Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Random Audio/ Chrome Crashing


  • Please log in to reply
2 replies to this topic

#1 Shermmy

Shermmy

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 19 October 2013 - 06:36 PM

After trying to download a program (which i stopped when it kept suggesting other stuff to download), my computer started acting really weird, playing random standup comedy, ads, and loud sound effects. In addition to that, my browser (chrome) kept/keeps crashing. I ran Windows Security Essentials and it showed 3 (2 severe, 1 moderate) items and removed/quarantined them, yet now as I am typing this, the audio is playing once again. How do I remove them?

 

The 3 items: http://gyazo.com/ebcf560532b2f6f5f3beb08ef6f95459.png

Speccy info: http://speccy.piriform.com/results/HVKRMTW8HcACSwUwpIa0r7M


Edited by Shermmy, 19 October 2013 - 06:39 PM.


BC AdBot (Login to Remove)

 


#2 Shermmy

Shermmy
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 19 October 2013 - 06:42 PM

Mini Toolbox info:

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Connor (administrator) on 19-10-2013 at 18:41:16
Running from "C:\Users\Connor\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (10/19/2013 06:23:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (10/19/2013 06:23:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (10/19/2013 06:02:53 PM) (Source: Application Error) (User: )
Description: Faulting application name: silentium.exe, version: 0.0.0.0, time stamp: 0x525f81a7
Faulting module name: silentium.exe, version: 0.0.0.0, time stamp: 0x525f81a7
Exception code: 0xc0000094
Fault offset: 0x0000c7bc
Faulting process id: 0x21f4
Faulting application start time: 0xsilentium.exe0
Faulting application path: silentium.exe1
Faulting module path: silentium.exe2
Report Id: silentium.exe3
 
Error: (10/19/2013 05:32:09 PM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 30.0.1599.101, time stamp: 0x52547456
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000374
Fault offset: 0x000ce753
Faulting process id: 0x244c
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
 
Error: (10/19/2013 05:24:03 PM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 30.0.1599.101, time stamp: 0x52547456
Faulting module name: lmrn.dll, version: 0.0.0.0, time stamp: 0x5235a86d
Exception code: 0xc0000005
Fault offset: 0x0001347e
Faulting process id: 0x22a4
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
 
Error: (10/19/2013 05:17:19 PM) (Source: Application Error) (User: )
Description: Faulting application name: chrome.exe, version: 30.0.1599.101, time stamp: 0x52547456
Faulting module name: lmrn.dll, version: 0.0.0.0, time stamp: 0x5235a86d
Exception code: 0xc0000005
Fault offset: 0x0001347e
Faulting process id: 0x1138
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
 
Error: (10/19/2013 04:34:43 PM) (Source: Application Hang) (User: )
Description: The program Spotify.exe version 0.9.4.185 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1b04
 
Start Time: 01cecd12a9248a86
 
Termination Time: 10
 
Application Path: C:\Users\Connor\AppData\Roaming\Spotify\Spotify.exe
 
Report Id:
 
Error: (10/19/2013 04:33:12 PM) (Source: Application Error) (User: )
Description: Faulting application name: silentium.exe, version: 0.0.0.0, time stamp: 0x525f81a7
Faulting module name: silentium.exe, version: 0.0.0.0, time stamp: 0x525f81a7
Exception code: 0xc0000094
Fault offset: 0x0000c7bc
Faulting process id: 0x1618
Faulting application start time: 0xsilentium.exe0
Faulting application path: silentium.exe1
Faulting module path: silentium.exe2
Report Id: silentium.exe3
 
Error: (10/19/2013 04:32:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/19/2013 04:28:09 PM) (Source: Application Hang) (User: )
Description: The program Spotify.exe version 0.9.4.178 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: cf0
 
Start Time: 01cec673a0d4a286
 
Termination Time: 186
 
Application Path: C:\Users\Connor\AppData\Roaming\Spotify\Spotify.exe
 
Report Id:
 
 
System errors:
=============
Error: (10/16/2013 03:00:12 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
 
Error: (10/11/2013 03:33:20 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error: 
%%1053
 
Error: (10/11/2013 03:33:20 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
 
Error: (10/11/2013 07:01:13 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
 
Error: (10/11/2013 03:25:42 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
 
Error: (10/09/2013 08:01:51 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
 
Error: (09/26/2013 07:49:05 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 1.159.688.0
 
Update Source: %NT AUTHORITY59
 
Update Stage: 4.2.0223.00
 
Source Path: 4.2.0223.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\SYSTEM
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (09/23/2013 03:10:33 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
 
Error: (09/21/2013 08:34:26 PM) (Source: Service Control Manager) (User: )
Description: The cpuz136 service failed to start due to the following error: 
%%3
 
Error: (09/21/2013 10:32:10 AM) (Source: Service Control Manager) (User: )
Description: The Server service terminated with the following error: 
%%1062
 
 
Microsoft Office Sessions:
=========================
Error: (10/19/2013 06:23:47 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Connor\Downloads\SoftonicDownloader_for_mpeg-2-video-decoder.exe
 
Error: (10/19/2013 06:23:47 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Connor\Downloads\SoftonicDownloader_for_mpeg-2-video-decoder.exe
 
Error: (10/19/2013 06:02:53 PM) (Source: Application Error)(User: )
Description: silentium.exe0.0.0.0525f81a7silentium.exe0.0.0.0525f81a7c00000940000c7bc21f401cecd1f4d2e378bC:\Program Files (x86)\K14R\feeds\silentium.exeC:\Program Files (x86)\K14R\feeds\silentium.exe95253fa7-3912-11e3-b0b4-d43d7eb13f88
 
Error: (10/19/2013 05:32:09 PM) (Source: Application Error)(User: )
Description: chrome.exe30.0.1599.10152547456ntdll.dll6.1.7601.18247521ea8e7c0000374000ce753244c01cecd1a0b5acac9C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\SysWOW64\ntdll.dll4a14b42e-390e-11e3-b0b4-d43d7eb13f88
 
Error: (10/19/2013 05:24:03 PM) (Source: Application Error)(User: )
Description: chrome.exe30.0.1599.10152547456lmrn.dll0.0.0.05235a86dc00000050001347e22a401cecd191ec09dc6C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\SysWOW64\jmdp\lmrn.dll2857c29d-390d-11e3-b0b4-d43d7eb13f88
 
Error: (10/19/2013 05:17:19 PM) (Source: Application Error)(User: )
Description: chrome.exe30.0.1599.10152547456lmrn.dll0.0.0.05235a86dc00000050001347e113801cecd138ab53c13C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\SysWOW64\jmdp\lmrn.dll3788dcd5-390c-11e3-b0b4-d43d7eb13f88
 
Error: (10/19/2013 04:34:43 PM) (Source: Application Hang)(User: )
Description: Spotify.exe0.9.4.1851b0401cecd12a9248a8610C:\Users\Connor\AppData\Roaming\Spotify\Spotify.exe
 
Error: (10/19/2013 04:33:12 PM) (Source: Application Error)(User: )
Description: silentium.exe0.0.0.0525f81a7silentium.exe0.0.0.0525f81a7c00000940000c7bc161801cecd1291fd3ee4C:\Program Files (x86)\K14R\feeds\silentium.exeC:\Program Files (x86)\K14R\feeds\silentium.exe0dd30f97-3906-11e3-b0b4-d43d7eb13f88
 
Error: (10/19/2013 04:32:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/19/2013 04:28:09 PM) (Source: Application Hang)(User: )
Description: Spotify.exe0.9.4.178cf001cec673a0d4a286186C:\Users\Connor\AppData\Roaming\Spotify\Spotify.exe
 
 
=========================== Installed Programs ============================
 
3DMark (Version: 1.1)
Acoustica Mixcraft 6 (Version: b216)
Adobe After Effects CC (Version: 12)
Adobe AIR (Version: 3.8.0.1280)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Creative Cloud (Version: 2.1.2.232)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Flash CS3 (Version: 9.0)
Adobe Flash CS3 Professional (Version: 9.0.0)
Adobe Flash CS3 Professional version CS3 (Version: CS3)
Adobe Flash Player 10 Plugin (Version: 10.3.181.14)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.265)
Adobe Flash Player 9 Plugin (Version: 9.0.45.0)
Adobe Flash Professional CC (Version: 13.0)
Adobe Flash Video Encoder (Version: 2.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CC (Version: 17.0)
Adobe InDesign CC (Version: 9.0)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe Muse (Version: 6.0)
Adobe Muse (Version: 6.0.751)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CC (Version: 14.0)
Adobe Prelude CC (Version: 2.0.0)
Adobe Premiere Pro CC (Version: 7.0.0)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Adobe Setup (Version: 1.0)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Any Video Converter 5 5.0.3
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Arc (Version: 1.0.0.5510)
Audacity 2.0.3 (Version: 2.0.3)
Avidemux 2.6 (32-bit) (Version: 2.6.5.8897)
Bamboo Dock (Version: 4.1)
Bamboo Dock (Version: 4.1.0)
Batman: Arkham City GOTY
BeamNG-Techdemo-0.3 (remove only)
Bonjour (Version: 3.0.0.10)
Celtx (2.9.7) (Version: 2.9.7 (en-US))
D3DX10 (Version: 15.4.2368.0902)
DriverDoc (Version: 1.52.1086.14425)
Dual-Core Optimizer (Version: 1.1.4.0169)
Dxtory version 2.0.119 (Version: 2.0.119)
Express Rip (Version: 1.92)
Fallout: New Vegas
FormatFactory 3.1.1 (Version: 3.1.1)
Free Studio version 2013 (Version: 6.1.3.622)
Futuremark SystemInfo (Version: 4.17.0)
Garry's Mod
GIF Optimizer 2.0
Google Chrome (Version: 30.0.1599.101)
Google Update Helper (Version: 1.3.21.165)
Gyazo 1.2.1
HandBrake 0.9.9.1 (Version: 0.9.9.1)
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
Hitman: Absolution
Hitman: Sniper Challenge
HP Deskjet 3050A J611 series Basic Device Software (Version: 25.0.571.0)
HP Deskjet 3050A J611 series Help (Version: 140.0.2.2)
HP Deskjet 3050A J611 series Product Improvement Study (Version: 25.0.571.0)
IB Updater Service (Version: 4.0.7.4)
ImageGrab 5.0.6 en (Version: 5.0.6)
ImgBurn (Version: 2.5.8.0)
Inkscape 0.48.4 (Version: 0.48.4)
Intel® Control Center (Version: 1.2.1.1008)
Intel® Management Engine Components (Version: 8.1.30.1349)
Intel® Rapid Storage Technology (Version: 11.5.4.1001)
Intel® Smart Connect Technology 3.0 x64 (Version: 3.0.41.1571)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 1.0.8.251)
Intel® Trusted Connect Service Client (Version: 1.27.757.1)
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
JC2-MP version 0.0.14 (Build 481) (Version: 0.0.14 (Build 481))
Just Cause 2
Lagarith Lossless Codec (1.3.27)
LAME v3.99.3 (for Windows)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.3.0219.0)
Microsoft Security Essentials (Version: 4.3.219.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (Version: 11.0.50727.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Movie Maker (Version: 16.4.3508.0205)
MSI Afterburner 2.3.0 (Version: 2.3.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
NVIDIA 3D Vision Controller Driver 326.01 (Version: 326.01)
NVIDIA 3D Vision Driver 327.23 (Version: 327.23)
NVIDIA Control Panel 327.23 (Version: 327.23)
NVIDIA Graphics Driver 327.23 (Version: 327.23)
NVIDIA HD Audio Driver 1.3.26.4 (Version: 1.3.26.4)
NVIDIA Install Application (Version: 2.1002.133.889)
NVIDIA PhysX (Version: 9.13.0725)
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.2723)
NVIDIA Update 8.3.14 (Version: 8.3.14)
NVIDIA Update Components (Version: 8.3.14)
NVIDIA Virtual Audio 1.2.5 (Version: 1.2.5)
PaintTool SAI Ver.1
PDF Settings (Version: 1.0)
PDF Settings CC (Version: 12.0)
Photo Gallery (Version: 16.4.3508.0205)
Portal 2
Prism Video File Converter
Puzzle Agent - Puzzle Agent (Version: 1.0.0.0)
QuickTime (Version: 7.74.80.86)
Realtek Ethernet Controller Driver (Version: 7.67.1226.2012)
Realtek High Definition Audio Driver (Version: 6.0.1.6923)
Riot - Radical Image Optimization Tool
SharpKeys
Skype Click to Call (Version: 6.13.13771)
Skype™ 6.6 (Version: 6.6.106)
Smite (Version: 0.1.1774.1)
Snap.Do (Version: 1.72.1.12048)
Speccy (Version: 1.23)
SpeedFan (remove only)
Spotify (Version: 0.9.4.185.g7545a404)
Steam (Version: 1.0.0.0)
System Requirements Lab for Intel (Version: 4.5.13.0)
Team Fortress 2
The Office (Version: 1.1.0.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (Version: 3)
VLC media player 2.0.7 (Version: 2.0.7)
Wacom (Version: 5.3.2-1)
War Thunder
WebTablet FB Plugin 32 bit (Version: 2.1.0.2)
WebTablet FB Plugin 64 bit (Version: 2.1.0.2)
Windows Live Communications Platform (Version: 16.4.3508.0205)
Windows Live Essentials (Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3508.0205)
Windows Live Photo Common (Version: 16.4.3508.0205)
Windows Live PIMT Platform (Version: 16.4.3508.0205)
Windows Live SOXE (Version: 16.4.3508.0205)
Windows Live SOXE Definitions (Version: 16.4.3508.0205)
Windows Live UX Platform (Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (Version: 16.4.3508.0205)
Windows Live Writer (Version: 16.4.3508.0205)
Windows Live Writer Resources (Version: 16.4.3508.0205)
WinRAR 5.00 beta 6 (64-bit) (Version: 5.00.6)
XSplit Broadcaster (Version: 1.3.1306.2101)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 35%
Total physical RAM: 16331.34 MB
Available physical RAM: 10540.29 MB
Total Pagefile: 32660.86 MB
Available Pagefile: 24515.39 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.25 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:2047.9 GB) (Free:1664.21 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\CONNOR-PC
 
Administrator            Connor                   Guest                    
UpdatusUser              
 
 
**** End of log ****


#3 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:12:32 AM

Posted 19 October 2013 - 09:28 PM

Hello,

And welcome to BleepingComputer.com, before we can assist you with your question of: Am I infected? You will need to perform the following tasks and post the logs of each if you can.

Malwarebytes Anti-Malware
 

Please download Malwarebytes Anti-Malware
and save it to your desktop.

MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Full Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.



SUPERAntiSpyware:
 
 

Please download and scan with SUPERAntiSpyware Free

  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen and exit the program.
  • Do not run a scan just yet.

Reboot your computer in "Safe Mode" using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".

Scan with SUPERAntiSpyware as follows:
  • Launch the program and back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan and click "Next".
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.

Instructions:

Download and scan with SUPERAntiSpyware Free for Home Users
  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.
  • In the Main Menu, click the Preferences... button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen.
  • Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click "Next" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.

Now GMER
 
 

Please download GMER from one of the following locations and save it to your desktop:

  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    gmer_zip.gif
  • GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning
.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users