-31 00:59:48 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2011-05-31 00:59:48 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2011-05-31 00:59:44 46136 ----a-w- C:\Windows\System32\drivers\amdiox64.sys
2011-05-31 00:59:44 -------- d-----w- C:\ProgramData\AMD
2011-05-31 00:59:34 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2011-05-31 00:59:33 -------- d-----w- C:\Program Files\ATI
2011-05-31 00:59:06 -------- d-----w- C:\Program Files\ATI Technologies
2011-05-31 00:58:44 -------- d-----w- C:\ATI
2011-05-31 00:55:06 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-05-31 00:53:24 220672 ----a-w- C:\Windows\System32\wintrust.dll
2011-05-31 00:53:24 172032 ----a-w- C:\Windows\SysWow64\wintrust.dll
2011-05-31 00:53:24 139264 ----a-w- C:\Windows\System32\cabview.dll
2011-05-31 00:53:24 132608 ----a-w- C:\Windows\SysWow64\cabview.dll
2011-05-31 00:52:20 -------- d-----w- C:\ProgramData\Bigfoot Networks
2011-05-31 00:52:20 -------- d-----w- C:\Program Files\Bigfoot Networks
2011-05-31 00:51:58 -------- d-sh--w- C:\Windows\Installer
2011-05-31 00:47:14 -------- d-----w- C:\Users\Bill\AppData\Local\Diagnostics
2011-05-28 12:26:46 71680 ----a-w- C:\Windows\System32\frapsv64.dll
2011-05-28 12:26:44 65536 ----a-w- C:\Windows\SysWow64\frapsvid.dll
2011-05-25 05:36:58 70656 ----a-w- C:\Windows\SysWow64\tmbvcm32.dll
2011-05-25 05:36:56 72704 ----a-w- C:\Windows\System32\tmbvcm64.dll
.
==================== Find3M ====================
.
2011-05-31 18:24:35 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-04-22 20:18:47 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2011-04-20 02:44:48 9319936 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2011-04-20 02:30:16 22900736 ----a-w- C:\Windows\System32\atio6axx.dll
2011-04-20 02:09:18 151552 ----a-w- C:\Windows\System32\atiapfxx.exe
2011-04-20 02:09:04 676864 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2011-04-20 02:07:46 795648 ----a-w- C:\Windows\System32\aticfx64.dll
2011-04-20 02:07:02 17693184 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2011-04-20 02:05:08 462848 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2011-04-20 02:04:54 480256 ----a-w- C:\Windows\System32\atieclxx.exe
2011-04-20 02:04:18 203776 ----a-w- C:\Windows\System32\atiesrxx.exe
2011-04-20 02:03:04 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2011-04-20 02:02:48 423424 ----a-w- C:\Windows\System32\atipdl64.dll
2011-04-20 02:02:42 356352 ----a-w- C:\Windows\SysWow64\atipdlxx.dll
2011-04-20 02:02:30 278528 ----a-w- C:\Windows\SysWow64\Oemdspif.dll
2011-04-20 02:02:24 16384 ----a-w- C:\Windows\System32\atimuixx.dll
2011-04-20 02:02:20 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2011-04-20 02:02:16 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2011-04-20 01:59:20 4161536 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2011-04-20 01:49:30 4951552 ----a-w- C:\Windows\System32\atidxx64.dll
2011-04-20 01:46:16 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2011-04-20 01:46:14 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2011-04-20 01:46:04 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2011-04-20 01:46:02 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2011-04-20 01:45:52 7768064 ----a-w- C:\Windows\System32\aticaldd64.dll
2011-04-20 01:42:04 6389760 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2011-04-20 01:40:48 1222656 ----a-w- C:\Windows\System32\atiumd6v.dll
2011-04-20 01:40:14 1923584 ----a-w- C:\Windows\SysWow64\atiumdmv.dll
2011-04-20 01:40:02 3868672 ----a-w- C:\Windows\System32\atiumd6a.dll
2011-04-20 01:38:04 4286464 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2011-04-20 01:31:12 5440000 ----a-w- C:\Windows\System32\atiumd64.dll
2011-04-20 01:30:36 4056576 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2011-04-20 01:27:00 58880 ----a-w- C:\Windows\System32\coinst.dll
2011-04-20 01:23:12 366080 ----a-w- C:\Windows\System32\atiadlxx.dll
2011-04-20 01:23:06 262144 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2011-04-20 01:22:54 14848 ----a-w- C:\Windows\System32\atig6pxx.dll
2011-04-20 01:22:52 12800 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2011-04-20 01:22:52 12800 ----a-w- C:\Windows\System32\atiglpxx.dll
2011-04-20 01:22:48 39936 ----a-w- C:\Windows\System32\atig6txx.dll
2011-04-20 01:22:40 32768 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2011-04-20 01:22:32 306176 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2011-04-20 01:21:44 40960 ----a-w- C:\Windows\System32\atiuxp64.dll
2011-04-20 01:21:38 31232 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2011-04-20 01:21:32 38912 ----a-w- C:\Windows\System32\atiu9p64.dll
2011-04-20 01:21:24 29184 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2011-04-20 01:20:50 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2011-04-20 01:13:36 53760 ----a-w- C:\Windows\System32\atimpc64.dll
2011-04-20 01:13:36 53760 ----a-w- C:\Windows\System32\amdpcom64.dll
2011-04-20 01:13:28 52736 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2011-04-20 01:13:28 52736 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2011-04-12 19:29:06 428416 ----a-w- C:\Windows\SysWow64\RzMwApi.dll
2011-04-09 06:58:56 142336 ----a-w- C:\Windows\System32\poqexec.exe
2011-04-09 06:45:48 5509504 ----a-w- C:\Windows\System32\ntoskrnl.exe
2011-04-09 06:13:06 3957632 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-04-09 06:13:06 3901824 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2011-04-09 05:56:38 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2011-03-31 19:01:50 126464 ----a-w- C:\Windows\System32\drivers\RzSynapse.sys
2011-03-30 18:46:44 114704 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys
2011-03-12 12:03:46 662528 ----a-w- C:\Windows\System32\XpsPrint.dll
2011-03-12 11:31:58 442880 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2011-03-11 06:19:26 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2011-03-11 06:19:26 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2011-03-11 05:40:24 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2011-03-11 05:40:24 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2009-09-04 22:01:10 525656 ----a-w- C:\Program Files (x86)\DXSETUP.exe
2009-09-04 22:01:08 94024 ----a-w- C:\Program Files (x86)\DSETUP.dll
2009-09-04 22:01:08 1691464 ----a-w- C:\Program Files (x86)\dsetup32.dll
.
============= FINISH: 16:34:25.82 ===============

I cannot run GMER I have a 64 bit OS.

Attached Files



#4 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:10:45 AM

Posted 09 June 2011 - 03:36 PM

Hi Nasir64,

I will be assisting you.

You need to install an antivirus program to have a proper protection. I recommend this good free antivirus:

Please download and install Microsoft Security Essentials.
After installing and updating please run a full scan and tell me if it found anything.

#5 Nasir64

Nasir64
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:45 AM

Posted 09 June 2011 - 06:32 PM

Nothing was detected from scanning with security essentials.

This is starting to concern me due to strange happenings on my desktop. Today in the middle of playing a game my screen minimized out of nowhere. I was not in windowed mode, full screen mode to minimized and looking at desktop. My mouse sensitivity changes at random times without me changing it. It almost feels as though I have 2 desktops running, one I am looking at and another one somewhere. Sometimes I notice a small amount of lag in mouse movement and other times it seems find. Not sensitivity either, more like a delay to where I move it. A invisible box has caught my mouse in it a few times as well. Right in the middle of my desktop a small rectangle where I cannot move my mouse out of. This happens rarely and only lasts a few seconds.

#6 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:10:45 AM

Posted 10 June 2011 - 01:10 AM

Is this a desktop computer or a laptop?

You need one more extra tool on the system. You may download the free version and keep it manually updated once in a couple of weeks.

Please download Malwarebytes' Anti-Malware from one of these locations:
malwarebytes.org
majorgeeks.com
  • Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the MBAM log.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.


#7 Nasir64

Nasir64
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:45 AM

Posted 10 June 2011 - 08:02 AM

It is a desktop.


Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Database version: 6825

Windows 6.1.7600
Internet Explorer 9.0.8112.16421

6/10/2011 9:01:30 AM
mbam-log-2011-06-10 (09-01-30).txt

Scan type: Quick scan
Objects scanned: 157269
Time elapsed: 1 minute(s), 7 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#8 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:10:45 AM

Posted 10 June 2011 - 12:28 PM

Please download MiniToolBox and save it to your desktop and run it.

Checkmark following checkbox:

  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt) that pops up. A copy of result.txt will be save in the same directory the tool is run.

#9 Nasir64

Nasir64
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:45 AM

Posted 10 June 2011 - 05:22 PM

MiniToolBox by Farbar
Ran by Bill (administrator) on 10-06-2011 at 18:22:12
Windows 7 Home Premium (X64)

***************************************************************************


========================= Memory info: ====================================

Percentage of memory in use: 28%
Total physical RAM: 4095.18 MB
Available physical RAM: 2947.22 MB
Total Pagefile: 8188.5 MB
Available Pagefile: 6715.64 MB
Total Virtual: 4095.88 MB
Available Virtual: 3992.59 MB

======================= Partitions: =======================================

1 Drive c: () (Fixed) (Total:55.9 GB) (Free:12.08 GB) NTFS
2 Drive d: () (Fixed) (Total:298.09 GB) (Free:267 GB) NTFS

================= Users: ==================================================

User accounts for \\BILL-PC

-------------------------------------------------------------------------------
Administrator Bill Guest
The command completed successfully.

================= End of Users ============================================

#10 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:10:45 AM

Posted 10 June 2011 - 05:32 PM

That looks good. No other accounts. :thumbup2:

What type of mouse do you have?

#11 Nasir64

Nasir64
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:45 AM

Posted 10 June 2011 - 05:38 PM

I have a razer naga.

http://store.razerzone.com/store/razerusa/en_US/pd/productID.169418900

I don't know maybe its hardware issues then. Truly baffled by things I have experienced.

#12 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:10:45 AM

Posted 10 June 2011 - 05:48 PM

Beside Windows firewall you have a router. It means you are behind a NAT and pretty safe. We can add an extra layer by installing a free firewall that gives you more control over internet traffic, but I find it overkill.

This is unrelated to the issue. But I recommend you to uninstall Conduit Engine as it is a questionable program some relate it to adware stuff.

Moreover it seems your special mouse for game play is a complex one. I wonder if you use a wired mouse for a while when you are not playing any game to see if the issue is replicable with the wired mouse.

Also uninstall uTorrent for a while to close any open port.

#13 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:10:45 AM

Posted 17 June 2011 - 02:45 PM

Are you still there?

#14 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:10:45 AM

Posted 19 June 2011 - 12:10 PM

This thread will now be closed.

If you need this topic reopened, please send me a PM and I will reopen it for you. If you should have a new issue, please start a new topic.

Every one else should start a new topic.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users