Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DRIVER_IRQL_NOT_LESS_OR_EQUAL(NETIO.SYS)


  • Please log in to reply
2 replies to this topic

#1 d3xyh00w3n

d3xyh00w3n

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:31 AM

Posted 28 January 2014 - 07:55 PM

Recently, I've been getting the DRIVER_IRQL_NOT_LESS_OR_EQUAL(NETIO.SYS) error. It happened to me like 3 times in an hour. I do no know why or what was the cause of the error. Can anybody tell me how to fix this this error? It's really annoying having to restart my laptop everytime this happens.

 

As for my dump files, I have loaded them up as an attachment and here is the link to the Speccy weblink: http://speccy.piriform.com/results/YM4blGPOGZ02aIjgfmgFoCw

and this is the Minitookbox log:

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Pointdexter (administrator) on 28-01-2014 at 16:39:16
Running from "C:\Users\Pointdexter\Downloads"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/28/2014 04:28:52 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/28/2014 04:13:43 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.3.9600.16441, time stamp: 0x5265dec8
Faulting module name: SHELL32.dll, version: 6.3.9600.16474, time stamp: 0x529072f0
Exception code: 0xc0000005
Fault offset: 0x0000000000167c91
Faulting process id: 0x129c
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
Faulting package full name: Explorer.EXE4
Faulting package-relative application ID: Explorer.EXE5

Error: (01/28/2014 04:09:09 PM) (Source: Application Hang) (User: )
Description: The program StartMenu8.exe version 1.4.0.908 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 12f8

Start Time: 01cf1c85f552b248

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe

Report Id: 90a3fc2c-8879-11e3-bea8-00c2c60bc61e

Faulting package full name:

Faulting package-relative application ID:

Error: (01/28/2014 03:15:32 PM) (Source: IMFservice) (User: )
Description: The handle is invalid

Error: (01/28/2014 03:15:32 PM) (Source: IMFservice) (User: )
Description: The handle is invalid

Error: (01/28/2014 03:15:30 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/28/2014 03:01:50 PM) (Source: Application Error) (User: )
Description: Faulting application name: LogonUI.exe, version: 6.3.9600.16384, time stamp: 0x5215f6c5
Faulting module name: VfCredProv.dll_unloaded, version: 0.0.0.0, time stamp: 0x519ca83b
Exception code: 0xc0000005
Fault offset: 0x000000000000344b
Faulting process id: 0x580
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report Id: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5

Error: (01/28/2014 03:00:29 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: The Cryptographic Services service failed to initialize the Catalog Database. The ESENT error was: -528.

Error: (01/28/2014 03:00:29 PM) (Source: ESENT) (User: )
Description: Catalog Database (1916) Catalog Database: Error -1811 (0xfffff8ed) occurred while opening logfile C:\WINDOWS\system32\CatRoot2\edb0001B.log.

Error: (01/28/2014 02:50:02 PM) (Source: Application Hang) (User: )
Description: The program raidcall.exe version 1.0.11364.75 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 428

Start Time: 01cf1c7b022ab1db

Termination Time: 24

Application Path: C:\Program Files (x86)\RaidCall\raidcall.exe

Report Id: 8396dc02-886e-11e3-bea5-00c2c60bc61e

Faulting package full name:

Faulting package-relative application ID:


System errors:
=============
Error: (01/28/2014 04:30:56 PM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/28/2014 04:30:34 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

Error: (01/28/2014 04:29:16 PM) (Source: BTHUSB) (User: )
Description: The local adapter does not support an important Low Energy controller state.  The minimum required supported state mask is 0x1f7fffff, got 0x1f3fffff.  Low Energy functionality will be disabled.

Error: (01/28/2014 04:28:54 PM) (Source: Service Control Manager) (User: )
Description: The Superfetch service terminated with the following error:
%%1062

Error: (01/28/2014 04:28:50 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (01/28/2014 04:07:35 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 252.

Error: (01/28/2014 04:07:29 PM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/28/2014 04:05:52 PM) (Source: BugCheck) (User: )
Description: 0x000000d1 (0x0000000000000050, 0x0000000000000002, 0x0000000000000000, 0xfffff8000118eaaa)C:\WINDOWS\MEMORY.DMP012814-38671-01

Error: (01/28/2014 04:05:01 PM) (Source: BTHUSB) (User: )
Description: The local adapter does not support an important Low Energy controller state.  The minimum required supported state mask is 0x1f7fffff, got 0x1f3fffff.  Low Energy functionality will be disabled.

Error: (01/28/2014 04:05:27 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 3:56:14 PM on ?1/?28/?2014 was unexpected.


Microsoft Office Sessions:
=========================
Error: (01/28/2014 04:28:52 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/28/2014 04:13:43 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.3.9600.164415265dec8SHELL32.dll6.3.9600.16474529072f0c00000050000000000167c91129c01cf1c85f4f7bdb4C:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\SHELL32.dll35cd8e73-887a-11e3-bea8-00c2c60bc61e

Error: (01/28/2014 04:09:09 PM) (Source: Application Hang)(User: )
Description: StartMenu8.exe1.4.0.90812f801cf1c85f552b2484294967295C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe90a3fc2c-8879-11e3-bea8-00c2c60bc61e

Error: (01/28/2014 03:15:32 PM) (Source: IMFservice)(User: )
Description: The handle is invalid

Error: (01/28/2014 03:15:32 PM) (Source: IMFservice)(User: )
Description: The handle is invalid

Error: (01/28/2014 03:15:30 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/28/2014 03:01:50 PM) (Source: Application Error)(User: )
Description: LogonUI.exe6.3.9600.163845215f6c5VfCredProv.dll_unloaded0.0.0.0519ca83bc0000005000000000000344b58001cf1c7ca8aa312aC:\WINDOWS\system32\LogonUI.exeVfCredProv.dll2b27cba0-8870-11e3-bea6-00c2c60bc61e

Error: (01/28/2014 03:00:29 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: -528

Error: (01/28/2014 03:00:29 PM) (Source: ESENT)(User: )
Description: Catalog Database1916Catalog Database: C:\WINDOWS\system32\CatRoot2\edb0001B.log-1811 (0xfffff8ed)

Error: (01/28/2014 02:50:02 PM) (Source: Application Hang)(User: )
Description: raidcall.exe1.0.11364.7542801cf1c7b022ab1db24C:\Program Files (x86)\RaidCall\raidcall.exe8396dc02-886e-11e3-bea5-00c2c60bc61e


CodeIntegrity Errors:
===================================
  Date: 2014-01-28 16:09:35.756
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:09:34.726
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:09:33.685
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:09:32.656
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:09:31.625
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:09:30.561
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:09:29.523
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:09:23.460
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:02:24.107
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-28 16:02:23.076
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Action Replay DSi Code Manager
Adobe Flash Player 12 Plugin (Version: 12.0.0.43)
Adobe Shockwave Player 12.0 (Version: 12.0.7.148)
Advanced SystemCare 7 (Version: 7.1.0)
Aeria Ignite (Version: 1.13.3296)
AikaOnline (Version: 1.0)
AIM for Windows
Akamai NetSession Interface
Apple Application Support (Version: 3.0)
Apple Mobile Device Support (Version: 7.1.0.32)
Apple Software Update (Version: 2.1.3.127)
Audacity 2.0.5 (Version: 2.0.5)
Battle.net
BLA●K LAG●●N-Three abduction confinement-
Bonjour (Version: 3.0.0.10)
Counter-Strike: Global Offensive
CyberLink PowerDirector 10 (Version: 10.0.0.2810)
DAEMON Tools Lite (Version: 4.48.1.0347)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
Download Updater (AOL Inc.)
DP1815 (Version: 1.32.153.0)
Driver Booster (Version: 1.2)
DSi Compatible Action Replay Firmware Update version 1.0 (Version: 1.0)
Elsword version v3.1106.5.1 (Version: v3.1106.5.1)
Energy Management (Version: 8.0.2.11)
ExpressCache (Version: 1.0.102.0)
FINAL F●NTASY Ⅶ A●VENT CHIL●REN RAPE OF TWO PEOPLE
foobar2000 v1.2.9 (Version: 1.2.9)
GeForce Experience NvStream Client Components (Version: 1.6.28)
Genesys USB Mass Storage Device (Version: 4.3.0.3)
GirlsNightmare-DEAD●RALIVE-
Google Chrome (Version: 32.0.1700.102)
Google Update Helper (Version: 1.3.22.3)
Grand Chase version 112213 (Version: 112213)
Hearthstone
iCloud (Version: 3.1.0.40)
Intel AppUp(SM) center (Version: 3.6.1.33057.10)
Intel® Manageability Engine Firmware Recovery Agent (Version: 1.0.0.36943)
Intel® Management Engine Components (Version: 9.0.0.1323)
Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.8.0.0548)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 3.0.1304.0338)
Intel® Rapid Storage Technology (Version: 12.6.0.1033)
Intel® SDK for OpenCL - CPU Only Runtime Package (Version: 3.0.0.63463)
Intel® Update Manager (Version: 1.6.0.56)
Intel® WiDi (Version: 4.1.19.0)
IntelR PROSet/Wireless Software (Version: 15.8.0)
IntelR Trusted Connect Service Client (Version: 1.27.798.1)
IObit Malware Fighter (Version: 2.2)
IObit Uninstaller (Version: 3.0.5.1101)
iTunes (Version: 11.1.4.62)
Java 7 Update 51 (Version: 7.0.510)
Java Auto Updater (Version: 2.1.9.8)
JPatcher
League of Legends (Version: 3.0.0)
Left 4 Dead 2
Lenovo EasyCamera (Version: 6.2.9200.10240)
Lenovo Experience Improvement (Version: 1.0.4.0)
Lenovo OneKey Recovery (Version: 8.0.0.1219)
Lenovo Photos (Version: 4.8.5)
Lenovo pointing device (Version: 11.4.19.2)
Lenovo PowerDVD10 (Version: 10.0.5219.52)
Lenovo VeriFace (Version: 5.0.13.5261)
Lenovo YouCam (Version: 4.1.3423)
Lightning Warrior Raidy
Lusty Ladies SexClub (Version: 500 Final)
MapleStory
Microsoft Access MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft DCF MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Excel MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Groove MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Lync MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Mouse and Keyboard Center (Version: 2.2.173.0)
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - Espanol (Version: 15.0.4420.1017)
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Word MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
MotioninJoy Gamepad tool 0.7.0000 (Version: 0.7.0000)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Nexon Game Manager
NVIDIA Control Panel 332.21 (Version: 332.21)
NVIDIA GeForce Experience 1.8.2 (Version: 1.8.2)
NVIDIA Graphics Driver 332.21 (Version: 332.21)
NVIDIA Install Application (Version: 2.1002.142.992)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Network Service (Version: 1.0)
NVIDIA Optimus Update 11.10.11 (Version: 11.10.11)
NVIDIA PhysX (Version: 9.13.0725)
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 11.10.11 (Version: 11.10.11)
NVIDIA Update 11.10.11 (Version: 11.10.11)
NVIDIA Update Core (Version: 11.10.11)
NVIDIA Virtual Audio 1.2.20 (Version: 1.2.20)
Onekey Theater (Version: 3.0.1.0)
Origin (Version: 9.3.11.2762)
osu! (Version: 0.0.0.0)
Outils de verification linguistique 2013 de Microsoft Office?- Francais (Version: 15.0.4420.1017)
Pando Media Booster (Version: 2.6.0.9)
Power2Go (Version: 5.6.0.9109)
Qualcomm Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 2.1.0.12)
QuickTime (Version: 7.74.80.86)
RaidCall (Version: 7.3.0-1.0.10926.49)
Realtek High Definition Audio Driver (Version: 6.0.1.7106)
RPG MAKER VX Ace RTP (Version: 1.00)
RPGツクールVX RTP (Version: 1.02)
Rusty Hearts PWE (Version: 1.00.0000)
Shared C Run-time for x64 (Version: 10.0.0)
SHIELD Streaming (Version: 1.7.306)
Skype Click to Call (Version: 6.13.13771)
Skype? 6.11 (Version: 6.11.102)
Smart Defrag 3 (Version: 3.0)
StageLight (Version: 1.1.0.4070)
Start Menu 8 (Version: 1.4.0.0)
Steam
SugarSync Manager (Version: 1.9.61.90905)
Surfing Protection (Version: 1.0)
swMSM (Version: 12.0.0.1)
Team Fortress 2
TERA (Version: 1.6)
The Sims? 3 (Version: 1.66.2)
The Sims? 3 Ambitions (Version: 4.0.87)
The Sims? 3 High-End Loft Stuff (Version: 3.0.38)
The Sims? 3 Late Night (Version: 6.5.1)
The Sims? 3 World Adventures (Version: 2.0.86)
Update for Japanese Microsoft IME Postal Code Dictionary (Version: 15.0.1157)
Update for Japanese Microsoft IME Standard Dictionary (Version: 15.0.1080)
Update for Japanese Microsoft IME Standard Extended Dictionary (Version: 15.0.1080)
Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition
Update for Microsoft Access 2013 (KB2827233) 64-Bit Edition
Update for Microsoft InfoPath 2013 (KB2837648) 64-Bit Edition
Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition
Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition
Update for Microsoft Office 2013 (KB2826004) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition
Update for Microsoft Office 2013 (KB2827239) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837626) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837637) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837638) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition
Update for Microsoft Office 2013 (KB2850066) 64-Bit Edition
Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition
Update for Microsoft Outlook 2013 (KB2850061) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2767850) 64-Bit Edition
Update for Microsoft Project 2013 (KB2727085) 64-Bit Edition
Update for Microsoft Publisher 2013 (KB2837635) 64-Bit Edition
Update for Microsoft SkyDrive Pro (KB2817495) 64-Bit Edition
Update for Microsoft SkyDrive Pro (KB2837652) 64-Bit Edition
Update for Microsoft Visio 2013 (KB2817306) 64-Bit Edition
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition
Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition
UserGuide (Version: 1.0.0.15)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 1.1.11 (Version: 1.1.11)
Windows Driver Package - Datel Design & Development (usbio) USBIOControlledDevices  (05/21/2012 2.40.0.0) (Version: 05/21/2012 2.40.0.0)
Windows Driver Package - Datel Design & Development USBIOControlledDevices  (05/21/2012 2.40.0.0) (Version: 05/21/2012 2.40.0.0)
Windows Driver Package - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (Version: 06/15/2012 8.1.0.1)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (Version: 06/19/2012 10.13.29.733)
μTorrent (Version: 3.3.2.30303)
インフィ●ットストラトス ~落ちこぼれによる復讐監禁陵辱劇~
クイーンズブレード~戦乙女淫欲性戦~
けい●ん!放課後淫美調律
ゴ●ドイーター -女淫解放-
スーパー●ボット大戦 ●G - slept with another -
スーパー●ボット大戦 ●G2 -slept with another 2nd-
ソオルキャリバー ~淫児受胎~
ソオルキャリバー3~穢される魂~
ドラゴンズ・ク×ウン異種姦迷宮-化物の巣窟に迷い込んだ女達-
は~れむふぁんたじ~!
一騎●千 -tri indignity-
一騎●千-Tribleeper-
元,伝説の勇者達...
元・導かれし女勇者達
口唇包柔~うさみみ調教 白く濡れる女体たち~
変態おじさんと肉便器にされた私-僕は友達●少ない-
巨人実験室~人は巨人の子を孕むか!?~
想い人がいる娘達がおじさんとエッチしてたらどう思う?-T●L●veる!-
機動戦士ガリダム00 2nd~堕ちる女達~
海賊ヘルス-もしも彼女達が風俗嬢なら?-
淫らに滅殺! 桃色くノ一忍法帖♪ ~陵姦将軍の淫棒!?~
華麗に悩殺♪ くのいちがイク! ~桃色ハレンチ忍法帳~ 1.00
褐色アナメイト ~桃尻っ娘を堕とせ♪~DL版 (Version: 1.00.0000)
高潔愛玩処女宮-クイーンズブレードリヴェリオン-

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 8104.27 MB
Available physical RAM: 4521.57 MB
Total Pagefile: 16296.27 MB
Available Pagefile: 9619.32 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.15 MB

========================= Partitions: =====================================

1 Drive c: (Windows8_OS) (Fixed) (Total:889.48 GB) (Free:614.52 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:21.65 GB) NTFS

========================= Users: ========================================

User accounts for \\LAPTOP-DEX

Administrator            Guest                    Pointdexter              

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
 

Attached Files


Edited by hamluis, 29 January 2014 - 07:18 AM.
Moved from Win 8 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:04:31 PM

Posted 28 January 2014 - 09:15 PM

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


#3 d3xyh00w3n

d3xyh00w3n
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:31 AM

Posted 28 January 2014 - 10:54 PM

Here's the ADWC file:

# AdwCleaner v3.018 - Report created 28/01/2014 at 18:49:12
# Updated 28/01/2014 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : Pointdexter - LAPTOP-DEX
# Running from : C:\Users\Pointdexter\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\Users\Pointdexter\AppData\Local\SwvUpdater
File Deleted : C:\Users\Pointdexter\AppData\Roaming\Mozilla\Firefox\Profiles\cldvx7zj.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\Pointdexter\AppData\Roaming\Mozilla\Firefox\Profiles\cldvx7zj.default\prefs.js ]

Line Deleted : user_pref("extensions.crossrider.bic", "143be9aa036581dabcbcf25a2cb37a46");

-\\ Google Chrome v32.0.1700.102

[ File : C:\Users\Pointdexter\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3555 octets] - [28/01/2014 18:48:56]
AdwCleaner[S0].txt - [3462 octets] - [28/01/2014 18:49:12]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3522 octets] ##########
 

 

 

Here's the JRT file:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 8.1 x64
Ran by Pointdexter on 01/28/2014 Tue at 19:50:55.62
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\caphyon
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\caphyon



~~~ Files



~~~ Folders

Failed to delete: [Folder] "C:\WINDOWS\syswow64\ai_recyclebin"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01/28/2014 Tue at 19:52:46.72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

Here's the FSS file:

Farbar Service Scanner Version: 08-01-2014
Ran by Pointdexter (administrator) on 28-01-2014 at 18:58:21
Running from "C:\Users\Pointdexter\Downloads"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""%ProgramFiles%\Windows Defender\MsMpEng.exe"".


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll
[2013-08-22 05:25] - [2013-08-22 05:25] - 0029184 ____A (Microsoft Corporation) 6E2271ED0C3E95B8E29F3752B91B9E84

C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2014-01-25 02:18] - [2014-01-25 02:18] - 2551128 ____A (Microsoft Corporation) 3D9A5AC880D7AA2305812D665D24ED23

C:\Windows\System32\dnsrslvr.dll
[2013-11-13 23:28] - [2013-11-13 23:28] - 0255488 ____A (Microsoft Corporation) 5BAF7714E68F93515A937A3FA8587EF9

C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll
[2013-11-13 23:23] - [2013-11-13 23:23] - 0828416 ____A (Microsoft Corporation) 6468B696C65775D51A06615830E0E79D

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll
[2013-11-13 23:28] - [2013-11-13 23:28] - 3532288 ____A (Microsoft Corporation) 86D0BF4F792053A50D6EE43DFA5837A5

C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll
[2013-11-13 23:29] - [2013-11-13 23:29] - 0433664 ____A (Microsoft Corporation) F4414F57DF2CECB8FC969AA43A6B0D50

C:\Windows\System32\iphlpsvc.dll
[2013-11-13 23:29] - [2013-11-13 23:29] - 0903168 ____A (Microsoft Corporation) DFC4050D58565ADBEE793A8D4AEBDAE6

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users