Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Invisible field or window blocking mouse clicks (after installing a program)


  • This topic is locked This topic is locked
19 replies to this topic

#1 Demoblaster

Demoblaster

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 02 January 2014 - 04:30 PM

A while back ago, I downloaded and installed a program from a website that is usually safe & secure.
However, after I installed the program, I soon discovered an unusual issue: I couldn't click buttons located on my screen.
It wasn't any button anywhere but, rather, just on the lower portion of my screen. At first, I thought it was something browser related since all of the buttons that I was trying to click were while browsing the web...until I'd close my web browser and that same region of space was unclickable. The system treats it like there's another window there that's invisible. When I click that area, whatever's there becomes the active window.

I have Bitdefender 2010 and I did a deep system scan of my computer to try and find the culprit but it didn't find anything so now I'm turning to you guys.

Please note that included in the compressed file with the attached.txt log file is also an image file. I figured that this kind of issue would be difficult to show exactly where the issue was taking place so I used MS Paint and just plotted dots around the image file so that you could see where was clickable and where something was invisible in the lower portion of the image. This was done within a screen resolution is 1600x900. Note that the control below the unclickable area to resize the image workspace vertically IS clickable and that I do hide my Taskbar at the bottom of the screen. I dunno if that helps but I figured I'd say it anyways.

That being said, here's the log from DDS:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16514  BrowserJavaVersion: 10.45.2
Run by Frank at 14:56:43 on 2014-01-02
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.3956.2014 [GMT -5:00]
.
AV: BitDefender Antivirus *Disabled/Outdated* {5988F8C3-A12C-B8DD-7291-D5248C8353F8}
SP: BitDefender Antispyware *Disabled/Outdated* {E2E91927-8716-B753-4821-EE56F7041945}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: BitDefender Firewall *Enabled* {61B379E6-EB43-B985-59CE-7C1172501483}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
C:\Games\Hi-Rez Studios\HiPatchService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\Frank\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Stardock\ObjectDockPlus2\Dock64.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDockTray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Games\Desura\desura.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Desura\desura_service.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}\components\afom.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uDefault_Page_URL = hxxp://acer.msn.com
mStart Page = hxxp://acer.msn.com
mDefault_Page_URL = hxxp://acer.msn.com
mWinlogon: Userinit = userinit.exe
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Microsoft Web Test Recorder 10.0 Helper: {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
TB: BitDefender Toolbar: {381FFDE8-2394-4f90-B10D-FC6124A40F8C} -
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
EB: Web Test Recorder 10.0: {3142c289-f319-47f5-a594-a827028714c9} -
uRun: [OpenDNS Updater] "C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe" /autostart
uRun: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [Facebook Update] "C:\Users\Frank\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [Gadwin PrintScreen] C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
uRun: [Desura] C:\Games\Desura\desura.exe -autostart
uRun: [Spotify Web Helper] "C:\Users\Frank\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
mRun: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
mRun: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
StartupFolder: C:\Users\Frank\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\RAINME~1.LNK - C:\Program Files\Rainmeter\Rainmeter.exe
StartupFolder: C:\Users\Frank\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\STARDO~1.LNK - C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\DYNUPD~1.LNK - C:\Program Files (x86)\Dyn Updater\DynTray.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{629BA806-4032-4808-9184-B9DF761A785B} : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639} : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\16474777966696 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\16474777966696 : DHCPNameServer = 192.168.10.1 64.134.255.2 64.134.255.10
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\2656C6B696E6E233433373 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\2656C6B696E6E233433373 : DHCPNameServer = 192.168.10.1
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\3547574656E647 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\3547574656E647 : DHCPNameServer = 10.48.9.10 10.48.9.50
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\3594D4F4E40275966496 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\3594D4F4E40275966496 : DHCPNameServer = 192.168.11.1
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\4505D2C494E4B4F5440303832443 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\4505D2C494E4B4F5440303832443 : DHCPNameServer = 192.168.0.1 205.171.2.226
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\45F6D636164733 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\45F6D636164733 : DHCPNameServer = 75.75.75.75 75.75.76.76
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-mStart Page = hxxp://acer.msn.com
x64-mDefault_Page_URL = hxxp://acer.msn.com
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: BitDefender Toolbar: {381FFDE8-2394-4f90-B10D-FC6124A40F8C} -
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
x64-Run: [BitDefender Antiphishing Helper 32] "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEShow.exe"
x64-Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe"
x64-Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-STS: ObjectDockShlExt Class - {1984D045-52CF-49cd-DB77-08F378FEA4DB} - C:\Program Files (x86)\Stardock\ObjectDockPlus2\ODMenu64.dll
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101721.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Winamp Detect\npwachk.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
FF - plugin: C:\Users\Frank\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
FF - ExtSQL: 2013-12-17 09:18; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-12-17 09:20; jid0-OeCFXKAPh2tC0bN3Li9ajRAZx6c@jetpack; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\jid0-OeCFXKAPh2tC0bN3Li9ajRAZx6c@jetpack.xpi
FF - ExtSQL: 2013-12-17 09:28; {dc572301-7619-498c-a57d-39143191b318}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
FF - ExtSQL: 2013-12-17 09:28; {d37dc5d0-431d-44e5-8c91-49419370caa1}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
FF - ExtSQL: 2013-12-17 09:28; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - ExtSQL: 2013-12-17 09:28; {E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}
FF - ExtSQL: 2013-12-17 09:28; {73a6fe31-595d-460b-a920-fcc0f8843232}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF - ExtSQL: 2013-12-17 09:28; {0545b830-f0aa-4d7e-8820-50a4629a56fe}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
.
============= SERVICES / DRIVERS ===============
.
P2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;C:\Games\Hi-Rez Studios\HiPatchService.exe [2013-3-5 8704]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Windows\System32\drivers\BdfNdisf6.sys [2009-8-24 87048]
R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2009-8-6 88584]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2011-4-8 22912]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2011-4-8 20328]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2011-4-8 62584]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-3-28 241152]
R2 BDVEDISK;BDVEDISK;C:\Program Files\BitDefender\BitDefender 2010\bdvedisk.sys [2009-4-1 101896]
R2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2013-1-15 321104]
R2 ePowerSvc;Acer ePower Service;C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2013-1-15 867712]
R2 GREGService;GREGService;C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-1-8 23584]
R2 NTI IScheduleSvc;NTI IScheduleSvc;C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-6-28 255744]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2010-4-16 144640]
R2 StarWindServiceAE;StarWind AE Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-5-28 275968]
R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-9 5087584]
R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\System32\drivers\TurboB.sys [2009-11-2 13784]
R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-1-15 2320920]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-7-5 96256]
R3 BDFM;BDFM;C:\Windows\System32\drivers\bdfm.sys [2009-6-29 162312]
R3 Desura Install Service;Desura Install Service;C:\Program Files (x86)\Common Files\Desura\desura_service.exe [2013-8-28 131912]
R3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);C:\Windows\System32\drivers\vrtaucbl.sys [2013-12-18 66728]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2013-1-15 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2013-1-15 151936]
R3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2010-6-8 406056]
R3 teamviewervpn;TeamViewer VPN Adapter;C:\Windows\System32\drivers\teamviewervpn.sys [2013-10-9 35112]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-8 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S2 Dyn Updater;Dyn Updater;C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe [2011-11-15 95608]
S3 AmUStor;AM USB Stroage Driver;C:\Windows\System32\drivers\AmUStor.sys [2010-6-10 40448]
S3 Arrakis3;BitDefender Arrakis Server;C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2009-6-25 269824]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-3-2 183560]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;C:\Games\Dragon Age\bin_ship\daupdatersvc.service.exe [2013-3-2 25832]
S3 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-9-27 172912]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1;C:\Windows\System32\drivers\libusb0.sys [2011-3-19 43456]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2010-4-16 50432]
S3 pspdisp;pspdisp;C:\Windows\System32\drivers\pspdisp_x64.sys [2011-3-19 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-1-24 19456]
S3 SaiHFF0C;SaiHFF0C;C:\Windows\System32\drivers\SaiHFF0C.sys [2007-5-1 171144]
S3 SaiUFF0C;SaiUFF0C;C:\Windows\System32\drivers\SaiUFF0C.sys [2007-5-1 34304]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-1-24 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-1-24 30208]
S3 TurboBoost;TurboBoost;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-2 126352]
S4 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2014-01-02 19:07:58    --------    d-----w-    C:\Users\Frank\AppData\Local\{CD454D01-071C-42BF-892D-0F7DB2A6613B}
2014-01-02 15:50:05    --------    d-----w-    C:\Users\Frank\AppData\Roaming\OBS
2014-01-02 15:50:03    --------    d-----w-    C:\Program Files\OBS
2014-01-02 15:50:01    --------    d-----w-    C:\Program Files (x86)\OBS
2013-12-28 04:15:21    --------    d-----w-    C:\Users\Frank\AppData\Roaming\Worthless Bums
2013-12-27 05:11:32    --------    d-----w-    C:\Users\Frank\AppData\Local\{1400F8BB-A981-43A3-A8ED-0A2FDBCC09BF}
2013-12-26 12:57:56    --------    d-----w-    C:\Users\Frank\AppData\Local\{0814BCD1-9133-495A-825B-027709E2A3B9}
2013-12-25 06:50:32    --------    d-----w-    C:\Users\Frank\AppData\Local\{DCBA90F3-8874-437C-B4C5-770A2DF27F01}
2013-12-24 18:50:08    --------    d-----w-    C:\Users\Frank\AppData\Local\{C621CB98-D5C6-4AC8-A8D4-F4BCEE0DDC9D}
2013-12-24 00:26:57    --------    d-----w-    C:\Users\Frank\AppData\Local\{04E9F09D-9297-420B-920B-477420619599}
2013-12-23 14:15:02    --------    d-----w-    C:\Users\Frank\AppData\Local\{9BD56292-7DEB-4571-8D2F-28EE561187BE}
2013-12-23 05:39:34    --------    d-----w-    C:\Users\Frank\AppData\Local\{1712D0A5-FE76-4236-B577-43F3B546CEFF}
2013-12-22 13:33:39    --------    d-----w-    C:\Users\Frank\AppData\Local\{04A10825-323F-4853-8CE2-78D713BAC11D}
2013-12-21 19:54:26    --------    d-----w-    C:\Users\Frank\AppData\Local\{427C3EBD-841C-4561-88DF-FDED3167975F}
2013-12-21 00:02:57    --------    d-----w-    C:\Users\Frank\AppData\Local\{DB2A1660-830A-443D-9FE9-1FD820459D17}
2013-12-19 22:25:01    --------    d-----w-    C:\Windows\hsperfdata_Frank
2013-12-19 22:24:57    --------    d-----w-    C:\Users\Frank\AppData\Roaming\8BitMMO
2013-12-18 19:51:09    --------    d-----w-    C:\ProgramData\Dyn
2013-12-18 19:51:08    --------    d-----w-    C:\Program Files (x86)\Dyn Updater
2013-12-18 18:42:28    --------    d-----w-    C:\Users\Frank\AppData\Roaming\gen_AjaxAMP
2013-12-18 12:33:49    --------    d-----w-    C:\Users\Frank\AppData\Local\Spotify
2013-12-18 12:32:27    --------    d-----w-    C:\Users\Frank\AppData\Roaming\Spotify
2013-12-18 12:24:54    --------    d-----w-    C:\Users\Frank\AppData\Local\{A5523A1B-3A6F-49EC-BDCE-AB2678B65B1E}
2013-12-18 12:06:56    66728    ----a-w-    C:\Windows\System32\drivers\vrtaucbl.sys
2013-12-18 12:06:56    --------    d-----w-    C:\Program Files\Virtual Audio Cable
2013-12-18 11:39:36    --------    d-----w-    C:\Windows\jack
2013-12-18 11:39:34    --------    d-----w-    C:\Program Files (x86)\Jack
2013-12-17 11:22:57    --------    d-----w-    C:\Users\Frank\AppData\Roaming\ftblauncher
2013-12-12 22:25:35    --------    d-----w-    C:\Users\Frank\AppData\Local\{099F0067-9734-428B-A6FA-45C27FF29FC8}
2013-12-12 01:53:24    --------    d-----w-    C:\Users\Frank\AppData\Local\{0E24B1D0-8302-4380-8F5E-C3FAC21E078D}
2013-12-11 07:38:35    --------    d-----w-    C:\Users\Frank\AppData\Local\{8C97B35F-725D-4750-B101-86E5624D8807}
2013-12-10 19:38:09    --------    d-----w-    C:\Users\Frank\AppData\Local\{E3602847-19A6-4BC4-8C8B-1A9B50338EAE}
2013-12-10 00:54:29    --------    d-----w-    C:\Users\Frank\AppData\Local\{C21209E1-545A-4A1A-9107-03F015B88AFA}
2013-12-09 11:08:38    --------    d-----w-    C:\Users\Frank\AppData\Local\{5190C2A7-F0C5-4338-973B-9734678E1EF8}
2013-12-07 10:09:55    --------    d-----w-    C:\Users\Frank\AppData\Local\{F5EE53B6-3DE0-43A1-82E9-875DAEADF5A5}
2013-12-05 01:16:15    --------    d-----w-    C:\Users\Frank\AppData\Local\{79081925-3D4D-43AF-BE1C-82CB72FDB896}
2013-12-04 00:27:19    --------    d-----w-    C:\Users\Frank\AppData\Local\{56248862-751E-40CD-9FA2-C2A3CCEFE1CD}
.
==================== Find3M  ====================
.
2013-11-22 02:49:05    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-22 02:49:05    692616    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-10-19 00:32:05    108968    ----a-w-    C:\Windows\System32\WindowsAccessBridge-64.dll
2013-10-08 11:50:37    96168    ----a-w-    C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2006-05-03 10:06:54    163328    --sh--r-    C:\Windows\SysWOW64\flvDX.dll
2007-02-21 11:47:16    31232    --sh--r-    C:\Windows\SysWOW64\msfDX.dll
2008-03-16 13:30:52    216064    --sh--r-    C:\Windows\SysWOW64\nbDX.dll
.
============= FINISH: 14:56:58.03 ===============
 

Attached Files



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,631 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:56 AM

Posted 07 January 2014 - 04:35 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/519399 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 Demoblaster

Demoblaster
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 08 January 2014 - 04:03 PM

This is a laptop but I do have all of the recovery discs for it.
Information regarding this is the same as in the first post (including the added image file packed with the attach file)

 

2nd DDS:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16514  BrowserJavaVersion: 10.45.2
Run by Frank at 15:42:30 on 2014-01-08
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.3956.2512 [GMT -5:00]
.
AV: BitDefender Antivirus *Disabled/Outdated* {5988F8C3-A12C-B8DD-7291-D5248C8353F8}
SP: BitDefender Antispyware *Disabled/Outdated* {E2E91927-8716-B753-4821-EE56F7041945}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: BitDefender Firewall *Enabled* {61B379E6-EB43-B985-59CE-7C1172501483}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
C:\Games\Hi-Rez Studios\HiPatchService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\splwow64.exe
C:\Users\Frank\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Dyn Updater\DynTray.exe
C:\Program Files\Rainmeter\Rainmeter.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Stardock\ObjectDockPlus2\Dock64.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDockTray.exe
C:\Windows\system32\taskhost.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Gyazo\GyStation.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}\components\afom.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uDefault_Page_URL = hxxp://acer.msn.com
mStart Page = hxxp://acer.msn.com
mDefault_Page_URL = hxxp://acer.msn.com
mWinlogon: Userinit = userinit.exe
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Microsoft Web Test Recorder 10.0 Helper: {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
TB: BitDefender Toolbar: {381FFDE8-2394-4f90-B10D-FC6124A40F8C} -
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
EB: Web Test Recorder 10.0: {3142c289-f319-47f5-a594-a827028714c9} -
uRun: [OpenDNS Updater] "C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe" /autostart
uRun: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [Facebook Update] "C:\Users\Frank\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [Gadwin PrintScreen] C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
uRun: [Desura] C:\Games\Desura\desura.exe -autostart
uRun: [Spotify Web Helper] "C:\Users\Frank\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
uRunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_152_Plugin.exe -update plugin
mRun: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
mRun: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
dRunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
StartupFolder: C:\Users\Frank\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\RAINME~1.LNK - C:\Program Files\Rainmeter\Rainmeter.exe
StartupFolder: C:\Users\Frank\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\STARDO~1.LNK - C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\DYNUPD~1.LNK - C:\Program Files (x86)\Dyn Updater\DynTray.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
TCP: NameServer = 192.168.1.1 205.152.37.23 205.152.150.23
TCP: Interfaces\{629BA806-4032-4808-9184-B9DF761A785B} : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639} : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639} : DHCPNameServer = 192.168.1.1 205.152.37.23 205.152.150.23
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\16474777966696 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\16474777966696 : DHCPNameServer = 192.168.10.1 64.134.255.2 64.134.255.10
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\2656C6B696E6E233433373 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\2656C6B696E6E233433373 : DHCPNameServer = 192.168.10.1
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\3547574656E647 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\3547574656E647 : DHCPNameServer = 10.48.9.10 10.48.9.50
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\3594D4F4E40275966496 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\3594D4F4E40275966496 : DHCPNameServer = 192.168.11.1
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\4505D2C494E4B4F5440303832443 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\4505D2C494E4B4F5440303832443 : DHCPNameServer = 192.168.0.1 205.171.2.226
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\45F6D636164733 : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{EE019E4E-7CA2-4526-BDDE-A6E08730D639}\45F6D636164733 : DHCPNameServer = 75.75.75.75 75.75.76.76
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-mStart Page = hxxp://acer.msn.com
x64-mDefault_Page_URL = hxxp://acer.msn.com
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: BitDefender Toolbar: {381FFDE8-2394-4f90-B10D-FC6124A40F8C} -
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
x64-Run: [BitDefender Antiphishing Helper 32] "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEShow.exe"
x64-Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe"
x64-Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-STS: ObjectDockShlExt Class - {1984D045-52CF-49cd-DB77-08F378FEA4DB} - C:\Program Files (x86)\Stardock\ObjectDockPlus2\ODMenu64.dll
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101721.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Winamp Detect\npwachk.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
FF - plugin: C:\Users\Frank\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
FF - ExtSQL: 2013-12-17 09:18; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-12-17 09:20; jid0-OeCFXKAPh2tC0bN3Li9ajRAZx6c@jetpack; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\jid0-OeCFXKAPh2tC0bN3Li9ajRAZx6c@jetpack.xpi
FF - ExtSQL: 2013-12-17 09:28; {dc572301-7619-498c-a57d-39143191b318}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
FF - ExtSQL: 2013-12-17 09:28; {d37dc5d0-431d-44e5-8c91-49419370caa1}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
FF - ExtSQL: 2013-12-17 09:28; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - ExtSQL: 2013-12-17 09:28; {E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}
FF - ExtSQL: 2013-12-17 09:28; {73a6fe31-595d-460b-a920-fcc0f8843232}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF - ExtSQL: 2013-12-17 09:28; {0545b830-f0aa-4d7e-8820-50a4629a56fe}; C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\64x8e9sw.tonberry\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
.
============= SERVICES / DRIVERS ===============
.
P2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;C:\Games\Hi-Rez Studios\HiPatchService.exe [2013-3-5 8704]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Windows\System32\drivers\BdfNdisf6.sys [2009-8-24 87048]
R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2009-8-6 88584]
R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\System32\drivers\mwlPSDFilter.sys [2011-4-8 22912]
R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\System32\drivers\mwlPSDNserv.sys [2011-4-8 20328]
R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\System32\drivers\mwlPSDVDisk.sys [2011-4-8 62584]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-3-28 241152]
R2 BDVEDISK;BDVEDISK;C:\Program Files\BitDefender\BitDefender 2010\bdvedisk.sys [2009-4-1 101896]
R2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2013-1-15 321104]
R2 Dyn Updater;Dyn Updater;C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe [2011-11-15 95608]
R2 ePowerSvc;Acer ePower Service;C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2013-1-15 867712]
R2 GREGService;GREGService;C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-1-8 23584]
R2 NTI IScheduleSvc;NTI IScheduleSvc;C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-6-28 255744]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2010-4-16 144640]
R2 StarWindServiceAE;StarWind AE Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-5-28 275968]
R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-9 5087584]
R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\System32\drivers\TurboB.sys [2009-11-2 13784]
R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-1-15 2320920]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-7-5 96256]
R3 BDFM;BDFM;C:\Windows\System32\drivers\bdfm.sys [2009-6-29 162312]
R3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);C:\Windows\System32\drivers\vrtaucbl.sys [2013-12-18 66728]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2013-1-15 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2013-1-15 151936]
R3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2010-6-8 406056]
R3 teamviewervpn;TeamViewer VPN Adapter;C:\Windows\System32\drivers\teamviewervpn.sys [2013-10-9 35112]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-8 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 AmUStor;AM USB Stroage Driver;C:\Windows\System32\drivers\AmUStor.sys [2010-6-10 40448]
S3 Arrakis3;BitDefender Arrakis Server;C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2009-6-25 269824]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-3-2 183560]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;C:\Games\Dragon Age\bin_ship\daupdatersvc.service.exe [2013-3-2 25832]
S3 Desura Install Service;Desura Install Service;C:\Program Files (x86)\Common Files\Desura\desura_service.exe [2013-8-28 131912]
S3 EgisTec Ticket Service;EgisTec Ticket Service;C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-9-27 172912]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1;C:\Windows\System32\drivers\libusb0.sys [2011-3-19 43456]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2010-4-16 50432]
S3 pspdisp;pspdisp;C:\Windows\System32\drivers\pspdisp_x64.sys [2011-3-19 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-1-24 19456]
S3 SaiHFF0C;SaiHFF0C;C:\Windows\System32\drivers\SaiHFF0C.sys [2007-5-1 171144]
S3 SaiUFF0C;SaiUFF0C;C:\Windows\System32\drivers\SaiUFF0C.sys [2007-5-1 34304]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-1-24 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-1-24 30208]
S3 TurboBoost;TurboBoost;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-2 126352]
S4 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2014-01-08 12:57:21    --------    d-----w-    C:\Users\Frank\AppData\Local\{D1F9A245-E991-4518-87E5-DDC329A86BF2}
2014-01-07 23:38:01    --------    d-----w-    C:\Users\Frank\AppData\Local\{C77FEB1E-14B9-49D3-80ED-9ADEE508F3FC}
2014-01-07 00:35:25    --------    d-----w-    C:\Users\Frank\AppData\Roaming\Gyazo
2014-01-07 00:33:09    --------    d-----w-    C:\Program Files (x86)\Gyazo
2014-01-06 18:40:45    --------    d-----w-    C:\Users\Frank\AppData\Local\{26F003BD-DBA3-4A5A-8960-B8C3F373B904}
2014-01-06 02:07:58    --------    d-----w-    C:\Users\Frank\AppData\Local\{CAC79026-E95E-497E-93A7-00280BBFF49D}
2014-01-05 07:45:53    --------    d-----w-    C:\Users\Frank\AppData\Local\{E2EFE5D3-33F6-4F1A-9727-D21458D1EBE6}
2014-01-03 18:53:45    --------    d-----w-    C:\Users\Frank\AppData\Local\{F343EC8E-5314-49DA-9318-C7AFFC840330}
2014-01-02 19:07:58    --------    d-----w-    C:\Users\Frank\AppData\Local\{CD454D01-071C-42BF-892D-0F7DB2A6613B}
2014-01-02 15:50:05    --------    d-----w-    C:\Users\Frank\AppData\Roaming\OBS
2014-01-02 15:50:03    --------    d-----w-    C:\Program Files\OBS
2014-01-02 15:50:01    --------    d-----w-    C:\Program Files (x86)\OBS
2013-12-28 04:15:21    --------    d-----w-    C:\Users\Frank\AppData\Roaming\Worthless Bums
2013-12-27 05:11:32    --------    d-----w-    C:\Users\Frank\AppData\Local\{1400F8BB-A981-43A3-A8ED-0A2FDBCC09BF}
2013-12-26 12:57:56    --------    d-----w-    C:\Users\Frank\AppData\Local\{0814BCD1-9133-495A-825B-027709E2A3B9}
2013-12-25 06:50:32    --------    d-----w-    C:\Users\Frank\AppData\Local\{DCBA90F3-8874-437C-B4C5-770A2DF27F01}
2013-12-24 18:50:08    --------    d-----w-    C:\Users\Frank\AppData\Local\{C621CB98-D5C6-4AC8-A8D4-F4BCEE0DDC9D}
2013-12-24 00:26:57    --------    d-----w-    C:\Users\Frank\AppData\Local\{04E9F09D-9297-420B-920B-477420619599}
2013-12-23 14:15:02    --------    d-----w-    C:\Users\Frank\AppData\Local\{9BD56292-7DEB-4571-8D2F-28EE561187BE}
2013-12-23 05:39:34    --------    d-----w-    C:\Users\Frank\AppData\Local\{1712D0A5-FE76-4236-B577-43F3B546CEFF}
2013-12-22 13:33:39    --------    d-----w-    C:\Users\Frank\AppData\Local\{04A10825-323F-4853-8CE2-78D713BAC11D}
2013-12-21 19:54:26    --------    d-----w-    C:\Users\Frank\AppData\Local\{427C3EBD-841C-4561-88DF-FDED3167975F}
2013-12-21 00:02:57    --------    d-----w-    C:\Users\Frank\AppData\Local\{DB2A1660-830A-443D-9FE9-1FD820459D17}
2013-12-19 22:25:01    --------    d-----w-    C:\Windows\hsperfdata_Frank
2013-12-19 22:24:57    --------    d-----w-    C:\Users\Frank\AppData\Roaming\8BitMMO
2013-12-18 19:51:09    --------    d-----w-    C:\ProgramData\Dyn
2013-12-18 19:51:08    --------    d-----w-    C:\Program Files (x86)\Dyn Updater
2013-12-18 18:42:28    --------    d-----w-    C:\Users\Frank\AppData\Roaming\gen_AjaxAMP
2013-12-18 12:33:49    --------    d-----w-    C:\Users\Frank\AppData\Local\Spotify
2013-12-18 12:32:27    --------    d-----w-    C:\Users\Frank\AppData\Roaming\Spotify
2013-12-18 12:24:54    --------    d-----w-    C:\Users\Frank\AppData\Local\{A5523A1B-3A6F-49EC-BDCE-AB2678B65B1E}
2013-12-18 12:06:56    66728    ----a-w-    C:\Windows\System32\drivers\vrtaucbl.sys
2013-12-18 12:06:56    --------    d-----w-    C:\Program Files\Virtual Audio Cable
2013-12-18 11:39:36    --------    d-----w-    C:\Windows\jack
2013-12-18 11:39:34    --------    d-----w-    C:\Program Files (x86)\Jack
2013-12-17 11:22:57    --------    d-----w-    C:\Users\Frank\AppData\Roaming\ftblauncher
2013-12-12 22:25:35    --------    d-----w-    C:\Users\Frank\AppData\Local\{099F0067-9734-428B-A6FA-45C27FF29FC8}
2013-12-12 01:53:24    --------    d-----w-    C:\Users\Frank\AppData\Local\{0E24B1D0-8302-4380-8F5E-C3FAC21E078D}
2013-12-11 07:38:35    --------    d-----w-    C:\Users\Frank\AppData\Local\{8C97B35F-725D-4750-B101-86E5624D8807}
2013-12-10 19:38:09    --------    d-----w-    C:\Users\Frank\AppData\Local\{E3602847-19A6-4BC4-8C8B-1A9B50338EAE}
2013-12-10 00:54:29    --------    d-----w-    C:\Users\Frank\AppData\Local\{C21209E1-545A-4A1A-9107-03F015B88AFA}
.
==================== Find3M  ====================
.
2013-11-22 02:49:05    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-22 02:49:05    692616    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-10-19 00:32:05    108968    ----a-w-    C:\Windows\System32\WindowsAccessBridge-64.dll
2006-05-03 10:06:54    163328    --sh--r-    C:\Windows\SysWOW64\flvDX.dll
2007-02-21 11:47:16    31232    --sh--r-    C:\Windows\SysWOW64\msfDX.dll
2008-03-16 13:30:52    216064    --sh--r-    C:\Windows\SysWOW64\nbDX.dll
.
============= FINISH: 15:44:18.15 ===============
 

 

Attached Files



#4 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,985 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:03:56 PM

Posted 14 January 2014 - 06:50 AM

Hello, my apologies for the delay. My name is Elise and I'll assist you with this issue.

 

The problem you describe sometimes can be caused by a defect mouse. Can you try the mouse on another computer (or another mouse on this computer) to see if the problem is related to the mouse itself or rather limited to only this computer?


regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#5 Demoblaster

Demoblaster
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 16 January 2014 - 04:39 AM

I'll try that the next time the issue comes up (as it's not always like that 24/7). I'll post again the next time that it happens.



#6 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,985 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:03:56 PM

Posted 16 January 2014 - 06:12 AM

Okay, please let me know if it occurs again. :)

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#7 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,985 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:03:56 PM

Posted 19 January 2014 - 04:35 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#8 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,985 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:03:56 PM

Posted 21 January 2014 - 08:02 AM

This topic has been re-opened at the request of the person who originally posted.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#9 Demoblaster

Demoblaster
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 21 January 2014 - 03:35 PM

Thank you.
As stated via PM, the issue regarding the invisible field came back. I swapped the mouse out with the mouse on another system and still experienced the same issue. Clicking in the area shown in the attached image makes the previously active window inactive. Whatever the invisible object is, it still became the active window.


Edited by Demoblaster, 21 January 2014 - 03:36 PM.


#10 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,985 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:03:56 PM

Posted 21 January 2014 - 04:42 PM

Sorry, I don't see an image, are you sure you attached it correctly? :)


regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#11 Demoblaster

Demoblaster
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 21 January 2014 - 07:45 PM

Sorry, I was referring to the previously mentioned attached image file from paint that I had included with the attach.zip file in both of the DDS log posts.
The test of where the invisible window is still nets the same results in terms of where it's located.


Edited by Demoblaster, 21 January 2014 - 08:02 PM.


#12 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,985 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:03:56 PM

Posted 22 January 2014 - 03:33 AM

My only guess is that some kind of program running in the background is causing this. 

 

I see a number of controller errors on what appear to be cardreader devices or similar. Such issues can cause a mouse black-out. Can you confirm you have a card reader or so attached to the system? If you have and don't use it, maybe you can disconnect or disable it and see if the problem still occurs after that.


regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#13 Demoblaster

Demoblaster
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 22 January 2014 - 11:21 PM

The controller errors are being caused by a Multi USB Hub/4-type Flash card reader that has been giving me issues lately. The hub has not been connected to the system in days including yesterday when the error occurred. The system also includes a built-in reader which i've just disabled for diagnostic purposes, however, the errors were not related to it.



#14 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,985 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:03:56 PM

Posted 23 January 2014 - 03:24 AM

Can you do a clean boot and see if the errors are still there? If not, enable programs one at a time as described in the article and see which one causes the issue.


regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#15 Demoblaster

Demoblaster
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 24 January 2014 - 10:02 PM

My apologies for not checking back sooner.
I'll be doing the clean boot later tonight. I'll post again with an update.

Update: I did a DDS scan of my system on the 22nd of Jan and again after the clean boot today. Neither log file showed the errors.
This is the error viewer section of the attach file generated on the 22nd:

==== Event Viewer Messages From Past Week ========
.
1/16/2014 8:26:08 AM, Error: volsnap [36]  - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
1/16/2014 8:14:35 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LIVESRV service.
.
==== End Of File ===========================

There are no errors in the event viewer reported (via newly generated log files) prior to the clean boot.

I'll start bringing up services and see if the error returns.

Update 2: Still no controller errors after bringing all services back. The cause of that particular issue was the USB hub, like I said, however, the issue with the invisible field is still present.


Edited by Demoblaster, 25 January 2014 - 10:02 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users