Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

suspicious processes, rapid onset of sluggishness, SP & AV programs finding nothing


  • Please log in to reply
11 replies to this topic

#1 photomech

photomech

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 01:19 PM

I have moved this post as I believe this is more a compound program related/caused by an attack.
Please read the post below as well. Since/while I am posting this I am going to run a full back up of my bad laptop's drive with Corbian and then go into safemode run a scandisk then a degfrag per the instructions from the "Slow Computer?" post. Then I will report back to any replies from you.(if this is not the right thing to do and I see a response from you all I will follow any instructions)
I am no pc expert but I am a quick learner. THANK YOU for any help you can lend me.



"EDIT: I have been able to suspend the update process (even though it was frozen anyways and the update manager from control panel does not show me updating anything) I suspended the process trustedinstaller.exe while in the resource manager. I am aware this is usually a Microsoft process but yea I am just suspicious this time.

APOLOGIES if I am in the wrong section.

Hi all,
IN SHORT: 1: window update installer frozen @ 0% & not responding to kill/start commands
2: general system sluggishness & low responsiveness even after scans from malwarebytes/symantech found nothing and I cleaned up with CCleaner
Also when I am connected to the internet (via my home connection) even when I have no software operating that utilizes the net I am seeing quite a few hosts and copies of svchost running in the network window of the resource monitor. Also now (just recently in the past day or so) the time it takes to shut the pc down or go to sleep and reboot and awake has increased by a factor of 2 or more.

So since I am not sure exactly what is going on + I am new (yes I skimmed the new user area) I thought I would start with the first issue.
Note: specs Windows 7 Ultimate 64 bit

So the other day I decided to go ahead and let my update installer install a few things (firefox had been sluggish for a few days before this) and I said ok you can install this update for this office service pack and this other security update (don't have actual names as I cannot get into the update manager right now). And now I am here on the site. I would try (another) reset but it hasent helped at all to resolve the issue.


Issue 2 as state at top of topic
also in the past few days I have experience a few pc crashes to a black screen with one smallish white block in the top left (odd?) this is outside of a system crash I experienced while I was playing mass effect 2 (sort of expected a crash or two from that game) (legally purchased via Steam).

I am a fast learner and well I need some help sorting out why my laptop has decided to fritz on me and leave me no clues.

Thank you for reading.

Best Regards,
"

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:37 AM

Posted 13 August 2011 - 03:27 PM

Welcome aboard Posted Image

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#3 photomech

photomech
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 03:45 PM

:D thanks for the reply, so I have been trying to get Cobian to work (gave up) I am/was about to do a DriveImage XML back up (onto an external HD) of my C (master) and my E drive which contains all of my music and photos (I am a photographer so it is hefty)
Should I do this first or should I do what you said first I want to project my files.
Thanks!

Oh and funny tag image at bottom

currently I am using internet on another laptop and have the internet off on the laptop in question should I turn it back on or download the files you instructed via this laptop and transfer via USB etc?

Edited by photomech, 13 August 2011 - 03:46 PM.


#4 photomech

photomech
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 04:04 PM

I will go ahead and do what you said (by the way this work laptop I am on has trendmicro and when I wen tto download your security check it had a small heart attack I downloaded it anyways but it might be worth sending trend micro your thing so they could add it to a list of general expceptions)
The logs etc will be posted soon, should the process list be posted as well?
-Tom

#5 photomech

photomech
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 04:14 PM

security check was run with net OFF
here is the log

Results of screen317's Security Check version 0.99.7
Windows 7 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
onOne PerfectPresets
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
Java™ 6 Update 26
Out of date Java installed!
Adobe Flash Player 10.3.183.5
Adobe Reader 9.4.0
Out of date Adobe Reader installed!
Mozilla Firefox (x86 en-US..) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

Norton ccSvcHst.exe
Malwarebytes' Anti-Malware mbamservice.exe
``````````End of Log````````````

#6 photomech

photomech
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 04:20 PM

minitolbox run with internet ON
NOTES: all NI programs are part of National Instruments software, the F drive is an external drive,
The errors from the trusted installer are due to the fact that I paused via resource manager (yesterday) the trusted installer as it had been eating resources while making 0% download progress, but I am not sure even where to begin with that


MiniToolBox by Farbar
Ran by Tom (administrator) on 13-08-2011 at 17:16:40
Windows 7 Ultimate (X64)

***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================



========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Photonuts
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Intel® WiFi Link 5100 AGN
Physical Address. . . . . . . . . : 00-21-5D-2D-E6-10
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c837:9668:8aa3:b4d3%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, August 13, 2011 1:03:16 PM
Lease Expires . . . . . . . . . . : Sunday, August 14, 2011 5:12:56 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 201335133
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-50-29-A8-00-23-54-32-FB-F5
DNS Servers . . . . . . . . . . . : 192.168.1.1
71.252.0.12
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 00-23-54-32-FB-F5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable Microsoft 6To4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:38a6:f86:52b0:b64c(Preferred)
Link-local IPv6 Address . . . . . : fe80::38a6:f86:52b0:b64c%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.93.103
74.125.93.106
74.125.93.147
74.125.93.99
74.125.93.105
74.125.93.104


Pinging google.com [74.125.113.99] with 32 bytes of data:
Reply from 74.125.113.99: bytes=32 time=24ms TTL=252
Request timed out.

Ping statistics for 74.125.113.99:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 24ms, Maximum = 24ms, Average = 24ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
67.195.160.76
69.147.125.65
72.30.2.43
98.137.149.56


Pinging yahoo.com [67.195.160.76] with 32 bytes of data:
Reply from 67.195.160.76: bytes=32 time=8ms TTL=54
Reply from 67.195.160.76: bytes=32 time=7ms TTL=54

Ping statistics for 67.195.160.76:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 7ms, Maximum = 8ms, Average = 7ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 21 5d 2d e6 10 ......Intel® WiFi Link 5100 AGN
11...00 23 54 32 fb f5 ......Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.20)
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
16...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #3
19...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #6
24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 281
192.168.1.3 255.255.255.255 On-link 192.168.1.3 281
192.168.1.255 255.255.255.255 On-link 192.168.1.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:4137:9e76:38a6:f86:52b0:b64c/128
On-link
12 281 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::38a6:f86:52b0:b64c/128
On-link
12 281 fe80::c837:9668:8aa3:b4d3/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/13/2011 05:13:04 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 17 3.1.168.192.in-addr.arpa. PTR Photonuts.local.

Error: (08/13/2011 05:13:04 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.3:5353 19 3.1.168.192.in-addr.arpa. PTR Photonuts-2.local.

Error: (08/13/2011 03:20:59 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {1910bf66-9f03-40f7-9dbb-cec87bf44f18}

Error: (08/13/2011 02:04:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2145450

Error: (08/13/2011 02:04:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2145450

Error: (08/13/2011 02:04:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/13/2011 02:04:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2135451

Error: (08/13/2011 02:04:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2135451

Error: (08/13/2011 02:04:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/13/2011 02:04:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2125451


System errors:
=============
Error: (08/13/2011 04:49:09 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR3.

Error: (08/13/2011 02:47:45 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

Error: (08/13/2011 02:47:15 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

Error: (08/13/2011 02:46:45 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

Error: (08/13/2011 02:46:14 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

Error: (08/13/2011 02:05:30 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

Error: (08/13/2011 02:04:55 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

Error: (08/13/2011 02:04:25 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

Error: (08/13/2011 02:03:52 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.

Error: (08/13/2011 01:29:38 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrustedInstaller service.


Microsoft Office Sessions:
=========================
Error: (08/13/2011 05:13:04 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 17 3.1.168.192.in-addr.arpa. PTR Photonuts.local.

Error: (08/13/2011 05:13:04 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.3:5353 19 3.1.168.192.in-addr.arpa. PTR Photonuts-2.local.

Error: (08/13/2011 03:20:59 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {1910bf66-9f03-40f7-9dbb-cec87bf44f18}

Error: (08/13/2011 02:04:53 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2145450

Error: (08/13/2011 02:04:53 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2145450

Error: (08/13/2011 02:04:53 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/13/2011 02:04:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2135451

Error: (08/13/2011 02:04:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2135451

Error: (08/13/2011 02:04:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/13/2011 02:04:33 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2125451


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 8.2.1)
7-Zip 4.65
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Ace of Spades (Version: 0.33)
Adobe AIR (Version: 2.5.1.17730)
Adobe Digital Editions
Adobe Flash Player 10 ActiveX (Version: 10.1.102.64)
Adobe Flash Player 10 Plugin (Version: 10.3.183.5)
Adobe Photoshop Lightroom 3.4.1 64-bit (Version: 3.4.2)
Adobe Reader 9.4.0 (Version: 9.4.0)
Apple Application Support (Version: 1.5.0)
Apple Mobile Device Support (Version: 3.3.1.3)
Apple Software Update (Version: 2.1.2.120)
ASUS LifeFrame3 (Version: 3.0.20)
BioShock 2 (Version: 1.0.0003.131)
BitTorrent (Version: 7.2.0)
Bonjour (Version: 2.0.4.0)
CCleaner (Version: 3.07)
Cobian Backup 10
Counter-Strike: Source
Definition update for Microsoft Office 2010 (KB982726)
DEVIL MAY CRY 4 TRIAL (Version: 1.00.000)
DivX Setup (Version: 2.1.2.2)
DriveImage XML (Private Edition) (Version: 2.22)
Finite Element Heat Transfer (FEHT) update (Version: 7.1)
FOURBAR Student Edition
Free RAR Extract Frog (Version: 2.30)
Google Chrome (Version: 13.0.782.112)
Google SketchUp 8 (Version: 3.0.4811)
Google Talk Plugin (Version: 2.1.8.0)
Google Update Helper (Version: 1.3.21.65)
iTunes (Version: 10.1.2.17)
IVI Shared Component 64-bit (Version: 2.1.0)
IVI Shared Components
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
Kubik - Minecraft Overlay Encyclopaedia (Version: 1.0.0)
LiveUpdate 3.3 (Symantec Corporation) (Version: 3.3.0.96)
MakuaMon (Version: 3.2.1.1)
Malwarebytes' Anti-Malware version 1.51.1.1800 (Version: 1.51.1.1800)
Maple 13
Maple 13 (Version: 13.0.0.0)
Mass Effect 2
MATLAB Student R2010a (Version: 7.10)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft IntelliPoint 8.0 (Version: 8.0.225.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 4.0.60531.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 5.0 (x86 en-US) (Version: 5.0)
National Instruments Software (Version: )
NI-653x Installer 1.9.2 (Version: 1.92.49152)
NI-653x Installer for 64 Bit Windows 1.9.2 (Version: 1.92.49152)
NI-APAL 2.0 64-Bit Error Files (Version: 2.00.49152)
NI-APAL 2.0 Error Files (Version: 2.00.49152)
NI-DAQ C and VB6 API 2.1.0 (Version: 2.10.49152)
NI-DAQ Document Set 9.1.5 (Version: 9.15.49152)
NI-DAQ INF Files 19.1.6 (Version: 19.16.3000)
NI-DAQmx 9.1.6 (Version: 9.16.49153)
NI-DAQmx ADE Support 9.1.6 (Version: 9.16.49153)
NI-DAQmx Documentation 9.1.5 (Version: 9.15.49152)
NI-DAQmx Documentation for 64 bit Windows 9.1.5 (Version: 9.15.49152)
NI-DAQmx MAX Configuration Support 9.1.6 (Version: 9.16.49153)
NI-DAQmx MAX Support 64-bit 1.15.0 (Version: 1.150.49153)
NI-DAQmx support for LabVIEW 1.14.0 (Version: 1.140.49155)
NI-DAQmx Switch Core 2.0.1 (Version: 2.01.49152)
NI-DAQmx Switch Core for 64 Bit Windows 2.0.1 (Version: 2.01.49152)
NI-DAQmx/LabVIEW shared documentation 1.7.5 (Version: 1.75.49152)
NI-DAQmx/LabVIEW shared documentation for 64 Bit Windows 1.7.5 (Version: 1.75.49152)
NI-DIM 1.11.0f0 (Version: 1.110.49152)
NI-DIM 1.11.0f0 for 64 Bit Windows (Version: 1.110.49152)
NI-MDBG 1.10.0f0 (Version: 1.100.49152)
NI-MDBG 1.10.0f0 for 64 Bit Windows (Version: 1.100.49152)
NI-MRU 2.11.1f0 (Version: 2.112.49152)
NI-MRU 2.11.1f0 for 64 Bit Windows (Version: 2.112.49152)
NI-MX Expert Framework 2.5.0 (Version: 2.50.49152)
NI-MX Expert Framework for 64 Bit Windows 2.5.0 (Version: 2.50.49152)
NI-MXDF 1.11.5f1 (Version: 1.115.49153)
NI-MXDF 1.11.5f1 for 64 Bit Windows (Version: 1.115.49153)
NI-MXLC Core (32-bit) (Version: 1.35.39.0)
NI-MXLC Core (64-bit) (Version: 1.35.38.0)
NI-MXLC LabVIEW 2009 Support (Version: 1.35.40.0)
NI-MXLC LabVIEW 2010 Support (Version: 1.35.40.0)
NI-MXLC LabVIEW 2010 Support (Version: 1.35.47.0)
NI-MXLC LabVIEW 8.5 Support (Version: 1.35.40.0)
NI-MXLC LabVIEW 8.6 Support (Version: 1.35.40.0)
NI-ORB 1.9.3f0 (Version: 1.94.49152)
NI-ORB 1.9.3f0 for 64 Bit Windows (Version: 1.94.49152)
NI-PAL 2.5.4f0 (Version: 10.64.49152)
NI-PAL 2.5.4f0 for 64 Bit Windows (Version: 10.64.49152)
NI-RPC 4.2.0f0 (Version: 4.20.49152)
NI-RPC 4.2.0f0 for 64 Bit Windows (Version: 4.20.49152)
NI-RPC 4.2.0f0 for Phar Lap ETS (Version: 4.20.49152)
NI-VISA Runtime 5.0.0 (Version: 5.00.49152)
NI-VISA x64 support .. (Version: 5.00.49152)
NI AFW Channel Configuration Tool (Version: 7.0.181.0)
NI AFW Custom UI (Version: 7.0.182.0)
NI AFW Custom UI Assemblies (Version: 7.0.8.0)
NI AFW UI Assemblies (Version: 7.2.8.0)
NI Assistant Framework (Version: 7.0.192.0)
NI Assistant Framework 64-bit (Version: 7.0.77.0)
NI Assistant Framework LabVIEW 2010 Support (Version: 7.0.34.0)
NI Assistant Framework LabVIEW Code Generator 2010 (Version: 7.0.152.0)
NI Authentication 1.0 (64-bit) (Version: 1.0.58.0)
NI Authentication 1.0 (Version: 1.0.73.0)
NI Calibration Provider for MAX 4.7.0 (Version: 4.70.49154)
NI Calibration Provider Help for 64 Bit Windows (Version: 4.70.49154)
NI Certificates Deployment Support (Version: 1.02.49152)
NI CodeSignAPI (Version: 2.70.346)
NI Common Digital 1.11.0 (Version: 1.110.49152)
NI Common Digital for 64 Bit Windows 1.11.0 (Version: 1.110.49152)
NI Control Design Assistant 2010 (Version: 3.2.157.0)
NI Curl 1.0 (64-bit) (Version: 1.0.82.0)
NI Curl 1.0 (Version: 1.0.82.0)
NI DAQ Assistant 1.13.0 (Version: 1.130.49152)
NI DAQ Assistant 64-bit 1.13.0 (Version: 1.130.49152)
NI DataSocket 4.8 (64-bit) (Version: 4.8.23.0)
NI DataSocket 4.8 (Version: 4.8.20.0)
NI Distributed System Manager 2010 (Version: 10.0.238.0)
NI DN 2.0 Language Pack installer (Version: 2.00.49152)
NI DN 2.0 SP1 installer (Version: 2.10.49152)
NI Dynamic Signal Acquisition for 64 Bit Windows 2.0.0 (Version: 2.00.49152)
NI Dynamic Signal Acquisition Installer 2.0.0 (Version: 2.00.49152)
NI ELVIS 64bit Support (Version: 1.0.301.0)
NI ELVISmx 4.2.2 (Version: 4.2.71.0)
NI ELVISmx Instrument Launcher (Version: 1.1.32.0)
NI EULA Depot (Version: 2.80.295)
NI Example Finder 10.0 (Version: 10.0.213.0)
NI FSL Installer 1.10.0 (Version: 1.100.49153)
NI FSL Installer for 64-Bit Windows 1.10.0 (Version: 1.100.49153)
NI Help Assistant (64bit) (Version: 1.0.10)
NI Help Assistant (Version: 1.0.10)
NI Instrument IO Assistant for LabVIEW 2010 32-bit (Version: 1.0.13.0)
NI IVI Class Driver LabVIEW 2010 Support (Version: 4.20.49152)
NI IVI Class Drivers (Version: 6.20.49152)
NI IVI Class Drivers 64-bit (Version: 6.20.49152)
NI IVI Class Simulation Drivers (64-bit) (Version: 4.20.49152)
NI IVI Class Simulation Drivers (Version: 4.20.49152)
NI IVI Compliance Package 4.2 (64-bit) (Version: 4.20.49152)
NI IVI Compliance Package 4.2 (Version: 4.20.49152)
NI IVI Engine (Version: 134.20.49152)
NI IVI Engine 64-bit (Version: 134.20.49152)
NI IVI Online Help (Version: 4.20.49152)
NI IVI Provider for MAX (Version: 5.40.49152)
NI LabVIEW 2009 SP1 Run-Time Engine Web Services (Version: 9.0.234.0)
NI LabVIEW 2010 (Version: 10.0.250.0)
NI LabVIEW 2010 (Version: 10.0.251.0)
NI LabVIEW 2010 (Version: 10.0.252.0)
NI LabVIEW 2010 (Version: 10.0.254.0)
NI LabVIEW 2010 (Version: 10.0.255.0)
NI LabVIEW 2010 (Version: 10.0.73.0)
NI LabVIEW 2010 Control Design Shared VIs (Version: 10.0.159.0)
NI LabVIEW 2010 Deployable License (Version: 10.0.236.0)
NI LabVIEW 2010 Deployment Framework (Version: 10.0.36.0)
NI LabVIEW 2010 Help (Version: 10.0.247.0)
NI LabVIEW 2010 Help File (Version: 10.0.233.0)
NI LabVIEW 2010 License (Version: 10.0.238.0)
NI LabVIEW 2010 Manuals (Version: 10.0.239.0)
NI LabVIEW 2010 MeasAppChm File (Version: 10.0.234.0)
NI LabVIEW 2010 Real-Time Error Dialog (Version: 10.0.85.0)
NI LabVIEW 2010 Real-Time NBFifo (Version: 10.0.214.0)
NI LabVIEW 2010 Search (Version: 10.0.41.0)
NI LabVIEW 2010 Simulation (Version: 10.0.239.0)
NI LabVIEW 2010 Web Server (Version: 10.0.234.0)
NI LabVIEW Broker (64 bit) (Version: 6.8.10.0)
NI LabVIEW Broker (Version: 6.8.10.0)
NI LabVIEW C Interface (Version: 1.0.1)
NI LabVIEW Compare Utility 10.0.0 (Version: 10.0.10.0)
NI LabVIEW EWB DeviceHandler 2010 (Version: 4.0.202.0)
NI LabVIEW MAX XML (Version: 9.0.6.0)
NI LabVIEW Merge Utility 10.0.0 (Version: 10.0.10.0)
NI LabVIEW Real-Time FIFO for Runtime (Version: 8.2.74.0)
NI LabVIEW Real-Time FIFO for Runtime (Version: 8.5.264.0)
NI LabVIEW Real-Time NBFifo (Version: 8.6.348.0)
NI LabVIEW Real-Time NBFifo (Version: 9.0.319.0)
NI LabVIEW Run-Time Engine 2009 SP1 (Version: 9.0.1074.0)
NI LabVIEW Run-Time Engine 2010 (Version: 10.0.240.0)
NI LabVIEW Run-Time Engine 8.2.1 (Version: 8.2.379.0)
NI LabVIEW Run-Time Engine 8.5.1 (Version: 8.5.313.0)
NI LabVIEW Run-Time Engine 8.6.1 (Version: 8.6.426.0)
NI LabVIEW Run-Time Engine Interop 2009 (Version: 9.0.146.0)
NI LabVIEW Run-Time Engine Interop 2010 (Version: 10.0.243.0)
NI LabVIEW SignalExpress 2010 (Version: 4.0.193.0)
NI LabVIEW SignalExpress 2010 Core (Version: 4.0.203.0)
NI LabVIEW SignalExpress 2010 Core LabVIEW 2010 Support (Version: 4.0.101.0)
NI LabVIEW SignalExpress 2010 Core LabVIEW Support (Version: 4.0.202.0)
NI LabVIEW SignalExpress 2010 Datatypes (Version: 4.0.191.0)
NI LabVIEW SignalExpress 2010 Datatypes LabVIEW 2010 Support (Version: 4.0.90.0)
NI LabVIEW SignalExpress 2010 LabVIEW 2010 Support (Version: 4.0.92.0)
NI LabVIEW SignalExpress 2010 LabVIEW Support (Version: 4.0.195.0)
NI LabVIEW SignalExpress 2010 Licenses (Version: 4.0.203.0)
NI LabVIEW SignalExpress 2010 Steps (Version: 4.0.195.0)
NI LabVIEW SignalExpress 2010 Tools (Version: 4.0.191.0)
NI LabVIEW Web Server for Run-Time Engine (Version: 10.0.235.0)
NI LabVIEW Web Server for Run-Time Engine (Version: 8.6.41.0)
NI LabVIEW Web Server for Run-Time Engine (Version: 9.0.185.0)
NI LabVIEW Web Services Runtime (Version: 10.0.235.0)
NI LabVIEW Web Services Runtime (Version: 8.6.48.0)
NI LabWindows/CVI 2009 Code Generator (Version: 9.1.0427)
NI LabWindows/CVI 9.0 Run-Time Engine (Version: 9.0.0356)
NI LabWindows/CVI DLL Builder for LabVIEW (Version: 9.0.1380)
NI License Manager (Version: 3.5.23)
NI Logos 5.2.0 (Version: 5.2.25.0)
NI Logos LabVIEW 2010 Support (Version: 10.0.229.0)
NI Logos XT Support (Version: 5.2.21.0)
NI Logos64 5.2.0 (Version: 5.2.25.0)
NI Logos64 XT Support (Version: 5.2.21.0)
NI LVBrokerAux 8.2.1 (Version: 8.2.303.0)
NI LVBrokerAux 8.5.0 (Version: 8.5.183.0)
NI Math Kernel Libraries (64-bit) (Version: 1.0.14.0)
NI Math Kernel Libraries (64-bit) (Version: 1.0.15.0)
NI Math Kernel Libraries (Version: 1.0.25.0)
NI Math Kernel Libraries (Version: 1.0.28.0)
NI Math Kernel Libraries (Version: 1.0.861.0)
NI MAX Remote Configuration 64-bit Installer 4.7 (Version: 4.70.49153)
NI MAX Remote Configuration Installer 4.7 (Version: 4.70.49153)
NI MAX Support for 64 Bit Windows (Version: 4.70.49156)
NI MDF Support (Version: 2.80.295)
NI mDNS Responder 1.3 for Windows 64-bit (Version: 1.30.49157)
NI mDNS Responder 1.3.0 (Version: 1.30.49157)
NI Measurement & Automation Explorer 4.7.0 (Version: 4.70.49156)
NI Measurement Studio 8.6 Enterprise RunTime for VS2005 (Version: 8.6.10466)
NI Measurement Studio Common .NET Assemblies for .NET 2.0 (Version: 8.9.00302)
NI Measurement Studio Recipe Processor (Version: 8.0.0101)
NI MetaSuite Installer (Version: 2.71.130)
NI MIO Device Drivers 2.4.6 (Version: 2.46.49154)
NI MIO Device Drivers for 64 Bit Windows 2.4.6 (Version: 2.46.49154)
NI MXS 4.7.0 (Version: 4.70.49152)
NI MXS 4.7.0 for 64 Bit Windows (Version: 4.70.49152)
NI OPC Support (Version: 10.0.158.0)
NI Portable Configuration 4.7.0 (Version: 4.70.49152)
NI Portable Configuration for 64 Bit Windows 4.7.0 (Version: 4.70.49152)
NI PXI Hardware 64-bit Support 2.5.6 (Version: 2.56.49152)
NI PXI Platform Framework 1.3.0 (Version: 1.30.49152)
NI PXI Platform Framework 1.3.0 64-bit (Version: 1.30.49152)
NI PXI Platform Services 2.5.6 (Version: 2.56.49152)
NI PXI Platform Services 2.5.6 Configuration Support (Version: 2.56.49152)
NI PXI Platform Services 2.5.6 Expert (Version: 2.56.49152)
NI PXI SystemAPI Expert 2.5.6 (Version: 2.56.49152)
NI PXI SystemAPI Expert 64-bit 2.5.6 (Version: 2.56.49152)
NI Registration Wizard (Version: 1.3.87.0)
NI Remote Provider for MAX 4.7.0 (Version: 4.70.49153)
NI Remote PXI Provider for MAX 4.7.0 (Version: 4.70.49152)
NI SCXI 1.13.5 (Version: 1.135.49152)
NI SCXI for 64 Bit Windows 1.13.5 (Version: 1.135.49152)
NI Software Provider for MAX 4.7.0 (Version: 4.70.49152)
NI Sound and Vibration Frequency Analysis 2010 (Version: 10.0.85.0)
NI Sound and Vibration Frequency Analysis LabVIEW 2010 Support (Version: 10.0.43.0)
NI SSL LabVIEW 2010 Support (Version: 10.0.208.0)
NI SSL Support (64-bit) (Version: 10.0.22.0)
NI SSL Support (Version: 10.0.22.0)
NI STC 1.8.0 (Version: 1.80.49152)
NI STC for 64 Bit Windows 1.8.0 (Version: 1.80.49152)
NI System API Windows 32-bit 1.1.0 (Version: 1.10.554.0)
NI System API Windows 64-bit 1.1.0 (Version: 1.10.551.0)
NI System Configuration 1.1.0 (Version: 1.10.335.0)
NI System Configuration 1.1.0 for Windows 64-bit (Version: 1.10.337.0)
NI System Configuration 1.1.0 LabVIEW Support (Version: 1.10.257.0)
NI System Configuration LV2010 1.1.0 (Version: 1.10.114.0)
NI System State Publisher (64-bit) (Version: 10.0.84.0)
NI System State Publisher (Version: 10.0.84.0)
NI System Web Server 1.0 (Version: 10.0.278.0)
NI System Web Server Base 1.0 (64-bit) (Version: 1.0.59.0)
NI System Web Server Base 1.0 (Version: 1.0.104.0)
NI TDM Excel Add-In 3.2 (Version: 3.2.63.0)
NI TDMS (64-bit) (Version: 2.0.350.0)
NI TDMS (Version: 2.0.350.0)
NI Timing for 64 Bit Windows 2.1.0 (Version: 2.10.49152)
NI Timing Installer 2.1.0 (Version: 2.10.49152)
NI Trace Engine (64-bit) (Version: 10.0.237.0)
NI Trace Engine (Version: 10.0.237.0)
NI Uninstaller (Version: 2.80.295)
NI Update Service (Version: 1.10.65.0)
NI Update Service Full (Version: 1.10.65.0)
NI USI 1.8.0 (Version: 1.8.04177)
NI USI 1.8.0 64-Bit (Version: 1.8.04177)
NI Variable Engine (64-bit) (Version: 2.4.158.0)
NI Variable Engine 2.4.0 (Version: 2.4.159.0)
NI Variable Engine LabVIEW 2010 Support (Version: 10.0.239.0)
NI VC2005MSMs x64 (Version: 8.02.0)
NI VC2005MSMs x86 (Version: 8.02.0)
NI VC2008MSMs x64 (Version: 9.0.201)
NI VC2008MSMs x86 (Version: 9.0.201)
NI Web Application Server 1.0 (64-bit) (Version: 1.0.59.0)
NI Web Application Server 1.0 (Version: 1.0.109.0)
NI Web Interface Framework 1.0 (Version: 1.0.114.0)
NI Web Pipeline 2.0.1 (Version: 2.0.128.0)
NI Web Pipeline 2.0.1 64-bit support (Version: 2.0.122.0)
NI Xalan Delay Load 1.10.1 (Version: 1.10.46.0)
NI Xalan Delay Load 1.10.1 64-bit (Version: 1.10.47.0)
NI Xerces Delay Load 2.7.1 (Version: 2.7.123.0)
NI Xerces Delay Load 2.7.1 64-bit (Version: 2.7.128.0)
NVIDIA 3D Vision Driver 260.99 (Version: 260.99)
NVIDIA Control Panel 260.99 (Version: 260.99)
NVIDIA Graphics Driver 260.99 (Version: 260.99)
NVIDIA HD Audio Driver 1.1.9.0 (Version: 1.1.9.0)
NVIDIA Install Application (Version: 2.0.12.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 260.99 (Version: 260.99)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6099)
onOne PerfectPresets (Version: 1.0)
Opera 11.11 (Version: 11.11.2109)
Photomatix Pro version 4.0.2 (Version: 4.0.2)
Pidgin (Version: 2.7.11)
QuickTime (Version: 7.69.80.9)
Safari (Version: 5.33.20.27)
Sassafras K2 Client (Version: 6.1)
Skype Toolbars (Version: 5.0.4137)
Skype™ 5.3 (Version: 5.3.120)
Slacker Software Player (Version: 1.0.0169.0000)
Solve Elec 2.5
Steam (Version: 1.0.0.0)
Symantec Endpoint Protection (Version: 11.0.6005.562)
System Requirements Lab
Team Fortress 2
TI Connect 1.6 (Version: 1.6)
Update for Microsoft Office 2010 (KB2202188)
Update for Microsoft Office 2010 (KB2413186)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2523113)
Update for Microsoft OneNote 2010 (KB2493983)
Update for Microsoft Outlook Social Connector (KB2441641)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Ventrilo Client for Windows x64 (Version: 3.0.7.0)
VISA Shared Components 64-Bit (Version: 1.3.0)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Windows Driver Package - Texas Instruments Inc. (SilvrLnk) USB (06/11/2009 1.0.0.0) (Version: 06/11/2009 1.0.0.0)
Windows Driver Package - Texas Instruments Inc. (TIEHDUSB) USB (09/02/2009 1.0.0.1) (Version: 09/02/2009 1.0.0.1)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
WinRAR 4.00 (64-bit) (Version: 4.00.0)
Xvid 1.2.2 final uninstall (Version: 1.2)

========================= Memory info: ===================================

Percentage of memory in use: 64%
Total physical RAM: 4095.11 MB
Available physical RAM: 1452.1 MB
Total Pagefile: 8188.37 MB
Available Pagefile: 5953.39 MB
Total Virtual: 4095.88 MB
Available Virtual: 3980.75 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:149.54 GB) (Free:61.34 GB) NTFS
3 Drive e: (DataFO-Vadar) (Fixed) (Total:148.45 GB) (Free:113.13 GB) NTFS
4 Drive f: (Photos-Plugins-settings-manuals) (Fixed) (Total:465.76 GB) (Free:245.85 GB) NTFS

========================= Users: ========================================

User accounts for \\PHOTONUTS

Administrator Guest Tom


== End of log ==

#7 photomech

photomech
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 04:54 PM

I am doing everything right (I think) for GMER and well I let it run once and it took a while as expected but then when I saved well the log file saves with 0kb in it...and hitting copy does not copy anything..... Also I noticed that (in the rootkits/malware tab) the only items I can have selected even are services, registry and files...below the drive selection area there is a item labeled "ADS" I left it checked
what might I be doing wrong

Oh and after the scan a pop up appeared reading "GMER hasn't found system modification"

#8 photomech

photomech
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 05:04 PM

here is the MBAM log


Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7457

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

8/13/2011 6:02:14 PM
mbam-log-2011-08-13 (18-02-14).txt

Scan type: Quick scan
Objects scanned: 179611
Time elapsed: 2 minute(s), 50 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#9 photomech

photomech
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 05:16 PM

Just let me know what is next

#10 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:37 AM

Posted 13 August 2011 - 05:53 PM

but then when I saved well the log file saves with 0kb in it.

That's fine. It means, it didn't find any changes.

All logs are clean, so your best option is to create new topic in Windows 7 forum.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#11 photomech

photomech
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:37 AM

Posted 13 August 2011 - 05:58 PM

so there is no chance that malicious processes are running in the shadows etc, I mean what other signs should I look for ? its just when I did a dds on my own yesterday I am getting a good deal of those svchost -k _______
I just am not sure if they are masquerading or what not, but if you think I should move on back to the Win 7 forum I will .
Thanks for your time.

#12 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:37 AM

Posted 13 August 2011 - 06:35 PM

I can't comment on DDS logs.

If you want to pursue malware direction....

With the information you have provided I believe you will need help from the malware removal team.
Please make sure that you read the information about getting started first.
Then start a new thread HERE and include or required logs.
Including a link to this thread will be helpful.

Good luck and be patient. Help is on the way!

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users