Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Weird symptoms in computer again


  • Please log in to reply
8 replies to this topic

#1 polarbearcub

polarbearcub

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:47 PM

Posted 23 October 2014 - 05:26 AM

I found a program named conhost.exe, yesterday I received an error message where it said "Assertion failed!" and in that error message it said a path to some D:\ directory. It was something like d:\bamboo\ and it also said the name gonzales-pedro, and the error message's title was some "Microsoft Visual C++". And my cursor moves sometimes by itself, and some other stuff in the computer move by themselves.

 

I have a HP Pavilion 15 computer with Windows 8 (not 8.1 yet because I had to reinstall my computer again but it feels like the virus came back?). My antiviruses are ZoneAlarm antivirus+firewall, AVG Internet Security 2015 Free, and SUPERAntiSpyware, and I also have Malwarebytes Anti-Malware and Anti-Exploit.

 

And I have visited sites that have a lot of popups and stuff...



BC AdBot (Login to Remove)

 


#2 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:47 PM

Posted 23 October 2014 - 05:43 PM

Hi polarbearcub and :welcome:

 

Download Screen317 Security Check HERE and save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Please post the contents of that document.
Note:: If any security program requests permission to access the Internet, allow it to do so

Please download MiniToolBox HERE to your desktop to run it.
Checkmark the following boxes:
* List content of Hosts
* Flush DNS
* Report IE Proxy Settings
* Reset IE Proxy Settings
* Report FF Proxy Settings
* Reset FF Proxy Settings
* List last 10 Event Viewer log
* List Installed Programs
* List Devices (do NOT change any settings here)
* List Users, Partitions and Memory size
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
Click Go and Copy / Paste the result. (result.txt)

 

AVG Internet Security 2015 is not free, maybe Zone alarm but you have two security suites and not good.

Do a scan with Malwarebytes and Superantispyware.Post the results.

Malwarebytes:

How to open the log:
Open MalwareBytes Anti-Malware and then click on History
On the left column, select Application Logs. Select the most recent log among the list, it is usually the one on the top (or sort by date) and open it.
Go to the bottom left corner to Export and select Text File (*.txt)
Save it to the desktop

 

In Superantispyware is main window System tools-Scan logs.

 

Thank you!



#3 polarbearcub

polarbearcub
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:47 PM

Posted 24 October 2014 - 07:36 AM

MiniToolBox by Farbar  Version: 21-07-2014
Ran by [name not shown] (administrator) on 24-10-2014 at 15:19:21
Running from "C:\Users\[name not shown]\Downloads"
Microsoft Windows 8  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================




========================= Event log errors: ===============================

Application errors:
==================
Error: (10/24/2014 02:41:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1947828

Error: (10/24/2014 02:41:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1947828

Error: (10/24/2014 02:41:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/24/2014 02:41:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1946424

Error: (10/24/2014 02:41:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1946424

Error: (10/24/2014 02:41:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/24/2014 02:41:52 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1944942

Error: (10/24/2014 02:41:52 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1944942

Error: (10/24/2014 02:41:52 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/24/2014 02:41:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1943538


System errors:
=============
Error: (10/24/2014 02:43:00 PM) (Source: NetBT) (User: )
Description: Alustus epäonnistui, koska kuljetus ei avannut aloitusosoitteita.

Error: (10/24/2014 02:43:00 PM) (Source: NetBT) (User: )
Description: Alustus epäonnistui, koska kuljetus ei avannut aloitusosoitteita.

Error: (10/24/2014 00:22:08 PM) (Source: NetBT) (User: )
Description: Alustus epäonnistui, koska kuljetus ei avannut aloitusosoitteita.

Error: (10/24/2014 00:22:05 PM) (Source: NetBT) (User: )
Description: Alustus epäonnistui, koska kuljetus ei avannut aloitusosoitteita.

Error: (10/24/2014 00:13:39 PM) (Source: NetBT) (User: )
Description: Alustus epäonnistui, koska kuljetus ei avannut aloitusosoitteita.

Error: (10/24/2014 00:13:36 PM) (Source: NetBT) (User: )
Description: Alustus epäonnistui, koska kuljetus ei avannut aloitusosoitteita.

Error: (10/23/2014 10:49:58 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-hallinta)
Description: Virhe CBS-asiakasta alustettaessa. Viimeisin virhe: 0x80080005

Error: (10/23/2014 10:49:58 PM) (Source: DCOM) (User: NT-hallinta)
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (10/23/2014 10:27:25 PM) (Source: NetBT) (User: )
Description: Alustus epäonnistui, koska kuljetus ei avannut aloitusosoitteita.

Error: (10/23/2014 10:27:03 PM) (Source: NetBT) (User: )
Description: Alustus epäonnistui, koska kuljetus ei avannut aloitusosoitteita.


Microsoft Office Sessions:
=========================
Error: (10/24/2014 02:41:55 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1947828

Error: (10/24/2014 02:41:55 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1947828

Error: (10/24/2014 02:41:55 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/24/2014 02:41:54 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1946424

Error: (10/24/2014 02:41:54 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1946424

Error: (10/24/2014 02:41:54 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/24/2014 02:41:52 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1944942

Error: (10/24/2014 02:41:52 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1944942

Error: (10/24/2014 02:41:52 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/24/2014 02:41:51 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1943538


CodeIntegrity Errors:
===================================
  Date: 2014-10-23 12:39:46.229
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\AVG2015\avghooka.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-23 12:25:01.185
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\AVG2015\avghooka.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-23 12:15:49.255
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\AVG2015\avghooka.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-23 11:59:36.854
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\AVG2015\avghooka.dll because the set of per-page image hashes could not be found on the system.



=========================== Installed Programs ============================
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.8.1.451 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.1 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 12.10.100.30226 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1124.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{9E2BF31C-7E39-C549-8AFE-56C3B927BD91}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2013.0226.20.471 - Advanced Micro Devices, Inc.) Hidden
AMD VISION Engine Control Center (x32 Version: 2013.0226.20.471 - Advanced Micro Devices, Inc.) Hidden
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5557 - AVG Technologies)
AVG 2015 (Version: 15.0.4189 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5557 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0226.20.471 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0226.20.471 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0226.20.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0226.0019.471 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0226.20.471 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Fotogalleriet (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.104 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{07F6DC37-0857-4B68-A675-4E35989E85E3}) (Version: 6.0.15.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{59F8C5AA-91BD-423D-BF05-09A80F39898F}) (Version: 2.10.62 - Hewlett-Packard Company)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{F2481209-98FE-4943-8903-90D19E1B7062}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Postscript Converter (Version: 4.0.4100 - Hewlett-Packard) Hidden
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Recovery Manager (x32 Version: 9.00 - Hewlett-Packard) Hidden
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
K-Lite Mega Codec Pack 10.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.8.0 - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Lernout & Hauspie TruVoice American English TTS Engine (HKLM-x32\...\tv_enua) (Version:  - )
Loquendo TTS: Carmen (Spanish) (HKLM-x32\...\LoqTTS-Carmen_is1) (Version:  - )
Loquendo TTS: Jorge (Spanish) (HKLM-x32\...\LoqTTS-Jorge_is1) (Version:  - )
Malwarebytes Anti-Exploit version 1.04.1.1012 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.04.1.1012 - Malwarebytes)
Malwarebytes Anti-Malware versio 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4659.1001 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM-x32\...\MSTTS) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker 6.0 for Windows 7 (64-bit) (HKLM\...\{A7395F20-2B22-4CB8-8510-B452C0F47E02}) (Version: 6.0.0 - Microsoft Corporation)
Mozilla Firefox 33.0 (x86 fi) (HKLM-x32\...\Mozilla Firefox 33.0 (x86 fi)) (Version: 33.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4454.1510 - Microsoft Corporation) Hidden
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6870 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.007 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
Security Task Manager 1.8g (HKLM-x32\...\Security Task Manager) (Version: 1.8g - Neuber Software)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1158 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.5.3.3 - Synaptics Incorporated)
TTSReader 1.30 (HKLM-x32\...\TTSReader) (Version: 1.30 - SpheNet)
Valokuvavalikoima (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Liven peruspaketti (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Phone app for desktop (HKLM-x32\...\{DC499647-A47E-4EF4-8C51-6E7ED589C7E6}) (Version: 1.1.2726.0 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 55%
Total physical RAM: 5318.25 MB
Available physical RAM: 2372.06 MB
Total Pagefile: 9286.25 MB
Available Pagefile: 5889.94 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.12 MB

========================= Partitions: =====================================

1 Drive c: (Windows) (Fixed) (Total:678.49 GB) (Free:603.11 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:19.04 GB) (Free:1.87 GB) NTFS

========================= Users: ========================================

K„ytt„j„tilit \\[PC name not shown]

J„rjestelm„nvalvoja      [name not shown]                  Vieras                   
Komento on suoritettu.


**** End of log ****
 

 Results of screen317's Security Check version 0.99.89  
   x64 (UAC is enabled)  
 Internet Explorer 10 Out of date!
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
AVG Internet Security 2015   
Windows Defender             
ZoneAlarm Antivirus          
 Antivirus up to date!  (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Adobe Flash Player     15.0.0.189  
 Mozilla Firefox (33.0)
 Google Chrome 38.0.2125.104  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 AVG avgwdsvc.exe
 Malwarebytes Anti-Exploit mbae-svc.exe   
 Malwarebytes Anti-Malware mbamscheduler.exe   
 Malwarebytes Anti-Exploit mbae.exe   
 CheckPoint ZoneAlarm ZaPrivacyService.exe -?-  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````
 



#4 polarbearcub

polarbearcub
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:47 PM

Posted 24 October 2014 - 07:37 AM

I couldn't get the Superantispyware not Malwarebytes logs btw. Also, do you mean that it's not good to have 2 Antiviruses at the same time? I removed ZoneAlarm and now I use AVG Antivirus.



#5 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:47 PM

Posted 26 October 2014 - 12:15 PM

Is it bad to run multiple antivirus

Zone Alarm and Outpost are famous with their Firewall and the antivirus module is too weak.

Why couldn`t get the logs?

conhost.exe is a process?

Download Anvir Task manager free HERE install or use portable /must be extracted/.

In main window click tab Processes and locate this.Right click and choose option Check online.A page of Virus Total will appear.

Look in drive D: also for something out of place.

 

Thank you!



#6 polarbearcub

polarbearcub
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:47 PM

Posted 26 October 2014 - 02:22 PM

Is it bad to run multiple antivirus

Zone Alarm and Outpost are famous with their Firewall and the antivirus module is too weak.

Why couldn`t get the logs?

conhost.exe is a process?

Download Anvir Task manager free HERE install or use portable /must be extracted/.

In main window click tab Processes and locate this.Right click and choose option Check online.A page of Virus Total will appear.

Look in drive D: also for something out of place.

 

Thank you!

I couldn't find the logs. And I checked the conhost process, nothing harmful found. And I checked the D:/ drive, nothing else was there than just some file named recovery.



#7 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:47 PM

Posted 26 October 2014 - 03:02 PM

So did they find anything?



#8 polarbearcub

polarbearcub
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:47 PM

Posted 26 October 2014 - 03:56 PM

Nope. Not at all. But I wonder that why some unusual yet legit Microsoft programs and processes are running? But I have the paid version of Microsoft Office 365.

#9 INeedHelpASAP

INeedHelpASAP

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:01:47 PM

Posted 04 March 2015 - 07:23 PM

I have this same problem. Is there a way to manually remove this file or track the source. I want to do it without the assistance of a computer protection program.

 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users