Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Display Settings Problem


  • Please log in to reply
5 replies to this topic

#1 rrredblack009

rrredblack009

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:04:20 PM

Posted 22 August 2013 - 04:43 PM

Split from  http://www.bleepingcomputer.com/forums/t/494720/virus-that-changes-display-settings/ - Hamluis.

 

 

 

I'd think it could be a failing video chip/card...or damaged drivers.

 

Did you uninstall the old drivers before attempting to update?

 

Please download MiniToolBox  , save it to your desktop and run it.

 

Checkmark the following checkboxes:

  List last 10 Event Viewer log

  List Installed Programs

 List Users, Partitions and Memory size.

 

Click Go and paste the content into your next post.

 

Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link.  Do not copy/paste data from the report.

 

Louis

hello sir... :)
im rrredblack...newbie here...
 
I have the same issue ....!!
I can not change the display settings ...!
display setting just 4bit....!!

 

 
These are the results from minitoolbox ....!!
hope you can help me find the best solution to solve this issue .... thanks ..
 
MiniToolBox by Farbar  Version: 13-07-2013
Ran by User (administrator) on 23-08-2013 at 04:47:25
Running from "C:\Users\User\Downloads\Programs"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= FF Proxy Settings: ============================== 
 
"network.proxy.autoconfig_url", "http://localhost:9000/proxy.pac"
"network.proxy.type", 2
========================= IP Configuration: ================================
 
Realtek RTL8168/8111 Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : User-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection* 15:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Anchorfree HSS VPN Adapter
   Physical Address. . . . . . . . . : 00-FF-5A-78-96-E5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : Home
   Description . . . . . . . . . . . : Realtek RTL8168/8111 Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
   Physical Address. . . . . . . . . : 00-1C-C0-D5-1C-A0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 7:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.{74E9849D-9380-46DE-AD5C-E9D34E56A081}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 14:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.Home
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  127.0.0.1
 
Ping request could not find host google.com. Please check the name and try again.
 
Server:  UnKnown
Address:  127.0.0.1
 
Ping request could not find host yahoo.com. Please check the name and try again.
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
Reply from 127.0.0.1: bytes=32 time=7ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 1ms, Maximum = 7ms, Average = 4ms
 
===========================================================================
Interface List
 18 ...00 ff 5a 78 96 e5 ...... Anchorfree HSS VPN Adapter
 10 ...00 1c c0 d5 1c a0 ...... Realtek RTL8168/8111 Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
  1 ........................... Software Loopback Interface 1
 15 ...00 00 00 00 00 00 00 e0  isatap.{74E9849D-9380-46DE-AD5C-E9D34E56A081}
 12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 17 ...00 00 00 00 00 00 00 e0  isatap.Home
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  1    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/22/2013 07:05:54 PM) (Source: Application Error) (User: )
Description: Faulting application DLLFixer.exe, version 2.7.72.2072, time stamp 0x4f02d98c, faulting module DLLFixer.exe, version 2.7.72.2072, time stamp 0x4f02d98c, exception code 0xc0000005, fault offset 0x00075a1d,
process id 0x830, application start time 0xDLLFixer.exe0.
 
Error: (08/22/2013 06:10:42 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 01:00:50 AM) (Source: Application Error) (User: )
Description: Faulting application QvodDaily.exe, version 1.0.0.5, time stamp 0x5135a9db, faulting module Flash10e.ocx, version 10.0.45.2, time stamp 0x4b5f8faa, exception code 0xc0000005, fault offset 0x000024eb,
process id 0x570, application start time 0xQvodDaily.exe0.
 
Error: (08/22/2013 00:48:03 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 00:44:36 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 00:44:11 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 00:42:42 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 00:29:52 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 00:17:48 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 00:14:01 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
 
System errors:
=============
Error: (08/22/2013 07:04:14 PM) (Source: Service Control Manager) (User: )
Description: i8042prt
 
Error: (08/22/2013 07:04:14 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service
 
Error: (08/22/2013 07:03:32 PM) (Source: Service Control Manager) (User: )
Description: Superfetch%%2
 
Error: (08/22/2013 07:02:53 PM) (Source: Service Control Manager) (User: )
Description: TeamViewer 6%%3
 
Error: (08/22/2013 07:02:53 PM) (Source: Service Control Manager) (User: )
Description: Run software as Windows service%%3
 
Error: (08/22/2013 07:02:53 PM) (Source: Service Control Manager) (User: )
Description: Time Universal%%126
 
Error: (08/22/2013 07:02:06 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: 0
 
Error: (08/22/2013 07:02:06 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: 1
 
Error: (08/22/2013 06:30:33 PM) (Source: DCOM) (User: )
Description: 1068stisvc{A1F4E726-8CF1-11D1-BF92-0060081ED811}
 
Error: (08/22/2013 06:11:53 PM) (Source: Service Control Manager) (User: )
Description: Network List ServiceNetwork Location Awareness%%1068
 
 
Microsoft Office Sessions:
=========================
Error: (03/28/2013 00:25:30 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2258 seconds with 1320 seconds of active time.  This session ended with a crash.
 
Error: (08/03/2011 08:25:27 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 17 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/23/2009 09:50:21 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 79 seconds with 60 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-08-22 18:59:44.692
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:44.567
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:44.443
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:44.318
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:44.193
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:44.068
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:42.415
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.1.7600.16385_none_6f63648421975be3\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:42.290
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.1.7600.16385_none_6f63648421975be3\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:42.165
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.1.7600.16385_none_6f63648421975be3\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 18:59:42.040
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tpm-driver-wmi_31bf3856ad364e35_6.1.7600.16385_none_6f63648421975be3\Win32_Tpm.dll because the set of per-page image hashes could not be found on the system.
 
 
**** End of log ****
 

 


Edited by hamluis, 22 August 2013 - 06:43 PM.
PM sent new OP - Hamluis.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,411 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:03:20 AM

Posted 23 August 2013 - 10:13 AM

As a start...I suggest that you remove Advanced System Care from your system.  This program is a "registry cleaner/optimizer" and BC does not suggest or otherwise encourage the use of such.

 

Registry cleaner - Wikipedia, the free encyclopedia - http://en.wikipedia.org/wiki/Registry_cleaner

 

Microsoft support policy for the use of registry cleaning utilities - http://support.microsoft.com/kb/2563254

 

Once that is removed...I suggest that you run the chkdsk /r  command on the Windows partition.

 

When that completes...please do the following exactly as prescribed:

 

Please download MiniToolBox  , save it to your desktop and run it.

 

Checkmark the following checkboxes:

  List last 10 Event Viewer log

  List Installed Programs

  List Users, Partitions and Memory size.

 

Click Go and paste the content into your next post.

 

Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link.

 

Louis



#3 rrredblack009

rrredblack009
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:04:20 PM

Posted 24 August 2013 - 12:21 AM

As a start...I suggest that you remove Advanced System Care from your system.  This program is a "registry cleaner/optimizer" and BC does not suggest or otherwise encourage the use of such.

 

Registry cleaner - Wikipedia, the free encyclopedia - http://en.wikipedia.org/wiki/Registry_cleaner

 

Microsoft support policy for the use of registry cleaning utilities - http://support.microsoft.com/kb/2563254

 

Once that is removed...I suggest that you run the chkdsk /r  command on the Windows partition.

 

When that completes...please do the following exactly as prescribed:

 

Please download MiniToolBox  , save it to your desktop and run it.

 

Checkmark the following checkboxes:

  List last 10 Event Viewer log

  List Installed Programs

  List Users, Partitions and Memory size.

 

Click Go and paste the content into your next post.

 

Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link.

 

Louis

 

uninstall Advanced system care --------> done.

 

MiniToolBox result :

 

MiniToolBox by Farbar  Version: 13-07-2013

Ran by User (administrator) on 24-08-2013 at 12:43:15
Running from "C:\Users\User\Downloads\Programs"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/24/2013 00:29:07 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/24/2013 00:21:16 PM) (Source: Application Error) (User: )
Description: Faulting application DLLFixer.exe, version 2.7.72.2072, time stamp 0x4f02d98c, faulting module DLLFixer.exe, version 2.7.72.2072, time stamp 0x4f02d98c, exception code 0xc0000005, fault offset 0x00075a1d,
process id 0x2a4, application start time 0xDLLFixer.exe0.
 
Error: (08/24/2013 00:10:18 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/24/2013 00:05:55 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.
 
 
Operation:
   Gathering Writer Data
 
Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {b56cee0f-8fe2-4b37-aada-5fb45b85890a}
 
Error: (08/24/2013 11:44:21 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/24/2013 11:35:20 AM) (Source: System Restore) (User: )
Description: Failed to create restore point on volume (Process = C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe Files\Dll-Files.com Fixer\DLLFixer.exe" ; Descripton = DLL-Files.com Fixer Sat, Aug 24, 13  11:35; Hr = 0x8007043c).
 
Error: (08/24/2013 11:34:02 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 07:05:54 PM) (Source: Application Error) (User: )
Description: Faulting application DLLFixer.exe, version 2.7.72.2072, time stamp 0x4f02d98c, faulting module DLLFixer.exe, version 2.7.72.2072, time stamp 0x4f02d98c, exception code 0xc0000005, fault offset 0x00075a1d,
process id 0x830, application start time 0xDLLFixer.exe0.
 
Error: (08/22/2013 06:10:42 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (08/22/2013 01:00:50 AM) (Source: Application Error) (User: )
Description: Faulting application QvodDaily.exe, version 1.0.0.5, time stamp 0x5135a9db, faulting module Flash10e.ocx, version 10.0.45.2, time stamp 0x4b5f8faa, exception code 0xc0000005, fault offset 0x000024eb,
process id 0x570, application start time 0xQvodDaily.exe0.
 
 
System errors:
=============
Error: (08/24/2013 00:35:33 PM) (Source: Service Control Manager) (User: )
Description: i8042prt
 
Error: (08/24/2013 00:35:33 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service
 
Error: (08/24/2013 00:34:45 PM) (Source: Service Control Manager) (User: )
Description: Superfetch%%2
 
Error: (08/24/2013 00:34:07 PM) (Source: Service Control Manager) (User: )
Description: TeamViewer 6%%3
 
Error: (08/24/2013 00:34:07 PM) (Source: Service Control Manager) (User: )
Description: Run software as Windows service%%3
 
Error: (08/24/2013 00:34:07 PM) (Source: Service Control Manager) (User: )
Description: Time Universal%%126
 
Error: (08/24/2013 00:33:41 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: 1
 
Error: (08/24/2013 00:33:41 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: 0
 
Error: (08/24/2013 00:30:13 PM) (Source: Service Control Manager) (User: )
Description: avipbb
ESProtectionDriver
i8042prt
MpFilter
spldr
ssmdrv
Wanarpv6
 
Error: (08/24/2013 00:30:13 PM) (Source: Service Control Manager) (User: )
Description: Microsoft Network Inspection SystemMicrosoft Malware Protection Driver%%31
 
 
Microsoft Office Sessions:
=========================
Error: (03/28/2013 00:25:30 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2258 seconds with 1320 seconds of active time.  This session ended with a crash.
 
Error: (08/03/2011 08:25:27 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 17 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/23/2009 09:50:21 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 79 seconds with 60 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-08-24 02:14:52.982
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 02:14:52.842
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 02:14:52.705
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 02:14:52.567
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 02:14:52.431
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 02:14:52.287
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 01:43:01.881
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 01:43:01.740
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 01:43:01.600
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-24 01:43:01.427
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
 Update for Microsoft Office 2007 (KB2508958)
?? 5.10.134 (Version: 5.10.134)
32 Bit HP CIO Components Installer (Version: 1.0.0)
3600_Help (Version: 1.00.0000)
7-Zip 9.21beta
Adobe Acrobat 4.0 (Version: 4.0)
Adobe CS5
Adobe Flash Player 10 ActiveX (Version: 10.0.45.2)
Adobe Flash Player 11 Plugin (Version: 11.8.800.94)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Shockwave Player 12.0 (Version: 12.0.3.133)
Angry Birds Seasons (Version: 1.5.1)
ATI RADEON 8500 Bubbles Screen Saver v1.1 (Version: 1.1)
BPD_Scan (Version: 3.00.0000)
BPDSoftware (Version: 82.0.173.000)
BPDSoftware_Ini (Version: 1.00.0000)
BufferChm (Version: 100.0.170.000)
CubeDesktop 1.3.1 (Version: 1.3.1)
D4300 (Version: 100.0.206.000)
D4300_Help (Version: 100.0.206.000)
Destinations (Version: 82.0.173.000)
DeviceDiscovery (Version: 100.0.190.000)
DivX Browser Bar Toolbar (Version: 6.15.0.27)
DivX Setup (Version: 2.6.1.44)
DJ_SF_03_D4300_ProductContext (Version: 100.0.215.000)
DJ_SF_03_D4300_Software (Version: 100.0.206.000)
DJ_SF_03_D4300_Software_Min (Version: 100.0.206.000)
Dll-Files.com Fixer (Version: 1.0)
DMC Devi May Cry © Capcom version 1 (Version: 1)
DocProc (Version: 8.1.0.0)
DocProcQFolder (Version: 1.00.0000)
Download Updater (AOL LLC)
Driver Detective (Version: 8.1)
Driver Installer (Version: 2.2.0.536)
DriverAgent by eSupport.com
DRIVERfighter (Version: 1.1.39)
EasyBCD 2.2 (Version: 2.2)
Facebook Plug-In
Fax (Version: 82.0.188.000)
Foxit Reader 5.0 (Version: 5.0.1.0527)
Game Booster 3 (Version: 3.1)
GoforFiles (Version: 1.7.1)
Google Chrome (Version: 27.0.1453.110)
GPBaseService (Version: 100.0.187.000)
Hotspot Shield 3.11 (Version: 3.11)
HP Customer Participation Program 10.0 (Version: 10.0)
HP Deskjet 4620 series Basic Device Software (Version: 28.0.1315.0)
HP Deskjet 4620 series Help (Version: 6.0.0)
HP Deskjet 4620 series Product Improvement Study (Version: 28.0.1315.0)
HP Deskjet D4300 Printer Driver Software 10.0 Rel .3 (Version: 10.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
HP OCR Software 8.0 (Version: 8.0)
HP Officejet J3600 Series (Version: 1.0)
HP Photosmart Essential 2.5 (Version: 1.02.0000)
HP Photosmart Essential 2.5 (Version: 2.5)
HP Smart Web Printing (Version: 3.5)
HP Solution Center 10.0 (Version: 10.0)
HP Update (Version: 5.003.003.001)
HPProductAssistant (Version: 100.0.170.000)
HPSSupply (Version: 100.0.170.000)
I.R.I.S. OCR (Version: 12.3.4.0)
IncrediMail (Version: 6.0.6.4501)
Intel® SMBus
Internet Download Manager
IObit Malware Fighter (Version: 2.0)
J3600 (Version: 50.0.165.000)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Kamus 2.04 (Version: 2.04)
K-Lite Mega Codec Pack 5.7.0 (Version: 5.7.0)
LightScribe  1.4.124.1 (Version: 1.4.124.1)
Malwarebytes Anti-Exploit version 0.9.2 beta (Version: 0.9.2 beta)
Malwarebytes' Anti-Malware version 1.51.2.1300 (Version: 1.51.2.1300)
MarketResearch (Version: 100.0.170.000)
MartView (Version: 2.10)
MediaBar
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Fix it Center (Version: 1.0.0100)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.3.0215.0)
Microsoft Security Essentials (Version: 4.3.215.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mozilla Firefox 5.0.1 (x86 en-US) (Version: 5.0.1)
MSL 2013 Patch v4.0
MSL 2013 Patch v4.4
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
Need for Speed Most Wanted
Need for Speed The Run version 1.0 (Version: 1.0)
Need for Speed™ Hot Pursuit (Version: 1.0.0.0)
Nero 7 Essentials (Version: 7.02.4509)
Nokia Connectivity Adapter Cable DKU-5
NVIDIA 3D Vision Controller Driver 320.49 (Version: 320.49)
NVIDIA Control Panel 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.6 (Version: 1.6)
NVIDIA Graphics Driver 320.49 (Version: 320.49)
NVIDIA Install Application (Version: 2.1002.131.854)
NVIDIA PhysX (Version: 9.13.0604)
NVIDIA PhysX System Software 9.13.0604 (Version: 9.13.0604)
NVIDIA Update 7.2.17 (Version: 7.2.17)
NVIDIA Update Components (Version: 7.2.17)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OpenAL
OpenSubtitlesPlayer V4.X
PDF Settings CS6 (Version: 11.0)
PhotoMail Maker (Version: 1.0.0.1040)
Picasa 3 (Version: 3.1)
Power MP3 Cutter Joiner 1.12
Pro Evolution Soccer 2013 (Version: 1.00.0000)
ProductContext (Version: 50.0.165.000)
Protected Folder
PSSWCORE (Version: 2.02.0000)
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6662)
Resident Evil 6 version 1 (Version: 1)
Sakura
Sandlot Games Client Services
Sawer
SBK™ Generations (Version: 1.00.0000)
Scan (Version: 8.1.0.0)
Security Task Manager 1.8g (Version: 1.8g)
Shop for HP Supplies (Version: 10.0)
Sierra Wireless Watcher (Version: 5.0.1986.0006)
SlimDrivers (Version: 2.2.30877)
Smart Defrag 2 (Version: 2.8)
Smart Driver Updater v3.0 (Version: 3.0)
SmartWebPrintingOC (Version: 100.0.189.000)
Sniper Ghost Warrior - Gold Edition
SolutionCenter (Version: 100.0.175.000)
SpeedFan (remove only)
Splash PRO EX (Version: 1.12.1)
Spybot - Search & Destroy (Version: 1.6.2)
Status (Version: 100.0.175.000)
swMSM (Version: 12.0.0.1)
Tomb Raider version 5.1 (Version: 5.1)
Toolbox (Version: 100.0.170.000)
Toolbox (Version: 82.0.173.000)
TrayApp (Version: 100.0.170.000)
Trine 2
TuneUp Utilities Language Pack (en-US) (Version: 9.0.3100.22)
UltraISO Premium V9.36
UnloadSupport (Version: 10.0.0)
Unlocker 1.9.2 (Version: 1.9.2)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB2836940) (Version: 1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2768023) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817642) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VideoToolkit01 (Version: 100.0.128.000)
Visual C++ 8.0 ATL (x86) WinSXS MSM (Version: 8.0.50727.762)
Visual C++ 8.0 CRT (x86) WinSXS MSM (Version: 8.0.50727.762)
WebReg (Version: 100.0.170.000)
Winamp (Version: 5.61 )
Winamp Detector Plug-in (Version: 1.0.0.1)
WinRAR archiver
XUS Desktop x32 & x64 Professional Edition 1.6.68 (Version: 1.6.68)
Yahoo! Messenger
 
========================= Memory info: ===================================
 
Percentage of memory in use: 47%
Total physical RAM: 2044.18 MB
Available physical RAM: 1072.14 MB
Total Pagefile: 4325.35 MB
Available Pagefile: 3251.5 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.05 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:48.83 GB) (Free:9.15 GB) NTFS
2 Drive d: () (Fixed) (Total:249.26 GB) (Free:28.33 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\USER-PC
 
Administrator            fbwuser                  Guest                    
UpdatusUser              User                     
 
 
**** End of log ****
 

 

 

 

 

Snapshot using Speccy :

 

http://speccy.piriform.com/results/Mt6NN3aSQyJHE6x4EWJnS88



#4 rrredblack009

rrredblack009
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:04:20 PM

Posted 24 August 2013 - 03:19 AM

Windows has stopped this device

 

http://img703.imageshack.us/img703/7213/92oy.jpg


Edited by rrredblack009, 24 August 2013 - 03:25 AM.


#5 rrredblack009

rrredblack009
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:04:20 PM

Posted 24 August 2013 - 05:40 AM

owh ..... I overlooked your suggestion to run "chkdsk / r" in cmd ...!
 
at first I got this message from cmd:
 
 
so, i hit "Y" ...and the scan run after rebooted....


#6 hamluis

hamluis

    Moderator


  • Moderator
  • 55,411 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:03:20 AM

Posted 25 August 2013 - 10:36 AM

I posted yesterday, suggesting that you initiate a new topic in the Am I Infected forum...but that post seems to have disappeared (I probably did not push the POSt button).

 

Anyway...

 

A couple of your installed programs seem to be associated with malware possibilities, IMO.

 

Rather than move this topic to Am I Infected where the more knowledgeable can take a look...I'd like for you to initiate a new topic in that forum. 

 

Once the prospect of malware is eliminated or confirmed...we can go forward.

 

Thanks :).

 

Louis






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users