Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer acting odd after letting cousin use it for 1 week!!!!??


  • Please log in to reply
14 replies to this topic

#1 selfmade64856

selfmade64856

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Waikiki, Hawaii
  • Local time:03:23 PM

Posted 04 October 2013 - 06:46 PM

Hi All, I hope I am posting in the right place....it's been a while.

 

I recently went on a vacation to Kauai. I live on Oahu so asked my cousin to watch our place while we were gone. I am now back and for the last several days I have noticed that something is definitely wrong with my laptop. Here are my laptop specs:

 

Windows 7 Ultimate 64 bit

Intel Quad Core i7-3840QM CPU 2.8GHz

32 GB RAM

500 GB Hard Drive

 

What is happening is that it seems like something is running in the background which is taking up all of my CPU and RAM. I've gone through the active processes and stopped anything that looked suspicious but it still did the same thing. Typically my computer is lightning fast, but now it seems to be having difficulty with running, say Photoshop CS6 or even browsing images on my hdd.

 

I have ran the updated Malwarebytes in both regular and safe mode with networking but it found nothing, same goes for Windows Defender.

 

I asked my cousin if he had visited any porn sites but he said he didn't......which I think he is lying because he had cleared the cache and temp files. 

 

Also, we had an unauthorized credit card purchase on Amazon which happened a couple of days ago while I was back.......I am not sure if it is related but it makes me think that someone is receiving my info whenever I connect to the net.

 

Any help would be greatly appreciated. Thanks so much!

 

Courtney


Edited by hamluis, 05 October 2013 - 06:01 PM.
Moved from Win 7 to Am I Infected - Hamluis.

Surround yourself with those that are smarter then you, otherwise you'll end up just as dumb as those around you.

BC AdBot (Login to Remove)

 


#2 myopinion

myopinion

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:23 PM

Posted 04 October 2013 - 07:06 PM

 

Also, we had an unauthorized credit card purchase on Amazon which happened a couple of days ago while I was back

Now, I don't normally intervene on malware issues but I can tell you that the above (alone) would prompt me to do a clean install ASAP. Sometimes it takes many days to fully remove a total malware infection, and many times thereafter, you are left with remnant damage that must be repaired, and that could take many additional days. Unfortunately, while all this repair is in progress, you could still be subject to more privacy invasions. I wouldn't fool around with this if I were you.


Edited by hamluis, 05 October 2013 - 06:00 PM.


#3 selfmade64856

selfmade64856
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Waikiki, Hawaii
  • Local time:03:23 PM

Posted 04 October 2013 - 08:06 PM

@ myopinion

 

I know what you mean.....and typically I would just do a clean install without a second thought, however, I am in the middle of several projects and all my data is stored on this laptop and I can't afford to even attempt transferring the files to my external drive so that I can reformat and then transfer back. If something were to go wrong then that would really screw me and set me back several months. 

 

I'm stuck between a rock and a hard place :-)

 

As my wife just pointed out, the Amazon thing could have been me. Sometimes a have a little too much to drink and who knows what I may or may not have done while on the other side :-)


Surround yourself with those that are smarter then you, otherwise you'll end up just as dumb as those around you.

#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:23 AM

Posted 04 October 2013 - 08:37 PM

As my wife just pointed out, the Amazon thing could have been me.

I am sure you would have a record of this, and was it local or not ?

Most scammed or hijacked credit card details are not usually local purchases.

 

Download Security Check by Screen317
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If any security program requests permission to access the Internet, allow it to do so.

 

 

Download MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:
•Flush DNS
•Report IE Proxy Settings
•Reset IE Proxy Settings
•Report FF Proxy Settings
•Reset FF Proxy Settings
•List content of Hosts
•List IP configuration
•List last 10 Event Viewer log
•List Installed Programs
•List Users, Partitions and Memory size.
•List Minidump Files
 
Click Go and copy / paste the result (Result.txt).

 

Thanks -



#5 selfmade64856

selfmade64856
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Waikiki, Hawaii
  • Local time:03:23 PM

Posted 04 October 2013 - 08:57 PM


 

I am sure you would have a record of this, and was it local or not ?

Most scammed or hijacked credit card details are not usually local purchases.

 

Hi noknojon, the purchase was for a movie or video subscription on Amazon, so no tangible product to ship. I wouldn't put it past myself :-)

 

Here is the checkup.txt:

 Results of screen317's Security Check version 0.99.74  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
Microsoft Security Essentials   
  (On Access scanning disabled!) 
 Error obtaining update status for antivirus!  
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 40  
 Adobe Flash Player 10 Flash Player out of Date! 
 Adobe Flash Player 11.8.800.168  
 Adobe Reader XI  
 Mozilla Firefox 23.0.1 Firefox out of Date!  
 Google Chrome 29.0.1547.76  
 Google Chrome 30.0.1599.66  
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe 
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Comodo Firewall cmdagent.exe 
 Malwarebytes' Anti-Malware mbamscheduler.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 0% 
````````````````````End of Log`````````````````````` 
 
----------------------
----------------------
----------------------
----------------------
----------------------
----------------------
 
and here is the Result.txt:
 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Courtney (administrator) on 04-10-2013 at 15:47:21
Running from "C:\Users\Courtney\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Intel® Centrino® Advanced-N 6205 = Wireless Network Connection (Connected)
Intel® 82579LM Gigabit Network Connection = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set subinterface interface=? subinterface=ethernet_9 mtu=1477
set subinterface interface=? subinterface=ethernet_14 mtu=1477
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Courtney-Lap
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : local.tld
 
Ethernet adapter Bluetooth Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network) #2
   Physical Address. . . . . . . . . : B8-76-3F-AB-78-F1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 6C-88-14-B4-C1-55
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 6C-88-14-B4-C1-55
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : local.tld
   Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6205
   Physical Address. . . . . . . . . : 6C-88-14-B4-C1-54
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::3da0:f71b:71e6:e616%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.15.79(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, October 04, 2013 1:08:54 PM
   Lease Expires . . . . . . . . . . : Friday, October 04, 2013 4:31:04 PM
   Default Gateway . . . . . . . . . : 192.168.15.1
   DHCP Server . . . . . . . . . . . : 192.168.15.1
   DHCPv6 IAID . . . . . . . . . . . : 310655563
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-9F-3A-3B-3C-97-0E-A7-6E-FB
   DNS Servers . . . . . . . . . . . : 192.168.15.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : local.tld
   Description . . . . . . . . . . . : Intel® 82579LM Gigabit Network Connection
   Physical Address. . . . . . . . . : 3C-97-0E-A7-6E-FB
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{359AFD19-EB4F-4D93-AE12-9E97D2F13D07}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 13:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:187d:2109:b8e9:d941(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::187d:2109:b8e9:d941%21(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.local.tld:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : local.tld
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  clearmodem
Address:  192.168.15.1
 
Name:    google.com
Addresses:  2607:f8b0:4005:802::1002
 66.233.234.122
 66.233.234.115
 66.233.234.116
 66.233.234.117
 66.233.234.114
 66.233.234.118
 66.233.234.123
 66.233.234.113
 66.233.234.119
 66.233.234.120
 66.233.234.112
 66.233.234.121
 
 
Pinging google.com [66.233.234.121] with 32 bytes of data:
Reply from 66.233.234.121: bytes=32 time=80ms TTL=60
Reply from 66.233.234.121: bytes=32 time=78ms TTL=60
 
Ping statistics for 66.233.234.121:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 78ms, Maximum = 80ms, Average = 79ms
Server:  clearmodem
Address:  192.168.15.1
 
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=244ms TTL=52
Reply from 98.138.253.109: bytes=32 time=208ms TTL=52
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 208ms, Maximum = 244ms, Average = 226ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 2ms, Maximum = 3ms, Average = 2ms
===========================================================================
Interface List
 20...b8 76 3f ab 78 f1 ......Bluetooth Device (Personal Area Network) #2
 18...6c 88 14 b4 c1 55 ......Microsoft Virtual WiFi Miniport Adapter #2
 17...6c 88 14 b4 c1 55 ......Microsoft Virtual WiFi Miniport Adapter
 11...6c 88 14 b4 c1 54 ......Intel® Centrino® Advanced-N 6205
 10...3c 97 0e a7 6e fb ......Intel® 82579LM Gigabit Network Connection
  1...........................Software Loopback Interface 1
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 21...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.15.1    192.168.15.79     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
     192.168.15.0    255.255.255.0         On-link     192.168.15.79    281
    192.168.15.79  255.255.255.255         On-link     192.168.15.79    281
   192.168.15.255  255.255.255.255         On-link     192.168.15.79    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.15.79    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.15.79    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 21     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 21     58 2001::/32                On-link
 21    306 2001:0:9d38:90d7:187d:2109:b8e9:d941/128
                                    On-link
 11    281 fe80::/64                On-link
 21    306 fe80::/64                On-link
 21    306 fe80::187d:2109:b8e9:d941/128
                                    On-link
 11    281 fe80::3da0:f71b:71e6:e616/128
                                    On-link
  1    306 ff00::/8                 On-link
 21    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (10/04/2013 01:09:02 PM) (Source: BstHdAndroidSvc) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (10/04/2013 07:16:00 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (10/04/2013 05:39:37 AM) (Source: Application Error) (User: )
Description: Faulting application name: LMS.exe, version: 9.0.0.1310, time stamp: 0x50fdb379
Faulting module name: PORTFORWARDINGSERVICE.dll, version: 9.0.0.1310, time stamp: 0x50fdb37a
Exception code: 0xc0000005
Fault offset: 0x0000d524
Faulting process id: 0x4e4
Faulting application start time: 0xLMS.exe0
Faulting application path: LMS.exe1
Faulting module path: LMS.exe2
Report Id: LMS.exe3
 
Error: (10/02/2013 05:52:54 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (10/02/2013 09:12:50 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2043
 
Error: (10/02/2013 09:12:50 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2043
 
Error: (10/02/2013 09:12:50 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (10/02/2013 09:12:49 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1029
 
Error: (10/02/2013 09:12:49 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1029
 
Error: (10/02/2013 09:12:49 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
 
System errors:
=============
Error: (10/04/2013 02:07:04 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage failed to grow.
 
Error: (10/04/2013 01:09:02 PM) (Source: Service Control Manager) (User: )
Description: The BlueStacks Android Service service terminated with the following error: 
%%1064
 
Error: (10/04/2013 05:39:38 AM) (Source: Service Control Manager) (User: )
Description: The Intel® Management and Security Application Local Management Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (10/02/2013 02:10:23 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error: (10/02/2013 02:10:22 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error: (10/02/2013 02:10:12 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error: (10/02/2013 02:10:01 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume C:.
 
Error: (10/01/2013 05:08:09 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LENOVO.CAMMUTE service.
 
Error: (09/30/2013 03:10:46 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage failed to grow.
 
Error: (09/29/2013 05:18:13 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
 
Microsoft Office Sessions:
=========================
Error: (10/04/2013 01:09:02 PM) (Source: BstHdAndroidSvc)(User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (10/04/2013 07:16:00 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
 
Error: (10/04/2013 05:39:37 AM) (Source: Application Error)(User: )
Description: LMS.exe9.0.0.131050fdb379PORTFORWARDINGSERVICE.dll9.0.0.131050fdb37ac00000050000d5244e401cebd54ef262b4eC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\PORTFORWARDINGSERVICE.dll2c812b21-2d0b-11e3-9d8b-b8763fab78f1
 
Error: (10/02/2013 05:52:54 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
 
Error: (10/02/2013 09:12:50 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2043
 
Error: (10/02/2013 09:12:50 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2043
 
Error: (10/02/2013 09:12:50 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (10/02/2013 09:12:49 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1029
 
Error: (10/02/2013 09:12:49 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1029
 
Error: (10/02/2013 09:12:49 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-09-23 17:31:05.254
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-09-23 17:31:05.191
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-09-23 17:31:05.144
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-09-23 17:31:05.098
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-09-23 16:52:05.911
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-09-23 16:52:05.849
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-23 15:52:26.993
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\SpeakerFixDriverAPOLFX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-23 02:21:14.312
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-23 00:26:00.360
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-08-22 20:54:24.630
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.3.0.29111)
AAA Logo Business Edition 3.10
Adobe AIR (Version: 3.8.0.1430)
Adobe Creative Suite 5 Master Collection (Version: 5.0)
Adobe Creative Suite 6 Master Collection (Version: 6)
Adobe Flash Player 10 ActiveX (Version: 10.1.52.14)
Adobe Flash Player 11 Plugin (Version: 11.8.800.168)
Adobe Media Player (Version: 1.8)
Adobe Photoshop Lightroom 4 64-bit (Version: 4.0.1)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Advanced JPEG Compressor 2012 (Version: 2012)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
audiosamples (Version: 1.1.6001.0)
AutoIt v3.3.8.1
AutoPlay Media Studio 8 (Version: 8.0.6.0)
AVS Disc Creator version 2.1
AVS Video Converter 8 (Version: 8.4.1.540)
AVS Video Tools 5.1
avstreamsamples (Version: 1.1.6001.0)
avstreamtools_ia64fre (Version: 1.1.6001.0)
avstreamtools_x64fre (Version: 1.1.6001.0)
avstreamtools_x86fre (Version: 1.1.6001.0)
biometricsamples (Version: 1.1.6001.0)
biometrictools_x64fre (Version: 1.1.6001.0)
biometrictools_x86fre (Version: 1.1.6001.0)
BlueStacks App Player (Version: 0.7.17.916)
BlueStacks Notification Center (Version: 0.7.17.916)
bluetoothsamples (Version: 1.1.6001.0)
bluetoothtools_ia64fre (Version: 1.1.6001.0)
bluetoothtools_x64fre (Version: 1.1.6001.0)
bluetoothtools_x86fre (Version: 1.1.6001.0)
Bonjour (Version: 3.0.0.10)
buildsamples (Version: 1.1.6001.0)
buildtools_ia64fre (Version: 1.1.6001.0)
buildtools_x64fre (Version: 1.1.6001.0)
buildtools_x86fre (Version: 1.1.6001.0)
bussamples (Version: 1.1.6001.0)
Camtasia Studio 7 (Version: 7.1.1)
cancelsample (Version: 1.1.6001.0)
CCleaner (Version: 4.01)
chkinftool_x86fre (Version: 1.1.6001.0)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
CloudBerry Explorer for Amazon S3 3.5 (Version: 3.5)
COMODO Internet Security (Version: 6.0.2566.2708)
CuteFTP 9 (Version: 9.0.0)
D3DX10 (Version: 15.4.2368.0902)
debugfiles_win7 (Version: 1.1.6001.0)
Debugging Tools for Windows (x64) (Version: 6.12.2.633)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
Device Simulation Framework 1.0.1 (Version: 1.0.1)
dfx_ia64fre (Version: 1.1.6001.0)
dfx_x64fre (Version: 1.1.6001.0)
dfx_x86fre (Version: 1.1.6001.0)
displaysamples (Version: 1.1.6001.0)
Dolby Home Theater v4 (Version: 7.2.8000.17)
drvtools_ia64fre (Version: 1.1.6001.0)
drvtools_x64fre (Version: 1.1.6001.0)
drvtools_x86fre (Version: 1.1.6001.0)
DSF-KitSetup (Version: 1.1.6001.0)
dsfsamples (Version: 1.1.6001.0)
eventsample (Version: 1.1.6001.0)
evntdrvsample (Version: 1.1.6001.0)
ExpressCache (Version: 1.0.86)
FileZilla Client 3.7.0.2 (Version: 3.7.0.2)
fireflysample (Version: 1.1.6001.0)
Flashificator (Version: 2.4)
Freemake Video Downloader (Version: 3.5.1)
generalsamples (Version: 1.1.6001.0)
generaltools_ia64fre (Version: 1.1.6001.0)
generaltools_x64fre (Version: 1.1.6001.0)
generaltools_x86fre (Version: 1.1.6001.0)
Google Chrome (Version: 30.0.1599.66)
Google Talk Plugin (Version: 4.7.0.15362)
headers (Version: 1.1.6001.0)
hid_inputsamples (Version: 1.1.6001.0)
hidsampleinput (Version: 1.1.6001.0)
hidsamples (Version: 1.1.6001.0)
Hitman 2 Silent Assassin
iCare Data Recovery 4.5.2
iCloud (Version: 3.0.2.163)
ifssamples (Version: 1.1.6001.0)
imagingtools_ia64fre (Version: 1.1.6001.0)
imagingtools_x64fre (Version: 1.1.6001.0)
imagingtools_x86fre (Version: 1.1.6001.0)
infsample_ia64fre (Version: 1.1.6001.0)
infsample_x64fre (Version: 1.1.6001.0)
infsample_x86fre (Version: 1.1.6001.0)
installhelp (Version: 1.1.6001.0)
Integrated Camera Driver Installer Package Ver.1.2.1.18 (Version: 1.2.1.18)
Intel® Control Center (Version: 1.2.1.1008)
Intel® Management Engine Components (Version: 9.0.0.1310)
Intel® Network Connections Drivers (Version: 16.8)
Intel® OpenCL CPU Runtime
Intel® Processor Graphics (Version: 9.17.10.2843)
Intel® PROSet/Wireless WiFi Software Driver (Version: 15.06.1000.0167)
Intel® Rapid Storage Technology (Version: 11.2.0.1006)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 1.0.4.225)
Intel® PROSet/Wireless Software (Version: 15.6.1)
Intel® PROSet/Wireless WiFi Software (Version: 15.06.1000.0142)
Intel® Trusted Connect Service Client (Version: 1.27.757.1)
ioctlsample (Version: 1.1.6001.0)
irsamples (Version: 1.1.6001.0)
iTunes (Version: 11.1.0.126)
Java 7 Update 13 (64-bit) (Version: 7.0.130)
Java 7 Update 40 (Version: 7.0.400)
Java Auto Updater (Version: 2.1.9.8)
Lenovo Auto Scroll Utility (Version: 2.02)
Lenovo Patch Utility (Version: 1.4.0.4)
Lenovo Patch Utility 64 bit (Version: 1.4.0.4)
Lenovo Power Management Driver (Version: 1.67.00.02)
Lenovo Solution Center (Version: 2.2.002.00)
Lenovo System Update (Version: 5.02.0018)
MagicDisc 2.7.106
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Access MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Camera Codec Pack (Version: 16.4.1734.1104)
Microsoft DCF MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Document Explorer 2008
Microsoft Document Explorer 2008 (Version: 9.0.21022)
Microsoft Excel MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Groove MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Lync MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4420.1017)
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SkyDrive (Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Windows Driver Kit 7.1.0.7600 (Version: 7.1.0.7600)
Microsoft Windows Driver Kit Documentation 7600.091201 (Version: 6.0.7600.0)
Microsoft Word MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Mobile Broadband Drivers (Version: 7.2.3.2)
modemtools (Version: 1.1.6001.0)
Movie Maker (Version: 16.4.3508.0205)
Mozilla Firefox 23.0.1 (x86 en-US) (Version: 23.0.1)
Mozilla Maintenance Service (Version: 23.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
muvee Adrenaline Rush stylePack (Version: 6.1.39.9508)
muvee Back To School Style (Version: 9.0.1.20252)
muvee Christmas Cheer stylePack (Version: 6.1.37.7953)
muvee Halloween Horrors Style (Version: 9.0.1.20252)
muvee Independence Day Style (Version: 9.0.1.20252)
muvee Life Story Style (Version: 9.0.1.20252)
muvee Mix It Up stylePack (Version: 6.1.38.8069)
muvee photoFamily stylePack (Version: 6.1.38.8069)
muvee photoFocus stylePack (Version: 6.1.38.8069)
muvee photoGenie stylePack (Version: 6.1.38.8069)
muvee Reveal (Version: 10.5.0.23245)
muvee Reveal Runtime (Version: 10.5.0.23245)
Nalpeiron License Management (Version: 6.3.9.1)
networklibraries_ia64fre (Version: 1.1.6001.0)
networklibraries_x64fre (Version: 1.1.6001.0)
networklibraries_x86fre (Version: 1.1.6001.0)
networksamples (Version: 1.1.6001.0)
Next Generation Visualisations (Version: 1.0.0)
NVIDIA 3D Vision Driver 320.00 (Version: 320.00)
NVIDIA Control Panel 320.00 (Version: 320.00)
NVIDIA Graphics Driver 320.00 (Version: 320.00)
NVIDIA HD Audio Driver 1.3.24.2 (Version: 1.3.24.2)
NVIDIA Install Application (Version: 2.1002.120.784)
NVIDIA nView 140.54 (Version: 140.54)
NVIDIA Optimus 1.14.17 (Version: 1.14.17)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.2000)
NVIDIA Update 1.14.17 (Version: 1.14.17)
NVIDIA Update Components (Version: 1.14.17)
NVIDIA WMI 2.12.0 (Version: 2.12.0)
oacr_x86fre (Version: 1.1.6001.0)
offreg_ia64fre (Version: 1.1.6001.0)
offreg_x64fre (Version: 1.1.6001.0)
offreg_x86fre (Version: 1.1.6001.0)
On Screen Display (Version: 7.12.00)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017)
PANTONE Color Calibrator 1.1.0
pcidrvsample (Version: 1.1.6001.0)
PDF Settings CS5 (Version: 10.0)
PDF Settings CS6 (Version: 11.0)
pfd_ia64fre (Version: 1.1.6001.0)
pfd_x64fre (Version: 1.1.6001.0)
pfd_x86fre (Version: 1.1.6001.0)
Photo Gallery (Version: 16.4.3508.0205)
photoFXlab 1.1.1 (Version: 1.1.1)
Photomatix Pro version 4.2.4 (Version: 4.2.4)
pnpportssample (Version: 1.1.6001.0)
pnptools_ia64fre (Version: 1.1.6001.0)
pnptools_x64fre (Version: 1.1.6001.0)
pnptools_x86fre (Version: 1.1.6001.0)
portiosample (Version: 1.1.6001.0)
Power Manager (Version: 6.55)
powermanagement_ia64fre (Version: 1.1.6001.0)
powermanagement_x64fre (Version: 1.1.6001.0)
powermanagement_x86fre (Version: 1.1.6001.0)
printsamples (Version: 1.1.6001.0)
printtools_ia64fre (Version: 1.1.6001.0)
printtools_x64fre (Version: 1.1.6001.0)
printtools_x86fre (Version: 1.1.6001.0)
PTGui Pro 9.0
PxMergeModule (Version: 1.00.0000)
QuickTime (Version: 7.74.80.86)
readme (Version: 1.1.6001.0)
Realtek High Definition Audio Driver (Version: 6.0.1.6914)
RICOH_Media_Driver_v2.14.18.01 (Version: 2.14.18.01)
Safari (Version: 5.34.57.2)
sdv (Version: 1.1.6001.0)
sensorsamples (Version: 1.1.6001.0)
setupsamples (Version: 1.1.6001.0)
setuptools_ia64fre (Version: 1.1.6001.0)
setuptools_x64fre (Version: 1.1.6001.0)
setuptools_x86fre (Version: 1.1.6001.0)
sideshowsamples (Version: 1.1.6001.0)
Sierra Wireless QMI Lenovo Driver Package (Version: 1.0.45.0)
Skype™ 6.7 (Version: 6.7.102)
smartcardsamples (Version: 1.1.6001.0)
storagesamples (Version: 1.1.6001.0)
streammediasamples (Version: 1.1.6001.0)
swtuner (Version: 1.1.6001.0)
theHunter Launcher (Version: 621)
ThinkPad Bluetooth with Enhanced Data Rate Software (Version: 6.5.1.4500)
ThinkPad UltraNav Driver (Version: 16.2.19.9)
ThinkPad Wireless LAN Adapter Software (Version: 1.00.0031.1)
ThinkVantage Access Connections (Version: 6.01)
ThinkVantage Active Protection System (Version: 1.77.0.26)
ThinkVantage Communications Utility (Version: 3.0.45.0)
ThinkVantage Fingerprint Software (Version: 5.9.9.7282)
toastermetadatapackagesample (Version: 1.1.6001.0)
toastersample (Version: 1.1.6001.0)
toolindex (Version: 1.1.6001.0)
Topaz Adjust 4 (Version: 4.1.0)
Topaz Adjust 5 (Version: 5.0.0)
Topaz B&W Effects (Version: 1.1.0)
Topaz Clean 3 (Version: 3.0.2)
Topaz DeJpeg 4 (Version: 4.0.2)
Topaz DeNoise 5 (Version: 5.0.1)
Topaz Detail 2 (Version: 2.0.5)
Topaz Detail 3 (Version: 3.0.0)
Topaz Fusion Express 2 (Version: 2.0.1)
Topaz Fusion Express 2 (Version: 2.1.3)
Topaz InFocus (Version: 1.0.0)
Topaz Lens Effects (Version: 1.2.0)
Topaz ReMask 3 (64-bit) (Version: 3.0.0)
Topaz ReMask 3 (Version: 3.0.0)
Topaz ReMask 3 (Version: 3.2.1)
Topaz Simplify 3 (Version: 3.0.2)
Topaz Simplify 4 (Version: 4.0.0)
Topaz Star Effects (Version: 1.1.0)
Tourweaver 6.50 Professional Edition
Tourweaver 7.50 Professional Edition
tracingtool_ia64fre (Version: 1.1.6001.0)
tracingtool_x64fre (Version: 1.1.6001.0)
tracingtool_x86fre (Version: 1.1.6001.0)
umdfsamples (Version: 1.1.6001.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Access 2013 (KB2752093) 64-Bit Edition
Update for Microsoft Lync 2013 (KB2817621) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition
Update for Microsoft Office 2013 (KB2737954) 64-Bit Edition
Update for Microsoft Office 2013 (KB2752101) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760533) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760538) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767851) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767860) 64-Bit Edition
Update for Microsoft Office 2013 (KB2768014) 64-Bit Edition
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817311) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817493) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817624) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817630) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817632) 64-Bit Edition
Update for Microsoft OneNote 2013 (KB2817467) 64-Bit Edition
Update for Microsoft Outlook 2013 (KB2825632) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2810006) 64-Bit Edition
Update for Microsoft SkyDrive Pro (KB2817622) 64-Bit Edition
Update for Microsoft Visio 2013 (KB2810008) 64-Bit Edition
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition
Update for Microsoft Word 2013 (KB2817308) 64-Bit Edition
Update for Microsoft Word 2013 (KB2817627) 64-Bit Edition
usbsamples (Version: 1.1.6001.0)
vistalibs_ia64fre (Version: 1.1.6001.0)
vistalibs_x64fre (Version: 1.1.6001.0)
vistalibs_x86fre (Version: 1.1.6001.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 2.0.6 (Version: 2.0.6)
wcoinstallers (Version: 1.1.6001.0)
wdftools_ia64fre (Version: 1.1.6001.0)
wdftools_x64fre (Version: 1.1.6001.0)
wdftools_x86fre (Version: 1.1.6001.0)
wdtfbinaries_ia64fre (Version: 1.1.6001.0)
wdtfbinaries_x64fre (Version: 1.1.6001.0)
wdtfbinaries_x86fre (Version: 1.1.6001.0)
Windows Live Communications Platform (Version: 16.4.3508.0205)
Windows Live Essentials (Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3508.0205)
Windows Live Photo Common (Version: 16.4.3508.0205)
Windows Live PIMT Platform (Version: 16.4.3508.0205)
Windows Live SOXE (Version: 16.4.3508.0205)
Windows Live SOXE Definitions (Version: 16.4.3508.0205)
Windows Live UX Platform (Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (Version: 16.4.3508.0205)
WinRAR 4.20 (64-bit) (Version: 4.20.0)
Wise Game Booster 1.12 (Version: 1.12)
wmisamples (Version: 1.1.6001.0)
wnetlibs_ia64fre (Version: 1.1.6001.0)
wnetlibs_x64fre (Version: 1.1.6001.0)
wnetlibs_x86fre (Version: 1.1.6001.0)
wpdsamples (Version: 1.1.6001.0)
wpdtools_ia64fre (Version: 1.1.6001.0)
wpdtools_x64fre (Version: 1.1.6001.0)
wpdtools_x86fre (Version: 1.1.6001.0)
wsdtool_ia64fre (Version: 1.1.6001.0)
wsdtool_x64fre (Version: 1.1.6001.0)
wsdtool_x86fre (Version: 1.1.6001.0)
wxplibs_x86fre (Version: 1.1.6001.0)
Xara 3D Maker 7 (Version: 7.0.0.442)
Xara Designer Pro 7 (Version: 7.1.0.17125)
X-Rite Device Services Manager (Version: 2.1.14)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 14%
Total physical RAM: 32334.79 MB
Available physical RAM: 27797.49 MB
Total Pagefile: 64667.77 MB
Available Pagefile: 60125.44 MB
Total Virtual: 4095.88 MB
Available Virtual: 3951.11 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:450.62 GB) (Free:40.21 GB) NTFS
3 Drive f: (15.0.4420.1017) (CDROM) (Total:0.79 GB) (Free:0 GB) UDF
 
========================= Users: ========================================
 
User accounts for \\COURTNEY-LAP
 
Administrator            Courtney                 Guest                    
UpdatusUser              
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****
 
Thanks for your assistance!

Surround yourself with those that are smarter then you, otherwise you'll end up just as dumb as those around you.

#6 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:23 AM

Posted 04 October 2013 - 11:49 PM

Error: (User: ) Description: The file system structure on the disk is corrupt and unusable.

Run a Disk Check on your C: drive in Windows Vista or Windws 7:
• Click the Start button and select Computer
• Right-click on C:or your main hard drive letter, and select Properties
• Click on the Tools tab
• Under Error-checking click the Check Now... button and click Continue at the User Account Control prompt
• Mark the 2 boxes next to Automatically fix file system errors and Scan for and attempt recovery of bad sectors
• Click on the Start button
• When the message box pops up, click the Schedule disk check button and Restart your computer
• Once your computer restarts it will check the drive, don't press any keys so that it is allowed to do so
Note: This will take (on average) 1 to 2 hours to run, so please let it finish.
Do not force a Reboot during the scan or you will damage installed data -

 

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system.

Did you or another person run ComboFix recently ?

 

 

Is your Lenovo a Model •T510 / W510 / •T520 / W520 / •T530 / W530 as speaker upgrades specific to these 3 were added recently ?

 

Delete Wise Game Booster 1.12 (Version: 1.12)
Uninstall or disable µTorrent (Version: 3.3.0.29111)
COMODO Internet Security (Version: 6.0.2566.2708) and Microsoft Security Essentials (Version: 4.2.223.1) are both listed as installed. Please remove one of them (ask for help if required)
Do you know  what chkinftool_x86fre (Version: 1.1.6001.0) is ?? It looked very suspect - Remove it if unknown -
Uninstall Java 7 Update 13 (64-bit) (Version: 7.0.130)

 

 

Read and follow How To Temporarily Disable Your Anti-virus

Now - Scan your machine with ESET OnlineScan
1. Hold down Control and click HERE to open ESET OnlineScan in a new window.
2.Click the ESET Online Scanner button.
3. NOTE :.For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

 

- 1. Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
- 2. Double click on the ESET Online Scanner icon on your desktop.

 

 4. Check "YES, I accept the Terms of Use."
 5. Click the Start button.
 6. Accept any security warnings from your browser.
 7. Under scan settings, check "Scan Archives" and "Remove found threats"
8. Click Advanced settings and select the following:

Scan potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth technology

 9. ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this will take some time to download the program for a first time, and then download updated data base (1 to 2  hours is not unusual)
10. When the scan completes, click List Threats
11. Click Export, and save the file to your desktop using a unique name, such as ESETScan.
- Include the contents of this report in your next reply.
12. Click the Back button.
13. Click the Finish button
Or you can find a report at  C:\Program Files\esetonlinescanner\log.txt.

 

Thanks -



#7 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,601 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:23 PM

Posted 05 October 2013 - 10:19 AM

The following is an excerpt from this Microsoft article.

 

ChkINF and its components reside in the Tools\chkinf subdirectory of the Windows Driver Kit (SDK), ChkINF can be executed on all supported 32-bit and 64-bit platforms.  ChINF consists of a variety of Perl scripts and support applications.

 

 

I'd leave this one alone.

 

It would be interesting to see what would happen if you did a System Restore to a date prior to your vacation.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#8 Tim_K

Tim_K

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 05 October 2013 - 10:43 AM

OP - your cousin is a liar.  Go give him the beating he deserves.



#9 selfmade64856

selfmade64856
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Waikiki, Hawaii
  • Local time:03:23 PM

Posted 05 October 2013 - 05:26 PM

@ noknojon

 

Again thank you for your assistance! I have finished everything on the list except for the Eset online scanner which I am downloading the virus definitions right now. As soon as It is done I will post the info.

 

Did you or another person run ComboFix recently ?

Is your Lenovo a Model •T510 / W510 / •T520 / W520 / •T530 / W530 as speaker upgrades specific to these 3 were added recently ?

 

Yes, that was me. I know that I shouldn't run the program without one of you gurus telling me to do so......but when I saw the Amazon thing I freaked out for a second and did the stupid. Won't happen again :-) My machine is the Lenovo W530 and I installed the speaker upgrade.

 

 

 

It would be interesting to see what would happen if you did a System Restore to a date prior to your vacation.

 

I seem to remember that being the first thing that I tried and for a minute I thought that it worked, but then it started to hang again.

 

 

 

OP - your cousin is a liar.  Go give him the beating he deserves.

 

lol......he is only 17 years old, so I really don't blame him. The thing that pissed me off though is that I explained to him about the porn sites and I even wrote down the one I knew he could go to that doesn't have any viruses (xhamster.com). 

 

Thanks for your assistance and advice everyone :-)


Surround yourself with those that are smarter then you, otherwise you'll end up just as dumb as those around you.

#10 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:23 AM

Posted 05 October 2013 - 05:56 PM

Scan your machine with ESET OnlineScan As Above

This is one of the better online scanners, but it will take at least 1 to 2 hours -

 

Regards -
 



#11 selfmade64856

selfmade64856
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Waikiki, Hawaii
  • Local time:03:23 PM

Posted 05 October 2013 - 07:46 PM

Hi noknojon,

 

It finished scanning and here is what it found:

 

C:\Users\Courtney\Desktop\is_setup.exe Win32/InstallMonetizer.AI application cleaned by deleting - quarantined
C:\Users\Courtney\Downloads\utorrent (1).exe a variant of Win32/Bunndle application cleaned by deleting - quarantined
 
The uttorent I recognize but I don't recognize the issetup.exe, however it was on my desktop so it must have been something I downloaded at some point.
 
That was it though. You know, I haven't seen my computer do the hang thing since after I deleted some of the things you told me to delete yesterday........think we might have gotten it?

Surround yourself with those that are smarter then you, otherwise you'll end up just as dumb as those around you.

#12 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:23 AM

Posted 05 October 2013 - 08:05 PM

Sounds clean now -

Many problems (infections) are found at Torrent sites, so keep off them if you can.

 

Just keep this small program to clean the Temp Files Cache (often a problem)

Please download TFC, or Temp File Cleaner By Old Timer
Usage Instructions:
* Download TFC from the download link above and save the file on your desktop.
* Close ALL running applications as TFC will terminate them before attempting to clean up the temporary files.
* Double-click on the TFC icon.
* When the program opens, click on the Start button. 
* TFC will terminate the Explorer process and all running applications and then begin the process of cleaning out all of your temp folders.
* When done, press OK to reboot your computer and finish the cleanup.

 

Keep your Antivirus updated and scan weekly with Malwarebytes Anti-Malware Free (aka MBAM)

 

Post back if you find other problems, as I will "watch this space" for a week -

 

Regards -
 



#13 selfmade64856

selfmade64856
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Waikiki, Hawaii
  • Local time:03:23 PM

Posted 05 October 2013 - 09:29 PM

Hi noknojon,

 

Thanks so much for your help. Am I ok using CCleaner instead or does TFC do something different? I only ask because I already have CCleaner installed.

 

So far so good though which means a lot to me because I hopefully won't have to go through all the craziness associated with reformatting :-)


Surround yourself with those that are smarter then you, otherwise you'll end up just as dumb as those around you.

#14 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:23 AM

Posted 05 October 2013 - 10:00 PM

TFC is more controlled and has virtually no settings.

Just save your work, press Start - and - Finish without the worry of a wrong setting.

 

It will never delete a program in use, just Temp File Cache and nothing else -

 

This is why we use it rather than trying to explain how not to use CCleaners Registry settings.



#15 selfmade64856

selfmade64856
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Waikiki, Hawaii
  • Local time:03:23 PM

Posted 05 October 2013 - 10:34 PM

Awesome info! Thanks for the explanation and thanks for your help :-)


Surround yourself with those that are smarter then you, otherwise you'll end up just as dumb as those around you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users