Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


videos stop in the middle and sound went away

  • This topic is locked This topic is locked
5 replies to this topic

#1 usp8baller


  • Members
  • 31 posts
  • Local time:01:54 PM

Posted 14 August 2012 - 10:58 PM

I did not post any GMER logs, because I could not determine if it was 32 or 64 bit. I looked up how to determine this and the steps did not show the type.

The problems started after watching youtube videos, not sure if I was on any other sites just playing around at the same time. I do think I had a good bit of videos open when this problem started. The videos had no sound and my volume control was gone and Windows acted like there was no audio device. I kind of fix the sound, by using chkdsk /r. The sound works but the video problem persists. The videos also would stop in the middle without being paused. I could restart and continue the video, but this is very annoying. Not sure if this is Malware or Viruses or just corrupt files.

Thanks in advanced for the help. I have used this site before to great results and always return when I have computer issues.

DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.4.1
Run by greejosc at 22:32:51 on 2012-08-14
============== Running Processes ===============
============== Pseudo HJT Report ===============
uStart Page = https://www.bakerhughesdirect.com/cgi/bhi/myHomePage/welcome.jsp
uURLSearchHooks: UrlSearchHook Class: {00000000-6e41-4fd3-8538-502f5495e5fc} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: PlusIEEventHelper Class: {551a852f-39a6-44a7-9c13-afbec9185a9d} - c:\program files\nuance\pdf professional 7\bin\PlusIEContextMenu.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20120208100731.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\program files\mcafee\siteadvisor enterprise\McIEPlg.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~2\office14\URLREDIR.DLL
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: ZeonIEEventHelper Class: {da986d7d-ccaf-47b2-84fe-bfa1549bebf9} - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
TB: Nuance PDF: {e3286bf1-e654-42ff-b4a6-5e111731df6b} - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\program files\mcafee\siteadvisor enterprise\McIEPlg.dll
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\greejosc\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [Push Client] "c:\documents and settings\greejosc\local settings\application data\att connect\participant\pull.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [BCSSync] "c:\program files\microsoft office\office14\BCSSync.exe" /DelayServices
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
mRun: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [McAfeeUpdaterUI] "c:\program files\mcafee\common framework\udaterui.exe" /StartedFromRunKey
mRun: [ShStatEXE] "c:\program files\mcafee\virusscan enterprise\SHSTAT.EXE" /STANDALONE
mRun: [Cisco AnyConnect Secure Mobility Agent for Windows] "c:\program files\cisco\cisco anyconnect secure mobility client\vpnui.exe" -minimized
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NVHotkey] rundll32.exe nvHotkey.dll,Start
mRun: [CAF_SystemTray] "c:\program files\ca\dsm\bin\cfSysTray.exe"
mRun: [<NO NAME>]
mRun: [AT&T Communication Manager] "c:\program files\at&t\communication manager\ATTCM.exe" -a
mRun: [USBAntivirus.exe] c:\program files\usbantivirus\USBAntivirus.exe -Hide
mRun: [Communicator] "c:\program files\microsoft office communicator\communicator.exe" /fromrunkey
mRun: [PDFHook] c:\program files\nuance\pdf professional 7\pdfpro7hook.exe
mRun: [PDF7 Registry Controller] c:\program files\nuance\pdf professional 7\RegistryController.exe
mRun: [PdfProInboxMonitor] c:\program files\nuance\pdf professional 7\InboxMonitor.exe /Run
mRun: [InboxMonitor] "c:\program files\nuance\pdf professional 7\InboxMonitor.exe" /run
mRun: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [ApnUpdater] "c:\program files\ask.com\updater\Updater.exe"
mRun: [Wondershare Helper Compact.exe] c:\program files\common files\wondershare\wondershare helper compact\WSHelper.exe
mRun: [BrMfcWnd] c:\program files\brother\brmfcmon\BrMfcWnd.exe /AUTORUN
mRun: [SetDefPrt] c:\program files\brother\brmfl06a\BrStDvPt.exe
mRun: [ControlCenter3] c:\program files\brother\controlcenter3\brctrcen.exe /autorun
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\dellsy~1.lnk - c:\program files\dell\dell system manager\DCPSysMgr.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ftputi~1.lnk - c:\program files\konica minolta\ftp utility\KMFtp.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\global~1.lnk - c:\windows\installer\{f3c1de9e-5e16-4ba9-b854-7b53a45e3579}\Icon3E5562ED7.ico
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\winzip~1.lnk - c:\program files\winzip\WZQKPICK.EXE
uPolicies-disallowrun: 1 = 007.PIF
uPolicies-disallowrun: 2 = 04.PIF
uPolicies-disallowrun: 3 = 3.92315089702606E02.UUE
uPolicies-disallowrun: 4 = 3.92315089702606E02.UUE
uPolicies-disallowrun: 5 = 677.PIF
uPolicies-disallowrun: 6 = a.exe
uPolicies-disallowrun: 7 = aollaunch.exe
uPolicies-disallowrun: 8 = aolsetup.exe
uPolicies-disallowrun: 9 = aolsoftware.exe
uPolicies-disallowrun: 10 = ARAB SEX DSC-00465.JPG
uPolicies-disallowrun: 11 = ATTACHMENTS00.HQX
uPolicies-disallowrun: 12 = ATTACHMENTS001.BHX
uPolicies-disallowrun: 13 = botzor.exe
uPolicies-disallowrun: 14 = dc1.exe
uPolicies-disallowrun: 15 = DOCUMENT.PIF
uPolicies-disallowrun: 16 = DSC-00465.PIF
uPolicies-disallowrun: 17 = EBOOK.PIF
uPolicies-disallowrun: 18 = EBOOK.UU
uPolicies-disallowrun: 19 = formatsys.exe
uPolicies-disallowrun: 20 = GG.EXE
uPolicies-disallowrun: 21 = googletalk.exe
uPolicies-disallowrun: 22 = googletalk-setup.exe
uPolicies-disallowrun: 23 = haha.exe
uPolicies-disallowrun: 24 = ICQ.exe
uPolicies-disallowrun: 25 = ICQLite.exe
uPolicies-disallowrun: 26 = IMAGE04.PIF
uPolicies-disallowrun: 27 = IMVUClient.exe
uPolicies-disallowrun: 28 = IMVUClient.exe
uPolicies-disallowrun: 29 = IMVUQualityAgent.exe
uPolicies-disallowrun: 30 = IMVUupdater.exe
uPolicies-disallowrun: 31 = INETE.EXE
uPolicies-disallowrun: 32 = Install_AIM.exe
uPolicies-disallowrun: 33 = logo1_.exe
uPolicies-disallowrun: 34 = lspt.exe
uPolicies-disallowrun: 35 = meebo repeater.exe
uPolicies-disallowrun: 36 = meebo_platform.swf
uPolicies-disallowrun: 37 = myspaceIM.exe
uPolicies-disallowrun: 38 = myspaceIm_setup.exe
uPolicies-disallowrun: 39 = NEW_DOCUMENT_FILE.PIF
uPolicies-disallowrun: 40 = ocarteiro.exe
uPolicies-disallowrun: 41 = openfire-service.exe
uPolicies-disallowrun: 42 = pal_install_r17709.exe
uPolicies-disallowrun: 43 = PALTALK.exe
uPolicies-disallowrun: 44 = PHOTO.PIF
uPolicies-disallowrun: 45 = photo94.com
uPolicies-disallowrun: 46 = pnpsrv.exe
uPolicies-disallowrun: 47 = psyconaut.exe
uPolicies-disallowrun: 48 = qq.exe
uPolicies-disallowrun: 49 = SCHOOL.PIF
uPolicies-disallowrun: 50 = serbw.exe
uPolicies-disallowrun: 51 = SEX.MIM
uPolicies-disallowrun: 52 = skype.exe
uPolicies-disallowrun: 53 = SkypeIEPlugin.dll
uPolicies-disallowrun: 54 = skypePM.exe
uPolicies-disallowrun: 55 = SkypeSetup.exe
uPolicies-disallowrun: 56 = snmoo.exe
uPolicies-disallowrun: 57 = SSVICHOSST.exe
uPolicies-disallowrun: 58 = VIDEO_PART.MIM
uPolicies-disallowrun: 59 = winpnp.exe
uPolicies-disallowrun: 60 = winsony.exe
uPolicies-disallowrun: 61 = WINZIP.BHX
uPolicies-disallowrun: 62 = WLinstaller.exe
uPolicies-disallowrun: 63 = WORD_DOCUMENT.HQX
uPolicies-disallowrun: 64 = WORD_DOCUMENT.UU
uPolicies-disallowrun: 65 = xfire.exe
uPolicies-disallowrun: 66 = xfire_installer_28887.exe
uPolicies-disallowrun: 67 = YahooMessenger.exe
uPolicies-disallowrun: 68 = stsys.exe
IE: Append the content of the link to existing PDF file - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Append the content of the selected links to existing PDF file - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
IE: Append to existing PDF file - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Create PDF file - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF file from the content of the link - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF files from the selected links - c:\program files\nuance\pdf professional 7\bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000
IE: Open with Nuance PDF Converter 7.0 - c:\program files\nuance\pdf professional 7\cnvres_eng.dll /100
IE: Open with PDF Professional 7 - c:\program files\nuance\pdf professional 7\bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
LSP: bmnet.dll
Trusted Zone: bhicms
Trusted Zone: bravacel
Trusted Zone: bravahou
Trusted Zone: CelleWeb
Trusted Zone: concursolutions.com\www2
Trusted Zone: DMSQUERY
Trusted Zone: dmsquerycel
Trusted Zone: dmsquerydev
Trusted Zone: dmsqueryhou
Trusted Zone: gt90
Trusted Zone: Inview
Trusted Zone: materials
Trusted Zone: peoplelink.bakerhughes.com
Trusted Zone: wrap
Trusted Zone: wrapAP
Trusted Zone: wrapAP2
Trusted Zone: wrapEARC
Trusted Zone: wrapEARC2
Trusted Zone: wrapLA
Trusted Zone: wrapME
Trusted Zone: wrapME2
Trusted Zone: wrapNA
Trusted Zone: wrapteam
Trusted Zone: wraptest
DPF: 55963676-2F5E-4BAF-AC28-CF26AA587566 - vpnweb.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1304524567802
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
TCP: DhcpNameServer =
TCP: Interfaces\{1D9A9938-7F9B-48C8-BF72-223AF426A17D} : NameServer =,
TCP: Interfaces\{611DD4BD-315E-482A-AC75-82DC183A52D6} : DhcpNameServer =
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor enterprise\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor enterprise\McIEPlg.dll
Handler: saphtmlp - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files\sap\frontend\sapgui\SAPHTMLP.DLL
Handler: sapr3 - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files\sap\frontend\sapgui\SAPHTMLP.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office14\GROOVEEX.DLL
mASetup: SAPGUI_7.10 - cmd.exe /c Reg.exe IMPORT "%ProgramFiles%\SAP\SapSetup\sapCU.reg"
================= FIREFOX ===================
FF - ProfilePath - c:\documents and settings\greejosc\application data\mozilla\firefox\profiles\x2jkta18.default\
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - hxxp://www.ask.com/?l=dis&o=41648106&gct=hp
FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=FTB&o=41648106&locale=en_US&apn_uid=8B44A710-B4AE-4FED-8BB3-6A8248758CAA&apn_ptnrs=9C&apn_sauid=0F7C1454-950C-45E2-A94C-147EFD38ECD8&apn_dtid=YYYYYYU6US&&q=
FF - plugin: c:\documents and settings\greejosc\local settings\application data\google\update\\npGoogleUpdate3.dll
FF - plugin: c:\progra~1\micros~2\office14\NPAUTHZ.DLL
FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\microsoft silverlight\4.1.10111.0\npctrlui.dll
FF - plugin: c:\program files\nuance\pdf professional 7\bin\nppdf.dll
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
============= SERVICES / DRIVERS ===============
=============== Created Last 30 ================
2012-08-12 21:51:08 -------- d-----w- c:\documents and settings\greejosc\application data\Malwarebytes
2012-08-12 21:50:53 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2012-08-12 21:50:51 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-12 21:50:50 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-12 21:03:11 -------- d-----w- C:\NVIDIA
2012-08-12 20:44:03 -------- d-----w- c:\documents and settings\greejosc\application data\driveridentifier
2012-08-12 04:55:56 -------- d-----w- c:\windows\pss
2012-08-12 04:46:12 -------- d-----w- c:\program files\Advanced Fix 2012
==================== Find3M ====================
2012-08-12 05:50:56 260300 ----a-w- c:\windows\system32\nvdrsdb0.bin
2012-08-12 05:50:56 1 ----a-w- c:\windows\system32\nvdrssel.bin
2012-08-12 05:29:00 260300 ----a-w- c:\windows\system32\nvdrsdb1.bin
2011-09-26 17:19:06 1941504 ----a-w- c:\program files\common files\O405_r61.bpl
2011-09-26 16:46:36 15868915 ----a-w- c:\program files\common files\PE7-Pro-Setup.exe
============= FINISH: 22:33:23.67 ===============

Attached Files

BC AdBot (Login to Remove)


#2 m0le


    Can U Dig It?

  • Malware Response Team
  • 34,527 posts
  • Gender:Male
  • Location:London, UK
  • Local time:06:54 PM

Posted 19 August 2012 - 06:51 PM


Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks :thumbup2:
Posted Image
m0le is a proud member of UNITE

#3 usp8baller

  • Topic Starter

  • Members
  • 31 posts
  • Local time:01:54 PM

Posted 20 August 2012 - 12:49 PM


I have used this site before and read what to do prior to posting. I am watching this thread and waiting for help.

#4 m0le


    Can U Dig It?

  • Malware Response Team
  • 34,527 posts
  • Gender:Male
  • Location:London, UK
  • Local time:06:54 PM

Posted 20 August 2012 - 06:28 PM

This doesn't look like malware. The video issue sounds like a slowdown in your speed.

Have you done a check?

Posted Image
m0le is a proud member of UNITE

#5 m0le


    Can U Dig It?

  • Malware Response Team
  • 34,527 posts
  • Gender:Male
  • Location:London, UK
  • Local time:06:54 PM

Posted 24 August 2012 - 08:55 PM


I have not had a reply from you for 3 days. Can you please tell me if you still need help with your computer as I am unable to help other members with their problems while I have your topic still open. The time taken between posts can also change the situation with your PC making it more difficult to help you.

If you like you can PM me.


Posted Image
m0le is a proud member of UNITE

#6 m0le


    Can U Dig It?

  • Malware Response Team
  • 34,527 posts
  • Gender:Male
  • Location:London, UK
  • Local time:06:54 PM

Posted 25 August 2012 - 08:19 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.
Posted Image
m0le is a proud member of UNITE

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users