Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I believe I have an unknown Keylogger


  • Please log in to reply
5 replies to this topic

#1 Dongta69

Dongta69

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:14 PM

Posted 27 September 2013 - 07:33 AM

Hi experts,
 
I am not quite sure if I have came to the right place to post this issue or not. Please forgive me if I haven't.
 
I have just downloaded a program from a blogspot place but it didnt do anything and kept asking me to update it.
 
I did the update but then it didn't do what it meant to do.
 
Would you mind taking a look at the program that I have downloaded and see if they have put any keylogger or trojans or malware on it.
 
 
You can download it from here https://www.dropbox.com/s/mdwy7xuin1ah0dr/Infinity%20Blade%20III%20Cheats.exe?dl=1
 
It would be greatly appreciated.
 
 Thank you in advance.


EDIT broke dangerous link ~ boopme

Edited by boopme, 27 September 2013 - 02:17 PM.
Moved from Win 7 to Am I infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:14 AM

Posted 27 September 2013 - 02:16 PM

My AV (Avira) flags the download immediate as possibly dangerous. Blade 3 cheats.exe
 
So I would recommend you scan as you ran it.
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • Last run ESET.
    • Hold down Control and click on this link to open ESET OnlineScan in a new window.
    • Click the esetonlinebtn.png button.
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
    • Check "YES, I accept the Terms of Use."
    • Click the Start button.
    • Accept any security warnings from your browser.
    • Under scan settings, check "Scan Archives" and "Remove found threats"
    • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
    • When the scan completes, click List Threats
    • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    • Click the Back button.
    • Click the Finish button.
    • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Dongta69

Dongta69
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:14 PM

Posted 29 September 2013 - 01:14 AM

MiniToolBox by Farbar  Version: 13-07-2013

Ran by Forbidden (administrator) on 28-09-2013 at 18:32:20

Running from "C:\Users\Forbidden\Downloads"

Microsoft Windows 7 Home Premium  Service Pack 1 (X64)

Boot Mode: Normal

***************************************************************************

 

========================= Flush DNS: ===================================

 

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

 

========================= IE Proxy Settings: ============================== 

 

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ============================== 

 

========================= Hosts content: =================================

 

 

 

 

127.0.0.1       localhost

 

========================= IP Configuration: ================================

 

Qualcomm Atheros AR9002WB-1NG Wireless Network Adapter = Wireless Network Connection (Connected)

Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)

Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)

 

 

# ----------------------------------

# IPv4 Configuration

# ----------------------------------

pushd interface ipv4

 

reset

set global icmpredirects=enabled

 

 

popd

# End of IPv4 configuration

 

 

 

Windows IP Configuration

 

   Host Name . . . . . . . . . . . . : Forbidden-PC

   Primary Dns Suffix  . . . . . . . : 

   Node Type . . . . . . . . . . . . : Hybrid

   IP Routing Enabled. . . . . . . . : No

   WINS Proxy Enabled. . . . . . . . : No

   DNS Suffix Search List. . . . . . : Home

 

Ethernet adapter Local Area Connection:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)

   Physical Address. . . . . . . . . : F4-6D-04-BE-E4-DB

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Ethernet adapter Bluetooth Network Connection:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)

   Physical Address. . . . . . . . . : 48-5D-60-F1-D4-69

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Wireless LAN adapter Wireless Network Connection:

 

   Connection-specific DNS Suffix  . : Home

   Description . . . . . . . . . . . : Qualcomm Atheros AR9002WB-1NG Wireless Network Adapter

   Physical Address. . . . . . . . . : 48-5D-60-F1-C0-48

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

   Link-local IPv6 Address . . . . . : fe80::55ab:b42e:57bf:2720%10(Preferred) 

   IPv4 Address. . . . . . . . . . . : 192.168.1.16(Preferred) 

   Subnet Mask . . . . . . . . . . . : 255.255.255.0

   Lease Obtained. . . . . . . . . . : Saturday, September 28, 2013 1:24:01 PM

   Lease Expires . . . . . . . . . . : Sunday, September 29, 2013 4:20:40 PM

   Default Gateway . . . . . . . . . : 192.168.1.1

   DHCP Server . . . . . . . . . . . : 192.168.1.1

   DHCPv6 IAID . . . . . . . . . . . : 239623520

   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-79-90-BB-48-5D-60-F1-C0-48

   DNS Servers . . . . . . . . . . . : 192.168.1.1

   NetBIOS over Tcpip. . . . . . . . : Enabled

 

Tunnel adapter Teredo Tunneling Pseudo-Interface:

 

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:1cf2:230f:840c:460b(Preferred) 

   Link-local IPv6 Address . . . . . : fe80::1cf2:230f:840c:460b%17(Preferred) 

   Default Gateway . . . . . . . . . : ::

   NetBIOS over Tcpip. . . . . . . . : Disabled

 

Tunnel adapter isatap.Home:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : Home

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{86EA21FF-53E5-4400-A4F2-03D0F5D14BFB}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{EC43F60B-F114-47B3-BBEA-BCA84799B614}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

Server:  NB304N.Home

Address:  192.168.1.1

 

Name:    google.com

Addresses:  2404:6800:4006:805::1008

 220.244.223.183

 220.244.223.173

 220.244.223.152

 220.244.223.172

 220.244.223.162

 220.244.223.168

 220.244.223.148

 220.244.223.158

 220.244.223.167

 220.244.223.177

 220.244.223.187

 220.244.223.182

 220.244.223.178

 220.244.223.163

 220.244.223.157

 220.244.223.153

 

 

Pinging google.com [220.244.223.183] with 32 bytes of data:

Reply from 220.244.223.183: bytes=32 time=25ms TTL=60

Reply from 220.244.223.183: bytes=32 time=25ms TTL=60

 

Ping statistics for 220.244.223.183:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 25ms, Maximum = 25ms, Average = 25ms

Server:  NB304N.Home

Address:  192.168.1.1

 

Name:    yahoo.com

Addresses:  206.190.36.45

 98.138.253.109

 98.139.183.24

 

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=224ms TTL=48

Reply from 206.190.36.45: bytes=32 time=222ms TTL=48

 

Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 222ms, Maximum = 224ms, Average = 223ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=6ms TTL=128

Reply from 127.0.0.1: bytes=32 time=2ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 2ms, Maximum = 6ms, Average = 4ms

===========================================================================

Interface List

 13...f4 6d 04 be e4 db ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)

 12...48 5d 60 f1 d4 69 ......Bluetooth Device (Personal Area Network)

 10...48 5d 60 f1 c0 48 ......Qualcomm Atheros AR9002WB-1NG Wireless Network Adapter

  1...........................Software Loopback Interface 1

 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface

 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

 30...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2

 31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3

===========================================================================

 

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.16     25

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

      192.168.1.0    255.255.255.0         On-link      192.168.1.16    281

     192.168.1.16  255.255.255.255         On-link      192.168.1.16    281

    192.168.1.255  255.255.255.255         On-link      192.168.1.16    281

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link      192.168.1.16    281

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link      192.168.1.16    281

===========================================================================

Persistent Routes:

  None

 

IPv6 Route Table

===========================================================================

Active Routes:

 If Metric Network Destination      Gateway

 17     58 ::/0                     On-link

  1    306 ::1/128                  On-link

 17     58 2001::/32                On-link

 17    306 2001:0:9d38:6abd:1cf2:230f:840c:460b/128

                                    On-link

 10    281 fe80::/64                On-link

 17    306 fe80::/64                On-link

 17    306 fe80::1cf2:230f:840c:460b/128

                                    On-link

 10    281 fe80::55ab:b42e:57bf:2720/128

                                    On-link

  1    306 ff00::/8                 On-link

 17    306 ff00::/8                 On-link

 10    281 ff00::/8                 On-link

===========================================================================

Persistent Routes:

  None

========================= Winsock entries =====================================

 

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)

Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)

Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)

Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)

Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Catalog5 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog5 10 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)

Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)

x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)

x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)

x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)

x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)

x64-Catalog5 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog5 10 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (09/28/2013 02:19:18 PM) (Source: Microsoft-Windows-RestartManager) (User: Forbidden-PC)

Description: Application or service 'Google Chrome' could not be shut down.

 

Error: (09/28/2013 01:25:21 PM) (Source: Report Server Windows Service (DONGTHUYNH)) (User: )

Description: Report Server Windows Service (DONGTHUYNH) cannot connect to the report server database.

 

Error: (09/27/2013 10:16:00 PM) (Source: Report Server Windows Service (DONGTHUYNH)) (User: )

Description: Report Server Windows Service (DONGTHUYNH) cannot connect to the report server database.

 

Error: (09/27/2013 10:04:48 PM) (Source: MSSQL$DONGTHUYNH) (User: )

Description: The fulltext filter daemon host (FDHost) process has stopped abnormally. This can occur if an incorrectly configured or malfunctioning linguistic component, such as a wordbreaker, stemmer or filter has caused an irrecoverable error during full-text indexing or query processing. The process will be restarted automatically.

 

Error: (09/27/2013 10:04:39 PM) (Source: MSSQL$DONGTHUYNH) (User: )

Description: The fulltext filter daemon host (FDHost) process has stopped abnormally. This can occur if an incorrectly configured or malfunctioning linguistic component, such as a wordbreaker, stemmer or filter has caused an irrecoverable error during full-text indexing or query processing. The process will be restarted automatically.

 

Error: (09/27/2013 10:04:38 PM) (Source: MSSQL$DONGTHUYNH) (User: )

Description: The fulltext filter daemon host (FDHost) process has stopped abnormally. This can occur if an incorrectly configured or malfunctioning linguistic component, such as a wordbreaker, stemmer or filter has caused an irrecoverable error during full-text indexing or query processing. The process will be restarted automatically.

 

Error: (09/27/2013 09:56:12 PM) (Source: Report Server Windows Service (DONGTHUYNH)) (User: )

Description: Report Server Windows Service (DONGTHUYNH) cannot connect to the report server database.

 

Error: (09/27/2013 09:53:26 PM) (Source: MSSQL$DONGTHUYNH) (User: )

Description: The fulltext filter daemon host (FDHost) process has stopped abnormally. This can occur if an incorrectly configured or malfunctioning linguistic component, such as a wordbreaker, stemmer or filter has caused an irrecoverable error during full-text indexing or query processing. The process will be restarted automatically.

 

Error: (09/27/2013 09:53:18 PM) (Source: MSSQL$DONGTHUYNH) (User: )

Description: The fulltext filter daemon host (FDHost) process has stopped abnormally. This can occur if an incorrectly configured or malfunctioning linguistic component, such as a wordbreaker, stemmer or filter has caused an irrecoverable error during full-text indexing or query processing. The process will be restarted automatically.

 

Error: (09/27/2013 03:26:39 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5180060

 

 

System errors:

=============

Error: (09/28/2013 01:27:06 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

Error: (09/28/2013 01:25:49 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)

 

Error: (09/28/2013 01:25:21 PM) (Source: Service Control Manager) (User: )

Description: The following boot-start or system-start driver(s) failed to load: 

TfFsMon

TFSysMon

 

Error: (09/28/2013 01:24:33 PM) (Source: Service Control Manager) (User: )

Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: 

%%1058

 

Error: (09/28/2013 01:24:33 PM) (Source: Service Control Manager) (User: )

Description: The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.

 

Error: (09/28/2013 01:24:33 PM) (Source: Service Control Manager) (User: )

Description: The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.

 

Error: (09/27/2013 10:16:24 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)

 

Error: (09/27/2013 10:15:59 PM) (Source: Service Control Manager) (User: )

Description: The following boot-start or system-start driver(s) failed to load: 

TfFsMon

TFSysMon

 

Error: (09/27/2013 10:15:17 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

Error: (09/27/2013 10:15:16 PM) (Source: Service Control Manager) (User: )

Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: 

%%1058

 

 

Microsoft Office Sessions:

=========================

Error: (09/28/2013 02:19:18 PM) (Source: Microsoft-Windows-RestartManager)(User: Forbidden-PC)

Description: 1C:\Program Files (x86)\Google\Chrome\Application\chrome.exeGoogle Chrome0211715480

 

Error: (09/28/2013 01:25:21 PM) (Source: Report Server Windows Service (DONGTHUYNH))(User: )

Description: Report Server Windows Service (DONGTHUYNH)

 

Error: (09/27/2013 10:16:00 PM) (Source: Report Server Windows Service (DONGTHUYNH))(User: )

Description: Report Server Windows Service (DONGTHUYNH)

 

Error: (09/27/2013 10:04:48 PM) (Source: MSSQL$DONGTHUYNH)(User: )

Description: 

 

Error: (09/27/2013 10:04:39 PM) (Source: MSSQL$DONGTHUYNH)(User: )

Description: 

 

Error: (09/27/2013 10:04:38 PM) (Source: MSSQL$DONGTHUYNH)(User: )

Description: 

 

Error: (09/27/2013 09:56:12 PM) (Source: Report Server Windows Service (DONGTHUYNH))(User: )

Description: Report Server Windows Service (DONGTHUYNH)

 

Error: (09/27/2013 09:53:26 PM) (Source: MSSQL$DONGTHUYNH)(User: )

Description: 

 

Error: (09/27/2013 09:53:18 PM) (Source: MSSQL$DONGTHUYNH)(User: )

Description: 

 

Error: (09/27/2013 03:26:39 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5180060

 

 

CodeIntegrity Errors:

===================================

  Date: 2012-09-22 23:12:04.181

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2012-09-22 23:12:04.140

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2012-07-09 18:24:32.972

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2012-07-09 18:24:32.844

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

 

=========================== Installed Programs ============================

 

 Tools for .Net 3.5 (Version: 3.11.50727)

??????? Windows Live Mesh ActiveX ??(????) (Version: 15.4.5722.2)

??????? Windows Live Mesh ActiveX ??? (Version: 15.4.5722.2)

Adobe AIR (Version: 3.7.0.2090)

Adobe Audition CS5.5 (Version: 4.0)

Adobe Community Help (Version: 3.4.980)

Adobe Flash Player 11 ActiveX (Version: 11.8.800.175)

Adobe Flash Player 11 Plugin (Version: 11.7.700.169)

Alcor Micro USB Card Reader (Version: 1.7.17.25416)

Apple Application Support (Version: 2.3.6)

Apple Mobile Device Support (Version: 7.0.0.117)

Apple Software Update (Version: 2.1.3.127)

ASUS AI Recovery (Version: 1.0.13)

ASUS FancyStart (Version: 1.0.8)

ASUS LifeFrame3 (Version: 3.0.20)

ASUS Live Update (Version: 2.5.9)

ASUS Power4Gear Hybrid (Version: 1.1.43)

ASUS SmartLogon (Version: 1.0.0011)

ASUS Splendid Video Enhancement Technology (Version: 1.02.0030)

ASUS Video Magic (Version: 6.0.4710)

ASUS Virtual Camera (Version: 1.0.21)

ASUS WebStorage (Version: 2.0.46.1429)

ASUS_N3_Series (Version: 1.0.0001)

AsusVibe2.0 (Version: 2.0.3.585)

Atheros WLAN and Bluetooth Client Installation Program (Version: 9.0)

ATK Package (Version: 1.0.0007)

Audacity 2.0

Blend for Visual Studio 2012 (Version: 5.0.30709.0)

Blend for Visual Studio 2012 ENU resources (Version: 5.0.30709.0)

Bluetooth Win7 Suite (64) (Version: 7.2.0.45)

Bonjour (Version: 3.0.0.10)

Brother MFL-Pro Suite MFC-9330CDW (Version: 1.0.1.0)

CCleaner (Version: 3.22)

Complément Messenger (Version: 15.4.3502.0922)

Complemento Messenger (Version: 15.4.3502.0922)

Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)

Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)

Controlo ActiveX do Windows Live Mesh para Ligações Remotas (Version: 15.4.5722.2)

CPUID CPU-Z 1.60.1

CrystalDiskInfo 5.0.0 (Version: 5.0.0)

CyberLink LabelPrint (Version: 2.5.1908)

CyberLink MediaEspresso (Version: 6.0.1123_32710)

CyberLink Power2Go (Version: 6.1.3602c)

CyberLink PowerDirector (Version: 8.0.3327)

CyberLink PowerDVD 10 (Version: 10.0.2312.52)

D3DX10 (Version: 15.4.2368.0902)

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

DivX Setup (Version: 2.6.1.24)

Dotfuscator and Analytics Community Edition (Version: 5.5.4521.29298)

Entity Framework Designer for Visual Studio 2012 - enu (Version: 11.1.20702.00)

e-tax 2012 (Version: 6.0.577)

e-tax 2013 (Version: 0.8.509)

ETDWare PS/2-x64 7.0.5.15_WHQL (Version: 7.0.5.15)

ExpressGateCloud (Version: 2.6.27.160)

Facebook Video Calling 1.2.0.287 (Version: 1.2.287)

Fast Boot (Version: 1.0.10)

Fresco Logic USB3.0 Host Controller (Version: 3.0.119.1)

Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)

Galería fotográfica de Windows Live (Version: 15.4.3502.0922)

Galerie de photos Windows Live (Version: 15.4.3502.0922)

Garmin Communicator Plugin (Version: 4.0.3)

Garmin Communicator Plugin x64 (Version: 4.0.3)

GDR 3128 for SQL Server 2012 (KB2793634) (64-bit) (Version: 11.1.3128.0)

GIMP 2.8.2 (Version: 2.8.2)

Google Chrome (Version: 29.0.1547.76)

Google Earth (Version: 6.0.3.2197)

Google Talk Plugin (Version: 4.7.0.15362)

Google Toolbar for Internet Explorer (Version: 1.0.0)

Hex Workshop v6.7 (Version: 6.7.3.5308)

HiJackThis (Version: 1.0.0)

iCloud (Version: 3.0.2.163)

iExplorer 3.1.0.2

iFunbox (v1.99.958.697), iFunbox DevTeam (Version: v1.99.958.697)

IIS 8.0 Express (Version: 8.0.1557)

IIS Express Application Compatibility Database for x64

IIS Express Application Compatibility Database for x86

inSSIDer 3 (Version: 3.0.7.48)

Intel® Control Center (Version: 1.2.1.1007)

Intel® OpenCL CPU Runtime

Intel® Processor Graphics (Version: 9.17.10.2932)

Intel® Turbo Boost Technology Monitor (Version: 1.0.400.4)

iTunes (Version: 11.1.0.126)

Java 7 Update 25 (Version: 7.0.250)

Java Auto Updater (Version: 2.1.9.5)

JavaFX 2.1.1 (Version: 2.1.1)

JDownloader 0.9 (Version: 0.9)

Junk Mail filter update (Version: 15.4.3502.0922)

K-Lite Codec Pack 8.9.5 (Basic) (Version: 8.9.5)

LocalESPC (Version: 8.59.25584)

LocalESPCui for en-us (Version: 8.59.25584)

Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)

Mesh Runtime (Version: 15.4.5722.2)

Messenger ???? (Version: 15.4.3502.0922)

Messenger ????? (Version: 15.4.3502.0922)

Messenger Companion (Version: 15.4.3502.0922)

Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)

Microsoft .NET Framework 4.5 (Version: 4.5.50709)

Microsoft .NET Framework 4.5 Multi-Targeting Pack (Version: 4.5.50709)

Microsoft .NET Framework 4.5 SDK (Version: 4.5.50709)

Microsoft Application Error Reporting (Version: 12.0.6012.5000)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update (Version: 3.0.30710.0)

Microsoft ASP.NET MVC 3 (Version: 3.0.20105.0)

Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools (Version: 4.0.20710.0)

Microsoft ASP.NET MVC 4 Runtime (Version: 4.0.20710.0)

Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools (Version: 1.0.20710.0)

Microsoft ASP.NET Web Pages (Version: 1.0.20105.0)

Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools (Version: 2.0.20710.0)

Microsoft ASP.NET Web Pages 2 Runtime (Version: 2.0.20710.0)

Microsoft Help Viewer 1.1 (Version: 1.1.40219)

Microsoft Help Viewer 2.0 (Version: 2.0.50727)

Microsoft LightSwitch for Visual Studio 2012 Core (Version: 11.0.50727)

Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU (Version: 11.0.50727)

Microsoft NuGet - Visual Studio 2012 (Version: 2.0.30625.9003)

Microsoft Office 2010 (Version: 14.0.4763.1000)

Microsoft Office 2010 Service Pack 1 (SP1)

Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)

Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)

Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)

Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)

Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)

Microsoft Portable Library Multi-Targeting Pack (Version: 11.0.50709.17929)

Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (Version: 11.0.50709.17929)

Microsoft Report Viewer 2012 Runtime (Version: 11.0.2100.60)

Microsoft Report Viewer Add-On for Visual Studio 2012 (Version: 11.1.2802.16)

Microsoft Security Client (Version: 4.3.0215.0)

Microsoft Security Essentials (Version: 4.3.215.0)

Microsoft Silverlight (Version: 5.1.20513.0)

Microsoft Silverlight 4 SDK (Version: 4.0.60310.0)

Microsoft Silverlight 5 SDK (Version: 5.0.61118.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft SQL Server 2008 R2 Management Objects (Version: 10.51.2500.0)

Microsoft SQL Server 2008 Setup Support Files  (Version: 10.1.2731.0)

Microsoft SQL Server 2012 (64-bit)

Microsoft SQL Server 2012 Command Line Utilities  (Version: 11.0.2100.60)

Microsoft SQL Server 2012 Data-Tier App Framework  (Version: 11.0.2316.0)

Microsoft SQL Server 2012 Data-Tier App Framework  (Version: 11.1.2816.0)

Microsoft SQL Server 2012 Express LocalDB  (Version: 11.1.3128.0)

Microsoft SQL Server 2012 Management Objects  (Version: 11.0.2100.60)

Microsoft SQL Server 2012 Management Objects  (x64) (Version: 11.0.2100.60)

Microsoft SQL Server 2012 Native Client  (Version: 11.1.3000.0)

Microsoft SQL Server 2012 Policies  (Version: 11.0.2100.60)

Microsoft SQL Server 2012 RS Add-in for SharePoint  (Version: 11.1.3000.0)

Microsoft SQL Server 2012 RsFx Driver (Version: 11.1.3000.0)

Microsoft SQL Server 2012 Setup (English) (Version: 11.1.3128.0)

Microsoft SQL Server 2012 Transact-SQL Compiler Service  (Version: 11.1.3128.0)

Microsoft SQL Server 2012 Transact-SQL ScriptDom  (Version: 11.1.3000.0)

Microsoft SQL Server 2012 T-SQL Language Service  (Version: 11.0.2100.60)

Microsoft SQL Server Compact 4.0 SP1 x64 ENU (Version: 4.0.8876.1)

Microsoft SQL Server Data Tools – Database Projects – Web installer entry point (Version: 10.3.20116.0)

Microsoft SQL Server Data Tools - enu (11.1.20627.00) (Version: 11.1.20627.00)

Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00) (Version: 11.1.20627.00)

Microsoft SQL Server System CLR Types (Version: 10.51.2500.0)

Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1600.1)

Microsoft System CLR Types for SQL Server 2012 (Version: 11.0.2100.60)

Microsoft System CLR Types for SQL Server 2012 (x64) (Version: 11.1.3000.0)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2012  x64 Designtime - 11.0.50727 (Version: 11.0.50727)

Microsoft Visual C++ 2012 Compilers - ENU Resources (Version: 11.0.50727)

Microsoft Visual C++ 2012 Compilers (Version: 11.0.50727)

Microsoft Visual C++ 2012 Core Libraries (Version: 11.0.50727)

Microsoft Visual C++ 2012 Extended Libraries (Version: 11.0.50727)

Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries (Version: 11.0.50727)

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727)

Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727 (Version: 11.0.50727)

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727)

Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727 (Version: 11.0.50727)

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)

Microsoft Visual J# 2.0 Redistributable Package - SE (x64)

Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (Version: 2.0.50728)

Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 11.0.50727)

Microsoft Visual Studio 2010 Shell (Integrated) - ENU (Version: 10.0.40219)

Microsoft Visual Studio 2010 Shell (Isolated) - ENU (Version: 10.0.40219)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308)

Microsoft Visual Studio 2012 Devenv (Version: 11.0.50727)

Microsoft Visual Studio 2012 Devenv Resources (Version: 11.0.50727)

Microsoft Visual Studio 2012 IntelliTrace Core amd64 (Version: 11.0.50727)

Microsoft Visual Studio 2012 IntelliTrace Core x86 (Version: 11.0.50727)

Microsoft Visual Studio 2012 Performance Collection Tools - ENU (Version: 11.0.50727)

Microsoft Visual Studio 2012 Performance Collection Tools (Version: 11.0.50727)

Microsoft Visual Studio 2012 Preparation (Version: 11.0.50727)

Microsoft Visual Studio 2012 SharePoint Developer Tools (Version: 11.0.50727)

Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack (Version: 11.0.50727)

Microsoft Visual Studio 2012 Shell (Minimum) (Version: 11.0.50727)

Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies (Version: 11.0.50727)

Microsoft Visual Studio 2012 Shell (Minimum) Resources (Version: 11.0.50727)

Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU (Version: 4.0.8876.1)

Microsoft Visual Studio Premium 2012 - ENU (Version: 11.0.50727)

Microsoft Visual Studio Premium 2012 (Version: 11.0.50727)

Microsoft Visual Studio Premium 2012 (Version: 11.0.50727.1)

Microsoft Visual Studio Professional 2012 - ENU (Version: 11.0.50727)

Microsoft Visual Studio Professional 2012 (Version: 11.0.50727)

Microsoft Visual Studio Team Foundation Server 2012 Object Model (Version: 11.0.50727)

Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU (Version: 11.0.50727)

Microsoft Visual Studio Team Foundation Server 2012 Storyboarding (Version: 11.0.50727)

Microsoft Visual Studio Team Foundation Server 2012 Storyboarding Language Pack - ENU (Version: 11.0.50727)

Microsoft Visual Studio Team Foundation Server 2012 Team Explorer (Version: 11.0.50727)

Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU (Version: 11.0.50727)

Microsoft Visual Studio Tools for Applications Design-Time 3.0 (Version: 10.0.40220)

Microsoft Visual Studio Tools for Applications x64 Runtime 3.0 (Version: 10.0.40220)

Microsoft Visual Studio Tools for Applications x86 Runtime 3.0 (Version: 10.0.40220)

Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core (Version: 11.0.50727)

Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources (Version: 11.0.50727)

Microsoft VSS Writer for SQL Server 2012 (Version: 11.1.3000.0)

Microsoft Web Deploy 3.0 (Version: 3.1236.1631)

Microsoft Web Deploy dbSqlPackage Provider - enu (Version: 10.3.20225.0)

Microsoft Web Developer Tools - Visual Studio 2012 (Version: 1.0.30710.0)

Microsoft Web Platform Installer 4.0 (Version: 4.0.1622)

Microsoft_VC90_ATL_x86 (Version: 1.00.0000)

Microsoft_VC90_CRT_x86 (Version: 1.00.0000)

Microsoft_VC90_MFC_x86 (Version: 1.00.0000)

Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)

MKVToolNix 6.2.0 (Version: 6.2.0)

Mozilla Firefox 20.0 (x86 en-US) (Version: 20.0)

Mozilla Maintenance Service (Version: 20.0)

MSVCRT (Version: 15.4.2862.0708)

MSVCRT_amd64 (Version: 15.4.2862.0708)

MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)

MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)

MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)

Notepad++ (Version: 6.3.2)

Nuance PDF Reader (Version: 6.00.0041)

NVIDIA 3D Vision Driver 320.49 (Version: 320.49)

NVIDIA Control Panel 320.49 (Version: 320.49)

NVIDIA GeForce Experience 1.5.1 (Version: 1.5.1)

NVIDIA Graphics Driver 320.49 (Version: 320.49)

NVIDIA Install Application (Version: 2.1002.125.816)

NVIDIA Optimus 6.4.23 (Version: 6.4.23)

NVIDIA PhysX (Version: 9.13.0604)

NVIDIA PhysX System Software 9.13.0604 (Version: 9.13.0604)

NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.2049)

NVIDIA Update 6.4.23 (Version: 6.4.23)

NVIDIA Update Components (Version: 6.4.23)

Opera 12.15 (Version: 12.15.1748)

Outlook 2010 Toolbar (Version: 1.0.0)

Paltalk Messenger  10.2 (Version: 10.2.0)

PowerISO (Version: 5.4)

PreEmptive Analytics Visual Studio Components (Version: 1.0.2180.1)

Prerequisites for SSDT  (Version: 11.0.2100.60)

PrintKey2000

Process Hacker 2.30 (r5267) (Version: 2.30.0.5267)

QuickTime (Version: 7.74.80.86)

RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)

RealPlayer (Version: 15.0.5)

Realtek High Definition Audio Driver (Version: 6.0.1.6221)

RealUpgrade 1.1 (Version: 1.1.0)

SABnzbd 0.7.11 (Version: 0.7.11)

Secunia PSI (3.0.0.6005) (Version: 3.0.0.6005)

Secure Download Manager (Version: 3.1.0)

Service Pack 1 for SQL Server 2012 (KB2674319) (64-bit) (Version: 11.1.3000.0)

Skype™ 6.3 (Version: 6.3.107)

SonicMaster (Version: 1.00.0000)

SQL Server 2012 Analysis Services (Version: 11.1.3000.0)

SQL Server 2012 BI Development Studio (Version: 11.1.3000.0)

SQL Server 2012 Client Tools (Version: 11.1.3000.0)

SQL Server 2012 Common Files (Version: 11.1.3000.0)

SQL Server 2012 Data quality client (Version: 11.0.2100.60)

SQL Server 2012 Data quality client (Version: 11.1.3000.0)

SQL Server 2012 Data quality service (Version: 11.0.2100.60)

SQL Server 2012 Data quality service (Version: 11.1.3000.0)

SQL Server 2012 Database Engine Services (Version: 11.1.3000.0)

SQL Server 2012 Database Engine Shared (Version: 11.1.3000.0)

SQL Server 2012 Distributed Replay (Version: 11.0.2100.60)

SQL Server 2012 Documentation Components (Version: 11.0.2100.60)

SQL Server 2012 Full text search (Version: 11.1.3000.0)

SQL Server 2012 Integration Services (Version: 11.1.3000.0)

SQL Server 2012 Management Studio (Version: 11.1.3000.0)

SQL Server 2012 Master Data Services (Version: 11.1.3000.0)

SQL Server 2012 Reporting Services (Version: 11.0.2100.60)

SQL Server 2012 Reporting Services (Version: 11.1.3000.0)

SQL Server 2012 RS_SharePoint_SharedService (Version: 11.1.3000.0)

SQL Server 2012 SQL Data Quality Common (Version: 11.1.3000.0)

SQL Server Browser for SQL Server 2012 (Version: 11.1.3000.0)

Sql Server Customer Experience Improvement Program (Version: 11.1.3000.0)

SQLiteManager (Version: 4.0.1)

Sublime Text 2.0.1

syncables desktop SE (Version: 5.5.746.11492)

System Requirements Lab for Intel (Version: 4.5.11.0)

The KMPlayer (remove only)

TransferBigFiles Desktop Client (Version: 1.2.4.0)

Tweaking.com - Windows Repair (All in One) (Version: 1.9.15)

Ubisoft Game Launcher (Version: 1.0.0.0)

Update for  (KB2504637) (Version: 1)

Update for Microsoft .NET Framework 4.5 (KB2750147) (Version: 1)

Update for Microsoft .NET Framework 4.5 (KB2805221) (Version: 1)

Update for Microsoft .NET Framework 4.5 (KB2805226) (Version: 1)

Update for Microsoft Office 2010 (KB2553065)

Update for Microsoft Office 2010 (KB2553092)

Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition

Update for Microsoft Office 2010 (KB2566458)

Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition

Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition

Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition

Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition

Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition

Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition

Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition

Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition

Update for Microsoft Visual Studio 2012 (KB2781514) (Version: 11.0.51219)

USB2.0 UVC 2M WebCam (Version: 5.8.55133.208)

VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)

Visual Studio 2010 Prerequisites - English (Version: 10.0.40219)

Visual Studio 2012 Prerequisites - ENU Language Pack (Version: 11.0.50727)

Visual Studio 2012 Prerequisites (Version: 11.0.50727)

Visual Studio Extensions for Windows Library for JavaScript (Version: 1.0.8514.0)

VLC media player 2.0.6 (Version: 2.0.6)

Vpskeys 4.3

WCF Data Services 5.0 (for OData v3) Primary Components (Version: 5.0.50628.0)

WCF Data Services Tools for Microsoft Visual Studio 2012 (Version: 5.0.50710.0)

WCF RIA Services V1.0 SP2 (Version: 4.1.61829.0)

What's Running 2.2 (Version: 2.2)

Windows 7 USB/DVD Download Tool (Version: 1.0.30)

Windows App Certification Kit Native Components (Version: 8.59.25584)

Windows App Certification Kit x64 (Version: 8.59.25584)

Windows Driver Package - Qualcomm Atheros Communications Inc. (athr) Net  (03/11/2013 10.0.0.234) (Version: 03/11/2013 10.0.0.234)

Windows Driver Package - Qualcomm Atheros Communications Inc. Net  (03/11/2013 10.0.0.234) (Version: 03/11/2013 10.0.0.234)

Windows Live ??? (Version: 15.4.3502.0922)

Windows Live ???? (Version: 15.4.3502.0922)

Windows Live Communications Platform (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3502.0922)

Windows Live Family Safety (Version: 15.4.3502.0922)

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)

Windows Live Installer (Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3502.0922)

Windows Live Mail (Version: 15.4.3502.0922)

Windows Live Mesh (Version: 15.4.3502.0922)

Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)

Windows Live Messenger (Version: 15.4.3502.0922)

Windows Live Messenger Companion Core (Version: 15.4.3502.0922)

Windows Live MIME IFilter (Version: 15.4.3502.0922)

Windows Live Movie Maker (Version: 15.4.3502.0922)

Windows Live Photo Common (Version: 15.4.3502.0922)

Windows Live Photo Gallery (Version: 15.4.3502.0922)

Windows Live PIMT Platform (Version: 15.4.3502.0922)

Windows Live Remote Client (Version: 15.4.5722.2)

Windows Live Remote Client Resources (Version: 15.4.5722.2)

Windows Live Remote Service (Version: 15.4.5722.2)

Windows Live Remote Service Resources (Version: 15.4.5722.2)

Windows Live SOXE (Version: 15.4.3502.0922)

Windows Live SOXE Definitions (Version: 15.4.3502.0922)

Windows Live UX Platform (Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)

Windows Live Writer (Version: 15.4.3502.0922)

Windows Live Writer Resources (Version: 15.4.3502.0922)

Windows Runtime Intellisense Content - en-us (Version: 8.59.25584)

Windows Software Development Kit (Version: 8.59.25584)

Windows Software Development Kit DirectX x64 Remote (Version: 8.59.25584)

Windows Software Development Kit DirectX x86 Remote (Version: 8.59.25584)

Windows Software Development Kit for Windows Store Apps (Version: 8.59.25584)

Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.25584)

Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (Version: 8.59.25584)

WinFlash (Version: 2.31.0)

WinPatrol (Version: 25.0.2012.5)

WinRAR 5.00 beta 4 (64-bit) (Version: 5.00.4)

Wireless Console 3 (Version: 3.0.19)

 

========================= Memory info: ===================================

 

Percentage of memory in use: 56%

Total physical RAM: 6054.78 MB

Available physical RAM: 2607.16 MB

Total Pagefile: 12107.75 MB

Available Pagefile: 8060.99 MB

Total Virtual: 4095.88 MB

Available Virtual: 3956.12 MB

 

========================= Partitions: =====================================

 

1 Drive c: (OS) (Fixed) (Total:250.05 GB) (Free:62.19 GB) NTFS

2 Drive d: (Data) (Fixed) (Total:321.12 GB) (Free:169.85 GB) NTFS



#4 Dongta69

Dongta69
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:14 PM

Posted 29 September 2013 - 01:19 AM

There are nothing found on TDSS, ESET scanner and also ADWCleaner



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:14 AM

Posted 01 October 2013 - 11:25 AM

Looks clean.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 hardenqueen

hardenqueen

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:14 PM

Posted 30 October 2013 - 04:38 AM

Hi experts,
 
I am not quite sure if I have came to the right place to post this issue or not. Please forgive me if I haven't.
 
I have just downloaded a program from a blogspot place but it didnt do anything and kept asking me to update it.
 
I did the update but then it didn't do what it meant to do.
 
Would you mind taking a look at the program that I have downloaded and see if they have put any keylogger or trojans or malware on it.
 
 
You can download it from here https://www.dropbox.com/s/mdwy7xuin1ah0dr/Infinity%20Blade%20III%20Cheats.exe?dl=1
 
It would be greatly appreciated.
 
 Thank you in advance.


EDIT broke dangerous link ~ boopme

If you think your computer has been infected with a keylogger, there are some steps you can take to detect and remove it. First, install software that will detect malware such as keyloggers and viruses. Run a thorough scan. Depending on the software used, follow the steps to remove the keylogger.

Edited by hardenqueen, 30 October 2013 - 04:42 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users